Vulnerability Trends Summary
As part of our monthly vulnerability trends, this report shows the monthly top 10 trends on security vulnerabilities and how hackers, malware, and exploit kits are exploiting those vulnerabilities. To demonstrate, we assign vulnerability trends value as a percentage of how each vulnerability is significantly gaining the attention of cyber security communities, attackers, together with malware. In either case, companies can benefit from the report to have more cyber threat insights and relatively anticipate attacks wave that might target their public assets in the following months.
Subscribe to the monthly vulnerability digest report by clicking here.
Download the full vulnerability digest report by clicking here.
The following chart shows the trends.
In November 2020, for the first time, we don’t see Microsoft related vulnerabilities in our list as the cybersecurity community responded more to the list of wildly-exploited vulnerabilities published by Google Zero Project here.
Other important vulnerabilities have been reported as trends. That includes VMware Workspace One command injection and Oracle Web Logic RCE.
The following table shows the details of the trends.
| CVE | Vulnerability | Publish Date | Exploited | Trends* |
| CVE-2020-27930 | Code Execution in iOS and OS X | 05/11/2020 | Yes | 19% |
| CVE-2020-4006 | Command Execution in VMware Workspace One | 23/11/2020 | No | 12% |
| CVE-2020-14750 | RCE in Oracle Web Logic | 02/11/2020 | Yes | 11% |
| CVE-2020-16013 | Code Execution in Chrome | 11/11/2020 | Yes | 11% |
| CVE-2020-16017 | Use-After-Free in Chrome | 11/11/2020 | Yes | 10% |
| CVE-2020-27950 | Memory Leakage in iOS and OS X | 05/11/2020 | Yes | 9% |
| CVE-2020-25705 | SAD DNS in Linux | 16/11/2020 | Yes | 8% |
| CVE-2020-27955 | Remote Code Execution in GIT-LFS | 05/11/2020 | Yes | 7% |
| CVE-2020-13671 | Arbitrary File Upload in Drupal | 18/11/2020 | No | 7% |
| CVE-2020-16009 | Code Execution in Chrome | 02/11/2020 | Yes | 6% |
Subscribe to the monthly vulnerability digest report by clicking here.
Download the full vulnerability digest report by clicking here.
1.CVE-2020-27930
A memory corruption issue exists in iOS and OS X FontParser where causes arbitrary code execution when
processing a maliciously crafted font
| CVSS Rate | 8.2 HIGH |
| Exploited | Yes |
| Links | https://support.apple.com/en-us/HT211929 |
2.CVE-2020-4006
A command injection and execution vulnerability exists in VMware Workspace One Access, Identity
Manager, Access Connector and Identity Manager Connector that causes a malicious user with access to
administrative port 8443 can exploit this vulnerability.
| CVSS Rate | 9.1 CRITICAL |
| Exploited | No |
| Links | https://www.vmware.com/security/advisories/VMSA-2020-0027.html |
3.CVE-2020-14750
Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to
compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle
WebLogic Server.
4.CVE-2020-16013
Missing verification of node value in inappropriate implementation in V8 JavaScript engine in Chrome web
browser that affect the browser’s Windows, macOS and Linux versions.
| CVSS Rate | 8.8 HIGH |
| Exploited | Yes |
| Links | https://chromereleases.googleblog.com/2020/11/stable-channel-update-for-desktop_11.html https://github.com/v8/v8/commit |
5.CVE-2020-16017
Use-After-Free vulnerability exists in site isolation functionality in Chrome web browser that affect the
browser’s Windows, macOS and Linux versions.
| CVSS Rate | 8.8 HIGH |
| Exploited | Yes |
| Links | https://chromereleases.googleblog.com/2020/11/stable-channel-update-for-desktop_11.html |
6.CVE-2020-27950
Information leakage issue exists in iOS and OS X where causes a malicious application to be able to disclose
kernel memory.
| CVSS Rate | 8.2 HIGH |
| Exploited | Yes |
| Links | https://support.apple.com/en-us/HT211929 |
7.CVE-2020-25705
A flaw in the way reply ICMP packets are limited in the Linux kernel functionality was found that allows to
quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypassing source port
UDP randomization. This attack is called SAD DNS.
| CVSS Rate | 7.4 HIGH |
| Exploited | Yes |
| Links | https://www.saddns.net/ https://www.suse.com/support/kb/doc/?id=000019786 |
8.CVE-2020-27955
A remote code execution vulnerability exists in GIT-LFS that affects Git, GitHub CLI, GitHub Desktop, Visual
Studio and more.
| CVSS Rate | 9.8 CRITICAL |
| Exploited | Yes |
| Links | https://github.com/git-lfs/git-lfs/releases https://packetstormsecurity.com/files/159923/git-lfs-Remote-Code-Execution.htm |
9.CVE-2020-13671
A remote code execution vulnerability exists in Drupal as Drupal core does not properly sanitize certain
filenames on uploaded files, which can lead to files being interpreted as the incorrect extension and served
as the wrong MIME type or executed as PHP for certain hosting configurations.
| CVSS Rate | 9.8 CRITICAL |
| Exploited | No |
| Links | https://www.drupal.org/sa-core-2020-012 |
10.CVE-2020-16009
Inappropriate implementation in V8 Turbofan Type in Google Chrome. This vulnerability allows a remote
attacker to potentially exploit heap corruption via a crafted HTML page.
