Lucene search
K

60 matches found

OSV
OSV
added 3 days ago4 views

DEBIAN-CVE-2026-59997

internal-sftp in sshd in OpenSSH before 10.4 recognizes only the first 9 command-line arguments, which can be important if a later command-line argument would have helped to ensure the intended security properties of an SFTP connection...

4.2CVSS6AI score0.0016EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 3 days ago4 views

CVE-2026-59997

internal-sftp in sshd in OpenSSH before 10.4 recognizes only the first 9 command-line arguments, which can be important if a later command-line argument would have helped to ensure the intended security properties of an SFTP connection...

5.4CVSS5.9AI score0.0016EPSS
Exploits0References3
EUVD
EUVD
added 5 days ago6 views

EUVD-2026-25017

kill: 'kill -1' parsed as PID -1, sending SIGTERM to all processes system crash / DoS...

5.5CVSS5.9AI score0.00128EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/04/22 5:16 p.m.7 views

CVE-2026-35369

An argument parsing error in the kill utility of uutils coreutils incorrectly interprets kill -1 as a request to send the default signal SIGTERM to PID -1. Sending a signal to PID -1 causes the kernel to terminate all processes visible to the caller, potentially leading to a system crash or massi...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References2
OSV
OSV
added 2026/04/22 5:16 p.m.3 views

UBUNTU-CVE-2026-35369

An argument parsing error in the kill utility of uutils coreutils incorrectly interprets kill -1 as a request to send the default signal SIGTERM to PID -1. Sending a signal to PID -1 causes the kernel to terminate all processes visible to the caller, potentially leading to a system crash or massi...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/22 4:8 p.m.34 views

CVE-2026-35369 uutils coreutils kill System-wide Process Termination and Denial of Service via Argument Misinterpretation

An argument parsing error in the kill utility of uutils coreutils incorrectly interprets kill -1 as a request to send the default signal SIGTERM to PID -1. Sending a signal to PID -1 causes the kernel to terminate all processes visible to the caller, potentially leading to a system crash or massi...

5.5CVSS0.00128EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/22 4:8 p.m.4 views

CVE-2026-35369 uutils coreutils kill System-wide Process Termination and Denial of Service via Argument Misinterpretation

An argument parsing error in the kill utility of uutils coreutils incorrectly interprets kill -1 as a request to send the default signal SIGTERM to PID -1. Sending a signal to PID -1 causes the kernel to terminate all processes visible to the caller, potentially leading to a system crash or massi...

5.5CVSS5.7AI score0.00128EPSS
Exploits0References2
CVE
CVE
added 2026/04/22 4:8 p.m.19 views

CVE-2026-35369

CVE-2026-35369 affects the kill utility in uutils coreutils. The root cause is an argument parsing error where kill -1 is treated as a request to send the default signal (SIGTERM) to PID -1, instead of recognizing -1 as a signal number. This can lead to the kernel terminating all processes visibl...

5.5CVSS5.7AI score0.00128EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/22 4:8 p.m.4 views

CVE-2026-35369

An argument parsing error in the kill utility of uutils coreutils incorrectly interprets kill -1 as a request to send the default signal SIGTERM to PID -1. Sending a signal to PID -1 causes the kernel to terminate all processes visible to the caller, potentially leading to a system crash or massi...

5.5CVSS5.7AI score0.00128EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/04/22 4:8 p.m.2 views

CVE-2026-35369

An argument parsing error in the kill utility of uutils coreutils incorrectly interprets kill -1 as a request to send the default signal SIGTERM to PID -1. Sending a signal to PID -1 causes the kernel to terminate all processes visible to the caller, potentially leading to a system crash or massi...

5.5CVSS5.3AI score0.00128EPSS
Exploits0
OSV
OSV
added 2025/10/30 6:32 p.m.8 views

CLSA-2025-1761844489 Fix of 9 CVEs

SECURITY UPDATE: multiple vulnerabilities in AWK implementation - debian/patches/CVE-2021-423xx-awk.patch: fix issues with argument parsing, delete statement validation, length parsing, post-increment/decrement on literals, expression handling, regex splitting, use-after-realloc, and maxfields...

7.2CVSS7AI score0.02793EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/09/13 12:0 a.m.9 views

The vulnerability of the snapctl utility component for managing self-contained packages related to incorrect input validation allows a malicious actor to escalate their privileges.

The vulnerability of the snapctl utility for managing self-contained packages related to improper analysis of command-line arguments. This allows unprivileged users to initiate authorized actions on behalf of snap. Exploiting this vulnerability can enable a malicious actor to gain increased...

8.5CVSS7.4AI score0.00826EPSS
Exploits1References5Affected Software3
Veracode
Veracode
added 2024/06/07 6:59 a.m.18 views

Privilege Escalation

github.com/snapcore/snapd is vulnerable to Privilege Escalation. The vulnerability is due to improper command-line argument parsing, allowing an unprivileged user to trigger actions that require administrator privileges...

8.1CVSS6.4AI score0.00826EPSS
Exploits1References5Affected Software2
Cvelist
Cvelist
added 2024/06/04 10:3 p.m.31 views

CVE-2022-28658

Apport argument parsing mishandles filename splitting on older kernels resulting in argument spoofing...

6.4AI score0.00204EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/06/04 10:3 p.m.14 views

CVE-2022-28658

Apport argument parsing mishandles filename splitting on older kernels resulting in argument spoofing...

6.8AI score0.00204EPSS
Exploits0References2
OSV
OSV
added 2024/06/04 10:3 p.m.5 views

CVE-2022-28658

Apport argument parsing mishandles filename splitting on older kernels resulting in argument spoofing...

5.5CVSS5.8AI score0.00204EPSS
Exploits0References5
OSV
OSV
added 2024/05/31 9:15 p.m.4 views

DEBIAN-CVE-2024-5138

The snapctl component within snapd allows a confined snap to interact with the snapd daemon to take certain privileged actions on behalf of the snap. It was found that snapctl did not properly parse command-line arguments, allowing an unprivileged user to trigger an authorised action on behalf of...

8.1CVSS7.8AI score0.00826EPSS
Exploits1References1
Fedora
Fedora
added 2024/05/26 1:29 a.m.14 views

[SECURITY] Fedora 40 Update: rust-docopt-1.1.1-13.fc40

Command line argument parsing...

7.4AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/05/24 12:0 a.m.4 views

PT-2024-6092 · Snapd +2 · Snapd +2

Name of the Vulnerable Software and Affected Versions: snapd affected versions not specified Description: The issue is related to the snapctl component within snapd, which allows a confined snap to interact with the snapd daemon to take certain privileged actions on behalf of the snap. It was fou...

8.5CVSS6.9AI score0.00826EPSS
Exploits1References23
Vulnrichment
Vulnrichment
added 2024/04/18 6:11 p.m.19 views

CVE-2024-32462 Flatpak vulnerable to a sandbox escape via RequestBackground portal due to bad argument parsing

Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. in versions before 1.10.9, 1.12.9, 1.14.6, and 1.15.8, a malicious or compromised Flatpak app could execute arbitrary code outside its sandbox. Normally, the --command argument of flatpak run...

8.4CVSS7.7AI score0.00512EPSS
Exploits1References8
Rows per page
Query Builder