Lucene search
K

27 matches found

Snyk
Snyk
added 2026/03/03 12:26 a.m.3 views

Uncaught Exception

Overview Affected versions of this package are vulnerable to Uncaught Exception in the preview component when processing input with an extra command line argument such as -pp. An attacker can cause the application to crash by providing crafted input that triggers an integer overflow, leading to t...

6.9CVSS5.8AI score0.00255EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-3157

Malware in sbrugna...

7.8CVSS7.5AI score0.00426EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2024/11/14 10:44 p.m.22 views

ReDoS in giskard's transformation.py (GHSL-2024-324)

ReDoS in Giskard text perturbation detector A Remote Code Execution ReDoS vulnerability was discovered in Giskard component by the GitHub Security Lab team. When processing datasets with specific text patterns with Giskard detectors, this vulnerability could trigger exponential regex evaluation...

6.9CVSS7.7AI score0.00784EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/11/14 10:44 p.m.10 views

GHSA-PJWM-CR36-MWV3 ReDoS in giskard's transformation.py (GHSL-2024-324)

ReDoS in Giskard text perturbation detector A Remote Code Execution ReDoS vulnerability was discovered in Giskard component by the GitHub Security Lab team. When processing datasets with specific text patterns with Giskard detectors, this vulnerability could trigger exponential regex evaluation...

6.9CVSS6.8AI score0.00784EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2022/08/23 6:57 p.m.363 views

Exploit for Incorrect Authorization in Polkit_Project Polkit

XDR-LabSetup.sh Description This program is used in conjun...

7.8CVSS8.2AI score0.22193EPSS
Exploits37
Github Security Blog
Github Security Blog
added 2022/03/16 10:47 p.m.55 views

Cross-site Scripting in CKEditor4

Affected packages The vulnerability has been discovered in the core HTML processing module and may affect all plugins used by CKEditor 4. Impact A potential vulnerability has been discovered in CKEditor 4 HTML processing core module. The vulnerability allowed to inject malformed HTML bypassing...

5.4CVSS0.7AI score0.01162EPSS
Exploits0References10Affected Software1
OSV
OSV
added 2022/03/16 10:47 p.m.161 views

GHSA-4FC4-4P5G-6W89 Cross-site Scripting in CKEditor4

Affected packages The vulnerability has been discovered in the core HTML processing module and may affect all plugins used by CKEditor 4. Impact A potential vulnerability has been discovered in CKEditor 4 HTML processing core module. The vulnerability allowed to inject malformed HTML bypassing...

5.4CVSS6.1AI score0.02448EPSS
Exploits0References10
Mageia
Mageia
added 2021/07/08 10:43 p.m.65 views

Updated glib2.0 packages fix security vulnerabilities

Krzesimir Nowak discovered that GLib incorrectly handled certain large buffers. A remote attacker could use this issue to cause applications linked to GLib to crash, resulting in a denial of service, or possibly execute arbitrary code CVE-2021-27218. Kevin Backhouse discovered that GLib incorrect...

7.5CVSS8.2AI score0.0408EPSS
Exploits2References3
GithubExploit
GithubExploit
added 2021/06/19 8:15 a.m.286 views

Exploit for Incorrect Authorization in Polkit_Project Polkit

Polkit-exploit - CVE-2021-3560 Privilege escalation with polki...

7.8CVSS8.8AI score0.22193EPSS
Exploits37
GithubExploit
GithubExploit
added 2021/06/11 2:28 p.m.91 views

Exploit for Incorrect Authorization in Polkit_Project Polkit

polkadots CVE-2021-3560 Local PrivEsc Exploit This e...

7.8CVSS8.4AI score0.22193EPSS
Exploits37
OpenVAS
OpenVAS
added 2021/06/04 12:0 a.m.24 views

Ubuntu: Security Advisory (USN-4980-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.3AI score0.22193EPSS
Exploits37References4
OSV
OSV
added 2020/12/09 4:30 p.m.7 views

USN-4667-1 apt vulnerability

Kevin Backhouse discovered that APT incorrectly handled certain packages. A local attacker could possibly use this issue to cause APT to crash or stop responding, resulting in a denial of service...

5.7CVSS6.5AI score0.00377EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.28 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Aptdaemon vulnerabilities (USN-4664-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4664-1 advisory. Kevin Backhouse discovered that Aptdaemon incorrectly handled certain properties. A local attacker could use this issue to test f...

5.5CVSS5.2AI score0.00335EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/11/12 12:0 a.m.20 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Apport regression (USN-4171-6)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4171-6 advisory. USN-4171-1 fixed vulnerabilities in Apport. The update caused a regression when handling configuration files. This update fixes the proble...

5.6AI score
Exploits0References1
OpenVAS
OpenVAS
added 2020/06/17 12:0 a.m.24 views

Ubuntu: Security Advisory (USN-4398-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.1AI score0.00569EPSS
Exploits1References2
NVD
NVD
added 2020/02/08 5:15 a.m.19 views

CVE-2019-11484

Kevin Backhouse discovered an integer overflow in bsonensurespace, as used in whoopsie...

7.8CVSS6.9AI score0.00426EPSS
Exploits0References3
Prion
Prion
added 2020/02/08 5:15 a.m.27 views

Integer overflow

Kevin Backhouse discovered an integer overflow in bsonensurespace, as used in whoopsie...

4.6CVSS7.7AI score0.00426EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2020/02/08 4:50 a.m.234 views

CVE-2019-11484

CVE-2019-11484 : An integer overflow in bson_ensure_space, as used by the Ubuntu/Whoopsie component, could allow a local attacker to cause denial of service, or potentially execute code or leak information when sending crash reports. Public documentation consistently ties the issue to Ubuntu’s wh...

7.8CVSS6.8AI score0.00426EPSS
Exploits0References3Affected Software1
GoogleProjectZero
GoogleProjectZero
added 2019/12/10 12:0 a.m.85 views

SockPuppet: A Walkthrough of a Kernel Exploit for iOS 12.4

Posted by Ned Williamson, 20% on Project Zero Introduction I have a somewhat unique opportunity in this writeup to highlight my experience as an iOS research newcomer. Many high quality iOS kernel exploitation writeups have been published, but those often feature weaker initial primitives combine...

9.3CVSS8.2AI score0.2201EPSS
Exploits17
Tenable Nessus
Tenable Nessus
added 2019/10/30 12:0 a.m.32 views

Ubuntu 16.04 LTS / 18.04 LTS : Apport vulnerabilities (USN-4171-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4171-1 advisory. Kevin Backhouse discovered Apport would read its user-controlled settings file as the root user. This could be used by a local attacker to...

7.8CVSS5.8AI score0.00523EPSS
Exploits2References6
Rows per page
Query Builder