Lucene search
K

50 matches found

OSV
OSV
added 2024/07/12 1:55 p.m.16 views

SUSE-SU-2024:2468-1 Security update for traceroute

This update for traceroute fixes the following issues: - CVE-2023-46316: wrapper scripts do not properly parse command lines bsc1216591...

5.5CVSS5.8AI score0.00367EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2024/05/22 10:9 a.m.7 views

traceroute: improper command line parsing

A vulnerability was found in traceroute. This security issue is caused by wrapper scripts that do not properly parse command lines...

5.5CVSS5.7AI score0.00367EPSS
Exploits2References5
Github Security Blog
Github Security Blog
added 2024/02/08 6:44 p.m.42 views

Rancher 'Audit Log' leaks sensitive information

Impact A vulnerability has been identified which may lead to sensitive data being leaked into Rancher's audit logs. Rancher Audit Logging is an opt-in feature, only deployments that have it enabled and have AUDITLEVEL set to 1 or above are impacted by this issue. The leaks might be caught in the...

8.4CVSS6.4AI score0.01882EPSS
Exploits1References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.29 views

EulerOS Virtualization 2.9.1 : traceroute (EulerOS-SA-2024-1049)

According to the versions of the traceroute package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines. CVE-2023-46316...

5.5CVSS6.2AI score0.00367EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2023/12/12 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for traceroute (EulerOS-SA-2023-3351)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.6AI score0.00367EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2023/12/07 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2023:4656-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6AI score0.00367EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2023/11/14 12:0 a.m.30 views

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM / 22.04 ESM : Traceroute vulnerability (USN-6478-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM / 22.04 ESM host has a package installed that is affected by a vulnerability as referenced in the USN-6478-1 advisory. It was discovered that Traceroute did not properly parse command line arguments. An attacker could possibly use this issue to...

5.5CVSS6.9AI score0.00367EPSS
Exploits2References2
SUSE CVE
SUSE CVE
added 2023/10/27 12:56 a.m.3 views

SUSE CVE-2023-46316

In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines...

5.5CVSS8.8AI score0.00367EPSS
Exploits2References9
Debian CVE
Debian CVE
added 2023/10/24 12:0 a.m.429 views

CVE-2023-46316

In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines...

5.5CVSS6AI score0.00367EPSS
Exploits2
Vulnrichment
Vulnrichment
added 2023/10/24 12:0 a.m.30 views

CVE-2023-46316

In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines...

6.8AI score0.00367EPSS
Exploits2References3
CVE
CVE
added 2023/10/24 12:0 a.m.135 views

CVE-2023-46316

CVE-2023-46316 affects buc Traceroute 2.0.12 through 2.1.2; the wrapper scripts fail to parse command lines correctly, enabling local impact (AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). Public advisories/errata indicate the fix is to upgrade traceroute to version 2.1.3 or later (e.g., traceroute 2.1.3 ...

5.5CVSS5.3AI score0.00367EPSS
Exploits2References3Affected Software1
AlpineLinux
AlpineLinux
added 2023/10/24 12:0 a.m.37 views

CVE-2023-46316

In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines...

5.5CVSS6AI score0.00367EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.18 views

Oracle Linux 5 : ecryptfs-utils (ELSA-2009-1307)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2009-1307 advisory. 75-4 - fix EOF handling 499367 - add icon to gui desktop file 75-3 - ask for password confirmation when creating openssl key 500850 - removed executable...

7.2CVSS5.6AI score0.00386EPSS
Exploits0References2
OSV
OSV
added 2023/02/24 9:34 a.m.4 views

CLSA-2023-1677231280 git: Fix of 4 CVEs

CVE-2022-41903: fix out-of-bounds write caused by integer overflow - CVE-2021-40330: forbid newlines in host and path - CVE-2022-39260: reject too long command line strings - CVE-2023-23946: prevent git-apply from writing behind newly created symbolic links...

9.8CVSS7.3AI score0.44268EPSS
Exploits4References1
OSV
OSV
added 2023/02/22 7:50 p.m.5 views

CLSA-2023-1677095411 git: Fix of 6 CVEs

CVE-2022-41903: fix out-of-bounds write caused by integer overflow - CVE-2021-40330: forbid newlines in host and path - CVE-2022-39260: reject too long command line strings - CVE-2021-23521: implement size checks for .gitattributes - CVE-2023-22490: prevent arbitrary path exfiltration when using...

9.8CVSS7.1AI score0.44268EPSS
Exploits5References1
Fedora
Fedora
added 2021/11/12 12:38 a.m.14 views

[SECURITY] Fedora 35 Update: dvdauthor-0.7.2-16.fc35

DVDAuthor is a set of tools to help you author the file and directory structure of a DVD-Video disc, including programmatic commands for implementing interactive behavior. It is driven by command lines and XML control files, though there are other programs that provide GUI-based front ends if you...

7.3AI score
Exploits0
Cloud Foundry
Cloud Foundry
added 2021/02/10 12:0 a.m.82 views

USN-4705-1: Sudo vulnerabilities | Cloud Foundry

Severity High Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description It was discovered that Sudo incorrectly handled memory when parsing command lines. A local attacker could possibly use this issue to obtain unintended access to the administrator...

7.8CVSS6.9AI score0.99295EPSS
Exploits82Affected Software3
Ubuntu
Ubuntu
added 2021/01/27 3:1 p.m.298 views

USN-4705-2: Sudo vulnerability

USN-4705-1 fixed a vulnerability in Sudo. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that Sudo incorrectly handled memory when parsing command lines. A local attacker could possibly use this issue to obtain...

7.8CVSS7.2AI score0.99295EPSS
Exploits81
Ubuntu
Ubuntu
added 2021/01/26 6:48 p.m.309 views

USN-4705-1: Sudo vulnerabilities

It was discovered that Sudo incorrectly handled memory when parsing command lines. A local attacker could possibly use this issue to obtain unintended access to the administrator account. CVE-2021-3156 It was discovered that the Sudo sudoedit utility incorrectly handled checking directory...

7.8CVSS7AI score0.99295EPSS
Exploits82
Microsoft CVE
Microsoft CVE
added 2020/08/18 7:0 a.m.5 views

An allocation of memory without limits that could result in the stack clashing with another memory region was discovered in systemd-journald when a program with long command line arguments calls syslog. A local attacker may use this flaw to crash systemd-journald or escalate his privileges. Versions through v240 are vulnerable.

...

7.8CVSS6.8AI score0.00717EPSS
Exploits2
Rows per page
Query Builder