Lucene search
K

5 matches found

RedHat Linux
RedHat Linux
added 2024/01/30 1:28 p.m.3 views

kernel: Denial of service issue in az6027 driver in drivers/media/usb/dev-usb/az6027.c

A NULL pointer dereference flaw was found in the az6027 driver in drivers/media/usb/dev-usb/az6027.c in the Linux Kernel. The message from user space is not checked properly before transferring into the device. This flaw allows a local user to crash the system or potentially cause a denial of...

5.5CVSS6.6AI score0.00226EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2023/04/07 12:0 a.m.4 views

The vulnerability of the Google Chrome browser’s Navigation function, which allows a hacker to perform a spoofing attack

The vulnerability of Google Chrome’s Navigation function exists due to insufficient verification of data entered by users. Exploiting this vulnerability allows a malicious actor to carry out a spamming attack using a specially created web page...

7.5CVSS6.7AI score0.0092EPSS
Exploits0References9Affected Software3
GitLab Advisory Database
GitLab Advisory Database
added 2017/10/24 12:0 a.m.36 views

Directory traversal vulnerability in Action View in Ruby on Rails

Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.1, 4.0.x and 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta1.1 allows remote attackers to read arbitrary files by leveraging an application's unrestricted use of the render method and providing...

7.5CVSS6.2AI score0.95537EPSS
Exploits11References11Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2016/04/07 12:0 a.m.28 views

Possible Information Leak Vulnerability

Applications that pass unverified user input to the render method in a controller may be vulnerable to an information leak vulnerability. Impacted code will look something like this: def index; render params:id; end Carefully crafted requests can cause the above code to render files from unexpect...

5.3CVSS2.6AI score0.04423EPSS
Exploits1References1Affected Software1
RubySec
RubySec
added 2016/01/25 12:0 a.m.32 views

Possible Information Leak Vulnerability in Action View

There is a possible directory traversal and information leak vulnerability in Action View. This vulnerability has been assigned the CVE identifier CVE-2016-0752. Versions Affected: All. Not affected: None. Fixed Versions: 5.0.0.beta1.1, 4.2.5.1, 4.1.14.1, 3.2.22.1 Impact ------ Applications that...

7.5CVSS2.3AI score0.95537EPSS
Exploits11References1Affected Software1
Rows per page
Query Builder