Lucene search
K

535 matches found

Vulnrichment
Vulnrichment
added 2022/12/15 12:0 a.m.3 views

CVE-2022-4513 European Environment Agency eionet.contreg cross site scripting

A vulnerability, which was classified as problematic, has been found in European Environment Agency eionet.contreg. This issue affects some unknown processing. The manipulation of the argument searchTag/resourceUri leads to cross site scripting. The attack may be initiated remotely. Upgrading to...

3.5CVSS4.2AI score0.0056EPSS
Exploits0References3
OSV
OSV
added 2022/12/13 6:15 p.m.3 views

UBUNTU-CVE-2019-25078

A vulnerability classified as problematic was found in pacparser up to 1.3.x. Affected by this vulnerability is the function pacparserfindproxy of the file src/pacparser.c. The manipulation of the argument url leads to buffer overflow. Attacking locally is a requirement. Upgrading to version 1.4....

7.8CVSS6.6AI score0.00435EPSS
Exploits1References3
OSV
OSV
added 2022/11/13 11:15 p.m.2 views

DEBIAN-CVE-2022-3979

A vulnerability was found in NagVis up to 1.9.33 and classified as problematic. This issue affects the function checkAuthCookie of the file share/server/core/classes/CoreLogonMultisite.php. The manipulation of the argument hash leads to incorrect type conversion. The attack may be initiated...

8.1CVSS4.7AI score0.01007EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2022/11/13 11:15 p.m.24 views

CVE-2022-3979

A vulnerability was found in NagVis up to 1.9.33 and classified as problematic. This issue affects the function checkAuthCookie of the file share/server/core/classes/CoreLogonMultisite.php. The manipulation of the argument hash leads to incorrect type conversion. The attack may be initiated...

8.1CVSS5.6AI score0.01007EPSS
Exploits1References2
OSV
OSV
added 2022/11/13 8:15 a.m.4 views

ALPINE-CVE-2022-3970

A vulnerability was found in LibTIFF. It has been classified as critical. This affects the function TIFFReadRGBATileExt of the file libtiff/tifgetimage.c. The manipulation leads to integer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and m...

8.8CVSS7.5AI score0.01237EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/11/13 12:0 a.m.11 views

CVE-2022-3969 OpenKM FileUtils.java getFileExtension temp file

A vulnerability was found in OpenKM up to 6.3.11 and classified as problematic. Affected by this issue is the function getFileExtension of the file src/main/java/com/openkm/util/FileUtils.java. The manipulation leads to insecure temporary file. Upgrading to version 6.3.12 is able to address this...

2.6CVSS4.2AI score0.00526EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2022/11/13 12:0 a.m.5 views

CVE-2022-3978 NodeBB abort cross-site request forgery

A vulnerability, which was classified as problematic, was found in NodeBB up to 2.5.7. This affects an unknown part of the file /register/abort. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. Upgrading to version 2.5.8 is able to address this...

4.3CVSS4.9AI score0.00341EPSS
Exploits1References4
OSV
OSV
added 2022/11/11 4:15 p.m.8 views

UBUNTU-CVE-2022-3957

A vulnerability classified as problematic was found in GPAC. Affected by this vulnerability is the function svgparsepreserveaspectratio of the file scenegraph/svgattributes.c of the component SVG Parser. The manipulation leads to memory leak. The attack can be launched remotely. The name of the...

6.5CVSS5.9AI score0.00937EPSS
Exploits0References3
OSV
OSV
added 2022/10/26 8:15 p.m.4 views

DEBIAN-CVE-2022-3704

A vulnerability classified as problematic has been found in Ruby on Rails. This affects an unknown part of the file actionpack/lib/actiondispatch/middleware/templates/routes/table.html.erb. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The real...

5.4CVSS3.7AI score0.0068EPSS
Exploits1References1
OSV
OSV
added 2022/10/17 6:15 p.m.4 views

UBUNTU-CVE-2022-3559

A vulnerability was found in Exim and classified as problematic. This issue affects some unknown processing of the component Regex Handler. The manipulation leads to use after free. The name of the patch is 4e9ed49f8f12eb331b29bd5b6dc3693c520fddc2. It is recommended to apply a patch to fix this...

7.5CVSS6.1AI score0.03661EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/08/04 12:0 a.m.3 views

PT-2022-6819 · Ppp +3 · Ppp +3

Name of the Vulnerable Software and Affected Versions: ppp affected versions not specified Description: The issue is related to the function dumpppp of the file pppdump/pppdump.c of the component pppdump. It involves improper validation of array index due to the manipulation of the argument...

10CVSS9.3AI score0.00821EPSS
Exploits0References38
ATTACKERKB
ATTACKERKB
added 2022/08/01 2:15 p.m.3 views

CVE-2022-26434

In mailbox, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07138450; Issue ID: ALPS07138450...

6.7CVSS6.9AI score0.00095EPSS
Exploits0References2
OSV
OSV
added 2022/04/11 8:15 p.m.4 views

CVE-2022-20078

In vow, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is no needed for exploitation. Patch ID: ALPS05852819; Issue ID: ALPS05852819...

6.4CVSS6.7AI score0.00098EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/04/11 8:15 p.m.6 views

CVE-2022-20062

In mdp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is no needed for exploitation. Patch ID: ALPS05836418; Issue ID: ALPS05836418...

7.2CVSS6.7AI score0.00118EPSS
Exploits0References2
OSV
OSV
added 2022/04/11 8:15 p.m.3 views

CVE-2022-20068

In mobilelogd, there is a possible symbolic link following due to an improper link resolution. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06308907; Issue ID: ALPS06308907...

6.7CVSS6.7AI score0.0012EPSS
Exploits0References1
Rows per page
Query Builder