Lucene search
K

317 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-5367

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.00229EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-2917

Malicious code in bioql PyPI...

5.5CVSS5.5AI score0.00346EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2025/10/01 11:46 a.m.4 views

CVE-2023-53511

In the Linux kernel, the following vulnerability has been resolved: iouring: fix fget leak when fs don't support nowait buffered read Heming reported a BUG when using iouring doing link-cp on ocfs2. 1 Do the following steps can reproduce this BUG: mount -t ocfs2 /dev/vdc /mnt/ocfs2 cp testfile...

5.5CVSS5.4AI score0.00134EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/10/01 11:45 a.m.10 views

CVE-2022-50457

In the Linux kernel, the following vulnerability has been resolved: mtd: core: Fix refcount error in delmtddevice delmtddevice will call ofnodeput to mtdgetofnodemtd, which is mtd-dev.ofnode. However, memset&mtd-dev, 0 is called before ofnodeput. As the result, ofnodeput won't do anything in...

5.5CVSS5.4AI score0.00143EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2020-26235

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Rust time crate from version 0.2.7 and before version 0.2.23, unix-like operating systems may segfault due to dereferencing a dangling pointer in specific...

5.3CVSS6.1AI score0.01881EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-27148

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Gradle is a build automation tool, and its native-platform tool provides Java bindings for native APIs. On Unix-like systems, the system temporary directory can...

8.8CVSS7.2AI score0.00229EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-21290

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Netty is an open-source, asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers &...

6.2CVSS6.2AI score0.01777EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/07/08 12:0 a.m.5 views

PT-2025-28647

Name of the Vulnerable Software and Affected Versions Git versions 2.43.7 through 2.50.1 Description Git contains a link following vulnerability stemming from inconsistent handling of carriage return characters in configuration files. This flaw allows attackers to execute arbitrary code via...

8.6CVSS8.4AI score0.02775EPSS
Exploits9References243
RedhatCVE
RedhatCVE
added 2025/05/22 6:20 p.m.11 views

CVE-2021-22572

On unix-like systems, the system temporary directory is shared between all users on that system. The root cause is File.createTempFile creates files in the the system temporary directory with world readable permissions. Any sensitive information written to theses files is visible to all other loc...

5.5CVSS6.3AI score0.00128EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:18 p.m.7 views

CVE-2021-21331

The Java client for the Datadog API before version 1.0.0-beta.9 has a local information disclosure of sensitive information downloaded via the API using the API Client. The Datadog API is executed on a unix-like system with multiple users. The API is used to download a file containing sensitive...

4.3CVSS6.3AI score0.00563EPSS
Exploits0References1
Rosalinux
Rosalinux
added 2025/04/11 9:49 p.m.13 views

Advisory ROSA-SA-2025-2807

Software: less 530 OS: ROSA Virtualization 3.0 packageevrstring: less-530-3.rv30 CVE-ID: CVE-2022-48624 BDU-ID: 2024-04438 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the closealtfile filename.c function for UNIX-like Less text terminals is related to the skipping of Shellquote calls for...

7.8CVSS8.9AI score0.01059EPSS
Exploits0
Cvelist
Cvelist
added 2025/02/25 8:13 p.m.40 views

CVE-2025-27148 Gradle vulnerable to local privilege escalation through system temporary directory

Gradle is a build automation tool, and its native-platform tool provides Java bindings for native APIs. On Unix-like systems, the system temporary directory can be created with open permissions that allow multiple users to create and delete files within it. This library initialization could be...

8.8CVSS0.00229EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2025/02/25 8:13 p.m.9 views

CVE-2025-27148

Gradle is a build automation tool, and its native-platform tool provides Java bindings for native APIs. On Unix-like systems, the system temporary directory can be created with open permissions that allow multiple users to create and delete files within it. This library initialization could be...

8.8CVSS7.9AI score0.00229EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/14 12:47 p.m.12 views

CVE-2023-43123

On unix-like systems, the temporary directory is shared between all user. As such, writing to this directory using APIs that do not explicitly set the file/directory permissions can lead to information disclosure. Of note, this does not impact modern MacOS Operating Systems. The method...

5.5CVSS5.9AI score0.00346EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2025/02/03 12:0 a.m.8 views

The vulnerability of the RIB Revalidation component of the networking routing implementation software on Unix-like systems allows a perpetrator to cause service interruptions.

The vulnerability of the RIB Revalidation component of the networking routing implementation software on Unix-like systems is related to errors in resource release. Exploiting this vulnerability can allow a malicious actor to cause service failures...

7.8CVSS7.3AI score0.00837EPSS
Exploits0References4Affected Software3
Redos
Redos
added 2025/01/21 12:0 a.m.18 views

ROS-20250121-04

A vulnerability in the RIB Revalidation component of a software tool that implements network routing on Unix-like FRRouting systems is related to the launch of RIB reanalysis for FRR routers. Unix-like FRRouting systems is related to triggering RIB reanalysis for FRR routers, using RTR, causing...

7.5CVSS6.8AI score0.00837EPSS
Exploits0
OSV
OSV
added 2024/11/08 3:7 p.m.3 views

OESA-2024-2351 hadoop security update

Apache Hadoop is a framework that allows for the distributed processing of large data sets across clusters of computers using simple programming models. It is designed to scale up from single servers to thousands of machines, each offering local computation and storage. Security Fixes: Apache...

6.2CVSS6.4AI score0.00384EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/10/30 12:0 a.m.5 views

The vulnerability of the password_change.cgi web interface for Unix-like systems, Usermin, allows a perpetrator to execute an attack using brute-force methods.

The vulnerability of the passwordchange.cgi script in the Webmin hosting panel and the web interface for Unix-like systems, Usermin, is related to deficiencies in the error reporting mechanism. Exploiting this vulnerability allows a malicious actor to execute an attack using brute-force methods...

5.3CVSS5.6AI score0.02621EPSS
Exploits5References6Affected Software2
Redos
Redos
added 2024/10/01 12:0 a.m.19 views

ROS-20241001-04

Vulnerability of the bgpattrencap function in the bgpd/bgpattr.c file of the software tool for implementing network routing on Unix-like systems FRRouting is related to the lack of verification of actual remaining routing on Unix-like systems FRRouting is related to the lack of checking the actua...

9.8CVSS6.7AI score0.00641EPSS
Exploits0
OSV
OSV
added 2024/09/25 9:30 a.m.17 views

GHSA-F5FW-25GW-5M92 Apache Hadoop: Temporary File Local Information Disclosure

Apache Hadoop’s RunJar.run does not set permissions for temporary directory by default. If sensitive data will be present in this file, all the other local users may be able to view the content. This is because, on unix-like systems, the system temporary directory is shared between all local user...

3.3CVSS6.2AI score0.00384EPSS
Exploits0References7
Rows per page
Query Builder