Lucene search
K

15964 matches found

Github Security Blog
Github Security Blog
added 2025/09/04 8:1 p.m.4 views

podman kube play symlink traversal vulnerability

Impact The podman kube play command can overwrite host files when the kube file contains a ConfigMap or Secret volume mount and the volume already contains a symlink to a host file. This allows a malicious container to write to arbitrary files on the host BUT the attacker only controls the target...

8.1CVSS6.7AI score0.01008EPSS
Exploits0References34Affected Software2
Microsoft CVE
Microsoft CVE
added 2025/09/04 11:33 a.m.8 views

Path Traversal vulnerability in onnx.external_data_helper.save_external_data in ONNX 1.17.0 allows attackers to overwrite arbitrary files by supplying crafted external_data.location paths containing traversal sequences, bypassing intended directory restrictions.

...

8.8CVSS7AI score0.00578EPSS
Exploits1
Snyk
Snyk
added 2025/09/04 12:0 a.m.2 views

Directory Traversal

Overview Affected versions of this package are vulnerable to Directory Traversal via the podman kube play command. An attacker can cause sensitive data corruption and system crashes by supplying a malicious Kubernetes YAML file that results in overwriting critical host files. The attacker only...

8.1CVSS7.9AI score0.01008EPSS
Exploits0References2
Redos
Redos
added 2025/09/04 12:0 a.m.5 views

ROS-20250904-01

A vulnerability in the converter program that converts man pages to HTML man2html format is related to overwriting the the size parameter in the top fragment of the heap. Exploitation of the vulnerability could allow an attacker to perform an arbitrary writing to any memory location in the progra...

5.5CVSS5.3AI score0.00314EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2025/09/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2021-34338

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ming 0.4.8 has an out-of-bounds buffer overwrite issue in the function getName in decompiler.c file that causes a direct segmentation fault and leads to denial ...

6.5CVSS6.7AI score0.00942EPSS
Exploits1References2
Microsoft CVE
Microsoft CVE
added 2025/09/03 10:38 p.m.5 views

An integer overflow in ext4fs_read_symlink in Das U-Boot before 2025.01-rc1 occurs for zalloc (adding one to an le32 variable) via a crafted ext4 filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite.

...

7.1CVSS7AI score0.00365EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 10:4 p.m.6 views

Due to URL previews in the network panel of developer tools improperly storing URLs, query parameters could potentially be used to overwrite global objects in privileged code. This vulnerability affects Firefox < 110.

...

8.8CVSS7AI score0.00557EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 9:50 p.m.6 views

f2fs: fix potential deadloop in prepare_compress_overwrite()

...

5.5CVSS6.8AI score0.00102EPSS
Exploits0
GithubExploit
GithubExploit
added 2025/09/03 3:27 p.m.303 views

Exploit for Integer Overflow or Wraparound in Tesla Model_3_Firmware

CVE-2025-2082 – Function Pointer Overwrite PoV VCSEC-style...

7.5CVSS7.9AI score0.00331EPSS
Exploits2
Snyk
Snyk
added 2025/09/02 5:12 p.m.6 views

Directory Traversal

Overview mobsf is a Mobile Security Framework MobSF is an automated, all-in-one mobile application Android/iOS/Windows pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. Affected versions of this package are vulnerable to Directory...

7CVSS7.7AI score0.0056EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/09/01 7:3 p.m.1 views

CVE-2025-9810 TOCTOU race in Linenoise enables arbitrary file overwrite and permission changes

TOCTOU in linenoiseHistorySave in linenoise allows local attackers to overwrite arbitrary files and change permissions via a symlink race between fopen"w" on the history path and subsequent chmod on the same path...

6.8CVSS6.2AI score0.00099EPSS
Exploits0References2
CVE
CVE
added 2025/09/01 7:3 p.m.17 views

CVE-2025-9810

TOCTOU vulnerability CVE-2025-9810 in linenoiseHistorySave (linenoise) enables local attackers to overwrite files or change permissions via a symlink race between fopen("w") on the history path and a subsequent chmod() on the same path. Connected advisories confirm this CVE affects Redis-related ...

6.8CVSS6.2AI score0.00099EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2025/09/01 7:3 p.m.9 views

CVE-2025-9810 TOCTOU race in Linenoise enables arbitrary file overwrite and permission changes

TOCTOU in linenoiseHistorySave in linenoise allows local attackers to overwrite arbitrary files and change permissions via a symlink race between fopen"w" on the history path and subsequent chmod on the same path...

6.8CVSS0.00099EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/09/01 12:0 a.m.4 views

PT-2025-35507

Name of the Vulnerable Software and Affected Versions: linenoise affected versions not specified Description: A time-of-check to time-of-use TOCTOU issue exists in the linenoiseHistorySave function within the linenoise library. This flaw allows local attackers to overwrite arbitrary files and...

6.8CVSS5.9AI score0.00099EPSS
Exploits0References7
NVD
NVD
added 2025/08/30 2:15 p.m.2 views

CVE-2010-10016

BS.Player version 2.57 build 1051 contains a vulnerability in its playlist import functionality. When processing .m3u files, the application fails to properly validate the length of playlist entries, resulting in a buffer overflow condition. This flaw occurs during parsing of long URLs embedded i...

10CVSS0.00698EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2025/08/30 1:48 p.m.3 views

CVE-2011-10032

Sunway ForceControl version 6.1 SP3 and earlier contains a stack-based buffer overflow vulnerability in the SNMP NetDBServer service, which listens on TCP port 2001. The flaw is triggered when the service receives a specially crafted packet using opcode 0x57 with an overly long payload. Due to...

9.3CVSS6.6AI score0.0127EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/08/30 1:44 p.m.1 views

CVE-2010-10016 BS.Player 2.57 Buffer Overflow via M3U Playlist Import

BS.Player version 2.57 build 1051 contains a vulnerability in its playlist import functionality. When processing .m3u files, the application fails to properly validate the length of playlist entries, resulting in a buffer overflow condition. This flaw occurs during parsing of long URLs embedded i...

10CVSS6.8AI score0.00698EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2019-3681

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A External Control of File Name or Path vulnerability in osc of SUSE Linux Enterprise Module for Development Tools 15, SUSE Linux Enterprise Software Developmen...

9.8CVSS6.9AI score0.01424EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-53906

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vim is an open source, command line text editor. Prior to version 9.1.1551, a path traversal issue in Vim's zip.vim plugin can allow overwriting of arbitrary...

4.1CVSS7AI score0.00731EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/08/30 12:0 a.m.5 views

PT-2025-35369

Name of the Vulnerable Software and Affected Versions: WM Downloader version 3.1.2.2 Description: WM Downloader version 3.1.2.2 is susceptible to a buffer overflow when handling a crafted .m3u playlist file. Insufficient input length validation allows overwriting of structured exception handler S...

8.4CVSS7.5AI score0.00304EPSS
Exploits0References7
Rows per page
Query Builder