Lucene search
K

60 matches found

RedHat Linux
RedHat Linux
added 2022/11/21 12:58 p.m.4 views

Mozilla: Symlinks may resolve to partially uninitialized buffers

The Mozilla Foundation Security Advisory describes this flaw as: When resolving a symlink such as file:///proc/self/fd/1, an error message may be produced where the symlink was resolved to a string containing unitialized memory in the buffer...

8.8CVSS7.2AI score0.00789EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/11/21 12:40 p.m.5 views

Mozilla: Symlinks may resolve to partially uninitialized buffers

The Mozilla Foundation Security Advisory describes this flaw as: When resolving a symlink such as file:///proc/self/fd/1, an error message may be produced where the symlink was resolved to a string containing unitialized memory in the buffer...

8.8CVSS7.2AI score0.00789EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/11/21 11:33 a.m.5 views

Mozilla: Symlinks may resolve to partially uninitialized buffers

The Mozilla Foundation Security Advisory describes this flaw as: When resolving a symlink such as file:///proc/self/fd/1, an error message may be produced where the symlink was resolved to a string containing unitialized memory in the buffer...

8.8CVSS7.2AI score0.00789EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/11/21 11:29 a.m.5 views

Mozilla: Symlinks may resolve to partially uninitialized buffers

The Mozilla Foundation Security Advisory describes this flaw as: When resolving a symlink such as file:///proc/self/fd/1, an error message may be produced where the symlink was resolved to a string containing unitialized memory in the buffer...

8.8CVSS7.2AI score0.00789EPSS
Exploits0References6
NVD
NVD
added 2022/09/15 4:15 p.m.23 views

CVE-2022-1798

A path traversal vulnerability in KubeVirt versions up to 0.56 and 0.55.1 on all platforms allows a user able to configure the kubevirt to read arbitrary files on the host filesystem which are publicly readable or which are readable for UID 107 or GID 107. /proc/self/ is not accessible...

8.7CVSS0.00359EPSS
Exploits1References1
OSV
OSV
added 2022/09/15 4:15 p.m.9 views

AZL-10974 CVE-2022-1798 affecting package kubevirt for versions less than 0.55.1-1

A path traversal vulnerability in KubeVirt versions up to 0.56 and 0.55.1 on all platforms allows a user able to configure the kubevirt to read arbitrary files on the host filesystem which are publicly readable or which are readable for UID 107 or GID 107. /proc/self/ is not accessible...

6.5CVSS7.1AI score0.00359EPSS
Exploits1References1
GitLab Advisory Database
GitLab Advisory Database
added 2022/09/15 12:0 a.m.21 views

KubeVirt vulnerable to arbitrary file read on host

As part of a Kubevirt audit performed by NCC group, a finding dealing with systemic lack of path sanitization which leads to a path traversal was identified. Google tested the exploitability of the paths in the audit report and identified that when combined with another vulnerability one of the...

1AI score
Exploits0References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/08/04 10:15 a.m.4 views

CVE-2022-2653

With this vulnerability an attacker can read many sensitive files like configuration files, or the /proc/self/environ file, that contains the environment variable used by the web server that includes database credentials. If the web server user is root, an attacker will be able to read any file i...

7.1CVSS6.8AI score0.00785EPSS
Exploits1References3
Prion
Prion
added 2022/08/04 10:15 a.m.18 views

Design/Logic Flaw

With this vulnerability an attacker can read many sensitive files like configuration files, or the /proc/self/environ file, that contains the environment variable used by the web server that includes database credentials. If the web server user is root, an attacker will be able to read any file i...

4CVSS6.3AI score0.00785EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/08/04 9:35 a.m.19 views

CVE-2022-2653 Path Traversal in plankanban/planka

With this vulnerability an attacker can read many sensitive files like configuration files, or the /proc/self/environ file, that contains the environment variable used by the web server that includes database credentials. If the web server user is root, an attacker will be able to read any file i...

7.1CVSS6.5AI score0.00785EPSS
Exploits1References2
CVE
CVE
added 2022/08/04 9:35 a.m.73 views

CVE-2022-2653

The CVE-2022-2653 entry maps to a path traversal vulnerability in plankanban/planka (planka) that enables an attacker to read sensitive files such as configuration files and /proc/self/environ when the web server runs as root. Affected component is the web-accessible endpoint that uses a filename...

7.1CVSS6.4AI score0.00785EPSS
Exploits1References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/07/15 12:0 a.m.30 views

EulerOS Virtualization 2.10.1 : util-linux (EulerOS-SA-2022-2069)

According to the versions of the util-linux package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the util-linux chfn and chsh utilities when compiled with Readline support. The Readline library uses an...

5.5CVSS6.2AI score0.00634EPSS
Exploits4References4
0day.today
0day.today
added 2022/03/31 12:0 a.m.221 views

COMPIE CMS Leado Local File Include Vulnerability

Exploit Title: COMPIE CMS Leado Local File Include Google Dork: /index.php?pathAjax= Date: 3/30/2022 Exploit Author: iranhack Security Team Vendor Homepage: iranhack.com Software Link: http://www.compie.co.il/ Version: V.1.0 Tested on: KaliLinux,windows 10 Local File Include...

0.2AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2022/02/10 12:0 a.m.7 views

The vulnerability of the /proc/self/setgroups utility for managing shadow accounts relates to the improper assignment of permissions to files, allowing an attacker to increase their privileges.

The vulnerability of the /proc/self/setgroups utility for managing shadow accounts is related to the improper assignment of permissions to files. Exploiting this vulnerability can allow a remote attacker to increase their privileges...

5.3CVSS6.3AI score0.01596EPSS
Exploits1References7Affected Software7
Gitee
Gitee
added 2022/01/26 10:17 p.m.13 views

Exploit for OS Command Injection in Docker

The repository is a proof-of-concept PoC exploit for CVE-2019-5736, a container escape vulnerability in Docker. The PoC is written in Go and is designed to overwrite the /bin/sh binary in a container with a malicious interpreter path, allowing for code execution on the host system. The exploit...

9.3CVSS7.9AI score0.9857EPSS
Exploits33
Gitee
Gitee
added 2021/12/22 4:58 p.m.13 views

Exploit for OS Command Injection in Docker

CVE-2019-5736 is a container escape vulnerability in Docker. The PoC Proof of Concept exploit for this vulnerability is available in the repository sekla/CVE-2019-5736-PoC. The exploit works by overwriting and executing the host system's runc binary from within the container. The exploit has two...

9.3CVSS7.7AI score0.9857EPSS
Exploits33
Microsoft CVE
Microsoft CVE
added 2021/07/16 12:0 a.m.7 views

runc through 1.0-rc6 as used in Docker before 18.09.2 and other products allows attackers to overwrite the host runc binary (and consequently obtain host root access) by leveraging the ability to execute a command as root within one of these types of containers: (1) a new container with an attacker-controlled image or (2) an existing container to which the attacker previously had write access that can be attached with docker exec. This occurs because of file-descriptor mishandling related to /proc/self/exe.

...

9.3CVSS7AI score0.9857EPSS
Exploits33
RedhatCVE
RedhatCVE
added 2021/02/25 6:35 p.m.36 views

CVE-2020-28588

A flaw read uninitialized values in the Linux kernel syscall implementation on 32 bit-systems was found in the way user reading /proc/self/syscall. A local user could use this flaw to read three 64 bits uninitialized values, but cannot control which values. The highest threat from this...

5.5CVSS0.8AI score0.011EPSS
Exploits1References4
Talos
Talos
added 2020/07/31 12:0 a.m.45 views

Microsoft Azure Sphere Normal World application /proc/self/mem unsigned code execution vulnerability

Summary A code execution vulnerability exists in the normal world’s signed code execution functionality of Microsoft Azure Sphere 20.05. A specially crafted shellcode can cause a process’ non-writable memory to be written. An attacker can execute a shellcode that modifies the program at runtime v...

7.3CVSS7.4AI score0.01614EPSS
Exploits1
Kitploit
Kitploit
added 2020/02/24 11:30 a.m.268 views

Liffy - Local File Inclusion Exploitation Tool

LFI Exploitation tool A little python tool to perform Local file inclusion. Liffy v2.0 is the improved version of liffy which was originally created by rotlogix/liffy. The latter is no longer available and the former hasn't seen any development for a long time. Main feature data:// for code...

7.8AI score
Exploits0References5
Rows per page
Query Builder