Lucene search
K

1649 matches found

SUSE Linux
SUSE Linux
added 2025/01/15 2:51 p.m.3 views

Security update for rsync

This update for rsync fixes the following issues: NOTE: This update has been retracted due to a buggy security fix. A followup update will be provided. CVE-2024-12085: leak of uninitialized stack data on the server leading to possible ASLR bypass. bsc1234101 CVE-2024-12086: leak of a client...

8.8CVSS7.5AI score0.09353EPSS
Exploits4References16
SUSE Linux
SUSE Linux
added 2025/01/15 9:8 a.m.3 views

Security update for rsync

This update for rsync fixes the following issues: CVE-2024-12085: leak of uninitialized stack data on the server leading to possible ASLR bypass. bsc1234101 CVE-2024-12086: leak of a client machine's file contents through the processing of checksum data. bsc1234102 CVE-2024-12087: arbitrary file...

8.8CVSS7.4AI score0.09353EPSS
Exploits4References16
CNNVD
CNNVD
added 2025/01/14 12:0 a.m.4 views

Hewlett Packard Enterprise ArubaOS 安全漏洞

Hewlett Packard Enterprise ArubaOS HPE ArubaOS is a networked wireless operating system from Hewlett Packard Enterprise. A security vulnerability exists in Hewlett Packard Enterprise ArubaOS that stems from an authenticated parameter injection vulnerability, which can be exploited successfully to...

7.2CVSS7.1AI score0.00687EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/08 4:8 p.m.4 views

CVE-2025-22137 Arbitrary File Overwrite via HTTP POST in Pingvin Share

Pingvin Share is a self-hosted file sharing platform and an alternative for WeTransfer. This vulnerability allows an authenticated or unauthenticated if anonymous shares are allowed user to overwrite arbitrary files on the server, including sensitive system files, via HTTP POST requests. The issu...

9.8CVSS7.1AI score0.00566EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/01/08 12:0 a.m.3 views

Pingvin Share 代码问题漏洞

Pingvin Share is a self-hosted file sharing platform by Elias Schneider Personal Developer. A code issue vulnerability exists in Pingvin Share versions 0.6.0 through 1.3.0. An attacker can exploit the vulnerability to overwrite arbitrary files on the server via an HTTP POST request...

9.8CVSS7.1AI score0.00566EPSS
Exploits0References4
CVE
CVE
added 2024/12/24 5:20 a.m.69 views

CVE-2024-41887

CVE-2024-41887 affects NVR devices where a flaw lets an attacker remotely execute code by creating a log file in a parent directory, enabling file corruption. Root cause: unauthorized log handling/creation path that allows privilege-impacting actions on the system. Impact: potential remote code e...

5.1CVSS7.5AI score0.00991EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/24 5:20 a.m.9 views

CVE-2024-41887 Arbitrary File Overwrite

Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on the NVR. An attacker can create an NVR log file in a directory one level higher on the system, which can be used to corrupt files in the directory. The manufacturer has released patch firmware for the...

5.1CVSS7.8AI score0.00991EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/12/19 2:54 p.m.4 views

hornetq-core-client: Arbitrarily overwrite files or access sensitive information

A flaw was found in the createTempFile method of hornetq. Affected version of hornetq allows attackers to arbitrarily overwrite files or access sensitive information...

9.1CVSS5.7AI score0.00699EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/12/19 2:40 p.m.3 views

hornetq-core-client: Arbitrarily overwrite files or access sensitive information

A flaw was found in the createTempFile method of hornetq. Affected version of hornetq allows attackers to arbitrarily overwrite files or access sensitive information...

9.1CVSS5.7AI score0.00699EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/12/19 1:0 p.m.3 views

hornetq-core-client: Arbitrarily overwrite files or access sensitive information

A flaw was found in the createTempFile method of hornetq. Affected version of hornetq allows attackers to arbitrarily overwrite files or access sensitive information...

9.1CVSS5.7AI score0.00699EPSS
Exploits1References6
OSV
OSV
added 2024/12/17 7:42 p.m.7 views

MGASA-2024-0390 Updated socat packages fix security vulnerability

CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory in socat readline.sh...

9.8CVSS9.5AI score0.00794EPSS
Exploits0References3
Mageia
Mageia
added 2024/12/17 7:42 p.m.27 views

Updated socat packages fix security vulnerability

CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory in socat readline.sh...

9.8CVSS7.1AI score0.00794EPSS
Exploits0References2
OSV
OSV
added 2024/12/17 8:36 a.m.11 views

SUSE-SU-2024:4348-1 Security update for socat

This update for socat fixes the following issues: - CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory bsc1225462...

9.8CVSS9.6AI score0.00794EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/12/16 12:0 a.m.12 views

H2O-3 Arbitrary File Overwrite (CVE-2024-6854)

An arbitrary file overwrite vulnerability exists in H2O-3. The endpoint that allows for exporting models & does not limit where models can be exported to. As such an attacker can export a model to any file in the server file structure, overwriting it, by simply using the force flag. Note that...

7.1CVSS7.1AI score0.00693EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/12/14 12:0 a.m.6 views

SUSE SLES12 Security Update : socat (SUSE-SU-2024:4294-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2024:4294-1 advisory. - CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory bsc1225462 Tenable has extracted the preceding description block direct...

9.8CVSS7.1AI score0.00794EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/12/13 12:0 a.m.9 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : socat (SUSE-SU-2024:4295-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2024:4295-1 advisory. - CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory in socat readline.sh...

9.8CVSS7.1AI score0.00794EPSS
Exploits0References4
OSV
OSV
added 2024/12/12 8:51 a.m.11 views

SUSE-SU-2024:4302-1 Security update for socat

This update for socat fixes the following issues: - CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory bsc1225462...

9.8CVSS9.6AI score0.00794EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/12/12 12:0 a.m.14 views

openSUSE Security Advisory (SUSE-SU-2024:4295-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.7AI score0.00794EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/12/12 12:0 a.m.8 views

SUSE: Security Advisory (SUSE-SU-2024:4294-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.00794EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2024/12/11 2:41 p.m.1 views

Security update for socat

This update for socat fixes the following issues: CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory in socat readline.sh bsc1225462 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

5CVSS6.1AI score0.00794EPSS
Exploits0References4
Rows per page
Query Builder