Lucene search
K

7041 matches found

CNNVD
CNNVD
added 2025/04/01 12:0 a.m.3 views

Bruno 安全漏洞

Bruno is an open source IDE for exploring and testing Api from usebruno open source. A security vulnerability exists in Bruno 1.26.0 and earlier versions, which stems from an assertion runtime that may cause sandbox settings to be ignored...

8.7CVSS6.8AI score0.00347EPSS
Exploits1References2
Microsoft CVE
Microsoft CVE
added 2025/03/28 7:0 a.m.5 views

llvm-project commit a0138390 was discovered to contain an assertion failure at !replacements.count(op) && "operation was already replaced.

...

5.5CVSS5.7AI score0.00221EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.8 views

The vulnerability of the mptcp component in Linux kernel, which allows a hacker to cause a service failure

The vulnerability of the mptcp component in Linux operating systems is related to a reachable assertion. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00222EPSS
Exploits0References12Affected Software4
OSV
OSV
added 2025/03/26 9:15 p.m.11 views

CVE-2025-31160

atop through 2.11.0 allows local users to cause a denial of service e.g., assertion failure and application exit or possibly have unspecified other impact by running certain types of unprivileged processes while a different user runs atop...

2.9CVSS7.6AI score
Exploits0References11
Vulnrichment
Vulnrichment
added 2025/03/26 12:0 a.m.10 views

CVE-2025-31160

atop through 2.11.0 allows local users to cause a denial of service e.g., assertion failure and application exit or possibly have unspecified other impact by running certain types of unprivileged processes while a different user runs atop...

2.9CVSS7.4AI score0.0019EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2025/03/17 12:0 a.m.7 views

The vulnerability in the implementation of the SAML SSO protocol for the Ruby SAML library and the git-based software platform for collaborative code development on GitLab CE/EE allows a perpetrator to bypass authentication.

The vulnerability of the SAML SSO protocol implementation for the Ruby SAML library and the git-based software platform for collaborative code development on GitLab CE/EE is related to errors in cryptographic signature verification. Exploiting this vulnerability could allow an attacker to bypass...

9.4CVSS7.5AI score0.63792EPSS
Exploits1References11Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/03/10 12:0 a.m.7 views

The vulnerability of the SAML (Security Assertion Markup Language) technology used in Git-based software platforms for collaborative code development on GitLab allows attackers to increase their privileges.

The vulnerability of the SAML Security Assertion Markup Language technology used in Git-based software platforms for collaborative code development on GitLab is related to deficiencies in the authentication process. Exploiting this vulnerability could allow attackers to increase their privileges...

3.1CVSS5.5AI score0.0022EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2025/03/06 4:15 p.m.2 views

DEBIAN-CVE-2024-58068

In the Linux kernel, the following vulnerability has been resolved: OPP: fix devpmoppfindbw when bandwidth table not initialized If a driver calls devpmoppfindbwceil/floor the retrieve bandwidth from the OPP table but the bandwidth table was not created because the interconnect properties were...

5.5CVSS5.6AI score0.00168EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/06 3:54 p.m.4 views

CVE-2024-58068 OPP: fix dev_pm_opp_find_bw_*() when bandwidth table not initialized

In the Linux kernel, the following vulnerability has been resolved: OPP: fix devpmoppfindbw when bandwidth table not initialized If a driver calls devpmoppfindbwceil/floor the retrieve bandwidth from the OPP table but the bandwidth table was not created because the interconnect properties were...

6.3AI score0.00168EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.60 views

Linux Distros Unpatched Vulnerability : CVE-2025-21754

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion failure when splitting ordered extent after transaction abort If while...

5.5CVSS6.2AI score0.00213EPSS
Exploits0References2
Veracode
Veracode
added 2025/03/05 7:26 a.m.8 views

Improper Authentication

Rancher is vulnerable to Improper Authentication. The vulnerability is due to improper validation of SAML assertion data due to Rancher trusting and using unvalidated values in authentication cookies, allowing attackers to manipulate session data and escalate privileges...

8.4CVSS7.5AI score0.00418EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2022-27939

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tcprewrite in Tcpreplay 4.4.1 has a reachable assertion in getlayer4v6 in common/get.c. CVE-2022-27939 Note that Nessus relies on the presence of the package as...

5.5CVSS6.6AI score0.01019EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2022-32978

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is an assertion failure in SingleComponentLSScan::ParseMCU in singlecomponentlsscan.cpp in libjpeg before 1.64 via an empty JPEG-LS scan. CVE-2022-32978...

6.5CVSS6.6AI score0.00836EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-25445

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper handling of values in HuginBase::PTools::Transform::transform of Hugin 2022.0.0 leads to an assertion failure. CVE-2024-25445 Note that Nessus relies o...

7.8CVSS7.1AI score0.00325EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2017-9141

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In ImageMagick 7.0.5-7 Q16, a crafted file could trigger an assertion failure in the ResetImageProfileIterator function in MagickCore/profile.c because of missi...

6.5CVSS6.7AI score0.02174EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2017-3137

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mistaken assumptions about the ordering of records in the answer section of a response containing CNAME or DNAME resource records could lead to a situation in...

7.5CVSS7AI score0.08902EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2017-3145

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - BIND was improperly sequencing cleanup operations on upstream recursion fetch contexts, leading in some cases to a use-after-free error that can trigger an...

7.5CVSS7AI score0.27725EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2017-11368

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In MIT Kerberos 5 aka krb5 1.7 and later, an authenticated attacker can cause a KDC assertion failure by sending invalid S4U2Self or S4U2Proxy requests...

6.5CVSS6.8AI score0.02397EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/03 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2009-5155

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the GNU C Library aka glibc or libc6 before 2.28, parseregexp in posix/regcomp.c misparses alternatives, which allows attackers to cause a denial of service...

7.5CVSS6AI score0.03906EPSS
Exploits1References3
NVD
NVD
added 2025/02/27 3:15 a.m.13 views

CVE-2025-21754

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion failure when splitting ordered extent after transaction abort If while we are doing a direct IO write a transaction abort happens, we mark all existing ordered extents with the BTRFSORDEREDIOERR flag done at...

5.5CVSS0.00213EPSS
Exploits0References4
Rows per page
Query Builder