Lucene search
K

310 matches found

CVE
CVE
added 2022/11/23 12:0 a.m.110 views

CVE-2009-1143

CVE-2009-1143 : Open-vm-tools 2009.03.18-154848 contains a realpath race condition in mount.vmhgfs (hgfsmounter) that allows local users to bypass mounting-share access restrictions via a symlink attack. The context indicates a local-privilege-like risk with high impact to confidentiality, integr...

7CVSS6.7AI score0.00247EPSS
Exploits0References2Affected Software1
Microsoft CVE
Microsoft CVE
added 2022/08/30 7:0 a.m.8 views

A flaw was found in glibc. The realpath() function can mistakenly return an unexpected value potentially leading to information leakage and disclosure of sensitive data.

...

7.5CVSS6.8AI score0.01444EPSS
Exploits0
OSV
OSV
added 2022/08/24 4:15 p.m.38 views

CVE-2021-3998

A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...

7.5CVSS6.6AI score0.01444EPSS
Exploits0References8
NVD
NVD
added 2022/08/24 4:15 p.m.15 views

CVE-2021-3998

A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...

7.5CVSS0.01444EPSS
Exploits0References8
OSV
OSV
added 2022/08/24 4:15 p.m.2 views

DEBIAN-CVE-2021-3998

A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...

7.5CVSS6.2AI score0.01444EPSS
Exploits0References1
OSV
OSV
added 2022/08/24 4:15 p.m.6 views

AZL-10675 CVE-2021-3998 affecting package glibc for versions less than 2.35-7

A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...

7.5CVSS6.8AI score0.01444EPSS
Exploits0References1
Prion
Prion
added 2022/08/24 4:15 p.m.28 views

Design/Logic Flaw

A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...

5CVSS8.1AI score0.01444EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2022/08/24 12:0 a.m.28 views

CVE-2021-3998

A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...

8.4AI score0.01444EPSS
Exploits0References8
CVE
CVE
added 2022/08/24 12:0 a.m.283 views

CVE-2021-3998

CVE-2021-3998 is a glibc flaw where the realpath() function may return an unexpected value, potentially leaking sensitive information. The connected IBM/enterprise bulletins summarize the vulnerability as an information disclosure issue tied to the realpath() implementation, indicating a local-au...

7.5CVSS8.1AI score0.01444EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2022/08/24 12:0 a.m.58 views

CVE-2021-3998

A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...

7.5CVSS6AI score0.01444EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2022/08/24 12:0 a.m.5 views

CVE-2021-3998

A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...

8.3AI score0.01444EPSS
Exploits0References8
BDU FSTEC
BDU FSTEC
added 2022/03/31 12:0 a.m.7 views

The vulnerability of the realpath() function in the glibc system library, which allows a hacker to access confidential information

The vulnerability of the realpath function in the glibc system library is related to memory release errors. Exploiting this vulnerability can allow a remote attacker to gain access to confidential information...

6.5CVSS6.8AI score0.01444EPSS
Exploits0References4Affected Software3
OSV
OSV
added 2022/03/01 3:9 p.m.6 views

USN-5310-1 glibc vulnerabilities

Jan Engelhardt, Tavis Ormandy, and others discovered that the GNU C Library iconv feature incorrectly handled certain input sequences. An attacker could possibly use this issue to cause the GNU C Library to hang or crash, resulting in a denial of service. This issue only affected Ubuntu 18.04 LTS...

9.8CVSS7AI score0.05223EPSS
Exploits5References13
UbuntuCve
UbuntuCve
added 2022/02/01 12:0 a.m.146 views

CVE-2021-3998

A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...

7.5CVSS6.9AI score0.01444EPSS
Exploits0References2
OSV
OSV
added 2022/02/01 12:0 a.m.7 views

UBUNTU-CVE-2021-3998

A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...

7.5CVSS6.6AI score0.01444EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEV
added 2022/01/26 12:0 a.m.4 views

VulnCheck KEV: CVE-2018-1000001

In glibc 2.26 and earlier there is confusion in the usage of getcwd by realpath which can be used to write before the destination buffer leading to a buffer underflow and potential code execution...

7.8CVSS7.4AI score0.13614EPSS
Exploits9References1
RedhatCVE
RedhatCVE
added 2022/01/11 5:24 p.m.41 views

CVE-2021-3998

A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product...

7.5CVSS1.1AI score0.01444EPSS
Exploits0References4
Gitee
Gitee
added 2021/09/23 6:1 p.m.3 views

Exploit for Out-of-bounds Write in Gnu Glibc

PoC exploit for CVE-2018-1000001, a buffer underflow in glibc realpath that allows local privilege escalation. The target product/service is glibc, a dependency of various Linux distributions including Debian and Ubuntu. The vulnerability class/vector is LPE Local Privilege Escalation. The probab...

7.8CVSS8.9AI score0.13614EPSS
Exploits9
RedHat Linux
RedHat Linux
added 2021/02/16 2:25 p.m.2 views

libuv: buffer overflow in realpath

A flaw has been found in libuv. The realpath implementation performs an incorrect calculation when allocating a buffer, leading to a potential buffer overflow. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

7.8CVSS7.7AI score0.00714EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/02/15 6:28 p.m.3 views

libuv: buffer overflow in realpath

A flaw has been found in libuv. The realpath implementation performs an incorrect calculation when allocating a buffer, leading to a potential buffer overflow. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

7.8CVSS7.7AI score0.00714EPSS
Exploits0References4
Rows per page
Query Builder