Lucene search
K

103 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:37 a.m.3 views

SUSE CVE-2021-42380

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the clrvar function...

6.6CVSS6.8AI score0.02793EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2023/02/15 3:37 a.m.2 views

SUSE CVE-2021-42381

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the hashinit function...

6.6CVSS6.8AI score0.02579EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2023/02/15 3:37 a.m.2 views

SUSE CVE-2021-42383

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function...

6.6CVSS6.8AI score0.02117EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2023/02/15 3:37 a.m.2 views

SUSE CVE-2021-42385

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function...

6.6CVSS6.8AI score0.02579EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2023/02/15 3:37 a.m.3 views

SUSE CVE-2021-42384

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the handlespecial function...

6.6CVSS6.8AI score0.02542EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2023/02/15 3:37 a.m.4 views

SUSE CVE-2021-42386

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the nvalloc function...

6.6CVSS6.8AI score0.02542EPSS
Exploits0References10
Veracode
Veracode
added 2023/02/15 2:2 a.m.16 views

Regular Expression Denial Of Service (ReDoS)

simple-markdown is vulnerable to Regular Expression Denial Of Service ReDoS. The vulnerability exists due to an insecure Regex pattern used for the match attribute in the autolink object in simple-markdown.js, which allows an attacker to crash the application by providing a maliciously crafted...

7.5CVSS7.1AI score0.01097EPSS
Exploits1References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/10/26 12:0 a.m.28 views

Ubuntu 16.04 ESM : GNU C Library vulnerabilities (USN-5699-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5699-1 advisory. Jan Engelhardt, Tavis Ormandy, and others discovered that the GNU C Library iconv feature incorrectly handled certain input sequences. An attacker could...

9.1CVSS7AI score0.03093EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/05/18 3:15 p.m.5 views

CVE-2022-30065

A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the copyvar function...

7.8CVSS6.3AI score0.01167EPSS
Exploits1References3
NVD
NVD
added 2022/05/18 3:15 p.m.17 views

CVE-2022-30065

A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the copyvar function...

7.8CVSS0.01167EPSS
Exploits1References2
OSV
OSV
added 2022/05/18 3:15 p.m.27 views

CVE-2022-30065

A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the copyvar function...

7.8CVSS3.9AI score
Exploits0References2
Debian CVE
Debian CVE
added 2022/05/18 12:0 a.m.55 views

CVE-2022-30065

A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the copyvar function...

7.8CVSS6.7AI score0.01167EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2022/05/18 12:0 a.m.248 views

CVE-2022-30065

A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the copyvar function...

7.8CVSS7.8AI score0.01167EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2022/05/12 12:0 a.m.27 views

AlmaLinux 8 : cpio (ALSA-2022:1991)

The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2022:1991 advisory. - GNU cpio through 2.13 allows attackers to execute arbitrary code via a crafted pattern file, because of a dstring.c dsfgetstr integer overflow that triggers an...

7.8CVSS7.5AI score0.0415EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/05/11 12:0 a.m.30 views

RHEL 8 : cpio (RHSA-2022:1991)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:1991 advisory. The cpio packages provide the GNU cpio utility for creating and extracting archives, or copying files from one place to another. Security Fixes: cpio...

7.8CVSS7AI score0.0415EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2022/05/10 2:9 p.m.4 views

cpio: integer overflow in ds_fgetstr() in dstring.c can lead to an out-of-bounds write via a crafted pattern file

A flaw was found in cpio. An integer overflow that triggers an out-of-bounds heap write can allow an attacker to execute arbitrary code via a crafted pattern file. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

7.8CVSS7.7AI score0.0415EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2022/05/10 12:0 a.m.32 views

CentOS 8 : cpio (CESA-2022:1991)

The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2022:1991 advisory. - cpio: integer overflow in dsfgetstr in dstring.c can lead to an out-of-bounds write via a crafted pattern file CVE-2021-38185 Note that Nessus has not tested...

7.8CVSS7AI score0.0415EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/02/24 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2022-1164)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS9.1AI score0.03045EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2022/02/13 12:0 a.m.37 views

EulerOS Virtualization 3.0.6.6 : cpio (EulerOS-SA-2022-1114)

According to the versions of the cpio package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The cpiosafernamesuffix function in util.c in cpio 2.11 allows remote attackers to cause a denial of service out-of-bounds write via...

7.8CVSS7.4AI score0.05484EPSS
Exploits1References3
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/15 5:13 a.m.38 views

Security Bulletin: App Connect Professional is affected by GNU C Library vulnerability

Summary App Connect Professional have addressed the following vulnerability reported in GNU C Library. Vulnerability Details CVEID: CVE-2021-35942 DESCRIPTION: GNU C Library aka glibc could allow a local attacker to obtain sensitive information, caused by a flaw when called with an untrusted,...

9.1CVSS8.5AI score0.02678EPSS
Exploits0Affected Software1
Rows per page
Query Builder