Lucene search
K

359 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-29205

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.01414EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-22164

Malicious code in bioql PyPI...

6.4CVSS7AI score0.0076EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-53728

Malicious code in bioql PyPI...

6.5CVSS6.7AI score0.00385EPSS
Exploits0References1
CVE
CVE
added 2025/09/19 6:51 p.m.33 views

CVE-2025-34190

Vasion Print (PrinterLogic) PrinterInstallerClientService is affected by an authentication bypass through LD_PRELOAD hooking of geteuid, enabling local privilege escalation. Affected versions include Virtual Appliance Host prior to 25.1.102 and Application (macOS/Linux client deployments) prior t...

8.5CVSS7AI score0.00403EPSS
Exploits1References4Affected Software2
OpenVAS
OpenVAS
added 2025/09/17 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2025-2160)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.7AI score0.00557EPSS
Exploits1References2
Microsoft CVE
Microsoft CVE
added 2025/09/04 3:26 a.m.8 views

envvars (aka envvars-std) in the Apache HTTP Server before 2.4.2 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse DSO in the current working directory during execution of apachectl.

...

6.9CVSS7AI score0.00946EPSS
Exploits4
OpenVAS
OpenVAS
added 2025/09/03 12:0 a.m.6 views

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2025-1888)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.7AI score0.00557EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/09/03 12:0 a.m.8 views

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2025-1906)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.7AI score0.00557EPSS
Exploits1References2
Fedora
Fedora
added 2025/08/02 4:18 a.m.8 views

[SECURITY] Fedora 42 Update: binutils-2.44-6.fc42

Binutils is a collection of binary utilities, including ar for creating, modifying and extracting from archives, as a family of GNU assemblers, gprof for displaying call graph profile data, ld the GNU linker, nm for listing symbols from object files, objcopy for copying and translating object...

5.5CVSS6.9AI score0.00225EPSS
Exploits2
Snyk
Snyk
added 2025/07/17 7:42 p.m.2 views

Symlink Attack

Overview Affected versions of this package are vulnerable to Symlink Attack though incorrect handling of the OCI hook createContainer during container initialization when update-ldcache is used. An attacker can modify data or disrupt service by supplying a specially crafted container image that...

8.5CVSS7.5AI score0.00679EPSS
Exploits0References2
Snyk
Snyk
added 2025/07/17 7:8 p.m.1 views

Untrusted Search Path

Overview Affected versions of this package are vulnerable to Untrusted Search Path though incorrect handling of the OCI hook createContainer during container initialization when enable-cuda-compat is used. An attacker with low privileges in a container can run arbitrary code with higher privilege...

9CVSS7.4AI score0.02541EPSS
Exploits4References2
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.5 views

Astra Linux – Vulnerability in glibc

A vulnerable environment variable in the Untrusted LDLIBRARYPATH setting in the GNU C Library, versions 2.27 to 2.38, allows attackers to control the loading of dynamically shared libraries in statically compiled setuid binaries that call dlopen including internal dlopen calls after setlocale or...

7.8CVSS6.9AI score0.00557EPSS
Exploits1References3
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.8 views

Astra Linux – Vulnerability in binutils

A vulnerability, classified as critical, was discovered in GNU Binutils 2.43. The affected function is bfdelfrelocsymboldeletedp in the file bfd/elflink.c of the ld component. This manipulation leads to memory corruption. The attack can be launched remotely. The complexity of the attack is...

5.1CVSS5.3AI score0.00542EPSS
Exploits1References3
Amazon
Amazon
added 2025/06/10 12:0 a.m.5 views

Important: glibc

Issue Overview: Untrusted LDLIBRARYPATH environment variable vulnerability in the GNU C Library version 2.27 to 2.38 allows attacker controlled loading of dynamically shared library in statically compiled setuid binaries that call dlopen including internal dlopen calls after setlocale or calls to...

7.8CVSS6.9AI score0.00557EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2025/06/09 9:11 a.m.11 views

glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH

A flaw was found in the glibc library. A statically linked setuid binary that calls dlopen, including internal dlopen calls after setlocale or calls to NSS functions such as getaddrinfo, may incorrectly search LDLIBRARYPATH to determine which library to load, allowing a local attacker to load...

7.8CVSS7.3AI score0.00557EPSS
Exploits1References8
SUSE Linux
SUSE Linux
added 2025/06/04 7:33 a.m.3 views

Security update for glibc

This update for glibc fixes the following issues: CVE-2025-4802: possible execution of attacker controlled code when statically linked setuid binaries using dlopen search for libraries to load in LDLIBRARYPATH bsc1243317. Patch Instructions: To install this SUSE update use the SUSE recommended...

9.4CVSS7.6AI score0.00557EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/05/30 4:10 p.m.3 views

Security update for glibc

This update for glibc fixes the following issues: Security issues fixed: CVE-2025-4802: possible execution of attacker controlled code when statically linked setuid binaries using dlopen search for libraries to load in LDLIBRARYPATH bsc1243317. Other issues fixed: Multi-threaded application hang...

9.4CVSS7.5AI score0.00557EPSS
Exploits1References6
OSV
OSV
added 2025/05/27 1:15 p.m.13 views

AZL-61994 CVE-2025-5244 affecting package binutils for versions less than 2.41-6

A vulnerability was found in GNU Binutils up to 2.44. It has been rated as critical. Affected by this issue is the function elfgcsweep of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. An attack has to be approached locally. The exploit has been disclosed...

5.3CVSS5.4AI score0.00235EPSS
Exploits1References1
OSV
OSV
added 2025/05/27 1:15 p.m.8 views

AZL-61982 CVE-2025-5244 affecting package binutils for versions less than 2.37-15

A vulnerability was found in GNU Binutils up to 2.44. It has been rated as critical. Affected by this issue is the function elfgcsweep of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. An attack has to be approached locally. The exploit has been disclosed...

5.3CVSS5.5AI score0.00235EPSS
Exploits1References1
OSV
OSV
added 2025/05/27 1:15 p.m.3 views

DEBIAN-CVE-2025-5244

A vulnerability was found in GNU Binutils up to 2.44. It has been rated as critical. Affected by this issue is the function elfgcsweep of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. An attack has to be approached locally. The exploit has been disclosed...

7.8CVSS5.1AI score0.00235EPSS
Exploits1References1
Rows per page
Query Builder