Lucene search
K

49 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : pcre-8.42-6.el8 (AXSA:2021-2716:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2716:01 advisory. pcre: Buffer over-read in JIT when UTF is disabled and \X or \R has fixed quantifier greater than 1 CVE-2019-20838 pcre: Integer overflow when parsi...

7.5CVSS7AI score0.04182EPSS
Exploits0References3
NVD
NVD
added 2026/01/13 6:16 p.m.6 views

CVE-2026-20838

Generation of error message containing sensitive information in Windows Kernel allows an authorized attacker to disclose information locally...

5.5CVSS0.00633EPSS
Exploits0References1
Circl
Circl
added 2026/01/13 6:1 p.m.5 views

CVE-2026-20838

creationtimestamp| type| source ---|---|--- 2026-01-13 18:01:16+00:00| seen| https://www.thezdi.com/blog/2026/1/13/the-january-2026-security-update-review 2026-01-13 18:16:30+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0007 2026-04-10 10:53:42+00:00| seen|...

5.5CVSS5.7AI score0.00633EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/13 5:56 p.m.2 views

CVE-2026-20838 Windows Kernel Information Disclosure Vulnerability

...

5.5CVSS6.6AI score0.00633EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/11/19 12:0 a.m.3 views

AlmaLinux 9 : zziplib (ALSA-2025:20838)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:20838 advisory. zziplib: directory traversal in unzzipcat in the bins/unzzipcat-mem.c CVE-2018-17828 Tenable has extracted the preceding description block directly from the...

5.8CVSS5.9AI score0.01538EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/11/11 12:0 a.m.3 views

RHEL 9 : zziplib (RHSA-2025:20838)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:20838 advisory. The zziplib is a lightweight library to easily extract data from zip files. Security Fixes: zziplib: directory traversal in unzzipcat in the...

5.8CVSS6AI score0.01538EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.7 views

TencentOS Server 3: pcre (TSSA-2022:0216)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0216 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.5CVSS7.1AI score0.04182EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/23 9:36 a.m.10 views

CVE-2024-20838

Improper validation vulnerability in Samsung Internet prior to version 24.0.3.2 allows local attackers to execute arbitrary code...

7.8CVSS7.4AI score0.00182EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:45 a.m.7 views

CVE-2023-20838

In imgsys, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326455; Issue ID: ALPS07326418...

4CVSS6.1AI score0.00084EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2019-20838

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, a related issue to...

7.5CVSS7AI score0.0277EPSS
Exploits1References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/02/05 5:1 p.m.48 views

Security Bulletin: IBM Aspera Shares is vulnerable to multiple high severity vulnerabilities (CVE-2022-1586, CVE-2022-4304, CVE-2023-0215, CVE-2023-0286, CVE-2019-20838, CVE-2022-2068, CVE-2022-1587)

Summary This Security Bulletin addresses multiple high severity OpenSSL security vulnerabilities that have been remediated in IBM Aspera Shares 1.10.0 PL4. Vulnerability Details CVEID:CVE-2022-1586 DESCRIPTION: PCRE2 could allow a remote attacker to execute arbitrary code on the system, caused by...

10CVSS9.7AI score0.95764EPSS
Exploits1Affected Software5
IBM Security Bulletins
IBM Security Bulletins
added 2024/05/29 8:37 p.m.38 views

Security Bulletin: IBM Aspera Console has addressed multiple PCRE and PCRE2 library vulnerabilities (CVE-2022-1587, CVE-2019-20838, CVE-2022-1586)

Summary This Security Bulletin addresses security vulnerabilities related to PCRE and PCRE2 library vulnerabilities that have been remediated CVE-2022-1587, CVE-2019-20838, CVE-2022-1586 in IBM Aspera Console 3.4.2 PL5. Vulnerability Details CVEID:CVE-2022-1587 DESCRIPTION: PCRE2 could allow a...

9.1CVSS9.4AI score0.02993EPSS
Exploits0Affected Software5
Circl
Circl
added 2024/03/05 6:22 a.m.6 views

CVE-2024-20838

creationtimestamp| type| source ---|---|--- 2024-03-05 06:22:26+00:00| seen| https://t.me/ctinow/199934 2024-03-05 06:27:13+00:00| seen| https://t.me/ctinow/199947...

7.8CVSS6.5AI score0.00182EPSS
Exploits0References2
CVE
CVE
added 2024/03/05 4:44 a.m.64 views

CVE-2024-20838

Samsung Internet prior to version 24.0.3.2 contains an improper validation vulnerability that could allow local attackers to execute arbitrary code. Affected: Samsung Internet on supported Samsung devices (pre-24.0.3.2). Root cause: improper validation in the browser component. Impact: local code...

7.8CVSS6.8AI score0.00182EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2023/09/04 7:16 a.m.4 views

CVE-2023-20838

creationtimestamp| type| source ---|---|--- 2023-09-04 07:16:06+00:00| seen| https://t.me/cibsecurity/69720...

4CVSS4.6AI score0.00084EPSS
Exploits0References1
OSV
OSV
added 2023/09/04 3:15 a.m.5 views

CVE-2023-20838

In imgsys, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326455; Issue ID: ALPS07326418...

4CVSS5.7AI score0.00084EPSS
Exploits0References1
CVE
CVE
added 2023/09/04 2:27 a.m.78 views

CVE-2023-20838

CVE-2023-20838 concerns the imgsys component. Multiple connected sources confirm a race-condition–driven out-of-bounds read that can leak local information and, in some scenarios, enable system-level execution with user interaction required for exploitation. Affected references consistently descr...

4CVSS3.9AI score0.00084EPSS
Exploits0References1Affected Software3
SUSE CVE
SUSE CVE
added 2023/02/15 4:5 a.m.3 views

SUSE CVE-2019-20838

libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, a related issue to CVE-2019-20454...

7.5CVSS7.6AI score0.0277EPSS
Exploits0References104
CVE
CVE
added 2022/11/10 5:40 p.m.73 views

CVE-2022-20838

Cisco Firepower Management Center (FMC) web UI contains stored XSS vulnerabilities due to insufficient input validation. An authenticated, remote attacker could inject crafted input into UI fields to execute arbitrary script in the FMC interface context or access browser-based information, with p...

4.8CVSS5AI score0.00446EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2022/05/18 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-5425-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.04182EPSS
Exploits0References2
Rows per page
Query Builder