Lucene search
K

176 matches found

CNNVD
CNNVD
added 2024/11/15 12:0 a.m.3 views

JeeWMS 注入漏洞

JeeWMS is JeeWMS open source a JAVA-based warehouse management system . JeeWMS 20241108 and earlier versions have an injection vulnerability that stems from the parameter begindate in the file cgReportController.do can lead to SQL injection...

8.8CVSS7AI score0.00506EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2024/11/12 9:11 a.m.7 views

kernel: block: refine the EOF check in blkdev_iomap_begin

In the Linux kernel, the following vulnerability has been resolved: block: refine the EOF check in blkdeviomapbegin blkdeviomapbegin rounds down the offset to the logical block size before stashing it in iomap-offset and checking that it still is inside the inode size. Check the isize check to th...

5.5CVSS6.8AI score0.00207EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2024/10/17 12:0 a.m.6 views

The vulnerabilities of the `write_seqcount_begin()` and `write_seqcount_end()` functions in the Linux operating system allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the v3djobstartstats function in the Linux operating system is related to improper locking of resources. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

7.8CVSS7.3AI score0.00212EPSS
Exploits0References7Affected Software1
SUSE CVE
SUSE CVE
added 2024/09/10 2:51 a.m.2 views

SUSE CVE-2024-44945

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink: Initialise extack before use in ACKs Add missing extack initialisation when ACKing BATCHBEGIN and BATCHEND...

7.8CVSS6.5AI score0.00205EPSS
Exploits0References3
OSV
OSV
added 2024/08/31 7:15 a.m.3 views

DEBIAN-CVE-2024-44945

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink: Initialise extack before use in ACKs Add missing extack initialisation when ACKing BATCHBEGIN and BATCHEND...

7.8CVSS6.1AI score0.00205EPSS
Exploits0References1
OSV
OSV
added 2024/08/31 7:15 a.m.3 views

UBUNTU-CVE-2024-44945

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink: Initialise extack before use in ACKs Add missing extack initialisation when ACKing BATCHBEGIN and BATCHEND...

7.8CVSS5.7AI score0.00205EPSS
Exploits0References5
OSV
OSV
added 2024/07/11 2:30 a.m.5 views

MAL-2024-7614 Malicious code in sap-begin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 70b7d7d3eaf8577047d02fdc20282baf63ce35db280b2779c49737c6458114d9 The OpenSSF Package Analysis project identified 'sap-begin' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...

7.3AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/07/11 2:30 a.m.1 views

Malicious code in sap-begin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 70b7d7d3eaf8577047d02fdc20282baf63ce35db280b2779c49737c6458114d9 The OpenSSF Package Analysis project identified 'sap-begin' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...

7.1AI score
Exploits0
OSV
OSV
added 2024/06/19 2:15 p.m.5 views

DEBIAN-CVE-2024-38604

In the Linux kernel, the following vulnerability has been resolved: block: refine the EOF check in blkdeviomapbegin blkdeviomapbegin rounds down the offset to the logical block size before stashing it in iomap-offset and checking that it still is inside the inode size. Check the isize check to th...

5.5CVSS5.4AI score0.00207EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/06/19 12:0 a.m.5 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a security issue in block blkdeviomapbegin...

5.5CVSS6.4AI score0.00207EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/11/07 9:3 a.m.3 views

kernel: perf/core: Fix perf_output_begin parameter is incorrectly invoked in perf_event_bpf_output

In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix perfoutputbegin parameter is incorrectly invoked in perfeventbpfoutput syzkaller reportes a KASAN issue with stack-out-of-bounds. The call trace is as follows: dumpstack+0x9c/0xd3...

7.8CVSS6.3AI score0.00174EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/11/07 8:18 a.m.6 views

haproxy: data leak via fcgi requests

A flaw was found in HAProxy, which could allow a remote attacker to obtain sensitive information caused by improper initialization when encoding the FCGIBEGINREQUEST record. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information and us...

7.5CVSS5.8AI score0.01201EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/06/23 12:0 a.m.3 views

PT-2025-49496

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the JFS filesystem within the Linux kernel. Specifically, a missing check for a read-only mounted filesystem in the txBegin function could lead to a NULL pointer...

6CVSS6.8AI score0.00171EPSS
Exploits0
OSV
OSV
added 2023/03/29 9:15 p.m.2 views

DEBIAN-CVE-2023-0836

An information leak vulnerability was discovered in HAProxy 2.1, 2.2 before 2.2.27, 2.3, 2.4 before 2.4.21, 2.5 before 2.5.11, 2.6 before 2.6.8, 2.7 before 2.7.1. There are 5 bytes left uninitialized in the connection buffer when encoding the FCGIBEGINREQUEST record. Sensitive data may be disclos...

7.5CVSS7.4AI score0.01201EPSS
Exploits0References1
OSV
OSV
added 2023/03/27 12:0 a.m.6 views

UBUNTU-CVE-2023-0836

An information leak vulnerability was discovered in HAProxy 2.1, 2.2 before 2.2.27, 2.3, 2.4 before 2.4.21, 2.5 before 2.5.11, 2.6 before 2.6.8, 2.7 before 2.7.1. There are 5 bytes left uninitialized in the connection buffer when encoding the FCGIBEGINREQUEST record. Sensitive data may be disclos...

7.5CVSS5.9AI score0.01201EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/03/23 4:10 a.m.4 views

SUSE CVE-2023-0836

An information leak vulnerability was discovered in HAProxy 2.1, 2.2 before 2.2.27, 2.3, 2.4 before 2.4.21, 2.5 before 2.5.11, 2.6 before 2.6.8, 2.7 before 2.7.1. There are 5 bytes left uninitialized in the connection buffer when encoding the FCGIBEGINREQUEST record. Sensitive data may be disclos...

5.9CVSS7AI score0.01201EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:33 a.m.4 views

SUSE CVE-2013-7345

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a large amount of...

5CVSS6.8AI score0.0304EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:32 a.m.3 views

SUSE CVE-2014-0172

Integer overflow in the checksection function in dwarfbeginelf.c in the libdw library, as used in elfutils 0.153 and possibly through 0.158 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a malformed compressed debug section in an ELF...

6.8CVSS8.4AI score0.04031EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:12 a.m.3 views

SUSE CVE-2015-8050

Use-after-free vulnerability in the MovieClip object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before...

9.3CVSS8AI score0.05658EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:53 a.m.3 views

SUSE CVE-2017-0376

The hidden-service feature in Tor before 0.3.0.8 allows a denial of service assertion failure and daemon exit in the connectionedgeprocessrelaycell function via a BEGINDIR cell on a rendezvous circuit...

7.5CVSS9.3AI score0.02176EPSS
Exploits1References3
Rows per page
Query Builder