18 matches found
admet-workbench (>=0.1.0 <=0.1.1), agent-gpt-aws (>=0.4.4 <=0.9.5) +83 more potentially affected by unknown CVE via sagemaker (>=1.52.1 <=3.10.1)
sagemaker PYPI version =1.52.1, =0.1.0, =0.4.4, =1.0.29, =1.3.24, =0.1.1b20230324, =0.0.2, =0.4.6, =0.1.13, =5.118.1, =0.1.0, =5.11.0, =5.11.0a0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-5R2P-PJR8-7FH7...
admet-workbench (>=0.1.0 <=0.1.1), agent-gpt-aws (>=0.4.4 <=0.9.5) +53 more potentially affected by unknown CVE via sagemaker-core (=2.10.1)
sagemaker-core PYPI version =2.10.1 is affected by a known vulnerability. The following packages have a transitive dependency on sagemaker-core and may be impacted: - admet-workbench =0.1.0, =0.4.4, =1.3.16, =0.0.2, =0.1.13, =0.1.0, =0.4.0, =1.0.1, =0.4.0, =0.1.12, =0.1.0, =0.2.7 and more Source...
admet-workbench (>=0.1.0 <=0.1.1), agent-gpt-aws (>=0.4.4 <=0.9.5) +49 more potentially affected by CVE-2026-1777 via sagemaker (=3.10.1)
sagemaker PYPI version =3.10.1 is affected by a known vulnerability. The following packages have a transitive dependency on sagemaker and may be impacted: - admet-workbench =0.1.0, =0.4.4, =1.3.24, =0.0.2, =0.1.13, =0.1.0, =0.4.0, =1.0.1, =0.4.0, =0.1.12, =0.1.0, =0.2.7 and more Source cves:...
Linux Distros Unpatched Vulnerability : CVE-2023-46673
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was identified that malformed scripts used in the script processor of an Ingest Pipeline could cause an Elasticsearch node to crash when calling the Simulate...
Denial Of Service (DoS)
elasticsearch is vulnerable to Denial Of Service DoS. The vulnerability is caused due to a lack of exception handling while calling the simulate pipeline API. The script processor of an ingest pipeline fails to handle malformed scripts. This can lead to an elastic node crash and ultimately deny...
CVE-2023-46673
A flaw was found in Elasticsearch. A malicious script used in the script processor of an Ingest Pipeline could cause an Elasticsearch node to crash when calling the Simulate Pipeline API. Mitigation No mitigation is yet available for this flaw...
Elasticsearch Improper Handling of Exceptional Conditions
It was identified that malformed scripts used in the script processor of an Ingest Pipeline could cause an Elasticsearch node to crash when calling the Simulate Pipeline API...
CVE-2023-46673
It was identified that malformed scripts used in the script processor of an Ingest Pipeline could cause an Elasticsearch node to crash when calling the Simulate Pipeline API...
CVE-2023-46673
CVE-2023-46673 affects Elastic Elasticsearch. Malformed scripts in the script processor of an Ingest Pipeline can cause an Elasticsearch node to crash when calling the Simulate Pipeline API, enabling a denial of service. The vulnerability is tied to the Simulate Pipeline API handling and may impa...
PT-2023-30154 · Unknown · Elasticsearch
Name of the Vulnerable Software and Affected Versions: Elasticsearch affected versions not specified Description: The issue arises from malformed scripts used in the script processor of an Ingest Pipeline, which can cause an Elasticsearch node to crash when calling the "Simulate Pipeline API"...
Fedora: Security Advisory for zsh (FEDORA-2022-adf0c6d196)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] Fedora 30 Update: zsh-5.7.1-6.fc30
The zsh shell is a command interpreter usable as an interactive login shell and as a shell script command processor. Zsh resembles the ksh shell the Korn shell, but includes many enhancements. Zsh supports command line editing, built-in spelling correction, programmable command completion, shell...
Fedora: Security Advisory for zsh (FEDORA-2020-9009363f0f)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] Fedora 28 Update: zsh-5.5-1.fc28
The zsh shell is a command interpreter usable as an interactive login shell and as a shell script command processor. Zsh resembles the ksh shell the Korn shell, but includes many enhancements. Zsh supports command line editing, built-in spelling correction, programmable command completion, shell...
CVE-2014-1817
CVE-2014-1817 concerns a vulnerability in usp10.dll (Uniscribe) that affects multiple Windows versions (Server 2003 SP2, Vista, Server 2008/2008 R2, Windows 7/8/8.1, Server 2012/R2) and related Office components. The issue arises from processing a crafted EMF+ record in a font file, enabling remo...
MS13-060: Vulnerability in Unicode Scripts Processor Could Allow Remote Code Execution (2850869)
The version of Microsoft Windows installed on the remote host includes a vulnerable version of the Unicode Script Processor, also known as Uniscribe. Some font types are not parsed correctly, which can result in memory corruption. An attacker could exploit this by tricking a user into viewing a...
Embedded Base-64 Encoded TTF Files (CVE-2010-2738)
Unicode Script Processor is a Windows component that enables a text layout client to format complex scripts. A remote code execution vulnerability has been reported in the way affected versions of Microsoft Windows incorrectly parse specific font types. A remote attacker could exploit this issue...
MS10-063: Vulnerability in Unicode Scripts Processor Could Allow Remote Code Execution (2320113)
The version of Microsoft Windows or Microsoft Office on the remote host includes a version of the Unicode Script Processor Usp10.dll, also known as Uniscribe, which incorrectly validates a table in OpenType fonts. If an attacker can trick a user on the affected system into visiting a malicious...