Lucene search
K

7 matches found

OSV
OSV
added 2026/02/17 9:38 a.m.4 views

SUSE-SU-2026:20487-1 Security update for gpg2

This update for gpg2 fixes the following issues: - CVE-2026-24882: stack-based buffer overflow in TPM2 PKDECRYPT for TPM-backed RSA and ECC keys bsc1257396. - gpg.fail/filename: GnuPG Accepts Path Separators and Path Traversals in Literal Data "Filename" Field bsc1256389...

8.4CVSS6.2AI score0.00421EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/02/12 12:0 a.m.3 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : gpg2 (SUSE-SU-2026:0434-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0434-1 advisory. Security fixes: - CVE-2026-24882: Fixed stack-based buffer overflow in TPM2 PKDECRYPT for TPM-backed RSA...

8.4CVSS6.1AI score0.00421EPSS
Exploits1References5
OSV
OSV
added 2026/01/29 4:14 p.m.3 views

OPENSUSE-SU-2026:20136-1 Security update for gpg2

This update for gpg2 fixes the following issues: - CVE-2026-24882: stack-based buffer overflow in TPM2 PKDECRYPT for TPM-backed RSA and ECC keys bsc1257396. - CVE-2026-24883: denial of service due to long signature packet length causing parsesignature to return success with sig-data set to a NULL...

8.4CVSS6.2AI score0.00447EPSS
Exploits1References5
OSV
OSV
added 2026/01/29 4:9 p.m.4 views

SUSE-SU-2026:20179-1 Security update for gpg2

This update for gpg2 fixes the following issues: - CVE-2026-24882: stack-based buffer overflow in TPM2 PKDECRYPT for TPM-backed RSA and ECC keys bsc1257396. - CVE-2026-24883: denial of service due to long signature packet length causing parsesignature to return success with sig-data set to a NULL...

8.4CVSS6.2AI score0.00447EPSS
Exploits1References6
NVD
NVD
added 2021/06/18 11:15 a.m.22 views

CVE-2021-33576

An issue was discovered in Cleo LexiCom 5.5.0.0. Within the AS2 message, the sender can specify a filename. This filename can include path-traversal characters, allowing the file to be written to an arbitrary location on disk...

9.8CVSS0.01549EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2018/01/23 1:29 a.m.1 views

CVE-2017-16604

This vulnerability allows remote attackers to overwrite arbitrary files on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw...

6.5CVSS6AI score0.02264EPSS
Exploits0References2
OSV
OSV
added 2016/01/27 8:0 a.m.10 views

CURL-CVE-2016-0754 remote filename path traversal in curl tool for Windows

curl does not sanitize colons in a remote filename that is used as the local filename. This may lead to a vulnerability on systems where the colon is a special path character. Currently Windows is the only OS where this vulnerability applies. curl offers command line options --remote-name also...

5.3CVSS5.3AI score0.01119EPSS
Exploits0
Rows per page
Query Builder