Lucene search
K

291 matches found

OSV
OSV
added 2020/08/19 11:21 a.m.7 views

SUSE-SU-2020:2275-1 Security update for python

This update for python fixes the following issues: - CVE-2019-20907: Avoid a possible infinite loop caused by specifically crafted tarballs bsc1174091...

7.5CVSS7.6AI score0.06304EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for php (EulerOS-SA-2019-1249)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.10564EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.40 views

Huawei EulerOS: Security Advisory for php (EulerOS-SA-2019-1247)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.10564EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.49 views

Huawei EulerOS: Security Advisory for php (EulerOS-SA-2019-1069)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.3AI score0.65116EPSS
Exploits7References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.37 views

Huawei EulerOS: Security Advisory for php (EulerOS-SA-2018-1310)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.10564EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.37 views

Huawei EulerOS: Security Advisory for php (EulerOS-SA-2018-1309)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.10564EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for libjpeg-turbo (EulerOS-SA-2018-1298)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.03162EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2020/01/07 9:49 a.m.21 views

CVE-2018-1000075

RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a infinite loop caused by negative size vulnerability in ruby gem package tar header that can...

7.5CVSS4.1AI score0.04809EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/12/03 12:0 a.m.33 views

SUSE SLED12 / SLES12 Security Update : libarchive (SUSE-SU-2019:3092-1)

This update for libarchive fixes the following issues : Security issues fixed : CVE-2018-1000877: Fixed a double free vulnerability in RAR decoder bsc1120653. CVE-2018-1000878: Fixed a Use-After-Free vulnerability in RAR decoder bsc1120654. CVE-2019-1000019: Fixed an Out-Of-Bounds Read...

8.8CVSS6.2AI score0.04575EPSS
Exploits2References31
Tenable Nessus
Tenable Nessus
added 2019/12/03 12:0 a.m.32 views

SUSE SLED15 / SLES15 Security Update : libarchive (SUSE-SU-2019:3093-1)

This update for libarchive fixes the following issues : Security issues fixed : CVE-2018-1000877: Fixed a double free vulnerability in RAR decoder bsc1120653. CVE-2018-1000878: Fixed a Use-After-Free vulnerability in RAR decoder bsc1120654. CVE-2019-1000019: Fixed an Out-Of-Bounds Read...

8.8CVSS6.3AI score0.04575EPSS
Exploits1References16
BDU FSTEC
BDU FSTEC
added 2019/11/25 12:0 a.m.3 views

The vulnerability of the streaming filter iconv (ext/iconv/iconv.c) in the PHP programming language interpreter allows a hacker to cause a service failure.

The vulnerability of the stream filter iconv ext/iconv/iconv.c in the PHP programming language is related to an infinite loop that can occur due to input errors. Exploiting this vulnerability allows a malicious actor to cause service failures remotely...

7.8CVSS6.7AI score0.10564EPSS
Exploits0References9Affected Software4
OSV
OSV
added 2019/09/27 7:15 p.m.6 views

CVE-2019-9376

In Account of Account.java, there is a possible boot loop due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: Android; Versions: Android-9, Android-8.0, Android-8.1;...

5.5CVSS6.4AI score0.00135EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/08/30 12:0 a.m.97 views

CentOS 7 : ruby (CESA-2019:2028)

An update for ruby is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

9.8CVSS7.2AI score0.10552EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2019/08/27 12:0 a.m.36 views

Scientific Linux Security Update : ruby on SL7.x x86_64 (20190806)

Security Fixes : - ruby: HTTP response splitting in WEBrick CVE-2017-17742 - ruby: DoS by large request in WEBrick CVE-2018-8777 - ruby: Buffer under-read in Stringunpack CVE-2018-8778 - ruby: Unintentional directory traversal by poisoned NULL byte in Dir CVE-2018-8780 - ruby: Tainted flags are n...

9.8CVSS7.2AI score0.10552EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.52 views

RHEL 7 : ruby (RHSA-2019:2028)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:2028 advisory. Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system...

9.8CVSS7.3AI score0.10552EPSS
Exploits0References34
RedHat Linux
RedHat Linux
added 2019/08/06 12:40 p.m.66 views

Moderate: Red Hat Security Advisory: ruby security update

An update for ruby is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

9.8CVSS7.1AI score0.10552EPSS
Exploits0References18
OSV
OSV
added 2019/03/23 10:42 a.m.8 views

OPENSUSE-SU-2019:0008-1 Security update for libraw

This update for libraw fixes the following issues: The following security vulnerabilities were addressed: - CVE-2018-5813: Fixed an error within the 'parseminolta' function dcraw/dcraw.c that could be exploited to trigger an infinite loop via a specially crafted file. This could be exploited to...

7.1CVSS6.7AI score0.02194EPSS
Exploits0References8
CNVD
CNVD
added 2019/02/28 12:0 a.m.3 views

F5 BIG-IP Infinite Loop Vulnerability

F5 BIG-IP is an application delivery platform from F5 USA that integrates network traffic management, application security management, load balancing and other functions. An infinite loop vulnerability exists in F5 BIG-IP. An attacker could exploit this vulnerability to cause the system to...

5.9CVSS6.8AI score0.01017EPSS
Exploits0References1
OSV
OSV
added 2019/01/15 10:15 p.m.10 views

MGASA-2019-0037 Updated libvncserver & x11vnc packages fix security vulnerabilities

A heap use-after-free vulnerability in the server code of the file transfer extension, which can result in remote code execution. This attack appears to be exploitable via network connectivity CVE-2018-6307. A heap use-after-free vulnerability in the server code of the file transfer extension,...

9.8CVSS9.1AI score0.26543EPSS
Exploits0References7
OSV
OSV
added 2019/01/02 12:54 p.m.7 views

SUSE-SU-2019:0005-1 Security update for libraw

This update for libraw fixes the following issues: Security issues fixed: The following security vulnerabilities were addressed: - CVE-2018-5813: Fixed an error within the 'parseminolta' function dcraw/dcraw.c that could be exploited to trigger an infinite loop via a specially crafted file. This...

7.1CVSS6.8AI score0.02194EPSS
Exploits0References8
Rows per page
Query Builder