Redhat » Enterprise Linux Workstation : Security Vulnerabilities, CVEs, Published In 2020 (Code Execution)
Insufficient policy enforcement in downloads in Google Chrome on OS X prior to 80.0.3987.87 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension.
Max CVSS
8.8
EPSS Score
0.43%
Published
2020-02-11
Updated
2021-09-16
Heap-based buffer overflow in the getZip64Data function in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command.
Max CVSS
7.8
EPSS Score
0.73%
Published
2020-01-31
Updated
2023-02-13
Heap-based buffer overflow in the test_compr_eb function in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command.
Max CVSS
7.8
EPSS Score
0.73%
Published
2020-01-31
Updated
2023-02-13
Heap-based buffer overflow in the CRC32 verification in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command.
Max CVSS
7.8
EPSS Score
0.73%
Published
2020-01-31
Updated
2023-02-13
4 vulnerabilities found