Lucene search
K

130 matches found

CBLMariner
CBLMariner
added 2024/07/02 11:30 p.m.20 views

CVE-2024-0901 affecting package mariadb for versions less than 10.11.6-3

CVE-2024-0901 affecting package mariadb for versions less than 10.11.6-3. A patched version of the package is available...

9.1CVSS7AI score0.00694EPSS
Exploits1
OSV
OSV
added 2024/03/25 11:15 p.m.6 views

AZL-37112 CVE-2024-0901 affecting package mariadb for versions less than 10.11.6-3

Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an out of bounds read via sending a malformed packet with the correct length...

9.1CVSS5.8AI score0.00694EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2024/03/25 11:15 p.m.16 views

CVE-2024-0901

Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an out of bounds read via sending a malformed packet with the correct length...

9.1CVSS7.1AI score0.00694EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/03/25 10:37 p.m.9 views

CVE-2024-0901 SEGV and out of bounds memory read from malicious packet

Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an out of bounds read via sending a malformed packet with the correct length...

7.5CVSS6.8AI score0.00694EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/03/25 10:37 p.m.22 views

CVE-2024-0901 SEGV and out of bounds memory read from malicious packet

Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an out of bounds read via sending a malformed packet with the correct length...

7.5CVSS7.7AI score0.00694EPSS
Exploits1References2
CVE
CVE
added 2024/03/25 10:37 p.m.69 views

CVE-2024-0901

CVE-2024-0901 is described as a remote SEGV and out-of-bounds read caused by a malformed packet with the correct length. The primary public entry (NVD) lists this as a high-severity network vulnerability with no user interaction. Connected documents corroborate the issue across multiple advisorie...

9.1CVSS7.5AI score0.00694EPSS
Exploits1References2Affected Software1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/01/24 8:23 p.m.3 views

Malicious code in wlwz-2312-0901 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5a2de3c23801646329af8d3aeddd0a75ec77acdb82e2cdef249cd4d6673aaa85 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
F5 Networks
F5 Networks
added 2023/02/21 6:46 p.m.50 views

K01730454: Ruby vulnerabilities CVE-2017-0899, CVE-2017-0900, CVE-2017-0901, and CVE-2017-0902

Security Advisory Description CVE-2017-0899 RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem specifications that include terminal escape characters. Printing the gem specification would execute terminal escape sequences. CVE-2017-0900 RubyGems version 2.6.12 and earlie...

9.8CVSS7.3AI score0.29442EPSS
Exploits5
Circl
Circl
added 2023/02/18 7:13 a.m.6 views

CVE-2023-0901

creationtimestamp| type| source ---|---|--- 2023-02-18 07:13:45+00:00| seen| https://t.me/cibsecurity/58503...

5.3CVSS5.3AI score0.00639EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/02/18 12:0 a.m.4 views

CVE-2023-0901 Exposure of Sensitive Information to an Unauthorized Actor in pixelfed/pixelfed

Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository pixelfed/pixelfed prior to 0.11.4...

5.3CVSS6.7AI score0.00639EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/02/18 12:0 a.m.27 views

CVE-2023-0901 Exposure of Sensitive Information to an Unauthorized Actor in pixelfed/pixelfed

Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository pixelfed/pixelfed prior to 0.11.4...

5.3CVSS5.5AI score0.00639EPSS
Exploits1References2
CVE
CVE
added 2023/02/18 12:0 a.m.59 views

CVE-2023-0901

Pixelfed/pixelfed before 0.11.4 is affected by CVE-2023-0901, an information disclosure vulnerability exposing sensitive data to unauthorized actors. The connected sources indicate versions prior to 0.11.4 are vulnerable and recommend upgrading to 0.11.4 or later as a remediation. The CVSS metric...

5.3CVSS5.2AI score0.00639EPSS
Exploits1References2Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 4:53 a.m.4 views

SUSE CVE-2017-0901

RubyGems version 2.6.12 and earlier fails to validate specification names, allowing a maliciously crafted gem to potentially overwrite any file on the filesystem...

5.5CVSS9.4AI score0.29442EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2022/06/10 12:0 a.m.42 views

Security Updates for Microsoft Excel Products C2R (May 2020)

The Microsoft Excel Products are missing a security update. It is, therefore, affected by the following vulnerability : - A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited t...

9.8CVSS8.6AI score0.11563EPSS
Exploits0References2
NVD
NVD
added 2022/04/04 4:15 p.m.47 views

CVE-2022-0901

The Ad Inserter Free and Pro WordPress plugins before 2.7.12 do not sanitise and escape the REQUESTURI before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting in browsers which do not encode characters...

6.1CVSS0.03541EPSS
Exploits4References2
CVE
CVE
added 2022/04/04 3:35 p.m.88 views

CVE-2022-0901

The CVE-2022-0901 entry concerns the WordPress Ad Inserter Free and Pro plugins prior to version 2.7.12, where the REQUEST_URI is not sanitized/escaped before being output on an admin page, enabling a Reflected Cross-Site Scripting (XSS) vulnerability. The issue affects Ad Inserter and Ad Inserte...

6.1CVSS6AI score0.03541EPSS
Exploits4References2Affected Software1
OpenVAS
OpenVAS
added 2022/03/21 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2022:0901-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.01068EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.29 views

Mageia: Security Advisory (MGASA-2017-0482)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.29442EPSS
Exploits6References5
CVE
CVE
added 2021/12/17 4:10 p.m.40 views

CVE-2021-0901

The CVE-2021-0901 issue affects MediaTek Apusys (chipset component). It describes a memory corruption vulnerability caused by a missing bounds check in apusys, enabling local privilege escalation with System execution privileges required and no user interaction needed. Affected state and impact a...

6.7CVSS6.8AI score0.00113EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2017:0901-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS8.6AI score0.06431EPSS
Exploits0References5
Rows per page
Query Builder