Lucene search
K

801 matches found

Amazon
Amazon
added 2024/09/18 12:0 a.m.9 views

Medium: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: xen/events: close evtchn after mapping cleanup CVE-2024-26687 In the Linux kernel, the following vulnerability has been resolved: ext4: fix corruption during on-line resize CVE-2024-35807 Affected Packages: kernel...

5.5CVSS6.7AI score0.00269EPSS
Exploits0
Amazon
Amazon
added 2024/09/18 12:0 a.m.4 views

Low: systemd

Issue Overview: An issue was discovered in systemd 253. An attacker can modify the contents of past events in a sealed log file and then adjust the file such that checking the integrity shows no error, despite modifications. NOTE: the vendor reportedly sent "a reply denying that any of the findin...

5.3CVSS6.9AI score0.00352EPSS
Exploits0
Amazon
Amazon
added 2024/09/04 12:0 a.m.3 views

Medium: nginx

Issue Overview: NGINX Open Source and NGINX Plus have a vulnerability in the ngxhttpmp4module, which might allow an attacker to over-read NGINX worker memory resulting in its termination, using a specially crafted mp4 file. The issue only affects NGINX if it is built with the ngxhttpmp4module and...

5.7CVSS6.8AI score0.0032EPSS
Exploits0
Amazon
Amazon
added 2024/08/29 12:0 a.m.5 views

Medium: docker

Issue Overview: When following an HTTP redirect to a domain which is not a subdomain match or exact match of the initial domain, an http.Client does not forward sensitive headers such as "Authorization" or "Cookie". For example, a redirect from foo.com to www.foo.com will forward the Authorizatio...

9.8CVSS6.8AI score0.01952EPSS
Exploits0
Amazon
Amazon
added 2024/08/21 12:0 a.m.2 views

Medium: firefox

Issue Overview: There exists interger overflows in libvpx in versions prior to 1.14.1. Calling vpximgalloc with a large value of the dw, dh, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpximaget struct may be...

9.1CVSS7.1AI score0.00814EPSS
Exploits1
Amazon
Amazon
added 2024/08/21 12:0 a.m.11 views

Medium: oci-add-hooks

Issue Overview: An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request's headers exceed...

7.5CVSS6.9AI score0.91969EPSS
Exploits1
Amazon
Amazon
added 2024/08/21 12:0 a.m.6 views

Medium: oci-add-hooks

Issue Overview: An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request's headers exceed...

7.5CVSS6.9AI score0.91969EPSS
Exploits1
Amazon
Amazon
added 2024/08/20 12:0 a.m.3 views

Important: linux-firmware

Issue Overview: Improper validation in a model specific register MSR could allow a malicious program with ring0 access to modify SMM configuration while SMI lock is enabled, potentially leading to arbitrary code execution. CVE-2023-31315 Affected Packages: linux-firmware Note: This advisory is...

7.5CVSS7.8AI score0.00622EPSS
Exploits0
Amazon
Amazon
added 2024/08/13 12:0 a.m.3 views

Important: kernel-livepatch-5.10.217-205.860

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: kdb: Fix buffer overflow during tab-complete CVE-2024-39480 Affected Packages: kernel-livepatch-5.10.217-205.860 Issue Correction: Please ensure you have live patching enabled. Run yum update...

7.8CVSS7.1AI score0.00256EPSS
Exploits0
Amazon
Amazon
added 2024/08/06 12:0 a.m.3 views

Medium: thunderbird

Issue Overview: A heap overflow vulnerability exists in libvpx - Encoding a frame that has larger dimensions than the originally configured size with VP9 may result in a heap overflow in libvpx. We recommend upgrading to version 1.13.1 or above CVE-2023-6349 Affected Packages: thunderbird Note:...

7.5CVSS7.3AI score0.00368EPSS
Exploits1
Amazon
Amazon
added 2024/08/06 12:0 a.m.5 views

Low: openssl11

Issue Overview: No CVE associated with this advisory Affected Packages: openssl11 Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories. Issue Correction: Run yum update openssl11 or yum update...

7AI score
Exploits0
Amazon
Amazon
added 2024/08/06 12:0 a.m.2 views

Medium: squid

Issue Overview: Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to an Out-of-bounds Write error when assigning ESI variables, Squid is susceptible to a Memory Corruption error. This error can lead to a Denial of Service attack. CVE-2024-37894 Affected Packages: squ...

6.3CVSS7AI score0.06255EPSS
Exploits0
Amazon
Amazon
added 2024/08/06 12:0 a.m.4 views

Medium: ghostscript

Issue Overview: NOTE: https://ghostscript.readthedocs.io/en/gs10.03.1/News.html NOTE: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=5ae2e320d69a7d0973011796bd388cd5befa1a43 ghostpdl-10.03.1 NOTE:...

6.3CVSS7AI score0.00515EPSS
Exploits0
Amazon
Amazon
added 2024/08/06 12:0 a.m.6 views

Low: ca-certificates

Issue Overview: Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi starting in 2021.05.30 and prior to 2024.07.4 recognized root certificates from GLOBALTRUST. Certifi 2024.07.04 removes ro...

7.5CVSS6.9AI score0.01049EPSS
Exploits0
Amazon
Amazon
added 2024/08/06 12:0 a.m.21 views

Important: httpd

Issue Overview: A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances where files are requested indirectly, result in source code disclosu...

6.2CVSS6.8AI score0.04134EPSS
Exploits3
Amazon
Amazon
added 2024/07/22 12:0 a.m.3 views

Medium: krb5

Issue Overview: krb5: GSS message token handling CVE-2024-37370 In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields. CVE-2024-37371 Affected Packages: krb5 Note: This advisory i...

9.1CVSS7AI score0.01863EPSS
Exploits0
Amazon
Amazon
added 2024/07/22 12:0 a.m.4 views

Important: gstreamer1-plugins-base

Issue Overview: GStreamer EXIF Metadata Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack...

7.8CVSS8.1AI score0.01565EPSS
Exploits0
Amazon
Amazon
added 2024/07/22 12:0 a.m.3 views

Important: ghostscript

Issue Overview: NOTE: https://ghostscript.readthedocs.io/en/gs10.03.1/News.html NOTE: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=3b1735085ecef20b29e8db3416ab36de93e86d1f ghostpdl-10.03.1 NOTE: https://bugs.ghostscript.com/showbug.cgi?id=707662 ADVISORIES: 'DSA-5692-1'...

6.3CVSS7AI score0.27992EPSS
Exploits6
Amazon
Amazon
added 2024/07/22 12:0 a.m.11 views

Important: ecs-service-connect-agent

Issue Overview: Envoy is a cloud-native, open source edge and service proxy. The HTTP/2 protocol stack in Envoy versions prior to 1.29.3, 1.28.2, 1.27.4, and 1.26.8 are vulnerable to CPU exhaustion due to flood of CONTINUATION frames. Envoy's HTTP/2 codec allows the client to send an unlimited...

7.5CVSS6.9AI score0.8781EPSS
Exploits1
Amazon
Amazon
added 2024/07/22 12:0 a.m.4 views

Medium: libreswan

Issue Overview: The Libreswan Project was notified of an issue causing libreswan to restart when using IKEv1 without specifying an esp= line. When the peer requests AES-GMAC, libreswan's default proposal handler causes an assertion failure and crashes and restarts. IKEv2 connections are not...

6.5CVSS7AI score0.008EPSS
Exploits0
Rows per page
Query Builder