Lucene search
K

22 matches found

OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.17 views

Ubuntu: Security Advisory (USN-4819-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.8AI score0.03466EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2018-0154)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.8AI score0.01452EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.15 views

Mageia: Security Advisory (MGASA-2018-0279)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.03739EPSS
Exploits1References6
Mageia
Mageia
added 2018/06/14 6:14 p.m.37 views

Updated leptonica packages fix security vulnerabilities

This update fixes a security issue potential injection attack using gplot rootdir originally reported in CVE-2018-3836. This fix was incomplete and again reported in CVE-2018-7440 and CVE-2018-7442. The improved fix is included in leptonica-1.76.0...

9.8CVSS3AI score0.03739EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2018/05/17 12:0 a.m.19 views

Fedora Update for leptonica FEDORA-2018-c6e8b5f529

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.6AI score0.03739EPSS
Exploits0References2
OSV
OSV
added 2018/04/24 7:29 p.m.3 views

UBUNTU-CVE-2018-3836

An exploitable command injection vulnerability exists in the gplotMakeOutput function of Leptonica 1.74.4. A specially crafted gplot rootname argument can cause a command injection resulting in arbitrary code execution. An attacker can provide a malicious path as input to an application that pass...

7.8CVSS6.1AI score0.01452EPSS
Exploits1References4
CVE
CVE
added 2018/04/24 7:0 p.m.69 views

CVE-2018-3836

Leptonica 1.74.4 is affected by CVE-2018-3836 in gplotMakeOutput, where the gplot rootname can trigger a command injection leading to arbitrary code execution. This is a local-access vulnerability; CVSS base scores indicate HIGH severity. Public references and advisories note that an improved fix...

7.8CVSS7.8AI score0.01452EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVE
added 2018/04/24 7:0 p.m.18 views

CVE-2018-3836

An exploitable command injection vulnerability exists in the gplotMakeOutput function of Leptonica 1.74.4. A specially crafted gplot rootname argument can cause a command injection resulting in arbitrary code execution. An attacker can provide a malicious path as input to an application that pass...

7.8CVSS8.7AI score0.01452EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2018/03/14 12:0 a.m.22 views

Fedora 26 : leptonica / mingw-leptonica (2018-78570112db)

This update fixes CVE-2017-18196. ---- This update backports security fixes for CVE-2018-3836, CVE-2018-7186 and CVE-2018-7247. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically...

9.8CVSS6.9AI score0.03466EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2018/03/14 12:0 a.m.20 views

Fedora Update for leptonica FEDORA-2018-cbf621a53c

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.9AI score0.03466EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/03/14 12:0 a.m.19 views

Fedora 27 : leptonica / mingw-leptonica (2018-cbf621a53c)

This update fixes CVE-2017-18196. ---- This update backports security fixes for CVE-2018-3836, CVE-2018-7186 and CVE-2018-7247. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically...

9.8CVSS6.9AI score0.03466EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2018/03/14 12:0 a.m.17 views

Fedora Update for leptonica FEDORA-2018-78570112db

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.9AI score0.02491EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2018/03/14 12:0 a.m.19 views

Fedora Update for mingw-leptonica FEDORA-2018-cbf621a53c

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.9AI score0.02491EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/03/07 12:0 a.m.32 views

openSUSE Security Update : leptonica (openSUSE-2018-226)

This update for leptonica fixes the following issues : - CVE-2018-7247: Fixed a buffer overflow in in src/viewfiles.c with unsanitized input rootname boo1081631 - CVE-2018-7186: Fixed multiple stack-based buffer overflows in gplotRead and ptaReadStream boo1081576 - CVE-2018-3836: Added additional...

9.8CVSS8.2AI score0.03466EPSS
Exploits1References6
OSV
OSV
added 2018/03/01 9:27 p.m.7 views

MGASA-2018-0154 Updated leptonica packages fix a security vulnerability

Package leptonica has been updated to the current stable version 1.75.2 which fixes a security issue potential injection attack using gplot rootdir reported in CVE-2018-3836...

7.8CVSS7.7AI score0.01452EPSS
Exploits1References2
Mageia
Mageia
added 2018/03/01 9:27 p.m.32 views

Updated leptonica packages fix a security vulnerability

Package leptonica has been updated to the current stable version 1.75.2 which fixes a security issue potential injection attack using gplot rootdir reported in CVE-2018-3836...

7.8CVSS4.3AI score0.01452EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2018/02/23 9:29 p.m.24 views

CVE-2018-7440

An issue was discovered in Leptonica through 1.75.3. The gplotMakeOutput function allows command injection via a $command approach in the gplot rootname argument. This issue exists because of an incomplete fix for CVE-2018-3836...

9.8CVSS7.2AI score0.03739EPSS
Exploits0References3
Prion
Prion
added 2018/02/23 9:29 p.m.20 views

Command injection

An issue was discovered in Leptonica through 1.75.3. The gplotMakeOutput function allows command injection via a $command approach in the gplot rootname argument. This issue exists because of an incomplete fix for CVE-2018-3836...

7.5CVSS7.9AI score0.03739EPSS
Exploits1References3Affected Software2
CVE
CVE
added 2018/02/23 12:0 a.m.61 views

CVE-2018-7440

CVE-2018-7440 affects Leptonica up to 1.75.3, where the gplotMakeOutput function allows command injection via a $(command) path argument. This arises from an incomplete fix for CVE-2018-3836 and can lead to arbitrary code execution. Public references in the connected data indicate multiple distri...

9.8CVSS7.1AI score0.03739EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2018/02/23 12:0 a.m.29 views

CVE-2018-7440

An issue was discovered in Leptonica through 1.75.3. The gplotMakeOutput function allows command injection via a $command approach in the gplot rootname argument. This issue exists because of an incomplete fix for CVE-2018-3836...

9.8CVSS8.7AI score0.03739EPSS
Exploits0
Rows per page
Query Builder