Lucene search
K

120 matches found

OpenVAS
OpenVAS
added 2025/01/23 12:0 a.m.21 views

Ubuntu: Security Advisory (USN-7223-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.6CVSS7.1AI score0.00309EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/01/23 12:0 a.m.14 views

Ubuntu: Security Advisory (USN-7224-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.0307EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2025/01/09 11:22 a.m.19 views

USN-7186-2: Linux kernel vulnerabilities

Andy Nguyen discovered that the Bluetooth L2CAP implementation in the Linux kernel contained a type-confusion error. A physically proximate remote attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2020-12351 Andy Nguyen discovered that the...

9.1CVSS8.4AI score0.07693EPSS
Exploits7
Ubuntu
Ubuntu
added 2024/12/17 7:37 p.m.27 views

USN-7173-1: Linux kernel vulnerabilities

Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a denial of service. CVE-2022-38096 Several security issues were discover...

7.8CVSS7AI score0.00613EPSS
Exploits1
OpenVAS
OpenVAS
added 2024/12/11 12:0 a.m.37 views

Ubuntu: Security Advisory (USN-7144-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.4AI score0.00879EPSS
Exploits8References2
OpenVAS
OpenVAS
added 2024/12/11 12:0 a.m.7 views

Ubuntu: Security Advisory (USN-7141-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.2AI score0.0124EPSS
Exploits2References2
OSV
OSV
added 2024/11/14 2:39 p.m.3 views

USN-7049-2 php7.0, php7.2 vulnerabilities

USN-7049-1 fixed vulnerabilities in PHP. This update provides the corresponding updates for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: It was discovered that PHP incorrectly handled parsing multipart form data. A remote attacker could possibly use this issue to inject...

7.5CVSS6.7AI score0.01077EPSS
Exploits2References3
UbuntuCve
UbuntuCve
added 2024/10/29 12:0 a.m.5 views

CVE-2024-10461

In multipart/x-mixed-replace responses, Content-Disposition: attachment in the response header was not respected and did not force a download, which could allow XSS attacks. This vulnerability affects Firefox 132, Firefox ESR 128.4, Thunderbird 128.4, and Thunderbird 132...

6.1CVSS6.9AI score0.00572EPSS
Exploits0References8
Ubuntu
Ubuntu
added 2024/10/14 2:0 p.m.12 views

USN-6968-3: PostgreSQL vulnerability

USN-6968-1 fixed CVE-2024-7348 in PostgreSQL-12, PostgreSQL-14, and PostgreSQL-16. This update provides the corresponding updates for PostgreSQL-9.3 in Ubuntu 14.04 LTS and PostgreSQL-10 in Ubuntu 18.04 LTS. Original advisory details: Noah Misch discovered that PostgreSQL incorrectly handled...

8.8CVSS7.6AI score0.01565EPSS
Exploits0
Ubuntu
Ubuntu
added 2024/10/01 7:4 a.m.26 views

USN-7015-3: Python vulnerability

USN-7015-1 fixed several vulnerabilities in Python. This update provides the corresponding updates for CVE-2023-27043 for python2.7 in Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS, and for python3.5 in Ubuntu 16.04 LTS. Original advisory details: It was discovered th...

5.3CVSS6.8AI score0.02527EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2024/03/20 9:15 p.m.12 views

CVE-2024-29018

Moby is an open source container framework that is a key component of Docker Engine, Docker Desktop, and other distributions of container tooling or runtimes. Moby's networking implementation allows for many networks, each with their own IP address range and gateway, to be defined. This feature i...

7.5CVSS6.7AI score0.0075EPSS
Exploits0References5
OSV
OSV
added 2023/12/14 4:51 p.m.6 views

USN-6233-2 yajl vulnerabilities

USN-6233-1 fixed vulnerabilities in YAJL. This update provides the corresponding updates for Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 23.04. Original advisory details: It was discovered that YAJL was not properly performing bounds checks when decoding a string with escape sequences. If a us...

7.5CVSS6.7AI score0.03735EPSS
Exploits3References4
OSV
OSV
added 2023/10/23 2:35 p.m.4 views

USN-6199-2 php7.0, php7.2 vulnerability

USN-6199-1 fixed a vulnerability in PHP. This update provides the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: It was discovered that PHP incorrectly handled certain Digest authentication for SOAP. An attacker could possibly use this issue to expose...

4.3CVSS6.8AI score0.00709EPSS
Exploits0References2
OSV
OSV
added 2023/10/19 11:46 a.m.4 views

USN-6165-2 glib2.0 vulnerabilities

USN-6165-1 fixed vulnerabilities in GLib. This update provides the corresponding updates for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: It was discovered that GLib incorrectly handled non-normal GVariants. An attacker could use this issue to cause GLib to...

7.8CVSS6.7AI score0.0078EPSS
Exploits0References6
OSV
OSV
added 2023/10/17 11:27 a.m.4 views

USN-6394-2 python2.7 vulnerability

USN-6394-1 fixed a vulnerability in Python. This update provides the corresponding update for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: It was discovered that Python incorrectly handled certain scripts. An attacker could possibly use this issue to execute...

7.5CVSS7.1AI score0.0177EPSS
Exploits1References2
OSV
OSV
added 2023/09/11 6:0 p.m.9 views

USN-6237-3 curl vulnerabilities

USN-6237-1 fixed several vulnerabilities in curl. This update provides the corresponding updates for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, and Ubuntu 18.04 LTS. Original advisory details: Hiroki Kurosawa discovered that curl incorrectly handled validating certain certificate wildcards. A remote...

5.9CVSS6.7AI score0.02211EPSS
Exploits2References3
OSV
OSV
added 2023/07/31 5:40 p.m.6 views

USN-6242-2 openssh vulnerability

USN-6242-1 fixed a vulnerability in OpenSSH. This update provides the corresponding update for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, and Ubuntu 18.04 LTS. Original advisory details: It was discovered that OpenSSH incorrectly handled loading certain PKCS11 providers. If a user forwarded their...

9.8CVSS7AI score0.76768EPSS
Exploits10References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:20 a.m.4 views

SUSE CVE-2018-1000135

GNOME NetworkManager version 1.10.2 and earlier contains a Information Exposure CWE-200 vulnerability in DNS resolver that can result in Private DNS queries leaked to local network's DNS servers, while on VPN. This vulnerability appears to have been fixed in Some Ubuntu 16.04 packages were fixed,...

5.3CVSS6.6AI score0.02135EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 3:56 a.m.5 views

SUSE CVE-2020-15704

The modprobe child process in the ./debian/patches/loadpppgenericifneeded patch file incorrectly handled module loading. A local non-root attacker could exploit the MODPROBEOPTIONS environment variable to read arbitrary root files. Fixed in 2.4.5-5ubuntu1.4, 2.4.5-5.1ubuntu2.3+esm2,...

5.5CVSS6.7AI score0.00364EPSS
Exploits0References3
NCSC
NCSC
added 2023/01/26 12:0 a.m.5 views

Vulnerabilities fixed in BIND

ICS has fixed vulnerabilities in BIND. An unauthenticated malicious party could exploit the vulnerabilities to cause of a denial-of-service DoS. The vulnerability with attribute CVE-2022-3736 is present only when a BIND server uses a particular stale configuration. A malicious party in that case...

7.5CVSS8.5AI score0.5017EPSS
Exploits0
Rows per page
Query Builder