Lucene search
K

13681 matches found

OpenVAS
OpenVAS
added 2025/02/24 12:0 a.m.9 views

Fedora: Security Advisory (FEDORA-2025-3e178bb819)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.2CVSS7.1AI score0.00223EPSS
Exploits0References3
OSV
OSV
added 2025/02/21 3:15 p.m.6 views

AZL-76815 CVE-2025-0838 affecting package abseil-cpp for versions less than 20220623.0-2

There exists a heap buffer overflow vulnerable in Abseil-cpp. The sized constructors, reserve, and rehash methods of absl::flat,nodehashset,map did not impose an upper bound on their size argument. As a result, it was possible for a caller to pass a very large size that would cause an integer...

9.8CVSS6AI score0.00563EPSS
Exploits0References1
OSV
OSV
added 2025/02/21 3:15 p.m.3 views

DEBIAN-CVE-2025-0838

There exists a heap buffer overflow vulnerable in Abseil-cpp. The sized constructors, reserve, and rehash methods of absl::flat,nodehashset,map did not impose an upper bound on their size argument. As a result, it was possible for a caller to pass a very large size that would cause an integer...

9.8CVSS7.2AI score0.00563EPSS
Exploits0References1
OSV
OSV
added 2025/02/21 3:15 p.m.9 views

AZL-76853 CVE-2025-0838 affecting package abseil-cpp 20240116.0-2

There exists a heap buffer overflow vulnerable in Abseil-cpp. The sized constructors, reserve, and rehash methods of absl::flat,nodehashset,map did not impose an upper bound on their size argument. As a result, it was possible for a caller to pass a very large size that would cause an integer...

9.8CVSS7.4AI score0.00563EPSS
Exploits0References1
OSV
OSV
added 2025/02/21 3:15 p.m.9 views

AZL-77043 CVE-2025-0838 affecting package mysql 8.0.45-1

There exists a heap buffer overflow vulnerable in Abseil-cpp. The sized constructors, reserve, and rehash methods of absl::flat,nodehashset,map did not impose an upper bound on their size argument. As a result, it was possible for a caller to pass a very large size that would cause an integer...

9.8CVSS7.4AI score0.00563EPSS
Exploits0References1
OSV
OSV
added 2025/02/21 3:15 p.m.2 views

UBUNTU-CVE-2025-0838

There exists a heap buffer overflow vulnerable in Abseil-cpp. The sized constructors, reserve, and rehash methods of absl::flat,nodehashset,map did not impose an upper bound on their size argument. As a result, it was possible for a caller to pass a very large size that would cause an integer...

9.8CVSS7.1AI score0.00563EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/02/20 2:30 p.m.2 views

SUSE CVE-2025-25469

FFmpeg git-master before commit d5873b was discovered to contain a memory leak in the component libavutil/iamf.c...

6.5CVSS7.2AI score0.00281EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2025/02/20 2:30 p.m.4 views

SUSE CVE-2025-25473

FFmpeg git master before commit c08d30 was discovered to contain a memory leak in the avformatfreecontext function in libavutil/mem.c...

6AI score0.00381EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/02/19 12:0 a.m.6 views

PT-2025-16660

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved by adding a check for "read-only" mode in the jfs truncate nolock function to avoid errors related to writing to a read-only...

5.5CVSS5.6AI score0.00151EPSS
Exploits0
OSV
OSV
added 2025/02/18 11:15 p.m.2 views

UBUNTU-CVE-2025-22919

A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 allows attackers to cause a Denial of Service DoS via opening a crafted AAC file...

6.5CVSS5.8AI score0.00393EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/02/18 6:42 p.m.9 views

CVE-2025-25284 Path Traversal and Local File Read via VRT (Virtual Format) in ZOO-Project WPS Implementation

The ZOO-Project is an open source processing platform, released under MIT/X11 Licence. A vulnerability in ZOO-Project's WPS Web Processing Service implementation allows unauthorized access to files outside the intended directory through path traversal. Specifically, the GdalTranslate service, whe...

8.7CVSS0.00584EPSS
Exploits0References2
OSV
OSV
added 2025/02/18 6:42 p.m.5 views

CVE-2025-25284 Path Traversal and Local File Read via VRT (Virtual Format) in ZOO-Project WPS Implementation

The ZOO-Project is an open source processing platform, released under MIT/X11 Licence. A vulnerability in ZOO-Project's WPS Web Processing Service implementation allows unauthorized access to files outside the intended directory through path traversal. Specifically, the GdalTranslate service, whe...

8.7CVSS6.7AI score0.00584EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2025/02/18 12:0 a.m.3 views

CVE-2025-25468

FFmpeg git-master before commit d5873b was discovered to contain a memory leak in the component libavutil/mem.c...

6.5CVSS5.8AI score0.00352EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2025/02/14 7:7 a.m.6 views

SUSE CVE-2023-0458

A speculative pointer dereference problem exists in the Linux Kernel on the doprlimit function. The resource argument value is controlled and is used in pointer arithmetic for the 'rlim' variable and can be used to leak the contents. We recommend upgrading past version 6.1.8 or commit...

5.3CVSS6.8AI score0.0072EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/02/14 7:7 a.m.2 views

SUSE CVE-2023-0461

There is a use-after-free vulnerability in the Linux Kernel which can be exploited to achieve local privilege escalation. To reach the vulnerability kernel configuration flag CONFIGTLS or CONFIGXFRMESPINTCP has to be configured, but the operation does not require any privilege. There is a...

7.8CVSS6.5AI score0.00652EPSS
Exploits0References48
SUSE CVE
SUSE CVE
added 2025/02/14 7:2 a.m.1 views

SUSE CVE-2023-1829

A use-after-free vulnerability in the Linux Kernel traffic control index filter tcindex can be exploited to achieve local privilege escalation. The tcindexdelete function which does not properly deactivate filters in case of a perfect hashes while deleting the underlying structure which can later...

7.8CVSS6.7AI score0.01029EPSS
Exploits1References158
SUSE CVE
SUSE CVE
added 2025/02/14 6:57 a.m.3 views

SUSE CVE-2023-3390

A use-after-free vulnerability was found in the Linux kernel's netfilter subsystem in net/netfilter/nftablesapi.c. Mishandled error handling with NFTMSGNEWRULE makes it possible to use a dangling pointer in the same transaction causing a use-after-free vulnerability. This flaw allows a local...

7.8CVSS6.2AI score0.00871EPSS
Exploits0References33
SUSE CVE
SUSE CVE
added 2025/02/14 5:36 a.m.3 views

SUSE CVE-2024-9526

There exists a stored XSS Vulnerability in Kubeflow Pipeline View web UI. The Kubeflow Web UI allows to create new pipelines. When creating a new pipeline, it is possible to add a description. The description field allows html tags, which are not filtered properly. Leading to a stored XSS. We...

5.4CVSS8.8AI score0.00207EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/02/14 5:33 a.m.1 views

SUSE CVE-2024-11407

There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with transmit zero copy enabled through the channel arg GRPCARGTCPTXZEROCOPYENABLED can experience data corruption issues. The data sent by the application may be corrupted before transmission over the network...

5.8CVSS6.1AI score0.00576EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/02/14 3:18 a.m.17 views

CVE-2024-24195

robdns commit d76d2e6 was discovered to contain a misaligned address at /src/zonefile-insertion.c...

7.5CVSS7.3AI score0.004EPSS
Exploits0References1
Rows per page
Query Builder