Lucene search
K

23170 matches found

OSV
OSV
added 2025/03/14 2:15 a.m.1 views

UBUNTU-CVE-2025-24855

numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, xsltEvalXPathPredicate, xsltEvalXPathStringNs, and xsltComputeSortResultInternal...

7.8CVSS6.9AI score0.00324EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2025/03/12 3:44 p.m.4 views

jinja2: Jinja sandbox breakout through attr filter selecting format method

A flaw was found in Jinja. In affected versions, an oversight in how the Jinja sandboxed environment interacts with the |attr filter allows an attacker who controls the content of a template to execute arbitrary Python code. To exploit the vulnerability, an attacker needs to control the content o...

8.8CVSS7.6AI score0.00465EPSS
Exploits0References6
NVD
NVD
added 2025/03/11 3:15 p.m.12 views

CVE-2024-45324

A use of externally-controlled format string vulnerability CWE-134 in FortiOS version 7.4.0 through 7.4.4, version 7.2.0 through 7.2.9, version 7.0.0 through 7.0.15 and before 6.4.15, FortiProxy version 7.4.0 through 7.4.6, version 7.2.0 through 7.2.12 and before 7.0.19, FortiPAM version 1.4.0...

7.2CVSS0.00679EPSS
Exploits0References1
OSV
OSV
added 2025/03/11 3:15 p.m.3 views

CVE-2024-45324

A use of externally-controlled format string vulnerability CWE-134 in FortiOS version 7.4.0 through 7.4.4, version 7.2.0 through 7.2.9, version 7.0.0 through 7.0.15 and before 6.4.15, FortiProxy version 7.4.0 through 7.4.6, version 7.2.0 through 7.2.12 and before 7.0.19, FortiPAM version 1.4.0...

7.2CVSS5.9AI score0.00679EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/11 2:54 p.m.27 views

CVE-2024-45324

A use of externally-controlled format string vulnerability CWE-134 in FortiOS version 7.4.0 through 7.4.4, version 7.2.0 through 7.2.9, version 7.0.0 through 7.0.15 and before 6.4.15, FortiProxy version 7.4.0 through 7.4.6, version 7.2.0 through 7.2.12 and before 7.0.19, FortiPAM version 1.4.0...

7.2CVSS0.00679EPSS
Exploits0References1
CVE
CVE
added 2025/03/11 2:54 p.m.156 views

CVE-2024-45324

CVE-2024-45324 describes an externally-controlled format string vulnerability (CWE-134) in Fortinet products, allowing a privileged attacker to execute unauthorized code via specially crafted HTTP/HTTPS commands. Affected are FortiOS (versions 7.4.0–7.4.4; 7.2.0–7.2.9; 7.0.0–7.0.15 and before 6.4...

7.2CVSS7.1AI score0.00679EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/03/11 2:54 p.m.90 views

CVE-2024-45324

A use of externally-controlled format string vulnerability CWE-134 in FortiOS version 7.4.0 through 7.4.4, version 7.2.0 through 7.2.9, version 7.0.0 through 7.0.15 and before 6.4.15, FortiProxy version 7.4.0 through 7.4.6, version 7.2.0 through 7.2.12 and before 7.0.19, FortiPAM version 1.4.0...

7.2CVSS7.1AI score0.00679EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/03/11 1:2 a.m.3 views

jinja2: Jinja has a sandbox breakout through indirect reference to format method

A flaw was found in the Jinja package. In affected versions of Jinja, an oversight in how the Jinja sandboxed environment detects calls to str.format allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the vulnerability, an attacker needs to...

7.8CVSS7.5AI score0.005EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/03/11 12:0 a.m.9 views

Fortinet FortiWeb Multiple format string vulnerabilities (FG-IR-24-325)

The version of FortiWeb installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-325 advisory. - A use of externally-controlled format string vulnerability CWE-134 in FortiOS version 7.4.0 through 7.4.4, version 7.2.0...

7.2CVSS5.9AI score0.00679EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/11 12:0 a.m.26 views

Fortinet Fortigate Multiple format string vulnerabilities (FG-IR-24-325)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-325 advisory. - A use of externally-controlled format string vulnerability CWE-134 in FortiOS version 7.4.0 through 7.4.4, version 7.2.0...

7.2CVSS5.9AI score0.00679EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2025/03/10 7:0 a.m.2 views

Jinja sandbox breakout through attr filter selecting format method

...

8.8CVSS7.3AI score0.00465EPSS
Exploits0
OSV
OSV
added 2025/03/07 6:15 a.m.1 views

UBUNTU-CVE-2025-27796

ReadWPGImage in WPG in GraphicsMagick before 1.3.46 mishandles palette buffer allocation, resulting in out-of-bounds access to heap memory in ReadBlob...

4.5CVSS5.9AI score0.00356EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2025/03/06 7:11 p.m.23 views

Envoy Gateway Log Injection Vulnerability

Impact In all Envoy Gateway versions prior to 1.2.7 and 1.3.1 a default Envoy Proxy access log configuration is used. This format is vulnerable to log injection attacks. If the attacker uses a specially crafted user-agent which performs json injection, then he could add and overwrite fields to th...

5.3CVSS7.3AI score0.00264EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2025/03/06 7:11 p.m.8 views

GHSA-MF24-CHXH-HMVJ Envoy Gateway Log Injection Vulnerability

Impact In all Envoy Gateway versions prior to 1.2.7 and 1.3.1 a default Envoy Proxy access log configuration is used. This format is vulnerable to log injection attacks. If the attacker uses a specially crafted user-agent which performs json injection, then he could add and overwrite fields to th...

5.3CVSS7.3AI score0.00264EPSS
Exploits0References9
CNNVD
CNNVD
added 2025/03/06 12:0 a.m.5 views

SAMSUNG Notes 安全漏洞

Samsung Notes is an application program from the South Korean company Samsung SAMSUNG. It is used to provide a recording function. An out-of-bounds read vulnerability exists in Samsung Notes, which stems from a lack of proper validation of user-supplied data when parsing jpeg images, and can be...

5.5CVSS6.7AI score0.00139EPSS
Exploits0References2
OSV
OSV
added 2025/03/05 8:40 p.m.0 views

GHSA-CPWX-VRP4-4PQ7 Jinja2 vulnerable to sandbox breakout through attr filter selecting format method

An oversight in how the Jinja sandboxed environment interacts with the |attr filter allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the vulnerability, an attacker needs to control the content of a template. Whether that is the case depends o...

5.4CVSS7.4AI score0.00465EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/03/05 2:29 p.m.7 views

jinja2: Jinja has a sandbox breakout through indirect reference to format method

A flaw was found in the Jinja package. In affected versions of Jinja, an oversight in how the Jinja sandboxed environment detects calls to str.format allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the vulnerability, an attacker needs to...

7.8CVSS7.5AI score0.005EPSS
Exploits0References7
Packet Storm News
Packet Storm News
added 2025/03/05 12:0 a.m.3 views

How to Create a Scan for Open Redirects

This whitepaper covers how to create a scan in Perl to identify open redirection in web applications. Depending on the context of the environment and architecture, the content of the paper can be applied to APIs in addition to presenting how to correct or avoid open redirect problems at the code...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2022-1215

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A format string vulnerability was found in libinput CVE-2022-1215 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVE...

7.8CVSS7.1AI score0.00364EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2022-39237

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - syslabs/sif is the Singularity Image Format SIF reference implementation. In versions prior to 2.8.1the github.com/sylabs/sif/v2/pkg/integrity package did not...

9.8CVSS6.7AI score0.00477EPSS
Exploits0References3
Rows per page
Query Builder