CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16966 matches found

Tenable Nessus•added 2023/02/21 12:0 a.m.•20 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : tar (SUSE-SU-2023:0463-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0463-1 advisory. - GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for ...

5.5CVSS6.6AI score0.04524EPSS

Exploits1References5

Tenable Nessus•added 2023/02/21 12:0 a.m.•12 views

Oracle Linux 8 : tar (ELSA-2023-0842)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-0842 advisory. - Fix CVE-2022-48303 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested for...

5.5CVSS6.7AI score0.04524EPSS

Exploits1References2

AlmaLinux•added 2023/02/21 12:0 a.m.•30 views

Moderate: tar security update

The GNU tar program can save multiple files in an archive and restore files from an archive. Security Fixes: tar: heap buffer overflow at fromheader in list.c via specially crafted checksum CVE-2022-48303 For more details about the security issues, including the impact, a CVSS score,...

5.5CVSS8.2AI score0.04524EPSS

Exploits1References4

OSV•added 2023/02/21 12:0 a.m.•21 views

ALSA-2023:0842 Moderate: tar security update

5.5CVSS6.5AI score0.04524EPSS

Exploits1References4

Tenable Nessus•added 2023/02/21 12:0 a.m.•13 views

AlmaLinux 8 : tar (ALSA-2023:0842)

The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2023:0842 advisory. - GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitation to change the flow of...

5.5CVSS6.6AI score0.04524EPSS

Exploits1References2

Tenable Nessus•added 2023/02/21 12:0 a.m.•20 views

RHEL 8 : tar (RHSA-2023:0842)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:0842 advisory. The GNU tar program can save multiple files in an archive and restore files from an archive. Security Fixes: tar: heap buffer overflow at fromheader ...

5.5CVSS7AI score0.04524EPSS

Exploits1References5

NVD•added 2023/02/20 11:15 p.m.•23 views

CVE-2022-48338

An issue was discovered in GNU Emacs through 28.2. In ruby-mode.el, the ruby-find-library-file function has a local command injection vulnerability. The ruby-find-library-file function is an interactive function, and bound to C-c C-f. Inside the function, the external command gem is called throug...

7.3CVSS8.4AI score0.01702EPSS

Exploits0References4

NVD•added 2023/02/20 11:15 p.m.•27 views

CVE-2022-48339

An issue was discovered in GNU Emacs through 28.2. htmlfontify.el has a command injection vulnerability. In the hfy-istext-command function, the parameter file and parameter srcdir come from external input, and parameters are not escaped. If a file name or directory name contains shell...

7.8CVSS9AI score0.01176EPSS

Exploits0References5

NVD•added 2023/02/20 11:15 p.m.•23 views

CVE-2022-48337

GNU Emacs through 28.2 allows attackers to execute commands via shell metacharacters in the name of a source-code file, because lib-src/etags.c uses the system C library function in its implementation of the etags program. For example, a victim may use the "etags -u " command suggested in the eta...

9.8CVSS9.6AI score0.01603EPSS

Exploits0References5

OSV•added 2023/02/20 11:15 p.m.•3 views

AZL-13681 CVE-2022-48338 affecting package emacs for versions less than 28.2-4

7.3CVSS5.7AI score0.01702EPSS

Exploits0References1

OSV•added 2023/02/20 11:15 p.m.•2 views

DEBIAN-CVE-2022-48338

7.3CVSS7.2AI score0.01702EPSS

Exploits0References1

OSV•added 2023/02/20 11:15 p.m.•2 views

DEBIAN-CVE-2022-48339