Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2022-33070

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Protobuf-c v1.4.0 was discovered to contain an invalid arithmetic shift via the function parsetagandwiretype in protobuf-c/protobuf-c.c. This vulnerability allo...

5.5CVSS6.5AI score0.01065EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/08/17 12:0 a.m.28 views

Amazon Linux 2 : protobuf-c (ALAS-2024-2619)

The version of protobuf-c installed on the remote host is prior to 1.0.2-3. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2619 advisory. Protobuf-c v1.4.0 was discovered to contain an invalid arithmetic shift via the function parsetagandwiretype in...

5.5CVSS6.4AI score0.01065EPSS
Exploits1References4
Amazon
Amazon
added 2024/08/06 12:0 a.m.19 views

Low: protobuf-c

Issue Overview: Protobuf-c v1.4.0 was discovered to contain an invalid arithmetic shift via the function parsetagandwiretype in protobuf-c/protobuf-c.c. This vulnerability allows attackers to cause a Denial of Service DoS via unspecified vectors. CVE-2022-33070 Affected Packages: protobuf-c Note:...

5.5CVSS5.7AI score0.01065EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.28 views

RHEL 9 : protobuf-c (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - protobuf-c: invalid arithmetic shift via the function parsetagandwiretype may lead to DoS CVE-2022-33070 Note that...

5.5CVSS6.6AI score0.01065EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.25 views

RHEL 7 : protobuf-c (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - protobuf-c: invalid arithmetic shift via the function parsetagandwiretype may lead to DoS CVE-2022-33070 ...

6.9AI score0.01065EPSS
Exploits1References2
Amazon
Amazon
added 2023/03/22 12:0 a.m.6 views

Low: protobuf-c

Issue Overview: A flaw was found in protobuf-c. The issue occurs due to an invalid arithmetic shift via the parsetagandwiretype in the protobuf-c/protobuf-c.c function. This flaw allows attackers to cause a denial of service DoS via unspecified vectors. CVE-2022-33070 Affected Packages: protobuf-...

5.5CVSS5.7AI score0.01065EPSS
Exploits1
Cloud Foundry
Cloud Foundry
added 2023/02/24 12:0 a.m.33 views

USN-5811-1: Sudo vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Canonical Ubuntu 22.04 Description Matthieu Barjole and Victor Cutillas discovered that Sudo incorrectly handled user-specified editors when using the sudoedit command. A local attacker that has permission to use the...

7.8CVSS7.3AI score0.55367EPSS
Exploits21
OpenVAS
OpenVAS
added 2023/01/19 12:0 a.m.19 views

Ubuntu: Security Advisory (USN-5811-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.55367EPSS
Exploits21References2
Tenable Nessus
Tenable Nessus
added 2023/01/19 12:0 a.m.148 views

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : Sudo vulnerabilities (USN-5811-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5811-1 advisory. Matthieu Barjole and Victor Cutillas discovered that Sudo incorrectly handled user-specified editors when using the sudoedit...

7.8CVSS7.7AI score0.55367EPSS
Exploits21References3
Ubuntu
Ubuntu
added 2023/01/18 5:44 p.m.223 views

USN-5811-1: Sudo vulnerabilities

Matthieu Barjole and Victor Cutillas discovered that Sudo incorrectly handled user-specified editors when using the sudoedit command. A local attacker that has permission to use the sudoedit command could possibly use this issue to edit arbitrary files. CVE-2023-22809 It was discovered that the...

7.8CVSS7.5AI score0.55367EPSS
Exploits21
OpenVAS
OpenVAS
added 2022/12/30 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2022-2921)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.16004EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/12/30 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2022-2947)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.16004EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2022/12/28 12:0 a.m.37 views

EulerOS Virtualization 2.10.1 : sudo (EulerOS-SA-2022-2947)

According to the versions of the sudo package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Protobuf-c v1.4.0 was discovered to contain an invalid arithmetic shift via the function parsetagandwiretype in...

9.8CVSS7.3AI score0.16004EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2022/12/28 12:0 a.m.32 views

EulerOS Virtualization 2.10.0 : sudo (EulerOS-SA-2022-2921)

According to the versions of the sudo package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Protobuf-c v1.4.0 was discovered to contain an invalid arithmetic shift via the function parsetagandwiretype in...

9.8CVSS7.3AI score0.16004EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2022/11/03 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2022-2669)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.16004EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/11/03 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2022-2701)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.16004EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/09/07 12:0 a.m.27 views

Fedora: Security Advisory for protobuf-c (FEDORA-2022-3be472fe11)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.5CVSS5.9AI score0.01065EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2022/08/03 9:14 p.m.25 views

CVE-2022-33070 affecting package protobuf-c for versions less than 1.4.0-2

CVE-2022-33070 affecting package protobuf-c for versions less than 1.4.0-2. A patched version of the package is available...

5.5CVSS5.9AI score0.01065EPSS
Exploits1
OSV
OSV
added 2022/07/30 11:4 a.m.4 views

OESA-2022-1789 protobuf-c security update

This is protobuf-c, a C implementation of the Google Protocol Buffers data serialization format. Security Fixes: Protobuf-c v1.4.0 was discovered to contain an invalid arithmetic shift via the function parsetagandwiretype in protobuf-c/protobuf-c.c. This vulnerability allows attackers to cause a...

5.5CVSS7.2AI score0.01065EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2022/07/26 4:28 p.m.93 views

USN-5531-1: protobuf-c vulnerability

Pietro Borrello discovered that protobuf-c contained an invalid arithmetic shift. This vulnerability allowed attackers to cause a denial of service system crash via unspecified vectors CVE-2022-33070. It was discovered that protobuf-c contained an unsigned integer overflow. This vulnerability...

5.5CVSS6.3AI score0.01065EPSS
Exploits1
Rows per page
Query Builder