Lucene search
K

15 matches found

Redos
Redos
added 2026/04/29 12:0 a.m.7 views

ROS-20260429-73-0017

A vulnerability in the PostgreSQL database management system is related to incorrect array indexing. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code in the context of the current user using specially crafted queries...

8.8CVSS6AI score0.01079EPSS
Exploits0
Redos
Redos
added 2026/04/29 12:0 a.m.8 views

ROS-20260429-73-0020

A vulnerability in the PostgreSQL database management system is related to incorrect array indexing. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code in the context of the current user using specially crafted queries...

8.8CVSS6AI score0.01079EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/06/09 12:0 a.m.5 views

Vulnerability of the bnxt_rx_pkt() function in the drivers/net/ethernet/broadcom/bnxt/bnxt.c module – A Linux kernel Ethernet network adapter driver support mechanism that allows an attacker to access protected information or cause service failure.

Vulnerability of the bnxtrxpkt function in the drivers/net/ethernet/broadcom/bnxt/bnxt.c module – The Linux kernel’s Ethernet network adapter support driver has vulnerabilities related to indexing mechanisms. Exploiting this vulnerability could allow attackers to access protected information or...

5.5CVSS6.7AI score0.0025EPSS
Exploits0References17Affected Software1
Github Security Blog
Github Security Blog
added 2023/04/11 3:41 p.m.19 views

govuk_tech_docs vulnerable to unescaped HTML on search results page

Impact Pages that are indexed in search results have their entire contents indexed, including any HTML code snippets. These HTML snippets would appear in the search results unsanitised, so it was possible to render arbitrary HTML or run arbitrary scripts. This is a low risk security issue; to...

6.1CVSS6AI score0.005EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/30 12:0 a.m.9 views

The vulnerability of the SBIOS component in NVIDIA’s DGX A100 IpSecDxe server allows a attacker to execute arbitrary code, cause service failures, or compromise the integrity of the protected information.

The vulnerability of the SBIOS component in the NVIDIA DGX A100 IpSecDxe server is related to unvalidated array indexing. Exploiting this vulnerability can allow an attacker to execute arbitrary code, cause service failures, or compromise the integrity of the protected information...

6.4CVSS6.9AI score0.00212EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2022/01/27 2:8 p.m.10 views

OpenJDK: Array indexing issues in LIRGenerator (Hotspot, 8272014)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allow...

5.3CVSS7.4AI score0.02755EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/01/24 1:3 p.m.4 views

OpenJDK: Array indexing issues in LIRGenerator (Hotspot, 8272014)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allow...

5.3CVSS7.4AI score0.02755EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/01/24 11:39 a.m.5 views

OpenJDK: Array indexing issues in LIRGenerator (Hotspot, 8272014)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allow...

5.3CVSS7.4AI score0.02755EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/12/15 3:6 p.m.7 views

kernel: buffer uses out of index in ext3/4 filesystem

A memory out-of-bounds read flaw was found in the Linux kernel's ext3/ext4 file system, in the way it accesses a directory with broken indexing. This flaw allows a local user to crash the system if the directory exists. The highest threat from this vulnerability is to system availability...

5.5CVSS7.1AI score0.00356EPSS
Exploits0References6
OSV
OSV
added 2020/10/14 2:12 a.m.6 views

USN-4579-1 linux, linux-aws, linux-kvm, linux-lts-xenial, linux-raspi2, linux-snapdragon vulnerabilities

Hadar Manor discovered that the DCCP protocol implementation in the Linux kernel improperly handled socket reuse, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2020-16119 Wen Xu discover...

7.8CVSS6.9AI score0.00509EPSS
Exploits2References5
OSV
OSV
added 2015/08/13 2:59 p.m.4 views

UBUNTU-CVE-2015-5685

The lazybdecode function in BitTorrent DHT bootstrap server bootstrap-dht allows remote attackers to execute arbitrary code via a crafted packet, related to "improper indexing."...

7.5CVSS6.2AI score0.05511EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/08/13 12:0 a.m.36 views

Firefox < 40 Multiple Vulnerabilities

The version of Firefox installed on the remote Windows host is prior to 40. It is, therefore, affected by the following vulnerabilities : - Multiple memory corruption issues exist that allow a remote attacker, via a specially crafted web page, to corrupt memory and potentially execute arbitrary...

10CVSS7.5AI score0.09027EPSS
Exploits1References32
Tenable Nessus
Tenable Nessus
added 2014/12/05 12:0 a.m.56 views

Squid 3.x < 3.4.8 Multiple Vulnerabilities

According to its banner, the version of Squid running on the remote host is 3.x prior to 3.4.8. Therefore, it may be affected by the following vulnerabilities : - A off-by-one overflow flaw exists within the SNMP processing component. By using a specially crafted UDP SNMP request, a remote attack...

6.8CVSS7.9AI score0.76064EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2014/10/21 12:0 a.m.38 views

PHP 5.4.x < 5.4.34 / 5.5.x < 5.5.18 / 5.6.x < 5.6.2 Multiple Vulnerabilities

Binary data 8563.prm...

7.5CVSS7.9AI score0.28862EPSS
Exploits3References4
Zero Day Initiative
Zero Day Initiative
added 2013/06/27 12:0 a.m.50 views

Oracle Java AWT Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific vulnerability is an array indexing flaw...

10CVSS4.9AI score0.22988EPSS
Exploits4References1
Rows per page
Query Builder