Lucene search
K

801 matches found

Amazon
Amazon
added 2024/06/24 12:0 a.m.3 views

Important: ecs-init

Issue Overview: The HTTP/1 client does not fully validate the contents of the Host header. A maliciously crafted Host header can inject additional headers or entire requests. With fix, the HTTP/1 client now refuses to send requests containing an invalid Request.Host or Request.URL.Host value...

6.5CVSS7AI score0.0125EPSS
Exploits0
Amazon
Amazon
added 2024/06/24 12:0 a.m.3 views

Important: libndp

Issue Overview: A vulnerability was found in libndp. A buffer overflow in NetworkManager that can be triggered by sending a malformed IPv6 router advertisement packet via malicious user locally. This happens as libndp was not validating correctly the route length information and hence leading to ...

8.1CVSS7.1AI score0.01165EPSS
Exploits0
Amazon
Amazon
added 2024/06/24 12:0 a.m.4 views

Medium: dnsmasq

Issue Overview: dnsmasq 2.9 is vulnerable to Integer Overflow via forwardquery. CVE-2023-49441 Affected Packages: dnsmasq Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories. Issue Correction...

7.5CVSS7.1AI score0.00656EPSS
Exploits1
Amazon
Amazon
added 2024/06/24 12:0 a.m.5 views

Important: python3-jinja2

Issue Overview: In Pallets Jinja before 2.10.1, str.formatmap allows a sandbox escape. CVE-2019-10906 Affected Packages: python3-jinja2 Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories...

8.6CVSS7AI score0.03603EPSS
Exploits1
Amazon
Amazon
added 2024/06/24 12:0 a.m.3 views

Medium: iperf3

Issue Overview: It is possible for a malicious or malfunctioning client to send less than the expected amount of data to the server. If this happens, the server will hang indefinitely waiting for the remainder or until the connection gets closed. Because iperf3 is deliberately designed to service...

5.3CVSS6.9AI score0.00932EPSS
Exploits0
Amazon
Amazon
added 2024/06/24 12:0 a.m.6 views

Medium: edk2

Issue Overview: EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability. CVE-2024-1298 Affected Packages: edk2 Note: This adviso...

6CVSS6.9AI score0.00217EPSS
Exploits0
Amazon
Amazon
added 2024/06/24 12:0 a.m.4 views

Important: unbound

Issue Overview: A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modify the unbound runtime configuration. If a process can connect over localhost to port 8953, it can alter the configuration of unbound.service. This flaw...

8CVSS6.6AI score0.00318EPSS
Exploits0
Amazon
Amazon
added 2024/06/24 12:0 a.m.3 views

Medium: webkitgtk4

Issue Overview: An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4, macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4, watchOS 10.4, tvOS 17.4. A maliciously crafted webpage may be able to fingerprint the user. CVE-2024-23280 The issue was addressed with...

8.1CVSS6.6AI score0.01286EPSS
Exploits0
Amazon
Amazon
added 2024/06/12 12:0 a.m.2 views

Important: ghostscript

Issue Overview: NOTE: https://ghostscript.readthedocs.io/en/gs10.03.1/News.html NOTE: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=7145885041bb52cc23964f0aa2aec1b1c82b5908 ghostpdl-10.03.1 NOTE: https://bugs.ghostscript.com/showbug.cgi?id=707754 CVE-2024-33871 Affected...

8.8CVSS7AI score0.01425EPSS
Exploits0
Amazon
Amazon
added 2024/05/30 12:0 a.m.2 views

Medium: kernel

Issue Overview: The Linux kernel before 5.4.2 mishandles ext4expandextraisize, as demonstrated by use-after-free errors in ext4expandextraisize and ext4xattrsetentry, related to fs/ext4/inode.c and fs/ext4/super.c, aka CID-4ea99936a163. CVE-2019-19767 Affected Packages: kernel Note: This advisory...

5.5CVSS6.9AI score0.02081EPSS
Exploits1
Amazon
Amazon
added 2024/05/30 12:0 a.m.4 views

Low: bcc

Issue Overview: If kernel headers need to be extracted, bcc will attempt to load them from a temporary directory. An unprivileged attacker could use this to force bcc to load compromised linux headers. Linux distributions which provide kernel headers by default are not affected by default...

2.8CVSS6.8AI score0.00218EPSS
Exploits0
Amazon
Amazon
added 2024/05/30 12:0 a.m.5 views

Low: bpftrace

Issue Overview: If kernel headers need to be extracted, bpftrace will attempt to load them from a temporary directory. An unprivileged attacker could use this to force bcc to load compromised linux headers. Linux distributions which provide kernel headers by default are not affected by default...

2.8CVSS6.8AI score0.00184EPSS
Exploits0
Amazon
Amazon
added 2024/05/20 12:0 a.m.7 views

Medium: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: disallow timeout for anonymous sets CVE-2023-52620 createemptylvol in drivers/mtd/ubi/vtbl.c in the Linux kernel through 6.7.4 can attempt to allocate zero bytes, and crash, because of a missi...

5.5CVSS6.3AI score0.00258EPSS
Exploits0
Amazon
Amazon
added 2024/05/20 12:0 a.m.2 views

Important: unbound

Issue Overview: An issue was discovered in some DNS recursive resolvers that allows remote attackers to cause a denial of service using a maliciously designed authority and response amplification. CVE-2024-33655 Affected Packages: unbound Note: This advisory is applicable to Amazon Linux 2 -...

7.5CVSS7AI score0.01729EPSS
Exploits0
Amazon
Amazon
added 2024/05/15 12:0 a.m.4 views

Important: golang

Issue Overview: Go before 1.12.11 and 1.3.x before 1.13.2 can panic upon an attempt to process network traffic containing an invalid DSA public key. There are several attack scenarios, such as traffic from a client to a server that verifies client certificates. CVE-2019-17596 Affected Packages:...

7.5CVSS6.9AI score0.04693EPSS
Exploits1
Amazon
Amazon
added 2024/05/15 12:0 a.m.3 views

Medium: cni-plugins

Issue Overview: A malicious HTTP sender can use chunk extensions to cause a receiver reading from a request or response body to read many more bytes from the network than are in the body. A malicious HTTP client can further exploit this to cause a server to automatically read a large amount of da...

5.3CVSS6.8AI score0.01208EPSS
Exploits0
Amazon
Amazon
added 2024/04/30 12:0 a.m.5 views

Medium: jose

Issue Overview: latchset jose through version 11 allows attackers to cause a denial of service CPU consumption via a large p2c aka PBES2 Count value. CVE-2023-50967 Affected Packages: jose Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the...

7.5CVSS6.9AI score0.01383EPSS
Exploits1
Amazon
Amazon
added 2024/04/30 12:0 a.m.4 views

Medium: curl

Issue Overview: When a protocol selection parameter option disables all protocols without adding any then the default set of protocols would remain in the allowed set due to an error in the logic for removing protocols. The below command would perform a request to curl.se with a plaintext protoco...

8.6CVSS6.9AI score0.36081EPSS
Exploits2
Amazon
Amazon
added 2024/04/30 12:0 a.m.2 views

Medium: wireshark

Issue Overview: T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet injection or crafted capture file CVE-2024-2955 Affected Packages: wireshark Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for...

7.8CVSS7.2AI score0.01414EPSS
Exploits1
Amazon
Amazon
added 2024/04/30 12:0 a.m.3 views

Medium: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: locking/qrwlock: Fix ordering in queuedwritelockslowpath CVE-2021-46921 Affected Packages: kernel Note: This advisory is applicable to Amazon Linux 2 - Kernel-5.10 Extra. Visit this page to learn more about Amazon...

5.5CVSS6.6AI score0.00228EPSS
Exploits0
Rows per page
Query Builder