Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-4523

Malware in sbrugna...

6.5CVSS6.5AI score0.00889EPSS
Exploits0References2
Prion
Prion
added 2022/10/13 3:15 a.m.23 views

Input validation

In Linaro Automated Validation Architecture LAVA before 2022.10, there is dynamic code execution in lavaserver/lavatable.py. Due to improper input sanitization, an anonymous user can force the lava-server-gunicorn service to execute user-provided code on the server...

6.5CVSS8.8AI score0.01259EPSS
Exploits1References4Affected Software2
OSV
OSV
added 2018/06/19 5:29 a.m.2 views

DEBIAN-CVE-2018-12563

An issue was discovered in Linaro LAVA before 2018.5.post1. Because of support for file: URLs, a user can force lava-server-gunicorn to download any file from the filesystem if it's readable by lavaserver and valid yaml...

6.5CVSS6.9AI score0.00889EPSS
Exploits0References1
CNVD
CNVD
added 2018/06/19 12:0 a.m.5 views

Linaro LAVA Information Disclosure Vulnerability

Linaro LAVA is an automated verification system. The system is primarily used to test the deployment of device systems based on ARM cores. A security vulnerability exists in Linaro LAVA versions prior to 2018.5.post1. An attacker can exploit this vulnerability by forging an HTTP request to force...

6.5CVSS6.3AI score0.01504EPSS
Exploits0References1
CNVD
CNVD
added 2018/06/19 12:0 a.m.4 views

Linaro LAVA Arbitrary File Download Vulnerability

Linaro LAVA is an automated verification system. The system is primarily used to test the deployment of device systems based on ARM cores. A security vulnerability exists in Linaro LAVA versions prior to 2018.5.post1, which stems from the program's support for file: URLs.An attacker could use thi...

6.5CVSS6.5AI score0.00889EPSS
Exploits0References1
Rows per page
Query Builder