Known Vulnerabilities for products from CESNET
Listed below are 20 of the newest known vulnerabilities associated with the vendor "CESNET".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-26917 json | libyang from v2.0.164 to v2.1.30 was discovered to contain a NULL pointer dereference via the function lysp_stmt_validate_val... | 7.5 - HIGH | 2023-04-11 | 2023-04-18 |
| CVE-2023-26916 json | libyang from v2.0.164 to v2.1.30 was discovered to contain a NULL pointer dereference via the function lys_parse_mem at lys_p... | 5.3 - MEDIUM | 2023-04-03 | 2023-11-07 |
| CVE-2021-28906 json | In function read_yin_leaf() in libyang <= v1.0.225, it doesn't check whether the value of retval->ext[r] is NULL. In some cas... | 7.5 - HIGH | 2021-05-20 | 2022-04-06 |
| CVE-2021-28905 json | In function lys_node_free() in libyang <= v1.0.225, it asserts that the value of node->module can't be NULL. But in some case... | 7.5 - HIGH | 2021-05-20 | 2022-04-05 |
| CVE-2021-28904 json | In function ext_get_plugin() in libyang <= v1.0.225, it doesn't check whether the value of revision is NULL. If revision is N... | 7.5 - HIGH | 2021-05-20 | 2022-04-05 |
| CVE-2021-28903 json | A stack overflow in libyang <= v1.0.225 can cause a denial of service through function lyxml_parse_mem(). lyxml_parse_elem() ... | 7.5 - HIGH | 2021-05-20 | 2022-04-05 |
| CVE-2021-28902 json | In function read_yin_container() in libyang <= v1.0.225, it doesn't check whether the value of retval->ext[r] is NULL. In som... | 7.5 - HIGH | 2021-05-20 | 2022-04-05 |
| CVE-2020-5281 json | In Perun before version 3.9.1, VO or group manager can modify configuration of the LDAP extSource to retrieve all from Perun ... | 7.5 - HIGH | 2020-03-25 | 2020-03-30 |
| CVE-2019-20398 json | A NULL pointer dereference is present in libyang before v1.0-r3 in the function lys_extension_instances_free() due to a copy ... | 6.5 - MEDIUM | 2020-01-22 | 2023-09-19 |
| CVE-2019-20397 json | A double-free is present in libyang before v1.0-r1 in the function yyparse() when an organization field is not terminated. Ap... | 8.8 - HIGH | 2020-01-22 | 2023-09-19 |
| CVE-2019-20396 json | A segmentation fault is present in yyparse in libyang before v1.0-r1 due to a malformed pattern statement value during lys_pa... | 6.5 - MEDIUM | 2020-01-22 | 2023-09-19 |
| CVE-2019-20395 json | A stack consumption issue is present in libyang before v1.0-r1 due to the self-referential union type containing leafrefs. Ap... | 6.5 - MEDIUM | 2020-01-22 | 2023-09-19 |
| CVE-2019-20394 json | A double-free is present in libyang before v1.0-r3 in the function yyparse() when a type statement in used in a notification ... | 8.8 - HIGH | 2020-01-22 | 2023-09-19 |
| CVE-2019-20393 json | A double-free is present in libyang before v1.0-r1 in the function yyparse() when an empty description is used. Applications ... | 8.8 - HIGH | 2020-01-22 | 2023-09-19 |
| CVE-2019-20392 json | An invalid memory access flaw is present in libyang before v1.0-r1 in the function resolve_feature_value() when an if-feature... | 6.5 - MEDIUM | 2020-01-22 | 2023-09-19 |
| CVE-2019-20391 json | An invalid memory access flaw is present in libyang before v1.0-r3 in the function resolve_feature_value() when an if-feature... | 6.5 - MEDIUM | 2020-01-22 | 2023-09-19 |
| CVE-2019-19334 json | In all versions of libyang before 1.0-r5, a stack-based buffer overflow was discovered in the way libyang parses YANG files w... | 9.8 - CRITICAL | 2019-12-06 | 2023-11-07 |
| CVE-2019-19333 json | In all versions of libyang before 1.0-r5, a stack-based buffer overflow was discovered in the way libyang parses YANG files w... | 9.8 - CRITICAL | 2019-12-06 | 2023-11-07 |
| CVE-2019-15537 json | The proxystatistics module before 3.1.0 for SimpleSAMLphp allows SQL Injection in lib/Auth/Process/DatabaseCommand.php. | 9.8 - CRITICAL | 2019-08-23 | 2019-08-28 |
| CVE-2016-15014 json | A vulnerability has been found in CESNET theme-cesnet up to 1.x on ownCloud and classified as problematic. Affected by this v... | 5.5 - MEDIUM | 2023-01-07 | 2023-11-07 |