CVE-2020-10751

MEDIUM Year: 2020
CVSS v3 Score
6.1
Medium
CVSS v2 Score
3.6
Low
Weakness Type
CWE-349
View all →

Vulnerability Description

A flaw was found in the Linux kernels SELinux LSM hook implementation before version 5.7, where it incorrectly assumed that an skb would only contain a single netlink message. The hook would incorrectly only validate the first netlink message in the skb and allow or deny the rest of the messages within the skb with the granted permission without further processing.

Related Vulnerabilities

CVE-2024-42483

MEDIUM
CVSS:6.5(Medium)

ESP-NOW Component provides a connectionless Wi-Fi communication protocol. An replay attacks vulnerability was discovered in the implementation of the ESP-NOW because the caches is not differentiated b...

CWE-3492024

CVE-2023-3749

MEDIUM
CVSS:5.5(Medium)

A local user could edit the VideoEdge configuration file and interfere with VideoEdge operation.

CWE-3492023

CVE-2024-34083

MEDIUM
CVSS:5.4(Medium)

aiosmptd is a reimplementation of the Python stdlib smtpd.py based on asyncio. Prior to version 1.4.6, servers based on aiosmtpd accept extra unencrypted commands after STARTTLS, treating them as if t...

CWE-3492024

CVE-2023-5548

MEDIUM
CVSS:5.3(Medium)

Stronger revision number limitations were required on file serving endpoints to improve cache poisoning protection.

CWE-3492023

CVE-2024-53848

HIGH
CVSS:7.1(High)

check-jsonschema is a CLI and set of pre-commit hooks for jsonschema validation. The default cache strategy uses the basename of a remote schema as the name of the file in the cache, e.g. `https://exa...

CWE-3492024

CVE-2023-44317

HIGH
CVSS:7.2(High)

A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V7.2.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V7.2.2), SCALANCE M80...

CWE-3492023