Lucene search
K

21 matches found

RedhatCVE
RedhatCVE
added 2026/04/16 6:45 p.m.6 views

CVE-2026-30656

A flaw was found in fio Flexible I/O Tester. A local user could exploit this vulnerability by providing a specially crafted job file that includes the fdppli option without an argument. This leads to a NULL pointer dereference, which occurs when the program attempts to access a memory location th...

7.5CVSS5.7AI score0.00278EPSS
Exploits0References5
NVD
NVD
added 2025/10/23 8:15 p.m.5 views

CVE-2025-54963

An issue was discovered in BAE SOCET GXP before 4.6.0.2. An attacker with the ability to interact with the GXP Job Service may submit a crafted job request that grants read access to files on the filesystem with the permissions of the GXP Job Service process. The path to a file is not sanitized f...

6.5CVSS0.00625EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-5091

Malware in sbrugna...

4CVSS6.4AI score0.01927EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-4157

Malware in sbrugna...

3.5CVSS6.1AI score0.0164EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2012-5309

Malware in sbrugna...

10CVSS6.4AI score0.02491EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/06/20 3:54 p.m.3 views

CVE-2025-6193 Trustyai-explainability: command injection via lmevaljob cr

A command injection vulnerability was discovered in the TrustyAI Explainability toolkit. Arbitrary commands placed in certain fields of a LMEValJob custom resource CR may be executed in the LMEvalJob pod's terminal. This issue can be exploited via a maliciously crafted LMEvalJob by a user with...

5.9CVSS6AI score0.00757EPSS
Exploits0References4
OSV
OSV
added 2022/05/13 1:30 a.m.3 views

GHSA-3J9C-CP7M-8W8G Jenkins has XML External Entity (XXE) Vulnerability in Job Configuration via CLI

XML external entity XXE vulnerability in the create-job CLI command in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to read arbitrary files via a crafted job configuration that is then used in an "XML-aware tool," as demonstrated by get-job and update-job...

6.9CVSS7.3AI score0.02291EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2020/12/16 12:11 p.m.3 views

libquartz: XXE attacks via job description

The Terracotta Quartz Scheduler is susceptible to an XML external entity attack XXE through a job description. This issue stems from inadequate handling of XML external entity XXE declarations in the initDocumentParser function within xml/XMLSchedulingDataProcessor.java. By enticing a victim to...

9.8CVSS7AI score0.162EPSS
Exploits0References4
CNVD
CNVD
added 2017/06/05 12:0 a.m.2 views

GnuTLS libtasn1 "asn1_find_node()" buffer overflow vulnerability

Libtasn1 is the ASN.1 library used by GnuTLS. A buffer overflow vulnerability exists in the "asn1findnode" function in lib/parseraux.c in the GnuTLS libtasn1, which could allow an attacker to stack buffer overflows by tricking the user into processing specially designed job files through utilitie...

8.8CVSS7.4AI score0.05585EPSS
Exploits0References1
NVD
NVD
added 2015/11/25 8:59 p.m.16 views

CVE-2015-5319

XML external entity XXE vulnerability in the create-job CLI command in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to read arbitrary files via a crafted job configuration that is then used in an "XML-aware tool," as demonstrated by get-job and update-job...

5CVSS6.4AI score0.02291EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2015/11/25 8:59 p.m.26 views

CVE-2015-5319

XML external entity XXE vulnerability in the create-job CLI command in Jenkins before 1.638 and LTS before 1.625.2 allows remote attackers to read arbitrary files via a crafted job configuration that is then used in an "XML-aware tool," as demonstrated by get-job and update-job...

5CVSS7.2AI score0.02291EPSS
Exploits0References2
Prion
Prion
added 2014/06/06 2:55 p.m.11 views

Code injection

The standard universe shadow condorshadow.std component in Condor 7.7.3 through 7.7.6, 7.8.0 before 7.8.5, and 7.9.0 does no properly check privileges, which allows remote attackers to gain privileges via a crafted standard universe job...

10CVSS7.4AI score0.02491EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2014/06/06 2:55 p.m.21 views

CVE-2012-5390

The standard universe shadow condorshadow.std component in Condor 7.7.3 through 7.7.6, 7.8.0 before 7.8.5, and 7.9.0 does no properly check privileges, which allows remote attackers to gain privileges via a crafted standard universe job...

10CVSS5.9AI score0.02491EPSS
Exploits0References2
NVD
NVD
added 2013/10/11 10:55 p.m.27 views

CVE-2013-4255

The policy definition evaluator in Condor 7.5.4, 8.0.0, and earlier does not properly handle attributes in a 1 PREEMPT, 2 SUSPEND, 3 CONTINUE, 4 WANTVACATE, or 5 KILL policy that evaluate to an Unconfigured, Undefined, or Error state, which allows remote authenticated users to cause a denial of...

3.5CVSS6.1AI score0.0164EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2013/10/11 10:55 p.m.40 views

CVE-2009-5136

The policy definition evaluator in Condor before 7.4.2 does not properly handle attributes in a WANTSUSPEND policy that evaluate to an UNDEFINED state, which allows remote authenticated users to cause a denial of service condorstartd exit via a crafted job...

4CVSS5.9AI score0.01927EPSS
Exploits0References5
Prion
Prion
added 2013/10/11 10:55 p.m.16 views

Code injection

The policy definition evaluator in Condor 7.5.4, 8.0.0, and earlier does not properly handle attributes in a 1 PREEMPT, 2 SUSPEND, 3 CONTINUE, 4 WANTVACATE, or 5 KILL policy that evaluate to an Unconfigured, Undefined, or Error state, which allows remote authenticated users to cause a denial of...

3.5CVSS6.6AI score0.0164EPSS
Exploits0References5Affected Software2
Debian CVE
Debian CVE
added 2013/10/11 10:0 p.m.24 views

CVE-2013-4255

The policy definition evaluator in Condor 7.5.4, 8.0.0, and earlier does not properly handle attributes in a 1 PREEMPT, 2 SUSPEND, 3 CONTINUE, 4 WANTVACATE, or 5 KILL policy that evaluate to an Unconfigured, Undefined, or Error state, which allows remote authenticated users to cause a denial of...

3.5CVSS6.1AI score0.0164EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2013/08/21 5:27 p.m.4 views

condor: condor_startd DoS when parsing policy definition that evaluates to ERROR or UNDEFINED

The policy definition evaluator in Condor 7.5.4, 8.0.0, and earlier does not properly handle attributes in a 1 PREEMPT, 2 SUSPEND, 3 CONTINUE, 4 WANTVACATE, or 5 KILL policy that evaluate to an Unconfigured, Undefined, or Error state, which allows remote authenticated users to cause a denial of...

3.5CVSS5.8AI score0.0164EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2013/08/21 5:23 p.m.3 views

condor: condor_startd DoS when parsing policy definition that evaluates to ERROR or UNDEFINED

The policy definition evaluator in Condor 7.5.4, 8.0.0, and earlier does not properly handle attributes in a 1 PREEMPT, 2 SUSPEND, 3 CONTINUE, 4 WANTVACATE, or 5 KILL policy that evaluate to an Unconfigured, Undefined, or Error state, which allows remote authenticated users to cause a denial of...

3.5CVSS5.8AI score0.0164EPSS
Exploits0References4
Check Point Advisories
Check Point Advisories
added 2013/02/27 12:0 a.m.2 views

Nagios XI Autodiscovery Arbitrary Command Execution

An arbitrary command execution vulnerability has been reported in Nagios XI. The vulnerability is due to insufficient validation of incoming requests sent to the Autodiscovery module. The vulnerability can be exploited by an authenticated attacker by submitting a maliciously crafted job to the...

7.6AI score
Exploits0
Rows per page
Query Builder