Lucene search
K

117 matches found

Cvelist
Cvelist
added 2021/11/19 6:53 p.m.55 views

CVE-2021-40391

An out-of-bounds write vulnerability exists in the drill format T-code tool number functionality of Gerbv 2.7.0, dev commit b5f1eacd, and the forked version of Gerbv commit 71493260. A specially-crafted drill file can lead to code execution. An attacker can provide a malicious file to trigger thi...

10CVSS9.8AI score0.02894EPSS
Exploits1References3
CVE
CVE
added 2021/11/19 6:53 p.m.73 views

CVE-2021-40391

Gerbv 2.7.0, dev (commit b5f1eacd) and forks are affected by an out-of-bounds write in the drill format T-code tool number functionality, enabling code execution via a crafted drill file. Connected notes (e.g., Mageia MGASA-2022-0260 and related advisories) confirm this CVE-2021-40391 issue and d...

10CVSS9.4AI score0.02894EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVE
added 2021/11/19 6:53 p.m.17 views

CVE-2021-40391

An out-of-bounds write vulnerability exists in the drill format T-code tool number functionality of Gerbv 2.7.0, dev commit b5f1eacd, and the forked version of Gerbv commit 71493260. A specially-crafted drill file can lead to code execution. An attacker can provide a malicious file to trigger thi...

10CVSS9.6AI score0.02894EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2021/11/19 12:0 a.m.7 views

PT-2021-22891 · Gerbv +3 · Gerbv +3

Name of the Vulnerable Software and Affected Versions: Gerbv version 2.7.0 Gerbv dev commit b5f1eacd Gerbv forked version commit 71493260 Description: An out-of-bounds write issue exists in the drill format T-code tool number functionality. A specially-crafted drill file can lead to code executio...

10CVSS7.8AI score0.03064EPSS
Exploits8References52
Veracode
Veracode
added 2021/11/11 8:18 a.m.22 views

Remote Code Execution (RCE)

gerbv is vulnerable to remote code execution. The vulnerability exists due to a boundary error when processing untrusted input in the drill format T-code tool number functionality...

9.8CVSS3.5AI score0.02894EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2021/11/04 12:0 a.m.5 views

Gerbv 缓冲区错误漏洞

Gerbv is a Gerber file Rs-274X only viewer. It is used to view Rs-274X Gerber files, Excellon drill files and Pick-N-Place files. A security vulnerability exists in Gerbv that stems from an out-of-bounds write vulnerability in the drill format T-code utility numbering function, which can be...

10CVSS8.4AI score0.02894EPSS
Exploits1References8
Talos
Talos
added 2021/11/04 12:0 a.m.23 views

Gerbv drill format T-code tool number out-of-bounds write vulnerability

Summary An out-of-bounds write vulnerability exists in the drill format T-code tool number functionality of Gerbv 2.7.0, dev commit b5f1eacd, and the forked version of Gerbv commit 71493260. A specially-crafted drill file can lead to code execution. An attacker can provide a malicious file to...

10CVSS9.4AI score0.02894EPSS
Exploits1
Veracode
Veracode
added 2021/07/27 5:16 a.m.15 views

Cross-Site Scripting (XSS)

Apache drill-java-exec is vulnerable to cross-site scripting XSS. An attacker is able to inject and execute arbitrary Javascript in a user's browser via the queryId...

4AI score
Exploits0
OSV
OSV
added 2020/06/18 2:44 p.m.1 views

GHSA-J823-4QCH-3RGM Deserialization of untrusted data in Jackson Databind

FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.xalan.lib.sql.JNDIConnectionPool aka apache/drill...

8.1CVSS7.1AI score0.08607EPSS
Exploits0References16
Veracode
Veracode
added 2020/06/15 5:12 a.m.36 views

Remote Code Execution

jackson-databind is vulnerable to remote code execution. It was possible to use the apache-drill gadget type as a serialization gadget through polymorphic typing and execute arbitrary code on the system...

8.1CVSS4.6AI score0.08607EPSS
Exploits0References11Affected Software16
NVD
NVD
added 2020/06/14 9:15 p.m.20 views

CVE-2020-14060

FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.xalan.lib.sql.JNDIConnectionPool aka apache/drill...

8.1CVSS0.08607EPSS
Exploits0References9
OSV
OSV
added 2020/06/14 9:15 p.m.25 views

CVE-2020-14060

FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.xalan.lib.sql.JNDIConnectionPool aka apache/drill...

8.1CVSS6.5AI score
Exploits0References9
OSV
OSV
added 2020/06/14 9:15 p.m.2 views

DEBIAN-CVE-2020-14060

FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.xalan.lib.sql.JNDIConnectionPool aka apache/drill...

8.1CVSS7.1AI score0.08607EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2020/06/14 9:15 p.m.42 views

CVE-2020-14060

FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.xalan.lib.sql.JNDIConnectionPool aka apache/drill...

8.1CVSS6.8AI score0.08607EPSS
Exploits0References4
Prion
Prion
added 2020/06/14 9:15 p.m.27 views

Design/Logic Flaw

FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.xalan.lib.sql.JNDIConnectionPool aka apache/drill...

6.8CVSS8.6AI score0.08607EPSS
Exploits0References9Affected Software11
Cvelist
Cvelist
added 2020/06/14 8:46 p.m.37 views

CVE-2020-14060

FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.xalan.lib.sql.JNDIConnectionPool aka apache/drill...

8.7AI score0.08607EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2020/06/14 8:46 p.m.32 views

CVE-2020-14060

FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.xalan.lib.sql.JNDIConnectionPool aka apache/drill...

8.1CVSS7.7AI score0.08607EPSS
Exploits0
Veracode
Veracode
added 2019/06/03 1:58 p.m.4 views

Cross-Site Scripting (XSS)

apache-drill is vulnerable to cross-site scripting XSS. The inputValues parameter in populateAndShowAlert function is not properly sanitized, allowing a remote attacker attacker to pass a malicious input to execute arbitrary Javascript code on the victims browser...

6.7AI score
Exploits0
Veracode
Veracode
added 2018/06/07 7:1 a.m.16 views

Insecure Cookie Handling

drill-java-exec is vulnerable to insecure cookie handling attacks. The vulnerability exists due to the lack of httpOnly flag in the response cookies, allowing the cookies to be stolen by a third party website...

6.5AI score
Exploits0
Veracode
Veracode
added 2018/04/05 3:21 a.m.10 views

Information Disclosure

Apache Drill is vulnerable to information disclosure. The application logs passwords in plain text when connecting a database, allowing a malicious user with access to the logs access to sensitive information...

6.1AI score
Exploits0
Rows per page
Query Builder