Lucene search
K

156 matches found

RedhatCVE
RedhatCVE
added 2025/05/21 7:59 p.m.8 views

CVE-2008-7264

The ftpQUIT function in ftpserver.py in pyftpdlib before 0.5.0 allows remote authenticated users to cause a denial of service file descriptor exhaustion and daemon outage by sending a QUIT command during a disallowed data-transfer attempt...

4CVSS6.6AI score0.01375EPSS
Exploits1References1
NVD
NVD
added 2024/12/08 11:15 p.m.49 views

CVE-2024-12344

A vulnerability, which was classified as critical, was found in TP-Link VN020 F3vT TTV6.2.1021. This affects an unknown part of the component FTP USER Command Handler. The manipulation leads to memory corruption. It is possible to initiate the attack remotely. The exploit has been disclosed to th...

9.8CVSS0.01842EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2024/04/21 12:0 a.m.58 views

RHEL 5 : httpd and httpd22 (RHSA-2010:0011)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2010:0011 advisory. - httpd: NULL pointer defer in modproxyftp caused by crafted EPSV and PASV reply CVE-2009-3094 - httpd: modproxyftp FTP command injection vi...

9.8CVSS7.4AI score0.87264EPSS
Exploits16References10
UbuntuCve
UbuntuCve
added 2023/12/22 3:15 a.m.32 views

CVE-2023-51713

makeftpcmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics...

7.5CVSS7.1AI score0.04249EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2023/11/15 9:29 p.m.3 views

dotnet: Arbitrary File Write and Deletion Vulnerability: FormatFtpCommand

A vulnerability was found in FormatFtpCommand in the .NET package that may result in a CRLF injection arbitrary file write and deletion...

9.8CVSS5.8AI score0.12512EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/11/15 9:28 p.m.3 views

dotnet: Arbitrary File Write and Deletion Vulnerability: FormatFtpCommand

A vulnerability was found in FormatFtpCommand in the .NET package that may result in a CRLF injection arbitrary file write and deletion...

9.8CVSS5.8AI score0.12512EPSS
Exploits0References4
OSV
OSV
added 2023/11/15 2:51 p.m.5 views

USN-6480-1 dotnet6, dotnet7, dotnet8 vulnerabilities

Barry Dorrans discovered that .NET did not properly implement certain security features for Blazor server forms. An attacker could possibly use this issue to bypass validation, which could trigger unintended actions. CVE-2023-36558 Piotr Bazydlo discovered that .NET did not properly handle...

9.8CVSS7.3AI score0.12512EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/06/29 12:0 a.m.18 views

Schneider Electric Modicon Premium, Modicon Quantum, Modicon M340, and Modicon BMXNOR0200 Stack-Based Buffer Overflow (CVE-2018-7240)

A vulnerability exists in Schneider Electric's Modicon Quantum in all versions of the communication modules which could allow arbitrary code execution. An FTP command used to upgrade the firmware of the module can be misused to cause a denial of service, or in extreme cases, to load a malicious...

8.8CVSS8.1AI score0.03305EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/07/22 12:0 a.m.248 views

RHEL 7 : java-1.8.0-openjdk (RHSA-2021:2845)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:2845 advisory. The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security...

7.5CVSS7AI score0.04238EPSS
Exploits0References10
Rockylinux
Rockylinux
added 2021/07/21 7:28 a.m.43 views

java-11-openjdk security update

An update is available for java-11-openjdk. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The java-11-openjdk packages provide the OpenJDK 11 Java Runtime...

7.5CVSS7.1AI score0.04238EPSS
Exploits0
OSV
OSV
added 2021/07/21 7:28 a.m.39 views

ALSA-2021:2781 Important: java-11-openjdk security update

The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fixes: OpenJDK: Incorrect comparison during range check elimination Hotspot, 8264066 CVE-2021-2388 OpenJDK: FTP PASV command response can cause FtpClient to...

7.5CVSS7AI score0.04238EPSS
Exploits0References3
Packet Storm
Packet Storm
added 2021/07/13 12:0 a.m.381 views

Backdoor.Win32.Surila.j Denial Of Service

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/b1cec4b806c71c82bbd9002bdaf21d1fC.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Surila.j Vulnerability: Remote Denial of Service Description: The malware listens on...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/05/03 12:0 a.m.254 views

CentOS 8 : firefox (CESA-2021:1360)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2021:1360 advisory. - Mozilla: More internal network hosts could have been probed by a malicious webpage CVE-2021-23961 - Mozilla: Out of bound write due to lazy...

8.8CVSS8.2AI score0.01764EPSS
Exploits1References9
Mageia
Mageia
added 2021/04/29 9:41 a.m.64 views

Updated thunderbird packages fix security vulnerabilities

More internal network hosts could have been probed by a malicious webpage: Further techniques that built on the slipstream research combined with a malicious webpage could have exposed both an internal network's hosts as well as services running on the user's local machine CVE-2021-23961. Out of...

8.8CVSS0.2AI score0.01764EPSS
Exploits2References4
Mageia
Mageia
added 2021/04/29 9:41 a.m.57 views

Updated firefox packages fix security vulnerabilities

More internal network hosts could have been probed by a malicious webpage: Further techniques that built on the slipstream research combined with a malicious webpage could have exposed both an internal network's hosts as well as services running on the user's local machine CVE-2021-23961. Out of...

8.8CVSS0.5AI score0.01764EPSS
Exploits1References4
OSV
OSV
added 2021/04/29 9:41 a.m.17 views

MGASA-2021-0199 Updated firefox packages fix security vulnerabilities

More internal network hosts could have been probed by a malicious webpage: Further techniques that built on the slipstream research combined with a malicious webpage could have exposed both an internal network's hosts as well as services running on the user's local machine CVE-2021-23961. Out of...

8.8CVSS8.2AI score0.01764EPSS
Exploits1References5
OSV
OSV
added 2021/04/27 9:47 a.m.10 views

SUSE-SU-2021:1325-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: - Firefox was updated to 78.10.0 ESR bsc1184960 CVE-2021-23994: Out of bound write due to lazy initialization CVE-2021-23995: Use-after-free in Responsive Design Mode CVE-2021-23998: Secure Lock icon could have been spoofed CVE-2021-23961...

8.8CVSS7.8AI score0.01764EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2021/04/27 12:0 a.m.69 views

CentOS 8 : thunderbird (CESA-2021:1353)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2021:1353 advisory. - Mozilla: More internal network hosts could have been probed by a malicious webpage CVE-2021-23961 - Mozilla: Out of bound write due to lazy...

8.8CVSS7.9AI score0.01764EPSS
Exploits2References10
Tenable Nessus
Tenable Nessus
added 2021/04/27 12:0 a.m.52 views

SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2021:1307-1)

This update for MozillaFirefox fixes the following issues : Firefox was updated to 78.10.0 ESR bsc1184960 - CVE-2021-23994: Out of bound write due to lazy initialization - CVE-2021-23995: Use-after-free in Responsive Design Mode - CVE-2021-23998: Secure Lock icon could have been spoofed -...

8.8CVSS8.1AI score0.01764EPSS
Exploits1References18
Tenable Nessus
Tenable Nessus
added 2021/04/27 12:0 a.m.141 views

Oracle Linux 7 : firefox (ELSA-2021-1363)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2021-1363 advisory. 78.10.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs....

8.8CVSS8.1AI score0.01764EPSS
Exploits1References9
Rows per page
Query Builder