Lucene search
K

10 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:52 a.m.6 views

SUSE CVE-2017-3226

Das U-Boot is a device bootloader that can read its configuration from an AES encrypted file. Devices that make use of Das U-Boot's AES-CBC encryption feature using environment encryption i.e., setting the configuration parameter CONFIGENVAES=y read environment variables from disk as the encrypte...

6.4CVSS6.5AI score0.00266EPSS
Exploits0References3
OSV
OSV
added 2021/05/26 6:0 a.m.1 views

UBUNTU-CVE-2021-22898

curl 7.7 through 7.76.1 suffers from an information disclosure when the -t command line option, known as CURLOPTTELNETOPTIONS in libcurl, is used to send variable=content pairs to TELNET servers. Due to a flaw in the option parser for sending NEWENV variables, libcurl could be made to pass on...

3.1CVSS6.8AI score0.04385EPSS
Exploits1References6
OSV
OSV
added 2018/07/24 3:29 p.m.4 views

UBUNTU-CVE-2017-3226

Das U-Boot is a device bootloader that can read its configuration from an AES encrypted file. Devices that make use of Das U-Boot's AES-CBC encryption feature using environment encryption i.e., setting the configuration parameter CONFIGENVAES=y read environment variables from disk as the encrypte...

6.4CVSS6.6AI score0.00266EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2010/06/03 12:0 a.m.35 views

FreeBSD : sudo -- Secure path vulnerability (d42e5b66-6ea0-11df-9c8d-00e0815b8da8)

Todd Miller reports : Most versions of the C library function getenv return the first instance of an environment variable to the caller. However, some programs, notably the GNU Bourne Again SHell bash, do their own environment parsing and may choose the last instance of a variable rather than the...

6.2CVSS5.5AI score0.00457EPSS
Exploits1References3
FreeBSD
FreeBSD
added 2010/06/02 12:0 a.m.21 views

sudo -- Secure path vulnerability

Todd Miller reports: Most versions of the C library function getenv return the first instance of an environment variable to the caller. However, some programs, notably the GNU Bourne Again SHell bash, do their own environment parsing and may choose the last instance of a variable rather than the...

6.2CVSS6.5AI score0.00457EPSS
Exploits1References1
securityvulns
securityvulns
added 2004/10/08 12:0 a.m.30 views

Multiple Cyrus-SASL bugs

Buffer overflow in digestmda5.c and during environment parsing. User supplied modules are loaded into suid application...

4.3AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2004/02/23 12:0 a.m.40 views

lbreakout2 buffer overflow

Buffer overflow on environment parsing...

4.9AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2003/11/10 12:0 a.m.27 views

libXcursor buffer overflow

Buffer overflow on HOME environment parsing...

4AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2003/06/13 12:0 a.m.28 views

AIX utilities multiple bugs

Buffer overflows in errpt -T option parsing, lsmcode environment parsing. Symbolic link bug in diagrpt...

4.2AI score
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2002/06/18 12:0 a.m.34 views

Buffer overflow in Interbase

Heap overflow on environment parsing...

3.7AI score
Exploits0References1Affected Software1
Rows per page
Query Builder