Lucene search
K

27 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-33157

Malicious code in bioql PyPI...

5.5CVSS5.7AI score0.00717EPSS
Exploits1References1
Amazon
Amazon
added 2025/09/29 12:0 a.m.6 views

Medium: redis6

Issue Overview: TOCTOU in linenoiseHistorySave in linenoise allows local attackers to overwrite arbitrary files and change permissions via a symlink race between fopen"w" on the history path and subsequent chmod on the same path. CVE-2025-9810 Affected Packages: redis6 Issue Correction: Run dnf...

6.8CVSS6.6AI score0.00099EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.4 views

Amazon Linux 2 : redis, --advisory ALAS2REDIS6-2025-014 (ALASREDIS6-2025-014)

The version of redis installed on the remote host is prior to 6.2.14-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2REDIS6-2025-014 advisory. TOCTOU in linenoiseHistorySave in linenoise allows local attackers to overwrite arbitrary files and change permissions via a...

6.8CVSS5.8AI score0.00099EPSS
Exploits0References4
Fedora
Fedora
added 2025/09/15 1:30 a.m.6 views

[SECURITY] Fedora 41 Update: linenoise-1.0-9.20200312git97d2850.fc41

Linenoise is a replacement for the readline line-editing library with the goal of being smaller...

6.8CVSS7AI score0.00099EPSS
Exploits0
Fedora
Fedora
added 2025/09/15 12:47 a.m.7 views

[SECURITY] Fedora 42 Update: linenoise-1.0-12.20200312git97d2850.fc42

Linenoise is a replacement for the readline line-editing library with the goal of being smaller...

6.8CVSS7AI score0.00099EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/09/15 12:0 a.m.4 views

Fedora: Security Advisory (FEDORA-2025-b83972992e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.00099EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/09/15 12:0 a.m.2 views

Fedora: Security Advisory (FEDORA-2025-cbe2e6c8ce)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.00099EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/09/15 12:0 a.m.3 views

Fedora 41 : linenoise (2025-cbe2e6c8ce)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-cbe2e6c8ce advisory. CVE-2025-9810 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this issu...

6.8CVSS5.5AI score0.00099EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/14 12:0 a.m.3 views

Fedora 42 : linenoise (2025-b83972992e)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-b83972992e advisory. CVE-2025-9810 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this issu...

6.8CVSS5.5AI score0.00099EPSS
Exploits0References2
NVD
NVD
added 2025/09/01 7:15 p.m.5 views

CVE-2025-9810

TOCTOU in linenoiseHistorySave in linenoise allows local attackers to overwrite arbitrary files and change permissions via a symlink race between fopen"w" on the history path and subsequent chmod on the same path...

6.8CVSS0.00099EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/09/01 7:3 p.m.12 views

CVE-2025-9810 TOCTOU race in Linenoise enables arbitrary file overwrite and permission changes

TOCTOU in linenoiseHistorySave in linenoise allows local attackers to overwrite arbitrary files and change permissions via a symlink race between fopen"w" on the history path and subsequent chmod on the same path...

6.8CVSS0.00099EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/09/01 7:3 p.m.2 views

CVE-2025-9810 TOCTOU race in Linenoise enables arbitrary file overwrite and permission changes

TOCTOU in linenoiseHistorySave in linenoise allows local attackers to overwrite arbitrary files and change permissions via a symlink race between fopen"w" on the history path and subsequent chmod on the same path...

6.8CVSS6.2AI score0.00099EPSS
Exploits0References2
CVE
CVE
added 2025/09/01 7:3 p.m.19 views

CVE-2025-9810

TOCTOU vulnerability CVE-2025-9810 in linenoiseHistorySave (linenoise) enables local attackers to overwrite files or change permissions via a symlink race between fopen("w") on the history path and a subsequent chmod() on the same path. Connected advisories confirm this CVE affects Redis-related ...

6.8CVSS6.2AI score0.00099EPSS
Exploits0References4Affected Software1
AlpineLinux
AlpineLinux
added 2025/09/01 7:3 p.m.2 views

CVE-2025-9810

TOCTOU in linenoiseHistorySave in linenoise allows local attackers to overwrite arbitrary files and change permissions via a symlink race between fopen"w" on the history path and subsequent chmod on the same path...

6.8CVSS6.7AI score0.00099EPSS
Exploits0References4
OSV
OSV
added 2025/09/01 7:3 p.m.5 views

CVE-2025-9810 TOCTOU race in Linenoise enables arbitrary file overwrite and permission changes

TOCTOU in linenoiseHistorySave in linenoise allows local attackers to overwrite arbitrary files and change permissions via a symlink race between fopen"w" on the history path and subsequent chmod on the same path...

6.8CVSS6AI score0.00099EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/09/01 12:0 a.m.3 views

Linenoise 安全漏洞

Linenoise is an application by the individual developer Salvatore Sanfilippo. A security vulnerability exists in Linenoise that stems from a competing condition on history paths that could lead to arbitrary file overwrites and permission changes...

6.8CVSS6.4AI score0.00099EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/09/01 12:0 a.m.4 views

PT-2025-35507

Name of the Vulnerable Software and Affected Versions: linenoise affected versions not specified Description: A time-of-check to time-of-use TOCTOU issue exists in the linenoiseHistorySave function within the linenoise library. This flaw allows local attackers to overwrite arbitrary files and...

6.8CVSS5.9AI score0.00099EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2022/01/25 1:15 a.m.7 views

CVE-2021-46481

Jsish v3.5.0 was discovered to contain a memory leak via linenoise at src/linenoise.c...

5.5CVSS5.9AI score0.00717EPSS
Exploits1References2
NVD
NVD
added 2022/01/25 1:15 a.m.21 views

CVE-2021-46481

Jsish v3.5.0 was discovered to contain a memory leak via linenoise at src/linenoise.c...

5.5CVSS0.00717EPSS
Exploits1References1
OSV
OSV
added 2022/01/25 1:15 a.m.4 views

CVE-2021-46481

Jsish v3.5.0 was discovered to contain a memory leak via linenoise at src/linenoise.c...

5.5CVSS5.8AI score0.00717EPSS
Exploits1References1
Rows per page
Query Builder