Lucene search
+L

139 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-0871

Malware in sbrugna...

7.5CVSS9.2AI score0.05035EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-14828

Malware in sbrugna...

7.8CVSS7.7AI score0.00545EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-31371

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.00446EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-19670

Malicious code in bioql PyPI...

8.2CVSS6.2AI score0.00341EPSS
Exploits0References1
OSV
OSV
added 2025/07/01 5:15 p.m.8 views

AZL-64641 CVE-2025-6297 affecting package dpkg 1.20.10-1

It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...

8.2CVSS7.5AI score0.00341EPSS
Exploits0References1
OSV
OSV
added 2025/07/01 5:15 p.m.5 views

DEBIAN-CVE-2025-6297

It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...

8.2CVSS8AI score0.00341EPSS
Exploits0References1
OSV
OSV
added 2025/07/01 5:15 p.m.4 views

UBUNTU-CVE-2025-6297

It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...

8.2CVSS7.4AI score0.00341EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/07/01 4:16 p.m.3 views

CVE-2025-6297 dpkg-deb: Fix cleanup for control member with restricted directories

It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...

7.4AI score0.00341EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/01 4:16 p.m.26 views

CVE-2025-6297 dpkg-deb: Fix cleanup for control member with restricted directories

It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...

0.00341EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2025/07/01 4:16 p.m.7 views

CVE-2025-6297

It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...

8.2CVSS6.6AI score0.00341EPSS
Exploits0References2
OSV
OSV
added 2025/07/01 4:16 p.m.6 views

CVE-2025-6297 dpkg-deb: Fix cleanup for control member with restricted directories

It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...

8.2CVSS7.3AI score0.00341EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/07/01 4:16 p.m.10 views

CVE-2025-6297

It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...

8.2CVSS8AI score0.00341EPSS
Exploits0
OSV
OSV
added 2024/11/18 1:19 p.m.18 views

SUSE-SU-2024:4006-1 Security update for SUSE Manager Server 4.3

This update fixes the following issues: cobbler: - Security issues fixed: CVE-2024-47533: Prevent privilege escalation from none to admin bsc1231332 - Other bugs fixed: Increase start timeout for cobblerd unit bsc1219450 Provide syncsinglesystem for DHCP modules to improve performance bsc1219450...

9.8CVSS8.2AI score0.03948EPSS
Exploits6References57
Veeam
Veeam
added 2024/11/08 12:0 a.m.21 views

Veeam Backup for Salesforce Built-In Updater Not Finding Updates

Challenge In Veeam Backup for Salesforce v1, the Updater displays no updates available despite the fact that newer versions are available. Cause The updater fails to identify new updates as being available because of an expired or incorrect GPG key used to verify package integrity. Without the...

6.9AI score
Exploits0Affected Software1
Virtuozzo
Virtuozzo
added 2024/11/04 12:0 a.m.25 views

Virtuozzo Hybrid Server 7.5 Update 7 (7.5.7-129)

Virtuozzo Hybrid Server 7.5 Update 7 introduces a way to convert system containers to virtual machines, support for Ubuntu 24.04 LTS, and bug fixes. Additionally, it provides a new kernel 3.10.0-1160.119.1.vz7.224.4. Vulnerability id: PSBM-159393 Memory corruption leading to a crash in nodes in...

7.2AI score
Exploits0
Github Security Blog
Github Security Blog
added 2023/05/24 5:30 p.m.48 views

nfpm has incorrect default permissions

Summary When building packages directly from source control, file permissions on the checked-in files are not maintained. Details When building packages directly from source control, file permissions on the checked-in files are not maintained. When nfpm packaged the files without extra config for...

7.1CVSS6.7AI score0.00384EPSS
Exploits1References5Affected Software2
0day.today
0day.today
added 2023/04/08 12:0 a.m.219 views

ENTAB ERP 1.0 - Username PII leak Vulnerability

Exploit Title: ENTAB ERP 1.0 - Username PII leak Exploit Author: Deb Prasad Banerjee Vendor Homepage: https://www.entab.in Version: Entab ERP 1.0 Tested on: Windows IIS CVE: CVE-2022-30076 Vulnerability Name: Broken Access control via Rate Limits Description: In the entab software in...

5.3CVSS5.8AI score0.03543EPSS
Exploits4
BDU FSTEC
BDU FSTEC
added 2023/03/15 12:0 a.m.8 views

The vulnerability of the eval() function in the debmany utility package of the Debian-goodies suite allows a hacker to execute arbitrary commands.

The vulnerability of the eval function in the debmany utility package of the Debian-goodies suite is related to the lack of measures taken to neutralize special elements used in operating system commands when processing .deb files. Exploiting this vulnerability allows an attacker to execute...

7.8CVSS7.5AI score0.00446EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2023/03/05 10:15 p.m.10 views

CVE-2023-27635

debmany in debian-goodies 0.88.1 allows attackers to execute arbitrary shell commands because of an eval call via a crafted .deb file. The path is shown to the user before execution...

7.8CVSS7.4AI score
Exploits0References1
OSV
OSV
added 2023/03/05 10:15 p.m.4 views

DEBIAN-CVE-2023-27635

debmany in debian-goodies 0.88.1 allows attackers to execute arbitrary shell commands because of an eval call via a crafted .deb file. The path is shown to the user before execution...

7.8CVSS7.8AI score0.00446EPSS
Exploits0References1
Rows per page
Query Builder