Lucene search
+L

65 matches found

Debian CVE
Debian CVE
added 2025/01/28 1:3 a.m.8 views

CVE-2024-45341

A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI, so this only affects users of private PKIs which make use of URIs...

6.1CVSS6.2AI score0.00458EPSS
Exploits0
CVE
CVE
added 2025/01/28 1:3 a.m.308 views

CVE-2024-45341

CVE-2024-45341 affects Go (golang) components handling X.509 URI name constraints. A certificate URI containing an IPv6 address with a zone ID may incorrectly satisfy the certificate-chain URI constraint, potentially weakening PKI checks in private PKIs that use URIs. The issue is fixed in variou...

6.1CVSS6.7AI score0.00458EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2025/01/28 1:3 a.m.12 views

CVE-2024-45341

A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI, so this only affects users of private PKIs which make use of URIs...

6.1CVSS4.3AI score0.00458EPSS
Exploits0
OPENSUSE Linux
OPENSUSE Linux
added 2025/01/26 12:0 a.m.4 views

go1.23-1.23.5-1.1 on GA media (moderate)

go1.23-1.23.5-1.1 on GA media Announcement ID: openSUSE-SU-2025:14695-1 Rating: moderate Cross-References: CVE-2024-45336 CVE-2024-45341 Affected Products: openSUSE Tumbleweed An update that solves 2 vulnerabilities can now be installed. Description: These are all security issues fixed in the...

6.1CVSS6.8AI score0.00647EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/01/24 12:0 a.m.15 views

Mageia: Security Advisory (MGASA-2025-0021)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS7.1AI score0.00647EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/01/23 12:0 a.m.21 views

Golang 1.24 < 1.24rc2 Multiple Vulnerabilities

The version of Golang running on the remote host is 1.24 prior to 1.24rc2. It is, therefore, is affected by multiple vulnerabilities: - net/http: Sensitive headers are incorrectly sent after cross-domain redirect CVE-2024-45336 - cmd/go: GOAUTH credential leak due to improper domain segmentation...

8.8CVSS6.5AI score0.00685EPSS
Exploits0References5
Circl
Circl
added 2025/01/16 10:15 p.m.14 views

CVE-2024-45341

creationtimestamp| type| source ---|---|--- 2025-01-16 22:15:09+00:00| seen| https://bsky.app/profile/golang.org/post/3lfvckap2p22o 2025-01-16 23:16:09+00:00| seen| https://bsky.app/profile/golang.org/post/3lfvfxdxeis2y 2025-01-17 12:34:52+00:00| seen|...

6.1CVSS6.4AI score0.00458EPSS
Exploits0References11
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.20 views

openSUSE: Security Advisory for librecad (openSUSE-SU-2022:10002-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS8.3AI score0.06617EPSS
Exploits2References2
Cvelist
Cvelist
added 2023/11/02 1:58 p.m.26 views

CVE-2023-45341 Online Food Ordering System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)

Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'price' parameter of the routers/menu-router.php resource does not validate the characters received and they are sent unfiltered to the database...

9.8CVSS10AI score0.007EPSS
Exploits1References2
CVE
CVE
added 2023/11/02 1:58 p.m.42 views

CVE-2023-45341

CVE-2023-45341 affects Online Food Ordering System v1.0. The vulnerability is multiple unauthenticated SQL injections in the routers/menu-router.php resource, triggered by the unvalidated and unfiltered characters in the “*_price” parameter that are sent to the database. Root cause: lack of input...

9.8CVSS10AI score0.007EPSS
Exploits1References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/03/15 12:0 a.m.44 views

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS : LibreCAD vulnerabilities (USN-5957-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5957-1 advisory. Cody Sixteen discovered that LibreCAD incorrectly handled memory when parsing DXF files. An attacker could use this issue to caus...

9.3CVSS7.3AI score0.06617EPSS
Exploits7References8
SUSE CVE
SUSE CVE
added 2023/02/15 3:36 a.m.4 views

SUSE CVE-2021-45341

A buffer overflow vulnerability in CDataMoji of the jwwlib component of LibreCAD 2.2.0-rc3 and older allows an attacker to achieve Remote Code Execution using a crafted JWW document...

8.8CVSS8.8AI score0.06617EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2022/10/04 12:0 a.m.16 views

Fedora: Security Advisory for librecad (FEDORA-2022-3dd3274ae2)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.3CVSS7.1AI score0.06617EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2022/05/25 12:0 a.m.29 views

openSUSE 15 Security Update : librecad (openSUSE-SU-2022:0143-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0143-1 advisory. - A buffer overflow vulnerability in CDataMoji of the jwwlib component of LibreCAD 2.2.0-rc3 and older allows an attacker to achieve Remote...

9.3CVSS8.1AI score0.06617EPSS
Exploits2References7
OSV
OSV
added 2022/05/23 9:5 a.m.6 views

OPENSUSE-SU-2022:0143-1 Security update for librecad

This update for librecad fixes the following issues: - CVE-2021-45341: Fixed a buffer overflow vulnerability in LibreCAD that allowed an attacker to achieve remote code execution via a crafted JWW document boo1195105 - CVE-2021-45342: Fixed a buffer overflow vulnerability in jwwlib in LibreCAD...

9.3CVSS8.5AI score0.06617EPSS
Exploits2References5
OPENSUSE Linux
OPENSUSE Linux
added 2022/05/23 12:0 a.m.46 views

Security update for librecad (critical)

openSUSE Security Update: Security update for librecad Announcement ID: openSUSE-SU-2022:0143-1 Rating: critical References: 1195105 1195122 Cross-References: CVE-2021-45341 CVE-2021-45342 CVSS scores: CVE-2021-45341 NVD : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-45342 NVD : 7.8...

9.3CVSS8.8AI score0.06617EPSS
Exploits2References2
Mageia
Mageia
added 2022/04/24 10:43 a.m.46 views

Updated librecad packages fix security vulnerability

A buffer overflow vulnerability in CDataMoji of the jwwlib component of LibreCAD 2.2.0-rc3 and older allows an attacker to achieve Remote Code Execution using a crafted JWW document. CVE-2021-45341 A buffer overflow vulnerability in CDataList of the jwwlib component of LibreCAD 2.2.0-rc3 and olde...

9.3CVSS4.7AI score0.06617EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2022/02/17 12:0 a.m.22 views

Debian: Security Advisory (DSA-5077-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.2AI score0.06617EPSS
Exploits6References4
Tenable Nessus
Tenable Nessus
added 2022/02/16 12:0 a.m.42 views

Debian DSA-5077-1 : librecad - security update

The remote Debian 10 / 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5077 advisory. Multiple security issues were discovered in LibreCAD, an application for computer aided design CAD which could result in denial of service or the execution o...

9.3CVSS7.5AI score0.06617EPSS
Exploits6References17
Debian
Debian
added 2022/02/15 7:59 p.m.150 views

[SECURITY] [DSA 5077-1] librecad security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5077-1 [email protected] https://www.debian.org/security/ Aron Xu February 15, 2022 https://www.debian.org/security/faq -...

9.3CVSS8.7AI score0.06617EPSS
Exploits6
Rows per page
Query Builder