Lucene search
K

411 matches found

OSV
OSV
added 2025/07/16 2:49 p.m.2 views

SUSE-SU-2025:01811-2 Security update for gnuplot

This update for gnuplot fixes the following issues: - CVE-2025-31176: invalid read leads to segmentation fault on plot3dpoints bsc1240325. - CVE-2025-31177: improper bounds check leads to heap-buffer overflow on utf8copyone bsc1240326. - CVE-2025-31178: unvalidated user input leads to segmentatio...

6.2CVSS5.8AI score0.00196EPSS
Exploits0References15
SUSE Linux
SUSE Linux
added 2025/07/16 2:49 p.m.3 views

Security update for gnuplot

This update for gnuplot fixes the following issues: CVE-2025-31176: invalid read leads to segmentation fault on plot3dpoints bsc1240325. CVE-2025-31177: improper bounds check leads to heap-buffer overflow on utf8copyone bsc1240326. CVE-2025-31178: unvalidated user input leads to segmentation faul...

6.9CVSS7.4AI score0.00196EPSS
Exploits0References28
Tenable Nessus
Tenable Nessus
added 2025/06/26 12:0 a.m.6 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS : Gnuplot vulnerabilities (USN-7589-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7589-1 advisory. Tim Blazytko, Cornelius Aschermann, Sergej Schumilo, and Nils Bars discovered that Gnuplot had several memory-related...

9.8CVSS7.6AI score0.02528EPSS
Exploits7References8
OpenVAS
OpenVAS
added 2025/06/25 12:0 a.m.4 views

Ubuntu: Security Advisory (USN-7589-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.5AI score0.02528EPSS
Exploits7References2
OSV
OSV
added 2025/06/23 12:12 p.m.5 views

USN-7589-1 gnuplot vulnerabilities

Tim Blazytko, Cornelius Aschermann, Sergej Schumilo, and Nils Bars discovered that Gnuplot had several memory-related issues. An attacker could possibly use these issues to cause Gnuplot to experience a buffer overflow, resulting in a denial of service or arbitrary code execution. These issues on...

9.8CVSS7.4AI score0.02528EPSS
Exploits7References8
Ubuntu
Ubuntu
added 2025/06/23 12:12 p.m.6 views

USN-7589-1: Gnuplot vulnerabilities

Tim Blazytko, Cornelius Aschermann, Sergej Schumilo, and Nils Bars discovered that Gnuplot had several memory-related issues. An attacker could possibly use these issues to cause Gnuplot to experience a buffer overflow, resulting in a denial of service or arbitrary code execution. These issues on...

9.8CVSS7.5AI score0.02528EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2025/06/05 12:0 a.m.4 views

SUSE SLES12 Security Update : gnuplot (SUSE-SU-2025:01805-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:01805-1 advisory. - CVE-2025-31178: unvalidated user input leads to segmentation fault on GetAnnotateString bsc1240327. - CVE-2025-31179: improper verification ...

6.2CVSS6.3AI score0.00196EPSS
Exploits0References13
SUSE Linux
SUSE Linux
added 2025/06/04 9:29 a.m.0 views

Security update for gnuplot

This update for gnuplot fixes the following issues: CVE-2025-31176: invalid read leads to segmentation fault on plot3dpoints bsc1240325. CVE-2025-31177: improper bounds check leads to heap-buffer overflow on utf8copyone bsc1240326. CVE-2025-31178: unvalidated user input leads to segmentation faul...

6.9CVSS6.7AI score0.00196EPSS
Exploits0References28
OSV
OSV
added 2025/06/03 11:57 a.m.2 views

SUSE-SU-2025:01805-1 Security update for gnuplot

This update for gnuplot fixes the following issues: - CVE-2025-31178: unvalidated user input leads to segmentation fault on GetAnnotateString bsc1240327. - CVE-2025-31179: improper verification of time values leads to segmentation fault on xstrftime bsc1240328. - CVE-2025-31181: double fclose cal...

6.2CVSS5.8AI score0.00196EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/05/30 12:0 a.m.8 views

Photon OS 4.0: Gnuplot PHSA-2025-4.0-0806

An update of the gnuplot package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0806. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

5.5CVSS6.4AI score0.00169EPSS
Exploits0References2
Photon
Photon
added 2025/05/27 12:0 a.m.16 views

Important Photon OS Security Update - PHSA-2025-4.0-0806

Updates of 'freetype2', 'gnuplot' packages of Photon OS have been released...

8.1CVSS6.9AI score0.26049EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 5:4 a.m.7 views

CVE-2023-36812

OpenTSDB is a open source, distributed, scalable Time Series Database TSDB. OpenTSDB is vulnerable to Remote Code Execution vulnerability by writing user-controlled input to Gnuplot configuration file and running Gnuplot with the generated configuration. This issue has been patched in commit...

9.8CVSS7.3AI score0.16501EPSS
Exploits4
RedhatCVE
RedhatCVE
added 2025/05/22 7:35 p.m.6 views

CVE-2021-29369

The gnuplot package prior to version 0.1.0 for Node.js allows code execution via shell metacharacters in Gnuplot commands...

9.8CVSS7.4AI score0.01776EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:38 p.m.11 views

CVE-2021-33360

An issue found in Stoqey gnuplot v.0.0.3 and earlier allows attackers to execute arbitrary code via the src/index.ts, plotCallack, childprocess, and/or filePath parameters...

9.8CVSS7.8AI score0.01127EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 5:10 p.m.11 views

CVE-2020-35476

A remote code execution vulnerability occurs in OpenTSDB through 2.4.0 via command injection in the yrange parameter. The yrange value is written to a gnuplot file in the /tmp directory. This file is then executed via the mygnuplot.sh shell script. tsd/GraphHandler.java attempted to prevent comma...

9.8CVSS8.1AI score0.8533EPSS
Exploits5
RedhatCVE
RedhatCVE
added 2025/05/22 8:37 a.m.19 views

CVE-2019-2820

Vulnerability in the Oracle Solaris component of Oracle Sun Systems Products Suite subcomponent: Gnuplot. The supported version that is affected is 11.4. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise...

7.3CVSS6.4AI score0.00476EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
added 2025/05/21 12:0 a.m.9 views

gnuplot-6.0.2-3.1 on GA media (moderate)

gnuplot-6.0.2-3.1 on GA media Announcement ID: openSUSE-SU-2025:15134-1 Rating: moderate Cross-References: CVE-2025-31176 CVE-2025-31177 CVE-2025-31178 CVE-2025-31179 CVE-2025-31180 CVE-2025-31181 CVE-2025-3359 CVSS scores: CVE-2025-31176 SUSE : 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H...

6.9CVSS7.4AI score0.00196EPSS
Exploits0
OSV
OSV
added 2025/05/20 12:0 a.m.1 views

OPENSUSE-SU-2025:15134-1 gnuplot-6.0.2-3.1 on GA media

These are all security issues fixed in the gnuplot-6.0.2-3.1 package on the GA media of openSUSE Tumbleweed...

6.2CVSS6.9AI score0.00196EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/05/15 12:0 a.m.5 views

Photon OS 5.0: Gnuplot PHSA-2025-5.0-0522

An update of the gnuplot package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0522. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

5.5CVSS6.4AI score0.00169EPSS
Exploits0References2
Photon
Photon
added 2025/05/14 12:0 a.m.9 views

Critical Photon OS Security Update - PHSA-2025-5.0-0522

Updates of 'gnuplot', 'libsoup', 'redis' packages of Photon OS have been released...

9CVSS6.6AI score0.00847EPSS
Exploits0
Rows per page
Query Builder