Lucene search
K

57 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.6 views

Azure Linux 3.0 Security Update: python-tensorboard (CVE-2021-33196)

The version of python-tensorboard installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-33196 advisory. - In archive/zip in Go before 1.15.13 and 1.16.x before 1.16.5, a crafted file count in an archive...

7.5CVSS5.7AI score0.03464EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-25654

Malware in sbrugna...

7.5CVSS6.6AI score0.06934EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2024/11/05 12:0 a.m.9 views

RHEL 8 : Release of OpenShift Serverless Client kn 1.16.0 (Moderate) (RHSA-2021:2704)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:2704 advisory. Red Hat OpenShift Serverless Client kn 1.16.0 provides a CLI to interact with Red Hat OpenShift Serverless 1.16.0. The kn CLI is delivered a...

7.5CVSS7.2AI score0.03692EPSS
Exploits1References12
CBLMariner
CBLMariner
added 2024/07/24 1:44 a.m.20 views

CVE-2021-33196 affecting package python-tensorboard for versions less than 2.16.2-2

CVE-2021-33196 affecting package python-tensorboard for versions less than 2.16.2-2. An upgraded version of the package is available that resolves this issue...

7.5CVSS7.2AI score0.03464EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.31 views

RHEL 8 : Release of OpenShift Serverless Client kn 1.17.0 (Moderate) (RHSA-2021:3555)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:3555 advisory. Red Hat OpenShift Serverless Client kn 1.17.0 provides a CLI to interact with Red Hat OpenShift Serverless 1.17.0. The kn CLI is delivered a...

7.5CVSS7.2AI score0.06975EPSS
Exploits5References20
OSV
OSV
added 2024/03/06 11:4 a.m.33 views

BIT-GOLANG-2021-39293

In archive/zip in Go before 1.16.8 and 1.17.x before 1.17.1, a crafted archive header falsely designating that many files are present can cause a NewReader or OpenReader panic. NOTE: this issue exists because of an incomplete fix for CVE-2021-33196...

7.5CVSS7.9AI score0.06934EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.25 views

Rocky Linux 8 : go-toolset:rhel8 (RLSA-2021:3076)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:3076 advisory. - encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom TokenReader for xml.NewTokenDecoder returns EOF in the midd...

7.5CVSS6.9AI score0.06975EPSS
Exploits2References10
Tenable Nessus
Tenable Nessus
added 2022/09/15 12:0 a.m.52 views

RHEL 7 / 8 : OpenShift Container Platform 4.9.0 (RHSA-2021:3758)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:3758 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or...

7.5CVSS7.2AI score0.7848EPSS
Exploits4References12
Positive Technologies
Positive Technologies
added 2022/08/26 12:0 a.m.9 views

PT-2022-10612 · Red Hat · Openshift Serverless

It was found that the CVE-2021-27918, CVE-2021-31525 and CVE-2021-33196 have been incorrectly mentioned as fixed in RHSA for Serverless 1.16.0 and Serverless client kn 1.16.0. These have been fixed with Serverless 1.17.0...

7.5CVSS7.2AI score0.03692EPSS
Exploits1References3
ICS
ICS
added 2022/06/14 12:0 a.m.125 views

Siemens SCALANCE LPE9403 Third-Party Vulnerabilities

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely, low attack complexity Vendor: Siemens Equipment: SCALANCE LPE9403 Vulnerabilities: Multiple 2. RISK EVALUATION Successful exploitation of these vulnerabilities could cause crashes and unrestricted file access, impacting the...

9.8CVSS8.3AI score0.89063EPSS
Exploits106References11
OSV
OSV
added 2022/05/18 6:23 p.m.50 views

GO-2022-0273 Panic due to crafted inputs in archive/zip

The NewReader and OpenReader functions in archive/zip can cause a panic or an unrecoverable fatal error when reading an archive that claims to contain a large number of files, regardless of its actual size. This is caused by an incomplete fix for CVE-2021-33196...

7.5CVSS7.8AI score0.06934EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/05/11 12:0 a.m.32 views

RHEL 8 : go-toolset:rhel8 (RHSA-2022:1819)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:1819 advisory. Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Security Fixes: golang: Command-li...

9.8CVSS7.3AI score0.10299EPSS
Exploits1References19
RedHat Linux
RedHat Linux
added 2022/05/10 2:2 p.m.3 views

golang: archive/zip: malformed archive may cause panic or memory exhaustion (incomplete fix of CVE-2021-33196)

A vulnerability was found in archive/zip of the Go standard library. Applications written in Go can panic or potentially exhaust system memory when parsing malformed ZIP files. An attacker capable of submitting a crafted ZIP file to a Go application using archive/zip to process that file could...

7.5CVSS7.1AI score0.06934EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2022/05/10 2:2 p.m.81 views

Moderate: Red Hat Security Advisory: go-toolset:rhel8 security and bug fix update

An update for the go-toolset:rhel8 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS6.8AI score0.10299EPSS
Exploits1References10
AlmaLinux
AlmaLinux
added 2022/05/10 6:29 a.m.80 views

Moderate: go-toolset:rhel8 security and bug fix update

Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Security Fixes: golang: Command-line arguments may overwrite global data CVE-2021-38297 golang: archive/zip: malformed archive may cause panic or memory exhaustion incomplete fix of...

9.8CVSS9.3AI score0.10299EPSS
Exploits1References8
Rockylinux
Rockylinux
added 2022/05/10 6:29 a.m.52 views

go-toolset:rhel8 security and bug fix update

An update is available for delve, golang, go-toolset. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Go Toolset provides the Go programming language tools and...

9.8CVSS9.1AI score0.10299EPSS
Exploits0
OSV
OSV
added 2022/05/10 6:29 a.m.37 views

RLSA-2022:1819 Moderate: go-toolset:rhel8 security and bug fix update

Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Security Fixes: golang: Command-line arguments may overwrite global data CVE-2021-38297 golang: archive/zip: malformed archive may cause panic or memory exhaustion incomplete fix of...

9.8CVSS8.7AI score0.10299EPSS
Exploits0References9
IBM Security Bulletins
IBM Security Bulletins
added 2022/04/22 3:57 p.m.41 views

Security Bulletin: Security Vulnerabilities affect IBM Cloud Private - Golang (CVE-2021-33196)

Summary Security Vulnerabilities affect IBM Cloud Private - Golang Vulnerability Details CVEID: CVE-2021-33196 DESCRIPTION: Golang Go is vulnerable to a denial of service, caused by a flaw in the NewReader and OpenReader functions in archive/zip. By persuading a victim to open a specially-crafted...

7.5CVSS0.6AI score0.03464EPSS
Exploits1Affected Software1
NCSC
NCSC
added 2022/04/14 12:0 a.m.4 views

Vulnerabilities fixed in IBM Db, Db2 on OpenShift and Cloud Pak for Data

Several vulnerabilities have been fixed in IBM Db2 On Openshift and IBM Db2 and Db2 Warehouse on Cloud Pak for Data. These vulnerabilities allow an attacker to execute arbitrary code execute arbitrary code or cause a denial-of-service DoS. For the vulnerabilities with attributes CVE-2021-33196 an...

7.5CVSS9.7AI score0.061EPSS
Exploits4
RedHat Linux
RedHat Linux
added 2022/02/03 4:10 p.m.4 views

golang: archive/zip: malformed archive may cause panic or memory exhaustion (incomplete fix of CVE-2021-33196)

A vulnerability was found in archive/zip of the Go standard library. Applications written in Go can panic or potentially exhaust system memory when parsing malformed ZIP files. An attacker capable of submitting a crafted ZIP file to a Go application using archive/zip to process that file could...

7.5CVSS7.1AI score0.06934EPSS
Exploits1References5
Rows per page
Query Builder