Lucene search
K

24 matches found

OSV
OSV
added 2026/05/24 12:33 a.m.10 views

CLSA-2026-1779582830 vim: Fix of CVE-2026-46483

CVE-2026-46483: fix command injection in tar plugin Vimuntar when decompressing .tgz archives by passing the special flag to shellescape upstream vim 9.2.0479...

7CVSS5.8AI score0.00552EPSS
Exploits0References1
OSV
OSV
added 2026/05/05 1:13 a.m.6 views

CLSA-2026-1777943581 vim: Fix of 2 CVEs

CVE-2026-35177: fix path traversal bypass in zip.vim by using simplify to detect attacks that circumvent the previous regex-only check - CVE-2026-39881: fix command injection in netbeans interface via unsanitized defineAnnoType and specialKeys parameters...

7.8CVSS7.2AI score0.0062EPSS
Exploits0References1
OSV
OSV
added 2026/04/29 8:45 a.m.8 views

OPENSUSE-SU-2026:20653-1 Security update for radare2

This update for radare2 fixes the following issues: Changes in radare2: - Update to version 6.1.4 bsc1262142, CVE-2026-40499: Analysis: improve autoname scoring, jmptbl detection, and performance Add callargs modifier, rnum expressions, and typed function context Refactor autoname into plugin;...

10CVSS6.8AI score0.01184EPSS
Exploits3References12
SUSE Linux
SUSE Linux
added 2025/08/15 12:51 p.m.8 views

Security update for rust-keylime

This update for rust-keylime fixes the following issues: Update to version 0.2.7+141: CVE-2025-58266: shlex: Fixed command injection bsc1247193 Update to version 0.2.7+117: CVE-2023-26964: rust-keylime: hyper,h2: stream stacking when H2 processing HTTP2 RSTSTREAM frames bsc1210344. CVE-2024-12224...

7.5CVSS7.9AI score0.01121EPSS
Exploits2References26
Vulnrichment
Vulnrichment
added 2024/08/14 7:50 p.m.16 views

CVE-2024-42360 Command Injection in sequenceserver

SequenceServer lets you rapidly set up a BLAST+ server with an intuitive user interface for personal or group use. Several HTTP endpoints did not properly sanitize user input and/or query parameters. This could be exploited to inject and run unwanted shell commands. This vulnerability has been...

9.8CVSS6.8AI score0.00584EPSS
Exploits0References2
OSV
OSV
added 2024/02/23 8:46 a.m.9 views

SUSE-SU-2024:0604-1 Security update for openssh

This update for openssh fixes the following issues: - CVE-2023-51385: Fixed a command injection via user name or host name metacharacters bsc1218215. - Remember the state of sshd service during update / removal, to allow cut-over to a different openssh package. bsc1220110...

6.5CVSS7.1AI score0.19753EPSS
Exploits8References4
OSV
OSV
added 2024/02/20 3:3 p.m.15 views

SUSE-SU-2024:0539-1 Security update for libssh

This update for libssh fixes the following issues: Update to version 0.9.8 jscPED-7719: Fix CVE-2023-6004: Command injection using proxycommand bsc1218209 Fix CVE-2023-48795: Potential downgrade attack using strict kex bsc1218126 Fix CVE-2023-6918: Missing checks for return values of MD functions...

9.3CVSS7.5AI score0.93305EPSS
Exploits7References19
OSV
OSV
added 2024/01/18 10:35 a.m.17 views

SUSE-SU-2024:0140-1 Security update for libssh

This update for libssh fixes the following issues: Security fixes: - CVE-2023-6004: Fixed command injection using proxycommand bsc1218209 - CVE-2023-48795: Fixed potential downgrade attack using strict kex bsc1218126 - CVE-2023-6918: Fixed missing checks for return values of MD functions bsc12181...

6.5CVSS7.6AI score0.93305EPSS
Exploits6References11
OSV
OSV
added 2022/08/10 12:30 p.m.3 views

SUSE-SU-2022:2763-1 Security update for sssd

This update for sssd fixes the following issues: - CVE-2021-3621: Fixed shell command injection in sssctl via the logs-fetch and cache-expire subcommand bsc1189492. - Add 'ldapignoreunreadablereferences' parameter to skip unreadable objects referenced by 'member' attributte bsc1190775 - Fix 32-bi...

9.3CVSS9AI score0.02524EPSS
Exploits0References7
OSV
OSV
added 2022/07/11 8:51 a.m.7 views

SUSE-SU-2022:2351-1 Security update for python3

This update for python3 fixes the following issues: Security issues fixed: - CVE-2021-3572: Update bundled pip wheel to the latest SLE version bsc1186819 - CVE-2015-20107: avoid command injection in the mailcap module bsc1198511. Other bugs fixed: - Remove shebangs from from python-base libraries...

8CVSS7.2AI score0.07017EPSS
Exploits3References8
OSV
OSV
added 2022/07/06 11:4 a.m.5 views

SUSE-SU-2022:2291-1 Security update for python310

This update for python310 fixes the following issues: - CVE-2015-20107: avoid command injection in the mailcap module bsc1198511. - Update to 3.10.5: - Core and Builtins - gh-93418: Fixed an assert where an f-string has an equal sign '=' following an expression, but there's no trailing brace. For...

8CVSS8.2AI score0.07017EPSS
Exploits1References3
OSV
OSV
added 2022/07/04 7:52 a.m.12 views

SUSE-SU-2022:2251-1 Security update for openssl-1_1

This update for openssl-11 fixes the following issues: - CVE-2022-1292: Fixed command injection in crehash bsc1199166. - CVE-2022-2068: Fixed more shell code injection issues in crehash. bsc1200550...

10CVSS10AI score0.95764EPSS
Exploits6References6
OSV
OSV
added 2022/06/14 10:1 a.m.10 views

SUSE-SU-2022:2075-1 Security update for openssl-1_1

This update for openssl-11 fixes the following issues: - CVE-2022-1292: Fixed command injection in crehash bsc1199166...

10CVSS9.9AI score0.83223EPSS
Exploits5References4
OpenVAS
OpenVAS
added 2022/05/17 12:0 a.m.31 views

openSUSE: Security Advisory for git (SUSE-SU-2022:1484-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS8.2AI score0.00782EPSS
Exploits0References2
OSV
OSV
added 2021/09/21 12:54 p.m.5 views

OPENSUSE-SU-2021:1289-1 Security update for php-composer

This update for php-composer fixes the following issues: - Require php-mbstring as requested in boo1187416 - Version 1.10.22 Security: Fixed command injection vulnerability in HgDriver/HgDownloader and hardened other VCS drivers and downloaders GHSA-h5h8-pc6h-jvvx / CVE-2021-29472, boo1185376 -...

8.8CVSS9.2AI score0.04849EPSS
Exploits1References4
OSV
OSV
added 2021/09/16 8:3 a.m.7 views

OPENSUSE-SU-2021:1273-1 Security update for ghostscript

This update for ghostscript fixes the following issues: Security issue fixed: - CVE-2021-3781: Fixed a trivial -dSAFER bypass command injection bsc1190381 Also a hardening fix was added: - Link as position independent executable bsc1184123 This update was imported from the SUSE:SLE-15:Update upda...

9.9CVSS9.8AI score0.83913EPSS
Exploits0References4
OSV
OSV
added 2021/09/15 8:17 a.m.7 views

OPENSUSE-SU-2021:3044-1 Security update for ghostscript

This update for ghostscript fixes the following issues: Security issue fixed: - CVE-2021-3781: Fixed a trivial -dSAFER bypass command injection bsc1190381 Also a hardening fix was added: - Link as position independent executable bsc1184123...

9.9CVSS9.8AI score0.83913EPSS
Exploits0References4
OSV
OSV
added 2021/09/03 7:23 a.m.5 views

SUSE-SU-2021:2941-1 Security update for sssd

This update for sssd fixes the following issues: - CVE-2021-3621: Fixed shell command injection in sssctl via the logs-fetch and cache-expire subcommands bsc1189492. - Add LDAPS support for the AD provider bsc1183735. - Improve logs to record the reason why internal watchdog terminates a process...

9.3CVSS8.9AI score0.02524EPSS
Exploits0References5
OSV
OSV
added 2021/07/11 9:6 a.m.4 views

OPENSUSE-SU-2021:1951-1 Security update for salt

This update for salt fixes the following issues: - Check if dpkgnotify is executable bsc1186674 - Update to Salt release version 3002.2 jscECO-3212, jscSLE-18033, jscSLE-18028 - Drop support for Python2. Obsoletes python2-salt package jscSLE-18028 - Fix issue parsing errors in ansiblegate state...

7.8CVSS9.2AI score0.03808EPSS
Exploits1References4
OPENSUSE Linux
OPENSUSE Linux
added 2021/07/11 12:0 a.m.60 views

Security update for salt (critical)

openSUSE Security Update: Security update for salt Announcement ID: openSUSE-SU-2021:2106-1 Rating: critical References: 1171257 1176293 1179831 1181368 1182281 1182293 1182382 1185092 1185281 1186674 ECO-3212 SLE-18028 SLE-18033 Cross-References: CVE-2018-15750 CVE-2018-15751 CVE-2020-11651...

9.8CVSS9.1AI score0.96405EPSS
Exploits29References13
Rows per page
Query Builder