Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-6750

EPSS 0.59% · P69
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-6750

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
GSocketClient in GNOME GLib through 2.62.4 may occasionally connect directly to a target address instead of connecting via a proxy server when configured to do so, because the proxy_addr field is mishandled. This bug is timing-dependent and may occur only sporadically depending on network delays. The greatest security relevance is in use cases where a proxy is used to help with privacy/anonymity, even though there is no technical barrier to a direct connection. NOTE: versions before 2.60 are unaffected.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
GNOME Glib 信息泄露漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
GNOME Glib是一套用于创建图形用户界面的多平台工具包,是GTK+和GNOME工程的基础底层核心程序库。 GNOME GLib 2.62.4及之前版本(2.60之前版本不受影响)中的GSocketClient存在安全漏洞,该漏洞源于程序没有正确处理proxy_addr字段。攻击者可利用该漏洞将GSocketClient直接连接到目标地址而不是通过代理服务器进行连接。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2020-6750

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2020-6750

登录查看更多情报信息。

Same Patch Batch · n/a · 2020-01-09 · 56 CVEs total

CVE-2019-20182WordPress FooGallery 安全漏洞
CVE-2019-20373LTSP LDM 安全漏洞
CVE-2012-3810Samsung Kies 安全漏洞
CVE-2020-6758Rasilient PixelStor 5000 跨站脚本漏洞
CVE-2020-6757Rasilient PixelStor 5000 安全漏洞
CVE-2020-5504phpMyAdmin SQL注入漏洞
CVE-2020-6756Rasilient PixelStor 5000 安全漏洞
CVE-2019-20181WordPress awesome-support 跨站脚本漏洞
CVE-2019-20184KeePass 安全漏洞
CVE-2012-2950Gateway Geomatics MapServer for Windows 代码问题漏洞
CVE-2019-20183Employee Records System 安全漏洞
CVE-2012-2931TinyWebGallery 安全漏洞
CVE-2012-2226Invision Power Board 代码问题漏洞
CVE-2012-1915CodeIgniter 跨站脚本漏洞
CVE-2019-18859Digi AnywhereUSB 跨站脚本漏洞
CVE-2019-20372F5 Nginx 环境问题漏洞
CVE-2020-6168WordPress Minimal Coming Soon & Maintenance Mode 安全漏洞
CVE-2020-6166WordPress Minimal Coming Soon & Maintenance Mode 安全漏洞
CVE-2012-1261Scrutinizer多个安全漏洞
CVE-2012-1260Plixer Scrutinizer NetFlow & sFlow Analyzer 跨站脚本漏洞

Showing top 20 of 56 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2020-6750

No comments yet

Leave a comment