ntfsck in NTFS-3G through 2021.8.22 has a heap-based buffer overflow involving buffer+512*3-2. NOTE: the upstream position is that ntfsck is deprecated; however, it is shipped by some Linux...
7.8CVSS
7.7AI Score
0.001EPSS
An issue was discovered in the Linux kernel through 5.17.5. io_rw_init_file in fs/io_uring.c lacks initialization of...
7.8CVSS
7.2AI Score
0.0004EPSS
The package angular after 1.7.0 are vulnerable to Regular Expression Denial of Service (ReDoS) by providing a custom locale rule that makes it possible to assign the parameter in posPre: ' '.repeat() of NUMBER_FORMATS.PATTERNS[1].posPre with a very high value. Note: 1) This package has been...
7.5CVSS
7.1AI Score
0.011EPSS
Users with the capability to configure badge criteria (teachers and managers by default) were able to configure course badges with profile field criteria, which should only be available for site...
4.3CVSS
4.8AI Score
0.001EPSS
A flaw was found in the Linux kernel in linux/net/netfilter/nf_tables_api.c of the netfilter subsystem. This flaw allows a local user to cause an out-of-bounds write...
6.6CVSS
6.2AI Score
0.0004EPSS
A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. Once this image is downloaded by a potential victim, the vulnerability is triggered after a user runs the 'podman top' command. This action gives the attacker access to.....
8.8CVSS
8.3AI Score
0.003EPSS
cifs-utils through 6.14, with verbose logging, can cause an information leak when a file contains = (equal sign) characters but is not a valid credentials...
5.3CVSS
5.8AI Score
0.004EPSS
In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root...
7.8CVSS
7.5AI Score
0.001EPSS
5.5CVSS
5.2AI Score
0.001EPSS
FreeType commit 22a0cccb4d9d002f33c1ba7a4b36812c7d4f46b5 was discovered to contain a segmentation violation via the function...
7.5CVSS
8.4AI Score
0.004EPSS
FreeType commit 53dfdcd8198d2b3201a23c4bad9190519ba918db was discovered to contain a segmentation violation via the function...
7.5CVSS
8.4AI Score
0.003EPSS
FreeType commit 1e2eb65048f75c64b68708efed6ce904c31f3b2f was discovered to contain a heap buffer overflow via the function...
9.8CVSS
9.6AI Score
0.009EPSS
In GNOME Epiphany before 41.4 and 42.x before 42.2, an HTML document can trigger a client buffer overflow (in ephy_string_shorten in the UI process) via a long page title. The issue occurs because the number of bytes for a UTF-8 ellipsis character is not properly...
7.5CVSS
7.5AI Score
0.003EPSS
encoding/pem in Go before 1.17.9 and 1.18.x before 1.18.1 has a Decode stack overflow via a large amount of PEM...
7.5CVSS
8.7AI Score
0.004EPSS
The generic P-256 feature in crypto/elliptic in Go before 1.17.9 and 1.18.x before 1.18.1 allows a panic via long scalar...
7.5CVSS
8.6AI Score
0.004EPSS
The package git before 1.11.0 are vulnerable to Command Injection via git argument injection. When calling the fetch(remote = 'origin', opts = {}) function, the remote parameter is passed to the git fetch subcommand in a way that additional flags can be set. The additional flags can be used to...
9.8CVSS
9.7AI Score
0.002EPSS
HashiCorp Consul and Consul Enterprise up to 1.9.16, 1.10.9, and 1.11.4 may allow server side request forgery when the Consul client agent follows redirects returned by HTTP health check endpoints. Fixed in 1.9.17, 1.10.10, and...
7.5CVSS
7.3AI Score
0.024EPSS
5.3CVSS
5.4AI Score
0.001EPSS
A flaw was found in cri-o, where containers were incorrectly started with non-empty default permissions. A vulnerability was found in Moby (Docker Engine) where containers started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to...
5.3CVSS
5.2AI Score
0.0004EPSS
Heap buffer overflow issues were found in Opensc before version 0.22.0 in pkcs15-oberthur.c that could potentially crash programs using the...
5.3CVSS
5.7AI Score
0.002EPSS
A use after return issue was found in Opensc before version 0.22.0 in insert_pin function that could potentially crash programs using the...
5.3CVSS
5.3AI Score
0.001EPSS
5.3CVSS
5.2AI Score
0.001EPSS
Stack buffer overflow issues were found in Opensc before version 0.22.0 in various places that could potentially crash programs using the...
5.3CVSS
5.7AI Score
0.002EPSS
stb_image.h v2.27 was discovered to contain an heap-based use-after-free via the function...
8.8CVSS
8.7AI Score
0.003EPSS
stb_image.h v2.27 was discovered to contain an integer overflow via the function stbi__jpeg_decode_block_prog_dc. This vulnerability allows attackers to cause a Denial of Service (DoS) via unspecified...
6.5CVSS
6.5AI Score
0.004EPSS
STB v2.27 was discovered to contain an integer shift of invalid size in the component...
8.8CVSS
8.6AI Score
0.003EPSS
An out-of-bounds read/write vulnerability was found in e2fsprogs 1.46.5. This issue leads to a segmentation fault and possibly arbitrary code execution via a specially crafted...
7.8CVSS
8.6AI Score
0.001EPSS
In Python (aka CPython) up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of...
7.6CVSS
7.7AI Score
0.001EPSS
singlevar in lparser.c in Lua from (including) 5.4.0 up to (excluding) 5.4.4 lacks a certain luaK_exp2anyregup call, leading to a heap-based buffer over-read that might affect a system that compiles untrusted Lua...
9.1CVSS
8.3AI Score
0.003EPSS
jbd2_journal_wait_updates in fs/jbd2/transaction.c in the Linux kernel before 5.17.1 has a use-after-free caused by a transaction_t race...
7CVSS
6.6AI Score
0.0004EPSS
In Async before 2.6.4 and 3.x before 3.2.2, a malicious user can obtain privileges via the mapValues() method, aka lib/internal/iterator.js createObjectIterator prototype...
7.8CVSS
8.3AI Score
0.001EPSS
A flaw was found in Podman, where containers were started incorrectly with non-empty default permissions. A vulnerability was found in Moby (Docker Engine), where containers were started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to.....
7.5CVSS
7.2AI Score
0.002EPSS
A flaw was found in crun where containers were incorrectly started with non-empty default permissions. A vulnerability was found in Moby (Docker Engine) where containers were started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to...
7.5CVSS
7.2AI Score
0.002EPSS
A flaw was found in buildah where containers were incorrectly started with non-empty default permissions. A bug was found in Moby (Docker Engine) where containers were incorrectly started with non-empty inheritable Linux process capabilities, enabling an attacker with access to programs with...
6.8CVSS
6.8AI Score
0.001EPSS
In HTMLDOC 1.9.14, an infinite loop in the gif_read_lzw function can lead to a pointer arbitrarily pointing to heap memory and resulting in a buffer...
5.5CVSS
5.8AI Score
0.001EPSS
ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a double...
7.8CVSS
7.3AI Score
0.0004EPSS
mcba_usb_start_xmit in drivers/net/can/usb/mcba_usb.c in the Linux kernel through 5.17.1 has a double...
5.5CVSS
5.8AI Score
0.0004EPSS
usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel through 5.17.1 has a double...
5.5CVSS
5.8AI Score
0.0004EPSS
An unauthorized access to the execution of the setuid file with capabilities flaw in the Linux kernel OverlayFS subsystem was found in the way user copying a capable file from a nosuid mount into another mount. A local user could use this flaw to escalate their privileges on the...
7.8CVSS
7.4AI Score
0.0004EPSS
An XSS issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36.4, and 1.37.x before 1.37.2. The widthheight, widthheightpage, and nbytes properties of messages are not escaped when used in galleries or...
6.1CVSS
6AI Score
0.003EPSS
A flaw was found in the opj2_decompress program in openjpeg2 2.4.0 in the way it handles an input directory with a large number of files. When it fails to allocate a buffer to store the filenames of the input directory, it calls free() on an uninitialized pointer, leading to a segmentation fault...
5.5CVSS
5.4AI Score
0.001EPSS
Libarchive v3.6.0 was discovered to contain an out-of-bounds read via the component...
6.5CVSS
6.5AI Score
0.001EPSS
Pillow before 9.0.1 allows attackers to delete files because spaces in temporary pathnames are...
9.1CVSS
8.9AI Score
0.002EPSS
5.5CVSS
6.1AI Score
0.001EPSS
7.8CVSS
7.5AI Score
0.001EPSS
libiberty/rust-demangle.c in GNU GCC 11.2 allows stack consumption in demangle_const, as demonstrated by...
5.5CVSS
5.5AI Score
0.001EPSS
tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_ipv6_next in...
7.8CVSS
7.5AI Score
0.001EPSS
tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_l2len_protocol in...
7.8CVSS
7.5AI Score
0.001EPSS
libkiwix 10.0.0 and 10.0.1 allows XSS in the built-in webserver functionality via the search suggestions URL parameter. This is fixed in...
6.1CVSS
5.9AI Score
0.001EPSS
A stack overflow flaw was found in the Linux kernel's TIPC protocol functionality in the way a user sends a packet with malicious content where the number of domain member nodes is higher than the 64 allowed. This flaw allows a remote user to crash the system or possibly escalate their privileges.....
8.8CVSS
8.8AI Score
0.01EPSS