Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/05/22 11:24 p.m.1 views

CVE-2022-39851

Improper access control vulnerability in CocktailBarService prior to SMR Oct-2022 Release 1 allows local attacker to bind service that require BINDREMOTEVIEWS permission...

4CVSS4.4AI score0.00016EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2024/04/22 1:14 a.m.2 views

nodejs: code injection and privilege escalation through Linux capabilities

A flaw was found in Node.js. On Linux, Node.js ignores certain environment variables if an unprivileged user has set them while the process is running with elevated privileges, except for CAPNETBINDSERVICE. Due to a bug in the implementation of this exception, Node.js incorrectly applies this...

7.8CVSS7.2AI score0.00448EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2024/04/18 2:16 a.m.0 views

nodejs: code injection and privilege escalation through Linux capabilities

A flaw was found in Node.js. On Linux, Node.js ignores certain environment variables if an unprivileged user has set them while the process is running with elevated privileges, except for CAPNETBINDSERVICE. Due to a bug in the implementation of this exception, Node.js incorrectly applies this...

7.8CVSS7.2AI score0.00448EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2024/04/08 8:54 a.m.0 views

nodejs: code injection and privilege escalation through Linux capabilities

A flaw was found in Node.js. On Linux, Node.js ignores certain environment variables if an unprivileged user has set them while the process is running with elevated privileges, except for CAPNETBINDSERVICE. Due to a bug in the implementation of this exception, Node.js incorrectly applies this...

7.8CVSS7.2AI score0.00448EPSS
Exploits0References4
OSV
OSVadded 2024/02/20 2:15 a.m.1 views

DEBIAN-CVE-2024-21892

On Linux, Node.js ignores certain environment variables if those may have been set by an unprivileged user while the process is running with elevated privileges with the only exception of CAPNETBINDSERVICE. Due to a bug in the implementation of this exception, Node.js incorrectly applies this...

7.8CVSS7.3AI score0.00448EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2021/03/03 11:45 a.m.2 views

bind: Buffer overflow in the SPNEGO implementation affecting GSSAPI security policy negotiation

A buffer overflow flaw was found in the SPNEGO implementation used by BIND. This flaw allows a remote attacker to cause the named process to crash or possibly perform remote code execution. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

8.1CVSS7.3AI score0.2515EPSS
Exploits0References5
OSV
OSVadded 2017/01/11 9:59 p.m.5 views

SUSE-SU-2017:0112-1 Security update for bind

This update for bind fixes the following issues: - Fix a potential assertion failure that could have been triggered by a malformed response to an ANY query, thereby facilitating a denial-of-service attack. CVE-2016-9131, bsc1018700, bsc1018699 - Fix a potential assertion failure that could have...

7.5CVSS7.5AI score0.6803EPSS
Exploits0References8
OSV
OSVadded 2008/07/25 12:0 a.m.39 views

DSA-1617-1 refpolicy - incompatible policy

Bulletin has no description...

6.8CVSS6.9AI score0.87662EPSS
Exploits20
Rows per page
Query Builder