CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

This update for libxml2 fixes the following issues: - CVE-2021-3518: Fixed a use after free in xinclude.c:xmlXIncludeDoProcess bsc1185408. - CVE-2021-3517: Fixed a heap based buffer overflow in entities.c:xmlEncodeEntitiesInternal bsc1185410. - CVE-2021-3516: Fixed a use after free in...

8.8CVSS8.7AI score0.0828EPSS

Exploits1References7

OSV•added 2021/04/30 7:22 p.m.•10 views

OPENSUSE-SU-2021:0630-1 Security update for virtualbox

This update for virtualbox fixes the following issues: - Version bump to 6.1.20 released April 20 2021 by Oracle Fixes boo1183329 'virtualbox 6.1.18 crashes when it runs nested VM' Fixes boo1183125 'Leap 15.3 installation in Virtualbox without VBox integration' Fixes CVE-2021-2264 and boo1184542...

8.4CVSS7.8AI score0.00708EPSS

Exploits1References9

OSV•added 2021/04/25 12:0 a.m.•55 views

DLA-2638-1 jackson-databind - security update

Bulletin has no description...

8.8CVSS7.6AI score0.20929EPSS

Exploits16

OSV•added 2021/04/15 12:0 a.m.•27 views

DLA-2627-1 xorg-server - security update

Bulletin has no description...

7.8CVSS7.8AI score0.0105EPSS

Exploits0

OSV•added 2021/04/13 12:0 a.m.•39 views

DSA-4891-1 tomcat9 - security update

Bulletin has no description...

7.5CVSS7.1AI score0.18114EPSS

Exploits15

OSV•added 2021/04/04 12:0 a.m.•23 views

DLA-2617-1 php-nette - security update

Bulletin has no description...

9.8CVSS9.3AI score0.35228EPSS

Exploits3

OSV•added 2021/04/03 12:0 a.m.•67 views

DLA-2616-1 libxstream-java - security update

Bulletin has no description...

9.9CVSS8.8AI score0.82552EPSS

Exploits10

Japan Vulnerability Notes•added 2021/03/22 5:57 a.m.•2 views

UNIVERGE Aspire series PBX vulnerable to denial-of-service (DoS)

Overview Remote system maintenance feature of UNIVERGE Aspire series PBX contain an issue in handling commands, which may cause a denial-of-service DoS. NEC Platforms, Ltd. reported this vulnerability to IPA to notify users of its solution through JVN. JPCERT/CC and NEC Platforms, Ltd. coordinate...

3.5CVSS6.8AI score0.00919EPSS

Exploits0References5

OSV•added 2021/03/22 12:0 a.m.•21 views

DLA-2603-1 libmediainfo - security update

Bulletin has no description...

7.8CVSS6.7AI score0.04238EPSS

Exploits4

OSV•added 2021/03/14 12:0 a.m.•12 views

DLA-2589-2 mupdf - regression update

Bulletin has no description...

7.2AI score

Exploits0

OSV•added 2021/03/05 12:0 a.m.•32 views

DLA-2582-1 mqtt-client - security update

Bulletin has no description...

7.5CVSS6.1AI score0.12357EPSS

Exploits0

OSV•added 2021/02/27 12:0 a.m.•46 views

DSA-4865-1 docker.io - security update

Bulletin has no description...

6.8CVSS6.4AI score0.03287EPSS

Exploits5

Japan Vulnerability Notes•added 2021/02/24 12:0 a.m.•238 views

JVN#66542874: Multiple cross-site scripting vulnerabilities in Movable Type

Movable Type provided by Six Apart Ltd. contains multiple cross-site scripting vulnerabilities listed below. Cross-site scripting vulnerability in Role authority setting screen CWE-79 - CVE-2021-20663 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N| Base...

6.1CVSS6.4AI score0.0081EPSS

Exploits0

OSV•added 2021/02/08 12:0 a.m.•52 views

DSA-4848-1 golang-1.11 - security update

Bulletin has no description...

7.8CVSS7.2AI score0.04692EPSS

Exploits0

OSV•added 2021/02/08 12:0 a.m.•21 views

DLA-2549-1 gdisk - security update

Bulletin has no description...

7.2CVSS6.7AI score0.00436EPSS

Exploits0