Lucene search
K

16992 matches found

Cvelist
Cvelist
added 2019/08/16 3:36 a.m.24 views

CVE-2018-20969

doedscript in pch.c in GNU patch through 2.7.6 does not block strings beginning with a ! character. NOTE: this is the same commit as for CVE-2019-13638, but the ! syntax is specific to ed, and is unrelated to a shell metacharacter...

7.5AI score0.02706EPSS
Exploits1References9
Debian CVE
Debian CVE
added 2019/08/16 3:36 a.m.38 views

CVE-2018-20969

doedscript in pch.c in GNU patch through 2.7.6 does not block strings beginning with a ! character. NOTE: this is the same commit as for CVE-2019-13638, but the ! syntax is specific to ed, and is unrelated to a shell metacharacter...

9.3CVSS7.9AI score0.02706EPSS
Exploits1
CVE
CVE
added 2019/08/16 3:36 a.m.793 views

CVE-2018-20969

CVE-2018-20969 / CVE-2019-13638 (GNU patch) : The vulnerability resides in do_ed_script in pch.c of GNU patch up to version 2.7.6, where do_ed_script does not block strings starting with a ! character when using ed-style payloads. This is tied to an upstream commit shared with CVE-2019-13638 and ...

9.3CVSS7.4AI score0.02706EPSS
Exploits1References9Affected Software1
Gentoo Linux
Gentoo Linux
added 2019/08/15 12:0 a.m.49 views

GNU Wget: Arbitrary code execution

Background GNU Wget is a free software package for retrieving files using HTTP, HTTPS and FTP, the most widely-used Internet protocols. Description A buffer overflow was discovered in GNU’s Wget. Impact An attacker could possibly execute arbitrary code with the privileges of the process or cause ...

9.8CVSS10AI score0.05141EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2019/08/15 12:0 a.m.34 views

glibc: Multiple vulnerabilities

Background glibc is a package that contains the GNU C library. Description Multiple vulnerabilities have been discovered in glibc. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known workarou...

7.5CVSS7.5AI score0.05532EPSS
Exploits1
OpenVAS
OpenVAS
added 2019/08/15 12:0 a.m.22 views

WordPress Meta Box Plugin < 4.16.2 File Upload Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description scriptoid"1.3.6.1.4.1.25623.1.0.112628";...

7.5CVSS7.6AI score0.01415EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2019/08/15 12:0 a.m.33 views

WordPress Photo Gallery Plugin < 1.5.25 LFI Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description scriptoid"1.3.6.1.4.1.25623.1.0.112629";...

4.9CVSS5.2AI score0.0443EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2019/08/13 11:51 a.m.27 views

CVE-2019-1010180

GNU gdb All versions is affected by: Buffer Overflow - Out of bound memory access. The impact is: Deny of Service, Memory Disclosure, and Possible Code Execution. The component is: The main gdb module. The attack vector is: Open an ELF for debugging. The fixed version is: Not fixed yet...

7.8CVSS5.8AI score0.02628EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2019/08/13 5:21 a.m.32 views

CVE-2019-14444

applyrelocations in readelf.c in GNU Binutils 2.32 contains an integer overflow that allows attackers to trigger a write access violation in byteputlittleendian function in elfcomm.c via an ELF file, as demonstrated by readelf...

5.5CVSS7.1AI score0.01481EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.41 views

NewStart CGSL MAIN 4.05 : tar Multiple Vulnerabilities (NS-SA-2019-0153)

The remote NewStart CGSL host, running version MAIN 4.05, has tar packages installed that are affected by multiple vulnerabilities: - Buffer overflow in tar 1.14 through 1.15.90 allows user- assisted attackers to cause a denial of service application crash and possibly execute code via unspecifie...

7.5CVSS8AI score0.15155EPSS
Exploits8References7
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.27 views

NewStart CGSL MAIN 4.05 : patch Vulnerability (NS-SA-2019-0138)

The remote NewStart CGSL host, running version MAIN 4.05, has patch packages installed that are affected by a vulnerability: - GNU Patch version 2.7.6 contains an input validation vulnerability when processing patch files, specifically the EDITORPROGRAM invocation using ed can result in code...

7.8CVSS7.7AI score0.0556EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.29 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : patch Vulnerability (NS-SA-2019-0029)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has patch packages installed that are affected by a vulnerability: - GNU Patch version 2.7.6 contains an input validation vulnerability when processing patch files, specifically the EDITORPROGRAM invocation using ed can result ...

7.8CVSS7.7AI score0.0556EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.28 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : wget Vulnerability (NS-SA-2019-0082)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has wget packages installed that are affected by a vulnerability: - Buffer overflow in GNU Wget 1.20.1 and earlier allows remote attackers to cause a denial-of-service DoS or may execute an arbitrary code via unspecified vector...

9.8CVSS8.7AI score0.05141EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.36 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : binutils Multiple Vulnerabilities (NS-SA-2019-0060)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has binutils packages installed that are affected by multiple vulnerabilities: - The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service...

7.8CVSS6.8AI score0.03467EPSS
Exploits5References12
OpenVAS
OpenVAS
added 2019/08/12 12:0 a.m.59 views

Fedora Update for kernel-headers FEDORA-2019-e37c348348

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.6CVSS7.2AI score0.04521EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2019/08/08 12:0 a.m.22 views

Yara <= 3.8.1 Denial of Service (DoS) Vulnerability

Yara is prone to a denial of service DoS vulnerability. Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software...

6.5CVSS5.5AI score0.01079EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2019/08/07 12:0 a.m.65 views

WordPress Popup Builder Plugin < 3.45 SQL Injection Vulnerability

The WordPress plugin Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it...

9.8CVSS9.7AI score0.02727EPSS
Exploits0References2
CNVD
CNVD
added 2019/08/06 12:0 a.m.2 views

GnuCOBOL Buffer Overflow Vulnerability (CNVD-2019-26279)

GnuCOBOL is a COBOL language compiler. A buffer overflow vulnerability exists in the 'cbencodeprogramid' function of the cobc/typeck.c file in GnuCOBOL version 2.2. The vulnerability stems from a networked system or product performing operations in memory without properly validating data...

7.8CVSS7.3AI score0.0104EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2019/08/05 12:0 a.m.8 views

Fedora Update for java-11-openjdk FEDORA-2019-56a658c60c

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
OSV
OSV
added 2019/08/02 9:15 p.m.2 views

UBUNTU-CVE-2019-14541

GnuCOBOL 2.2 has a stack-based buffer overflow in cbencodeprogramid in cobc/typeck.c via crafted COBOL source code...

7.8CVSS7.5AI score0.0104EPSS
Exploits1References3
Rows per page
Query Builder