CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

576 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в xterm

xterm before 375 allows code execution via font ops. For example, an OSC 50 response may trigger Ctrl-g, thereby leading to command execution within the vi line-editing mode of Zsh. NOTE: Font ops are not allowed in the default configurations of xterm in some Linux distributions...

9.8CVSS7.5AI score0.14033EPSS

Exploits1References2

Tenable Nessus•added 2026/05/11 12:0 a.m.•4 views

Unity Linux 20.1060e / 20.1070e Security Update: xterm (UTSA-2026-017637)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017637 advisory. xterm before Patch 366 allows remote attackers to execute arbitrary code or cause a denial of service segmentation fault via a crafted UTF-8 combining character...

9.8CVSS6.2AI score0.00722EPSS

Exploits1References4

Tenable Nessus•added 2026/05/09 12:0 a.m.•4 views

Unity Linux 20.1070e Security Update: xterm (UTSA-2026-017371)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017371 advisory. xterm through Patch 370, when Sixel support is enabled, allows attackers to trigger a buffer overflow in setsixel in graphicssixel.c via crafted text. Tenable has...

5.5CVSS6.1AI score0.00358EPSS

Exploits1References4

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux - уязвимость в xterm

With Patch 370, xterm enables Sixel support. When this is enabled, attackers can exploit a buffer overflow in the setsixel function in graphicssixel.c by using crafted text...

5.5CVSS6.3AI score0.00358EPSS

Exploits1References2

Snyk•added 2026/02/24 7:56 p.m.•4 views

Cross-site Scripting (XSS)

Overview nicegui is a Create web-based user interfaces with Python. The nice way. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the runmethod function. An attacker can execute arbitrary JavaScript in the victim's browser by supplying crafted input as a method...

6.1CVSS5.9AI score0.00047EPSS

Exploits0References2

Tenable Nessus•added 2026/01/20 12:0 a.m.•4 views

MiracleLinux 4 : xterm-253-1.0.1.AXS4 (AXSA:2021-1537:02)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-1537:02 advisory. xterm: crash when processing combining characters CVE-2021-27135 CVEs: CVE-2021-27135 Tenable has extracted the preceding description block directly from the...

9.8CVSS5.6AI score0.00722EPSS

Exploits1References2

Tenable Nessus•added 2026/01/20 12:0 a.m.•1 views

MiracleLinux 7 : xterm-295-3.el7.1 (AXSA:2021-1554:03)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-1554:03 advisory. xterm: crash when processing combining characters CVE-2021-27135 Tenable has extracted the preceding description block directly from the MiracleLinux securit...

9.8CVSS5.6AI score0.00722EPSS

Exploits1References2

Tenable Nessus•added 2026/01/20 12:0 a.m.•2 views

MiracleLinux 8 : xterm-331-1.el8.2 (AXSA:2021-1518:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1518:01 advisory. xterm: crash when processing combining characters CVE-2021-27135 Tenable has extracted the preceding description block directly from the MiracleLinux securit...

9.8CVSS5.6AI score0.00722EPSS

Exploits1References2

Tenable Nessus•added 2026/01/14 12:0 a.m.•2 views

MiracleLinux 3 : xterm-215-5AXS3.2 (AXSA:2009-04:01)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2009-04:01 advisory. The xterm program is a terminal emulator for the X Window System. It provides DEC VT102 and Tektronix 4014 compatible terminals for programs that can't use the...

9.3CVSS6.2AI score0.01716EPSS

Exploits0References2

Tenable Nessus•added 2026/01/13 12:0 a.m.•1 views

MiracleLinux 9 : xterm-366-10.el9_6 (AXSA:2025-10445:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10445:01 advisory. xterm: code execution via OSC 50 input sequences CVE-2022-45063 Tenable has extracted the preceding description block directly from the MiracleLinux securit...

9.8CVSS8.6AI score0.14033EPSS

Exploits1References2

Tenable Nessus•added 2026/01/13 12:0 a.m.•2 views

MiracleLinux 9 : xterm-366-12.el9_6 (AXSA:2025-10760:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10760:02 advisory. xterm: Buffer overflow in setsixel in graphicssixel.c CVE-2022-24130 Tenable has extracted the preceding description block directly from the MiracleLinux...

5.5CVSS5.7AI score0.00358EPSS

Exploits1References2

RedhatCVE•added 2026/01/07 9:43 a.m.•4 views

CVE-1999-0241

Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm...

10CVSS7.4AI score0.0178EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:42 a.m.•8 views

CVE-1999-0126

SGI IRIX buffer overflow in xterm and Xaw allows root access...

7.2CVSS7.5AI score0.00996EPSS

Exploits0References1

Tenable Nessus•added 2025/11/20 12:0 a.m.•3 views

TencentOS Server 4: xterm (TSSA-2025:0133)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0133 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

9.8CVSS7AI score0.00165EPSS

Exploits0References2