Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2649 matches found

Tenable Nessus
Tenable Nessusadded 2018/03/12 12:0 a.m.67 views

Solaris 10 (sparc) : 126546-10

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Bash. The supported version that is affected is 10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris. Successful...

2.8CVSS5.5AI score0.00392EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2018/03/12 12:0 a.m.23 views

Debian DSA-4134-1 : util-linux - security update

Bjorn Bosselmann discovered that the umount bash completion from util-linux does not properly handle embedded shell commands in a mountpoint name. An attacker with rights to mount filesystems can take advantage of this flaw for privilege escalation if a user in particular root is tricked into usi...

7.8CVSS7.5AI score0.00457EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2018/03/12 12:0 a.m.17 views

Solaris 10 (sparc) : 126546-04

SunOS 5.10: bash patch. Date this patch was last updated by Sun : Sep/14/12 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2018/03/12 12:0 a.m.10 views

Solaris 10 (x86) : 126547-04

SunOS 5.10x86: bash patch. Date this patch was last updated by Sun : Sep/14/12 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7AI score
Exploits0References1
Kitploit
Kitploitadded 2018/03/11 1:8 p.m.13 views

Sudohulk - Try Privilege Escalation Changing Sudo Command

This tool change sudo command, hooking the execve syscall using ptrace, tested under bash and zsh supported architectures: x8664 x86 arm How use: $ make cc -Wall -Wextra -O2 -c -o bin/shremotedata.o src/shremotedata.c cc -Wall -Wextra -O2 -c -o bin/shstring.o src/shstring.c cc -Wall -Wextra -O2 -...

7.3AI score
Exploits0References1
OpenVAS
OpenVASadded 2018/03/09 12:0 a.m.50 views

Debian: Security Advisory (DSA-4134-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.00457EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2018/03/08 12:0 a.m.24 views

GLSA-201803-02 : util-linux: User-assisted execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-201803-02 util-linux: User-assisted execution of arbitrary code It was discovered that the umount bash-completion as provided by util-linux does not escap mount point paths. Impact : An attacker controlling a volume label could...

7.8CVSS8.1AI score0.00457EPSS
Exploits0References2
NVD
NVDadded 2018/03/07 2:29 a.m.22 views

CVE-2018-7738

In util-linux before 2.32-rc1, bash-completion/umount allows local users to gain privileges by embedding shell commands in a mountpoint name, which is mishandled during a umount command within Bash by a different user, as demonstrated by logging in as root and entering umount followed by a tab...

7.8CVSS7.8AI score0.00457EPSS
Exploits0References7
OSV
OSVadded 2018/03/07 2:29 a.m.1 views

DEBIAN-CVE-2018-7738

In util-linux before 2.32-rc1, bash-completion/umount allows local users to gain privileges by embedding shell commands in a mountpoint name, which is mishandled during a umount command within Bash by a different user, as demonstrated by logging in as root and entering umount followed by a tab...

7.8CVSS9.3AI score0.00457EPSS
Exploits0References1
OSV
OSVadded 2018/03/07 2:29 a.m.29 views

CVE-2018-7738

In util-linux before 2.32-rc1, bash-completion/umount allows local users to gain privileges by embedding shell commands in a mountpoint name, which is mishandled during a umount command within Bash by a different user, as demonstrated by logging in as root and entering umount followed by a tab...

7.8CVSS7.5AI score
Exploits0References7
OSV
OSVadded 2018/03/07 2:29 a.m.1 views

UBUNTU-CVE-2018-7738

In util-linux before 2.32-rc1, bash-completion/umount allows local users to gain privileges by embedding shell commands in a mountpoint name, which is mishandled during a umount command within Bash by a different user, as demonstrated by logging in as root and entering umount followed by a tab...

7.8CVSS7.2AI score0.00457EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2018/03/07 2:29 a.m.25 views

CVE-2018-7738

In util-linux before 2.32-rc1, bash-completion/umount allows local users to gain privileges by embedding shell commands in a mountpoint name, which is mishandled during a umount command within Bash by a different user, as demonstrated by logging in as root and entering umount followed by a tab...

7.8CVSS7.1AI score0.00457EPSS
Exploits0References2
Gentoo Linux
Gentoo Linuxadded 2018/03/07 12:0 a.m.38 views

util-linux: User-assisted execution of arbitrary code

Background util-linux is a suite of Linux programs including mount and umount, programs used to mount and unmount filesystems. Description It was discovered that the umount bash-completion as provided by util-linux does not escap mount point paths. Impact An attacker controlling a volume label...

7.8CVSS8.2AI score0.00457EPSS
Exploits0
Packet Storm
Packet Stormadded 2018/03/07 12:0 a.m.45 views

antMan 0.9.0c Authentication Bypass

Exploit Title: antMan and the password to a url-encoded linefeed %0a, we can force the authentication script to produce return values not anticipated by the developer. To exploit these defects, use a web proxy to intercept the login attempt and modify the POST parameters as follows:...

0.4AI score0.5456EPSS
Exploits3
CNVD
CNVDadded 2018/03/07 12:0 a.m.3 views

util-linux elevation of privilege vulnerability

util-linux is a set of software packages used in Linux systems and contains a variety of system administration tools, it provides tools to load, unload, format, partition and manage hard drives, open tty ports and get kernel messages. A security vulnerability exists in bash-completion/umount in...

7.8CVSS9.3AI score0.00457EPSS
Exploits0References1
Cvelist
Cvelistadded 2018/03/06 10:0 p.m.22 views

CVE-2018-7738

In util-linux before 2.32-rc1, bash-completion/umount allows local users to gain privileges by embedding shell commands in a mountpoint name, which is mishandled during a umount command within Bash by a different user, as demonstrated by logging in as root and entering umount followed by a tab...

7.9AI score0.00457EPSS
Exploits0References6
CVE
CVEadded 2018/03/06 10:0 p.m.44 views

CVE-2018-7739

CVE-2018-7739 affects Antsle’s antMan web management console (pre-0.9.1a). A remote attacker can bypass authentication by sending invalid characters in the username and password to the /login URI. The login flow uses Java’s ProcessBuilder to invoke a root-privileged bash script (antsle-auth) with...

9.8CVSS9.6AI score0.5456EPSS
Exploits3References3Affected Software1
Debian CVE
Debian CVEadded 2018/03/06 10:0 p.m.382 views

CVE-2018-7738

In util-linux before 2.32-rc1, bash-completion/umount allows local users to gain privileges by embedding shell commands in a mountpoint name, which is mishandled during a umount command within Bash by a different user, as demonstrated by logging in as root and entering umount followed by a tab...

7.8CVSS7.6AI score0.00457EPSS
Exploits0
exploitpack
exploitpackadded 2018/03/02 12:0 a.m.18 views

antMan 0.9.1a - Authentication Bypass

antMan 0.9.1a - Authentication Bypass Exploit Title: antMan and the password to a url-encoded linefeed %0a, we can force the authentication script to produce return values not anticipated by the developer. To exploit these defects, use a web proxy to intercept the login attempt and modify the POS...

0.5AI score
Exploits0
VulnCheck KEV
VulnCheck KEVadded 2018/03/01 12:0 a.m.3 views

VulnCheck KEV: CVE-2014-7187

Off-by-one error in the readtokenword function in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service out-of-bounds array access and application crash or possibly have unspecified other impact via deeply nested for loops, aka the "wordlineno" issue...

10CVSS6.8AI score0.58462EPSS
Exploits12References1
Rows per page
Query Builder