Lucene search
K

769 matches found

Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.20 views

EulerOS 2.0 SP12 : libxml2 (EulerOS-SA-2024-2534)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in xmllint from libxml2 before 2.11.8 and 2.12.x before 2.12.7. Formatting error messages with xmllint --htmlout can resu...

7.5CVSS7.1AI score0.02298EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.15 views

EulerOS 2.0 SP12 : libxml2 (EulerOS-SA-2024-2510)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in xmllint from libxml2 before 2.11.8 and 2.12.x before 2.12.7. Formatting error messages with xmllint --htmlout can resu...

7.5CVSS7.1AI score0.02298EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/10/08 12:0 a.m.2 views

Fortinet FortiAnalyzer 格式化字符串错误漏洞

Fortinet FortiAnalyzer is a centralized network security reporting solution from Fortinet, Inc. The product is mainly used to collect network log data and analyze, report, and archive operations on security events, network traffic, Web content, etc. in the logs through the reporting suite. A...

7.2CVSS6.7AI score0.00616EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/09/12 12:0 a.m.14 views

EulerOS 2.0 SP10 : libxml2 (EulerOS-SA-2024-2447)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in xmllint from libxml2 before 2.11.8 and 2.12.x before 2.12.7. Formatting error messages with xmllint --htmlout can resu...

7.5CVSS7.1AI score0.02298EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/09/12 12:0 a.m.22 views

EulerOS 2.0 SP9 : libxml2 (EulerOS-SA-2024-2399)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in xmllint from libxml2 before 2.11.8 and 2.12.x before 2.12.7. Formatting error messages with xmllint --htmlout can resu...

7.5CVSS7.1AI score0.02298EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/09/12 12:0 a.m.14 views

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2024-2374)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.02298EPSS
Exploits1References2
OSV
OSV
added 2024/09/11 4:15 p.m.5 views

AZL-49187 CVE-2024-45026 affecting package kernel for versions less than 5.15.167.1-1

In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix error recovery leading to data corruption on ESE devices Extent Space Efficient ESE or thin provisioned volumes need to be formatted on demand during usual IO processing. The dasdeseneedsformat function checks for...

7.8CVSS6.7AI score0.00243EPSS
Exploits0References1
OSV
OSV
added 2024/09/11 4:15 p.m.1 views

DEBIAN-CVE-2024-45026

In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix error recovery leading to data corruption on ESE devices Extent Space Efficient ESE or thin provisioned volumes need to be formatted on demand during usual IO processing. The dasdeseneedsformat function checks for...

7.8CVSS6.1AI score0.00243EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/09/05 12:0 a.m.3 views

389 Directory Server 安全漏洞

389 Directory Server is a highly available, fully functional, reliable and secure LDAP server implementation of 389 Directory Server open source. A security vulnerability exists in 389 Directory Server that stems from a potential server crash when userPassword is modified using incorrectly...

5.7CVSS6.2AI score0.00423EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/08/21 12:0 a.m.9 views

EulerOS Virtualization 2.11.1 : libxml2 (EulerOS-SA-2024-2158)

According to the versions of the libxml2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : An issue was discovered in xmllint from libxml2 before 2.11.8 and 2.12.x before 2.12.7. Formatting error messages with xmllint...

7.5CVSS7AI score0.02298EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/08/08 12:0 a.m.16 views

EulerOS 2.0 SP11 : libxml2 (EulerOS-SA-2024-2105)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in xmllint from libxml2 before 2.11.8 and 2.12.x before 2.12.7. Formatting error messages with xmllint --htmlout can resu...

7.5CVSS7.1AI score0.02298EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/08/08 12:0 a.m.25 views

EulerOS 2.0 SP11 : libxml2 (EulerOS-SA-2024-2088)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in xmllint from libxml2 before 2.11.8 and 2.12.x before 2.12.7. Formatting error messages with xmllint --htmlout can resu...

7.5CVSS7.1AI score0.02298EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2024/07/29 12:0 a.m.6 views

The vulnerability of the Nomad application’s Go-getter orchestrator library, related to improper handling of argument separators in commands, allows a malicious actor to format the Git URL, thereby allowing them to inject additional Git arguments into the Git command.

The vulnerability of the Nomad application’s Go-getter orchestrator library relates to the improper elimination of argument separators in commands. Exploiting this vulnerability allows a malicious actor to format the Git URL remotely, thereby introducing additional Git arguments during the Git...

10CVSS6.6AI score0.01329EPSS
Exploits0References4Affected Software3
CVE
CVE
added 2024/07/21 10:49 a.m.51 views

CVE-2024-6961

CVE-2024-6961 describes an XML External Entity (XXE) vulnerability in Guardrails AI when consuming RAIL documents from external sources, potentially allowing leakage of internal file data via the SYSTEM entity. The affected component is Guardrails AI and its RAIL document handling; the underlying...

5.9CVSS5.7AI score0.00408EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/07/03 12:0 a.m.2 views

Artifex Ghostscript Formatting String Error Vulnerability

Artifex Ghostscript is a free software package from Artifex, Inc. based on Adobe, PostScript, and the Portable Document Format page description language. A security vulnerability exists in Artifex Ghostscript prior to version 10.03.1 that exploits a memory corruption and SAFER sandbox bypass that...

6.3CVSS9.5AI score0.27992EPSS
Exploits6References5
Redos
Redos
added 2024/07/03 12:0 a.m.24 views

ROS-20240702-03

A vulnerability in the libxml2 library's xmllint.c file is related to the formatting of error messages with xmllint --htmlout. Exploiting the vulnerability could allow an attacker to cause a denial of service...

7.5CVSS6.7AI score0.02298EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2024/06/21 3:6 a.m.4 views

SUSE CVE-2024-38576

In the Linux kernel, the following vulnerability has been resolved: rcu: Fix buffer overflow in printcpustallinfo The rcuc-starvation output from printcpustallinfo might overflow the buffer if there is a huge difference in jiffies difference. The situation might seem improbable, but computers...

6.3CVSS7.1AI score0.00252EPSS
Exploits0References13
CNNVD
CNNVD
added 2024/06/18 12:0 a.m.3 views

Actiontec Electronics WEB6000Q Formatting String Error Vulnerability

The Actiontec Electronics WEB6000Q is a wireless extender from Actiontec Electronics, Inc. The Actiontec Electronics WEB6000Q suffers from a Formatting String Error vulnerability. An attacker could exploit this vulnerability to execute code in an HTTP server environment...

8.8CVSS7.2AI score0.01205EPSS
Exploits0References2
OSV
OSV
added 2024/06/17 6:15 p.m.2 views

UBUNTU-CVE-2024-37795

A segmentation fault in CVC5 Solver v1.1.3 allows attackers to cause a Denial of Service DoS via a crafted SMT-LIB input file containing the set-logic command with specific formatting errors...

7.5CVSS5.8AI score0.00467EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/06/17 12:0 a.m.8 views

CVE-2024-37795

A segmentation fault in CVC5 Solver v1.1.3 allows attackers to cause a Denial of Service DoS via a crafted SMT-LIB input file containing the set-logic command with specific formatting errors...

7AI score0.00467EPSS
Exploits0References1
Rows per page
Query Builder