Lucene search
K

14 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/07 6:19 p.m.5 views

CVE-2026-42284

GitPython is a python library used to interact with Git repositories. Prior to version 3.1.47, clone validates multioptions as the original list, then executes shlex.split" ".joinmultioptions. A string like "--branch main --config core.hooksPath=/x" passes validation starts with --branch, but aft...

9.8CVSS5.7AI score0.00571EPSS
Exploits1References3Affected Software1
UbuntuCve
UbuntuCve
added 2026/03/20 3:16 p.m.4 views

CVE-2026-4519

The webbrowser.open API would accept leading dashes in the URL which could be handled as command line options for certain web browsers. New behavior rejects leading dashes. Users are recommended to sanitize URLs prior to passing to webbrowser.open...

7CVSS5.8AI score0.00308EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/17 5:29 a.m.7 views

EUVD-2025-34870

In NetX Duo before 6.4.4, the networking support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in nxicmpv6validateoptions when handling a packet with ICMP6 options...

6.9CVSS6.3AI score0.00374EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-38047

Malicious code in bioql PyPI...

8.5CVSS6.6AI score0.0025EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/24 12:0 a.m.2 views

Unspecified Vulnerability in Oracle MySQL Server (CNVD-2025-17363)

Oracle MySQL Server is a relational database from Oracle Corporation. A security vulnerability exists in Oracle MySQL Server that originates from improper handling of the Server: Options component and can be exploited by an attacker to cause a denial of service...

4.9CVSS6.1AI score0.00605EPSS
Exploits0References1
OSV
OSV
added 2024/12/29 12:15 p.m.3 views

UBUNTU-CVE-2024-56745

In the Linux kernel, the following vulnerability has been resolved: PCI: Fix resetmethodstore memory leak In resetmethodstore, a string is allocated via kstrndup and assigned to the local "options". options is then used in with strsep to find spaces: while name = strsep&options, " " != NULL If...

5.5CVSS6.2AI score0.00208EPSS
Exploits0References32
OSV
OSV
added 2024/07/11 4:15 p.m.5 views

CVE-2024-39522

An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of the system. The Junos OS Evolved CLI doesn't properly handle...

8.5CVSS5.8AI score0.0025EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2024/06/30 2:0 p.m.5 views

In LuaJIT through 2.0.5 as used in Moonjit before 2.1.2 and other products debug.getinfo has a type confusion issue that leads to arbitrary memory write or read operations because certain cases involving valid stack levels and > options are mishandled. NOTE: The LuaJIT project owner states that the debug libary is unsafe by definition and that this is not a vulnerability. When LuaJIT was originally developed the expectation was that the entire debug library had no security guarantees and thus it made no sense to assign CVEs. However not all users of later LuaJIT derivatives share this perspective

...

9.1CVSS7.8AI score0.0133EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2023/02/07 6:57 a.m.306 views

CVE-2023-25136

A flaw was found in the OpenSSH server sshd, which introduced a double-free vulnerability during options.kexalgorithms handling. An unauthenticated attacker can trigger the double-free in the default configuration...

6.5CVSS6.6AI score0.89955EPSS
Exploits10References7
CNNVD
CNNVD
added 2021/03/15 12:0 a.m.6 views

libnbd 安全漏洞

libnbd is a library for editing NBD Network Block Device clients. A security vulnerability exists in libnbd 1.7.3, which stems from the fact that a failure of the nbd unlocked opt go in ilb opt.c assertion may result in a denial of service...

4CVSS4.8AI score0.01114EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2014/06/12 12:0 a.m.36 views

ISC BIND 9 EDNS Processing DoS

According to its self-reported version number, the remote installation of BIND is affected by a denial of service vulnerability. The issue exists due to an error in 'libdns' that fails to properly handle Extension Mechanisms for DNS EDNS options. Note that Nessus has not tested for this issue but...

5CVSS7.3AI score0.06978EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2012/09/25 12:0 a.m.2 views

PT-2012-4803 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.0 Description: A race condition exists in the IP implementation of the Linux kernel, potentially allowing remote attackers to cause a denial of service. This can be achieved by sending packets to an applicatio...

7.1CVSS6AI score0.0285EPSS
Exploits8References43
OSV
OSV
added 2005/06/17 4:0 a.m.3 views

DEBIAN-CVE-2005-2023

The sendpinentryenvironment function in asshelp.c in gpg2 on SUSE Linux 9.3 does not properly handle certain options, which can prevent pinentry from being found and causes S/MIME signing to fail...

10CVSS6.9AI score0.02277EPSS
Exploits0References1
exploitpack
exploitpack
added 2004/12/22 12:0 a.m.11 views

Snort 2.12.2 - DecodeTCPOptions Remote Denial of Service (1)

Snort 2.12.2 - DecodeTCPOptions Remote Denial of Service 1 // source: https://www.securityfocus.com/bid/12084/info Snort is reported prone to a remote denial of service vulnerability. The vulnerability is reported to exist in the DecodeTCPOptions function of 'decode.c', and is as a result of a...

7.4AI score
Exploits0
Rows per page
Query Builder