Lucene search
K

242 matches found

Gitee
Gitee
added 2025/07/27 3:27 a.m.89 views

easy-linux-pwn

This is a set of Linux binary exploitation tasks for beginners on various architectures. The tasks are designed to be solved using a suggested approach, even if there are other easier ways. The tasks assume a dynamically linked libc with a known binary and require the use of ROP Return-Oriented...

6.6AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 1:18 a.m.6 views

CVE-2022-30962

Jenkins Global Variable String Parameter Plugin 1.2 and earlier does not escape the name and description of Global Variable String parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

5.4CVSS5.4AI score0.007EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:32 a.m.6 views

CVE-2019-2247

Possibility of double free issue while running multiple instances of smp2p test because of proper protection is missing while using global variable in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice &...

7.8CVSS7.8AI score0.00198EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/05/13 8:29 a.m.6 views

X.Org: Xwayland: Use-after-free of the root cursor

A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X server as a global variable. If a client frees the root cursor, the internal reference points to freed memory and causes a use-after-free...

7.8CVSS5.7AI score0.00359EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/04/24 12:0 a.m.5 views

picklescan 安全漏洞

picklescan is a security scanning program by the individual developer Matthieu Maitre. A security vulnerability exists in picklescan versions prior to 0.0.25, which stems from an insecure global variable that could lead to a data leak...

7.5CVSS6.3AI score0.00189EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/03/27 2:49 p.m.12 views

CVE-2025-30358 Mesop Class Pollution vulnerability leads to DoS and Jailbreak attacks

Mesop is a Python-based UI framework that allows users to build web applications. A class pollution vulnerability in Mesop prior to version 0.14.1 allows attackers to overwrite global variables and class attributes in certain Mesop modules during runtime. This vulnerability could directly lead to...

8.1CVSS8.3AI score0.00629EPSS
Exploits0References2
OSV
OSV
added 2025/03/27 2:49 p.m.15 views

CVE-2025-30358 Mesop Class Pollution vulnerability leads to DoS and Jailbreak attacks

Mesop is a Python-based UI framework that allows users to build web applications. A class pollution vulnerability in Mesop prior to version 0.14.1 allows attackers to overwrite global variables and class attributes in certain Mesop modules during runtime. This vulnerability could directly lead to...

8.1CVSS7.5AI score0.00629EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/03/17 3:17 a.m.6 views

X.Org: Xwayland: Use-after-free of the root cursor

A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X server as a global variable. If a client frees the root cursor, the internal reference points to freed memory and causes a use-after-free...

7.8CVSS5.7AI score0.00359EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/03/17 1:49 a.m.8 views

X.Org: Xwayland: Use-after-free of the root cursor

A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X server as a global variable. If a client frees the root cursor, the internal reference points to freed memory and causes a use-after-free...

7.8CVSS5.7AI score0.00359EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/03/10 12:50 p.m.4 views

X.Org: Xwayland: Use-after-free of the root cursor

A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X server as a global variable. If a client frees the root cursor, the internal reference points to freed memory and causes a use-after-free...

7.8CVSS5.7AI score0.00359EPSS
Exploits0References4
NVD
NVD
added 2025/02/27 2:15 a.m.10 views

CVE-2024-57985

In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: scm: Cleanup global 'scm' on probe failures If SCM driver fails the probe, it should not leave global 'scm' variable assigned, because external users of this driver will assume the probe finished successfully. For...

5.5CVSS0.00191EPSS
Exploits0References3
OSV
OSV
added 2025/02/27 2:15 a.m.2 views

DEBIAN-CVE-2024-57985

In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: scm: Cleanup global 'scm' on probe failures If SCM driver fails the probe, it should not leave global 'scm' variable assigned, because external users of this driver will assume the probe finished successfully. For...

5.5CVSS5.6AI score0.00191EPSS
Exploits0References1
OSV
OSV
added 2025/02/27 2:15 a.m.3 views

UBUNTU-CVE-2024-57985

In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: scm: Cleanup global 'scm' on probe failures If SCM driver fails the probe, it should not leave global 'scm' variable assigned, because external users of this driver will assume the probe finished successfully. For...

5.5CVSS6.5AI score0.00191EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/02/27 2:7 a.m.14 views

CVE-2024-57985 firmware: qcom: scm: Cleanup global '__scm' on probe failures

In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: scm: Cleanup global 'scm' on probe failures If SCM driver fails the probe, it should not leave global 'scm' variable assigned, because external users of this driver will assume the probe finished successfully. For...

0.00191EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/02/27 2:7 a.m.7 views

CVE-2024-57985

In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: scm: Cleanup global 'scm' on probe failures If SCM driver fails the probe, it should not leave global 'scm' variable assigned, because external users of this driver will assume the probe finished successfully. For...

5.5CVSS5.6AI score0.00191EPSS
Exploits0
OSV
OSV
added 2025/02/27 2:7 a.m.6 views

CVE-2024-57985 firmware: qcom: scm: Cleanup global '__scm' on probe failures

In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: scm: Cleanup global 'scm' on probe failures If SCM driver fails the probe, it should not leave global 'scm' variable assigned, because external users of this driver will assume the probe finished successfully. For...

5.5CVSS6AI score0.00191EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.4 views

picklescan 安全漏洞

picklescan is a security scanning program by the individual developer Matthieu Maitre. A security vulnerability exists in versions of picklescan prior to 0.0.21, which stems from not treating pip as an insecure global variable, which could lead to a malicious model introducing a malicious PyPI...

9.8CVSS8.7AI score0.01592EPSS
Exploits2References5
OSV
OSV
added 2025/02/25 3:0 p.m.2 views

UBUNTU-CVE-2025-26594

A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X server as a global variable. If a client frees the root cursor, the internal reference points to freed memory and causes a use-after-free...

7.8CVSS7.1AI score0.00359EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2024/10/28 4:31 p.m.20 views

CVE-2024-47827

A flaw was found in Argo Workflows. Due to a race condition in a global variable, the Argo Workflows controller can crash on command by any user with access to execute a workflow, which can lead to a denial of service...

4.8CVSS5.3AI score0.00345EPSS
Exploits0References7
NVD
NVD
added 2024/10/28 4:15 p.m.26 views

CVE-2024-47827

Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. Due to a race condition in a global variable in 3.6.0-rc1, the argo workflows controller can be made to crash on-command by any user with access to execute a workflow. This vulnerabili...

5.7CVSS0.00345EPSS
Exploits0References4
Rows per page
Query Builder