CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2022/06/22 12:0 a.m.•30 views

EulerOS 2.0 SP8 : xz (EulerOS-SA-2022-1955)

According to the versions of the xz packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a...

Tenable Nessus•added 2022/06/17 12:0 a.m.•39 views

EulerOS 2.0 SP5 : gzip (EulerOS-SA-2022-1892)

According to the versions of the gzip package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, ...

Tenable Nessus•added 2022/06/16 12:0 a.m.•32 views

Oracle Linux 7 : xz (ELSA-2022-5052)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-5052 advisory. 5.2.2-2 - Fix CVE-2022-1271 Resolves: CVE-2022-1271 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

8.8CVSS6.9AI score0.04301EPSS

RedHat Linux•added 2022/06/15 11:22 a.m.•4 views

gzip: arbitrary-file-write vulnerability

An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a crafted file name, this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation...

RedHat Linux•added 2022/06/13 9:38 a.m.•2 views

gzip: arbitrary-file-write vulnerability

RedHat Linux•added 2022/06/13 9:38 a.m.•46 views

Important: Red Hat Security Advisory: xz security update

An update for xz is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS6.8AI score0.04301EPSS

RedHat Linux•added 2022/06/13 9:24 a.m.•5 views

gzip: arbitrary-file-write vulnerability

RedHat Linux•added 2022/06/13 9:22 a.m.•4 views

gzip: arbitrary-file-write vulnerability

RedHat Linux•added 2022/06/13 7:47 a.m.•4 views

gzip: arbitrary-file-write vulnerability

Tenable Nessus•added 2022/06/13 12:0 a.m.•74 views

RHEL 8 : xz (RHSA-2022:4991)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:4991 advisory. XZ Utils is an integrated collection of user-space file compression utilities based on the Lempel-Ziv- Markov chain algorithm LZMA, which performs...

8.8CVSS6.9AI score0.04301EPSS

Check Point Advisories•added 2022/06/13 12:0 a.m.•8 views

Emerson Dixell Arbitrary File Write (CVE-2021-45420)

An arbitrary file write vulnerability exists in Emerson Dixell. Successful exploitation of this vulnerability could result in denial of service and potentially code execution on the affected system...

10CVSS5.8AI score0.25955EPSS

Exploits1

Oracle linux•added 2022/06/13 12:0 a.m.•52 views

xz security update

5.2.4-4 - Fix arbitrary file write vulnerability Resolves: CVE-2022-1271...

8.8CVSS2.3AI score0.04301EPSS

Tenable Nessus•added 2022/06/13 12:0 a.m.•41 views

RHEL 8 : xz (RHSA-2022:4994)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:4994 advisory. XZ Utils is an integrated collection of user-space file compression utilities based on the Lempel-Ziv- Markov chain algorithm LZMA, which performs...

8.8CVSS6.9AI score0.04301EPSS

The Hacker News•added 2022/06/10 7:3 a.m.•53 views

Researchers Disclose Critical Flaws in Industrial Access Controllers from HID Mercury

As many as four zero-day security vulnerabilities have been disclosed in the HID Mercury access controller system that's used widely in healthcare, education, transportation, and government facilities. "The vulnerabilities uncovered allowed us to demonstrate the ability to remotely unlock and loc...

10CVSS0.5AI score0.02269EPSS

Tenable Nessus•added 2022/06/10 12:0 a.m.•23 views

Amazon Linux AMI : gzip (ALAS-2022-1590)

The version of gzip installed on the remote host is prior to 1.5-9.20. It is, therefore, affected by a vulnerability as referenced in the ALAS-2022-1590 advisory. An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name...

Tenable Nessus•added 2022/06/10 12:0 a.m.•34 views

Exploits0References3

Amazon Linux AMI : xz (ALAS-2022-1598)

The version of xz installed on the remote host is prior to 5.2.2-1.14. It is, therefore, affected by a vulnerability as referenced in the ALAS-2022-1598 advisory. An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name...

Snyk•added 2022/06/09 9:47 a.m.•1 views

Exploits0References3

Directory Traversal

Overview Affected versions of this package are vulnerable to Directory Traversal in the g GitArtifactReader.Read API in git.go. This could allow arbitrary file reads if the GitArtifactReader is provided a pathname containing a symbolic link or an implicit directory name such as ... Details A...

7.5CVSS7.4AI score0.01773EPSS

Exploits1References2

Amazon•added 2022/06/09 12:0 a.m.•25 views

Important: gzip

Issue Overview: An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a crafted file name, this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to...

Amazon•added 2022/06/09 12:0 a.m.•26 views

Important: xz