Lucene search
K

769 matches found

Veracode
Veracode
added 2023/01/18 8:22 p.m.59 views

Integer Overflow

git is vulnerable to integer overflows. When processing the padding operators, there is a integer overflow in pretty.c::formatandpadcommit where a sizet is stored improperly as an int, and then added as an offset to a memcpy. This overflow can be triggered directly by a user running a command whi...

9.8CVSS9.3AI score0.44268EPSS
Exploits0References10Affected Software3
OSV
OSV
added 2023/01/17 11:15 p.m.1 views

DEBIAN-CVE-2022-41903

Git is distributed revision control system. git log can display commits in an arbitrary format using its --format specifiers. This functionality is also exposed to git archive via the export-subst gitattribute. When processing the padding operators, there is a integer overflow in...

9.8CVSS9.2AI score0.44268EPSS
Exploits0References1
OSV
OSV
added 2023/01/17 11:15 p.m.10 views

AZL-13026 CVE-2022-41903 affecting package git for versions less than 2.33.8-2

Git is distributed revision control system. git log can display commits in an arbitrary format using its --format specifiers. This functionality is also exposed to git archive via the export-subst gitattribute. When processing the padding operators, there is a integer overflow in...

9.8CVSS7.8AI score0.44268EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2023/01/17 6:0 p.m.68 views

CVE-2022-41903

Git is distributed revision control system. git log can display commits in an arbitrary format using its --format specifiers. This functionality is also exposed to git archive via the export-subst gitattribute. When processing the padding operators, there is a integer overflow in...

9.8CVSS7.5AI score0.44268EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2022/11/14 12:0 a.m.1 views

PT-2022-35063 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.3 Description: The issue is related to the use of snprintf instead of scnprintf. It was introduced in version v4.10 and fixed in version v6.0.3. The actual impact and attack plausibility have not yet been...

7.2AI score
Exploits0References1
CNNVD
CNNVD
added 2022/11/04 12:0 a.m.5 views

PingCAP TiDB 格式化字符串错误漏洞

PingCAP TiDB is an open source, cloud-native, distributed, MySQL-compatible database for elastic scaling and real-time analytics from China-based PingCAP. A formatting string error vulnerability exists in PingCAP TiDB versions prior to 6.1.3 through 6.4.0, which stems from its use of externally...

9.8CVSS5.8AI score0.00562EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/10/20 12:0 a.m.3 views

Abode Iota 格式化字符串错误漏洞

Abode Iota is a reliable Diy home security system from Abode. A formatting string error vulnerability exists in Abode Iota versions 6.9X and 6.9Z, which stems from the fact that an attacker can host a malicious UPnP service to cause memory corruption, information disclosure, and denial of service...

8.8CVSS7.3AI score0.00792EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/10/20 12:0 a.m.6 views

Abode Iota 格式化字符串错误漏洞

Abode Iota is a reliable Diy home security system from Abode. A formatting string error vulnerability exists in Abode Iota versions 6.9X and 6.9Z, which stems from the fact that an attacker can send a malicious XML payload to its ghomeprocesscontrolpacket function resulting in memory corruption,...

9.8CVSS7.7AI score0.00898EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/10/20 12:0 a.m.3 views

Abode Iota 格式化字符串错误漏洞

Abode Iota is a reliable Diy home security system from Abode. A formatting string error vulnerability exists in Abode Iota versions 6.9X and 6.9Z, which stems from the fact that an attacker can host a malicious UPnP service to cause memory corruption, information disclosure, and denial of service...

8.8CVSS7.3AI score0.00792EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/10/20 12:0 a.m.12 views

Abode Iota 格式化字符串错误漏洞

Abode Iota is a reliable Diy home security system from Abode. A formatting string error vulnerability exists in Abode Iota versions 6.9X and 6.9Z, which stems from the fact that an attacker can send an authenticated, malicious HTTP request to its web interface/action/wirelessConnect functionality...

8.8CVSS7.7AI score0.01252EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/10/20 12:0 a.m.6 views

Abode Iota 格式化字符串错误漏洞

Abode Iota is a reliable Diy home security system from Abode. A formatting string error vulnerability exists in Abode Iota versions 6.9X and 6.9Z, which stems from the fact that an attacker can send an authenticated, malicious HTTP request to its web interface/action/wirelessConnect functionality...

8.8CVSS7.7AI score0.01241EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/10/20 12:0 a.m.3 views

Abode Iota 格式化字符串错误漏洞

Abode Iota is a reliable Diy home security system from Abode. A formatting string error vulnerability exists in Abode Iota versions 6.9X and 6.9Z, which stems from the fact that an attacker can send an authenticated, malicious HTTP request to its web interface/action/wirelessConnect functionality...

8.8CVSS7.7AI score0.01252EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/10/20 12:0 a.m.17 views

Abode Iota 格式化字符串错误漏洞

Abode Iota is a reliable Diy home security system from Abode. A formatting string error vulnerability exists in Abode Iota versions 6.9X and 6.9Z, which stems from the fact that an attacker can send an authenticated, malicious HTTP request to its web interface/action/wirelessConnect functionality...

8.8CVSS7.8AI score0.01241EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/10/20 12:0 a.m.3 views

Abode Iota 格式化字符串错误漏洞

Abode Iota is a reliable Diy home security system from Abode. A formatting string error vulnerability exists in Abode Iota versions 6.9X and 6.9Z, which stems from the fact that an attacker can host a malicious UPnP service to cause memory corruption, information disclosure, and denial of service...

8.8CVSS7.3AI score0.00792EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/10/20 12:0 a.m.4 views

Abode Iota 格式化字符串错误漏洞

Abode Iota is a reliable Diy home security system from Abode. A formatting string error vulnerability exists in Abode Iota versions 6.9X and 6.9Z, which stems from the fact that an attacker can host a malicious UPnP service to cause memory corruption, information disclosure, and denial of service...

8.8CVSS7.3AI score0.00792EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2022/10/18 12:0 a.m.4 views

PT-2022-14975 · Oracle · Oracle Bi Publisher

Name of the Vulnerable Software and Affected Versions: Oracle BI Publisher versions 5.9.0.0, 6.4.0.0.0, 12.2.1.3.0, 12.2.1.4.0 Description: The issue affects the Core Formatting API component of Oracle BI Publisher in Oracle Fusion Middleware. It allows a low-privileged attacker with network acce...

7.6CVSS7.2AI score0.00645EPSS
Exploits0References3
OSV
OSV
added 2022/10/10 12:0 p.m.17 views

RUSTSEC-2022-0087 Slack Webhooks secrets leak in debug logs

Debug log formatting made it possible to leak Webhooks secrets into debug logs. The patched version has introduced more strict checks to avoid this...

7.5CVSS7.3AI score0.00657EPSS
Exploits0References3
NVD
NVD
added 2022/09/21 8:15 a.m.43 views

CVE-2022-40604

In Apache Airflow 2.3.0 through 2.3.4, part of a url was unnecessarily formatted, allowing for possible information extraction...

7.5CVSS0.01531EPSS
Exploits0References2
OSV
OSV
added 2022/09/21 8:15 a.m.14 views

CVE-2022-40604

In Apache Airflow 2.3.0 through 2.3.4, part of a url was unnecessarily formatted, allowing for possible information extraction...

7.5CVSS7.4AI score
Exploits0References2
Prion
Prion
added 2022/09/21 8:15 a.m.18 views

Information disclosure

In Apache Airflow 2.3.0 through 2.3.4, part of a url was unnecessarily formatted, allowing for possible information extraction...

5CVSS7.4AI score0.01531EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder