Lucene search
K

6886 matches found

RedHat Linux
RedHat Linux
added 2019/04/09 2:20 p.m.2 views

kubernetes: Mishandling of symlinks allows for arbitrary file write via `kubectl cp`

A flaw was found in Kubernetes via the mishandling of symlinks when copying files from a running container. An attacker could exploit this by convincing a user to use kubectl cp or oc cp with a malicious container, allowing for arbitrary files to be overwritten on the host machine...

6.4CVSS6.8AI score0.13164EPSS
Exploits2References5
Node.js
Node.js
added 2019/04/04 3:31 a.m.16 views

Arbitrary File Overwrite

Overview Versions of tar prior to 4.4.2 for 4.x and 2.2.2 for 2.x are vulnerable to Arbitrary File Overwrite. Extracting tarballs containing a hardlink to a file that already exists in the system, and a file that matches the hardlink will overwrite the system's file with the contents of the...

6.7AI score
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2019/03/28 9:50 p.m.42 views

CVE-2019-1002101

A flaw was found in Kubernetes via the mishandling of symlinks when copying files from a running container. An attacker could exploit this by convincing a user to use kubectl cp or oc cp with a malicious container, allowing for arbitrary files to be overwritten on the host machine...

6.4CVSS2.4AI score0.13164EPSS
Exploits2References4
CNVD
CNVD
added 2019/03/28 12:0 a.m.3 views

Unspecified Vulnerability in Apple iOS and Apple macOS Mojave Feedback Assistant

Apple iOS and Apple macOS Mojave are both products of Apple Inc. Apple iOS is an operating system for mobile devices. apple macOS Mojave is a specialized operating system for Mac computers. feedback Assistant is one of the Feedback Assistant is one of the system error feedback components. An...

5.8CVSS6.4AI score0.00823EPSS
Exploits0References1
CNVD
CNVD
added 2019/03/27 12:0 a.m.2 views

Apache Karaf Arbitrary File Overwrite Vulnerability

Apache Karaf is the United States Apache Apache Foundation for the deployment of applications and components of a lightweight OSGi Java Dynamic Modular System container. An arbitrary file overwrite vulnerability exists in Apache Karaf versions prior to 4.2.3, which can be exploited by a remote...

6.5CVSS7AI score0.04949EPSS
Exploits0References1
OSV
OSV
added 2019/03/23 11:9 a.m.11 views

OPENSUSE-SU-2019:0307-1 Security update for openssh

This update for openssh fixes the following issues: Security vulnerabilities addressed: - CVE-2019-6109: Fixed an character encoding issue in the progress display of the scp client that could be used to manipulate client output, allowing for spoofing during file transfers bsc1121816 -...

6.8CVSS6.8AI score0.58204EPSS
Exploits9References6
OSV
OSV
added 2019/03/23 11:9 a.m.9 views

OPENSUSE-SU-2019:0293-1 Security update for supportutils

This update for supportutils fixes the following issues: Security issues fixed: - CVE-2018-19640: Fixed an issue where users could kill arbitrary processes bsc1118463. - CVE-2018-19638: Fixed an issue where users could overwrite arbitrary log files bsc1118460. - CVE-2018-19639: Fixed a code...

7.8CVSS7.9AI score0.00503EPSS
Exploits0References18
Cvelist
Cvelist
added 2019/03/15 8:0 p.m.18 views

CVE-2018-17955 Static tempfile name allows overwriting of arbitrary files

In yast2-multipath before version 4.1.1 a static temporary filename allows local attackers to overwrite files on systems without symlink protection...

2.2CVSS5.4AI score0.00309EPSS
Exploits0References1
CVE
CVE
added 2019/03/15 8:0 p.m.53 views

CVE-2018-17955

CVE-2018-17955 affects yast2-multipath prior to version 4.1.1. The vulnerability arises from a static temporary filename that allows local attackers to overwrite files on systems without symlink protection. Impact is described as local complete/partial integrity on affected files with potential a...

5.5CVSS4.5AI score0.00309EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2019/03/12 5:40 p.m.7 views

SUSE-SU-2019:13976-1 Security update for supportutils

This update for supportutils fixes the following issues: Security vulnerabilities fixed: - CVE-2018-19636: Local root exploit via inclusion of attacker controlled shell script bsc1117751 - CVE-2018-19640: Users can kill arbitrary processes bsc1118463 - CVE-2018-19638: User can overwrite arbitrary...

7.8CVSS8AI score0.00503EPSS
Exploits0References9
NVD
NVD
added 2019/03/05 4:29 p.m.22 views

CVE-2018-19637

Supportutils, before version 3.1-5.7.1, wrote data to static file /tmp/supplog, allowing local attackers to overwrite files on systems without symlink protection...

5.5CVSS4.2AI score0.00457EPSS
Exploits0References2
NVD
NVD
added 2019/03/05 4:29 p.m.28 views

CVE-2018-19638

In supportutils, before version 3.1-5.7.1 and if pacemaker is installed on the system, an unprivileged user could have overwritten arbitrary files in the directory that is used by supportutils to collect the log files...

4.7CVSS4.9AI score0.00399EPSS
Exploits0References2
CVE
CVE
added 2019/03/05 4:0 p.m.149 views

CVE-2018-19638

CVE-2018-19638 affects supportutils prior to 3.1-5.7.1: an unprivileged user could overwrite arbitrary files in the log-collection directory when pacemaker is installed. OpenSUSE/SUSE advisories (openSUSE-2019-1351) fix this by upgrading supportutils to 3.1.17-2.2 (and related updates for hostinf...

4.7CVSS5.2AI score0.00399EPSS
Exploits0References2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/03/04 5:55 a.m.30 views

Security Bulletin: Vulnerabiliies in libmspack affect PowerKVM

Summary PowerKVM is affected by vulnerabilities in libmspack. IBM has now addressed these vulnerabilities. Vulnerability Details CVEID: CVE-2018-14682 DESCRIPTION: libmspack is vulnerable to a denial of service, caused by an off-by-one in mspack/chmd.c in the TOLOWER macro for CHM decompression. ...

8.8CVSS0.9AI score0.03806EPSS
Exploits0Affected Software1
OSV
OSV
added 2019/02/26 3:43 p.m.15 views

SUSE-SU-2019:0496-1 Security update for openssh

This update for openssh fixes the following issues: Security vulnerabilities addressed: - CVE-2019-6109: Fixed an character encoding issue in the progress display of the scp client that could be used to manipulate client output, allowing for spoofing during file transfers bsc1121816 -...

6.8CVSS6.7AI score0.58204EPSS
Exploits9References6
OSV
OSV
added 2019/02/25 10:55 a.m.7 views

SUSE-SU-2019:0480-1 Security update for supportutils

This update for supportutils fixes the following issues: Security issues fixed: - CVE-2018-19640: Fixed an issue where users could kill arbitrary processes bsc1118463. - CVE-2018-19638: Fixed an issue where users could overwrite arbitrary log files bsc1118460. - CVE-2018-19639: Fixed a code...

7.8CVSS6.8AI score0.00503EPSS
Exploits0References18
Packet Storm
Packet Storm
added 2019/02/20 12:0 a.m.33 views

Memu Play 6.0.7 Privilege Escalation

Exploit Title: Memu Play 6.0.7 - Privilege Escalation PoC Date: 20/02/2019 Author: Alejandra SA!nchez Vendor Homepage: https://www.memuplay.com/ Software Link: https://www.memuplay.com/download-en.php?filename=Memu-Setup&from=officialrelease Version: 6.0.7 Tested on: Windows 10 / Windows 7...

0.7AI score
Exploits0
CNVD
CNVD
added 2019/02/14 12:0 a.m.1 views

NetKit Input Validation Vulnerability

NetKit is a network environment simulation system. A security vulnerability exists in NetKit 0.17 and earlier versions, which stems from the fact that the server selects the file/directory to be sent to the client, but the rcp client only loosely validates the name of the returned object. An...

7.4CVSS6.9AI score0.01976EPSS
Exploits1References1
OSV
OSV
added 2019/02/13 11:8 a.m.5 views

MGASA-2019-0063 Updated cinnamon packages fix security vulnerability

A flaw was found in Cinnamon 1.9.2 through 3.8.6. The cinnamon-settings-users.py GUI runs as root and allows configuration of for example other users' icon files in onfacebrowsemenuitemactivated and onfacemenuitemactivated. These icon files are written to the respective user's $HOME/.face locatio...

8.1CVSS7.9AI score0.02201EPSS
Exploits0References4
OSV
OSV
added 2019/01/31 6:29 p.m.15 views

CVE-2019-7283

An issue was discovered in rcp in NetKit through 0.17. For an rcp operation, the server chooses which files/directories are sent to the client. However, the rcp client only performs cursory validation of the object name returned. A malicious rsh server or Man-in-The-Middle attacker can overwrite...

7.4CVSS6.4AI score
Exploits0References3
Rows per page
Query Builder