Lucene search
+L

584 matches found

redhatcve
redhatcve
added 2025/05/22 3:22 p.m.8 views

CVE-2020-25758

An issue was discovered on D-Link DSR-250 3.17 devices. Insufficient validation of configuration file checksums could allow a remote, authenticated attacker to inject arbitrary crontab entries into saved configurations before uploading. These entries are executed as root...

9CVSS6.8AI score0.01236EPSS
Exploits0
ossf
ossf
added 2025/05/22 12:33 p.m.4 views

Malicious code in web3-checksums (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
osv
osv
added 2025/05/22 12:33 p.m.3 views

MAL-2025-4264 Malicious code in web3-checksums (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
osv
osv
added 2025/03/27 3:15 p.m.3 views

DEBIAN-CVE-2025-21890

In the Linux kernel, the following vulnerability has been resolved: idpf: fix checksums set in idpfrxrsc idpfrxrsc uses skbtransportoffsetskb while the transport header is not set yet. This triggers the following warning for CONFIGDEBUGNET=y builds. DEBUGNETWARNONONCE!skbtransportheaderwassetskb...

5.5CVSS5.6AI score0.00176EPSS
Exploits0References1
cve
cve
added 2025/03/27 2:57 p.m.107 views

CVE-2025-21890

CVE-2025-21890 affects the Linux kernel (idpf driver). The root cause is in idpf_rx_rsc(): it uses skb_transport_offset(skb) before the transport header is set, causing incorrect checksums and triggering a CONFIG_DEBUG_NET warning. The issue has been fixed in the kernel with the referenced commit...

5.5CVSS7AI score0.00176EPSS
Exploits0References3Affected Software1
nessus
nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2020-16155

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The CPAN::Checksums package 2.12 for Perl does not uniquely define signed data. CVE-2020-16155 Note that Nessus relies on the presence of the package as reporte...

6.5CVSS6.6AI score0.00956EPSS
Exploits1References3
osv
osv
added 2025/02/26 7:1 a.m.2 views

DEBIAN-CVE-2022-49340

In the Linux kernel, the following vulnerability has been resolved: ipgre: test csumstart instead of transport header GRE with TUNNELCSUM will apply local checksum offload on CHECKSUMPARTIAL packets. ipgrexmit must validate csumstart after an optional skbpull, else lcocsum may trigger an overflow...

5.5CVSS5.5AI score0.00267EPSS
Exploits0References1
ossf
ossf
added 2025/02/03 9:1 a.m.4 views

Malicious code in checksums (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 865ae4dc35a7d31091697f0378c4e4f1b90d19d1160b1adbd2414c69f4192476 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
osv
osv
added 2025/02/03 9:1 a.m.1 views

MAL-2025-1072 Malicious code in checksums (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 865ae4dc35a7d31091697f0378c4e4f1b90d19d1160b1adbd2414c69f4192476 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
bdu_fstec
bdu_fstec
added 2025/01/17 12:0 a.m.6 views

The vulnerability of the rsyncd utility for transferring and synchronizing Rsync files allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the rsyncd utility for transferring and synchronizing Rsync files involves the generation of invalid tokens and checksums during the copying process. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...

6.1CVSS7.3AI score0.01761EPSS
Exploits1References19Affected Software7
susecve
susecve
added 2025/01/16 4:8 a.m.5 views

SUSE CVE-2024-12086

A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This issue occurs when files are being copied from a client to a server. During this process, the rsync server will send checksums of local data to the client to compare wi...

6.5CVSS6.4AI score0.01761EPSS
Exploits1References23
osv
osv
added 2025/01/14 11:32 p.m.7 views

USN-7206-1 Several security issues were fixed in rsync

Simon Scannell, Pedro Gallegos, and Jasiel Spelman discovered that rsync did not properly handle checksum lengths. An attacker could use this issue to execute arbitrary code. CVE-2024-12084 Simon Scannell, Pedro Gallegos, and Jasiel Spelman discovered that rsync compared checksums with...

9.8CVSS7.2AI score0.72059EPSS
Exploits8References7
attackerkb
attackerkb
added 2025/01/14 6:15 p.m.5 views

CVE-2024-12086

A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This issue occurs when files are being copied from a client to a server. During this process, the rsync server will send checksums of local data to the client to compare wi...

6.8CVSS7.1AI score0.01761EPSS
Exploits1References8
osv
osv
added 2025/01/14 6:15 p.m.4 views

ALPINE-CVE-2024-12086

A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This issue occurs when files are being copied from a client to a server. During this process, the rsync server will send checksums of local data to the client to compare wi...

6.8CVSS6.3AI score0.01761EPSS
Exploits1References1
osv
osv
added 2025/01/14 6:15 p.m.2 views

DEBIAN-CVE-2024-12086

A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This issue occurs when files are being copied from a client to a server. During this process, the rsync server will send checksums of local data to the client to compare wi...

6.8CVSS8AI score0.01761EPSS
Exploits1References1
cnvd
cnvd
added 2025/01/03 12:0 a.m.11 views

Huawei Lion-AL00C Stack Overflow Vulnerability

The Huawei Lion-AL00C is a smartphone from the Chinese company Huawei Huawei. The Huawei Lion-AL00C suffers from a stack overflow vulnerability that stems from a lack of sufficient checksums. An attacker could exploit the vulnerability to cause tampering of information, affecting availability...

6.5CVSS7AI score0.00228EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2024/11/23 12:0 a.m.6 views

PT-2024-10124

Name of the Vulnerable Software and Affected Versions rsync affected versions not specified Description The issue is related to rsync, a software used for synchronizing files across different systems. It allows a server to enumerate the contents of an arbitrary file from the client's machine by...

9.8CVSS7.2AI score0.72059EPSS
Exploits7References127
ossf
ossf
added 2024/10/16 1:3 p.m.3 views

Malicious code in middleware-flexible-checksums (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
osv
osv
added 2024/10/16 1:3 p.m.5 views

MAL-2024-9708 Malicious code in middleware-flexible-checksums (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
redhatcve
redhatcve
added 2024/07/16 4:57 p.m.18 views

CVE-2024-40962

A NULL pointer dereference was found in the btrfszonefinishendio function in the Linux Kernel during the execution of test-case btrfs/167 on emulated zoned devices. This issue stems from missing checksum lists for NOCOW writes in zoned mode, as revealed by an assertion failure. The problem occurs...

5.5CVSS8.3AI score0.00239EPSS
Exploits0References4
Rows per page
Query Builder