CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

546 matches found

Fedora•added 2023/02/19 1:39 a.m.•36 views

[SECURITY] Fedora 37 Update: clamav-0.103.8-1.fc37

Clam AntiVirus is an anti-virus toolkit for UNIX. The main purpose of this software is the integration with mail servers attachment scanning. The package provides a flexible and scalable multi-threaded daemon, a command line scanner, and a tool for automatic updating via Internet. The programs ar...

9.8CVSS7.7AI score0.07124EPSS

Exploits5

SUSE CVE•added 2023/02/15 6:17 a.m.•3 views

SUSE CVE-2005-3271

Exec in Linux kernel 2.6 does not properly clear posix-timers in multi-threaded environments, which results in a resource leak and could allow a large number of multiple local users to cause a denial of service by using more posix-timers than specified by the quota for a single user...

2.1CVSS6.4AI score0.00062EPSS

Exploits0References5

SUSE CVE•added 2023/02/15 5:21 a.m.•2 views

SUSE CVE-2015-1791

Race condition in the ssl3getnewsessionticket function in ssl/s3clnt.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b, when used for a multi-threaded client, allows remote attackers to cause a denial of service double free and application crash or...

6.8CVSS9.1AI score0.10249EPSS

Exploits0References18

SUSE CVE•added 2023/02/15 5:19 a.m.•1 views

SUSE CVE-2015-3196

ssl/s3clnt.c in OpenSSL 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1p, and 1.0.2 before 1.0.2d, when used for a multi-threaded client, writes the PSK identity hint to an incorrect data structure, which allows remote servers to cause a denial of service race condition and double free via a crafted...

4.3CVSS6.8AI score0.07321EPSS

Exploits1References8

SUSE CVE•added 2023/02/15 4:36 a.m.•1 views

SUSE CVE-2017-18193

fs/f2fs/extentcache.c in the Linux kernel before 4.13 mishandles extent trees, which allows local users to cause a denial of service BUG via an application with multiple threads...

5.5CVSS7.1AI score0.00084EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 3:35 a.m.•1 views

SUSE CVE-2022-0485

A flaw was found in the copying tool nbdcopy of libnbd. When performing multi-threaded copies using asynchronous nbd calls, nbdcopy was blindly treating the completion of an asynchronous command as successful, rather than checking the error parameter. This could result in the silent creation of a...

4.8CVSS6.9AI score0.00091EPSS

Exploits1References5

OSV•added 2023/01/20 4:56 p.m.•27 views

GHSA-MC52-JPM2-CQH6 Deno is vulnerable to race condition via interactive permission prompt spoofing

Impact Multi-threaded programs were able to spoof interactive permission prompt by rewriting the prompt to suggest that program is waiting on user confirmation to unrelated action. A malicious program could clear the terminal screen after permission prompt was shown and write a generic message li...

8.8CVSS7.2AI score0.00336EPSS

Exploits1References4

Tenable Nessus•added 2023/01/20 12:0 a.m.•24 views

openSUSE 15 Security Update : libnbd (SUSE-SU-2022:2754-1)

The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2022:2754-1 advisory. - A flaw was found in the copying tool nbdcopy of libnbd. When performing multi-threaded copies using asynchronous nbd calls, nbdcopy was blindly treating th...

4.8CVSS6.3AI score0.00091EPSS

Exploits1References4

Tenable Nessus•added 2023/01/20 12:0 a.m.•31 views

openSUSE 15 Security Update : libnbd (SUSE-SU-2022:2347-1)

The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2022:2347-1 advisory. - A flaw was found in the copying tool nbdcopy of libnbd. When performing multi-threaded copies using asynchronous nbd calls, nbdcopy was blindly treating th...

4.8CVSS6.3AI score0.00091EPSS

Exploits1References4

NVD•added 2023/01/17 9:15 p.m.•10 views

CVE-2023-22499

Deno is a runtime for JavaScript and TypeScript that uses V8 and is built in Rust. Multi-threaded programs were able to spoof interactive permission prompt by rewriting the prompt to suggest that program is waiting on user confirmation to unrelated action. A malicious program could clear the...

7.5CVSS7.4AI score0.00336EPSS

Exploits1References2

Prion•added 2023/01/17 9:15 p.m.•16 views

Code injection

5.1CVSS7.4AI score0.00336EPSS

Exploits1References2Affected Software1

Cvelist•added 2023/01/17 8:23 p.m.•17 views

CVE-2023-22499 Interactive permission prompt spoofing in Deno

7.5CVSS7.6AI score0.00336EPSS

Exploits1References2

CNNVD•added 2023/01/17 12:0 a.m.•2 views

Deno 竞争条件问题漏洞

Deno is open source a simple , modern and secure JavaScript and TypeScript runtime environment . It uses V8 and is built with Rust. Deno suffers from a Competing Conditions Issue vulnerability that arises when a multi-threaded program can spoof an interactive permission prompt by rewriting the...

7.5CVSS7.3AI score0.00336EPSS

Exploits1References3

AlpineLinux•added 2022/12/22 12:0 a.m.•46 views

CVE-2022-1097

NSSToken objects were referenced via direct points, and could have been accessed in an unsafe way on different threads, leading to a use-after-free and potentially exploitable crash. This vulnerability affects Thunderbird 91.8, Firefox 99, and Firefox ESR 91.8...

6.5CVSS7.7AI score0.00197EPSS

Exploits1

Fedora•added 2022/11/30 1:38 a.m.•31 views

[SECURITY] Fedora 35 Update: mariadb-10.5.18-1.fc35

MariaDB is a community developed fork from MySQL - a multi-user, multi-thread ed SQL database server. It is a client/server implementation consisting of a server daemon mariadbd and many different client programs and libraries. The base package contains the standard MariaDB/MySQL client programs...

7.5CVSS7.4AI score0.00206EPSS

Exploits4

Rockylinux•added 2022/10/25 7:30 a.m.•48 views

mysql:8.0 security, bug fix, and enhancement update

An update is available for mecab-ipadic, mecab, mysql. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list MySQL is a multi-user, multi-threaded SQL database server...

7.2CVSS7.1AI score0.01196EPSS

Exploits0

OSV•added 2022/10/25 7:30 a.m.•24 views

RLSA-2022:7119 Moderate: mysql:8.0 security, bug fix, and enhancement update

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and libraries. The following packages have been upgraded to a later upstream version: mysql 8.0.30. Security Fixes: mysql: Server: DML multiple unspecified...

7.2CVSS7.9AI score0.01196EPSS

Exploits0References115

Kitploit•added 2022/10/20 11:30 a.m.•52 views

PartyLoud - A Simple Tool To Generate Fake Web Browsing And Mitigate Tracking

PartyLoud is a highly configurable and straightforward free tool that helps you prevent tracking directly from your linux terminal, no special skills required. Once started, you can forget it is running. It provides several flags; each flag lets you customize your experience and change PartyLoud...

7.2AI score

Exploits0References5

AlmaLinux•added 2022/09/20 12:0 a.m.•34 views

Moderate: mysql security, bug fix, and enhancement update

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and libraries. The following packages have been upgraded to a later upstream version: mysql 8.0.30. BZ2122589 Security Fixes: mysql: Server: Optimizer multiple...

6.5CVSS7.2AI score0.01EPSS

Exploits0References90