CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OPENSUSE Linux•added 2022/06/21 12:0 a.m.•44 views

Security update for neomutt (moderate)

openSUSE Security Update: Security update for neomutt Announcement ID: openSUSE-SU-2022:10020-1 Rating: moderate References: 1184787 1185705 Cross-References: CVE-2021-32055 CVE-2022-1328 CVSS scores: CVE-2021-32055 NVD : 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVE-2021-32055 SUSE: 5.3...

5.5CVSS6.5AI score0.02551EPSS

Exploits2References2

OSSF Malicious Packages•added 2022/06/20 8:18 p.m.•2 views

Malicious code in dropins_sdk_refactor (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e9e787eda579a54454ff7a74a1dd8a064c21afb3b9bb46355d5834f9b03ddbd8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

OSV•added 2022/02/27 3:29 a.m.•9 views

GSD-2022-1000600 Bluetooth: refactor malicious adv data check

Bluetooth: refactor malicious adv data check This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.5 by commit...

OSV•added 2022/02/18 10:0 p.m.•7 views

GSD-2022-1000240 Bluetooth: refactor malicious adv data check

OSV•added 2022/02/18 9:51 p.m.•12 views

GSD-2022-1000181 Bluetooth: refactor malicious adv data check

OSV•added 2022/02/18 9:43 p.m.•10 views

GSD-2022-1000120 Bluetooth: refactor malicious adv data check

OSV•added 2022/02/18 9:34 p.m.•6 views

GSD-2022-1000096 Bluetooth: refactor malicious adv data check

OSV•added 2022/02/18 9:32 p.m.•10 views

GSD-2022-1000078 Bluetooth: refactor malicious adv data check

OSV•added 2022/02/10 1:51 p.m.•2 views

CLSA-2022-1644501113 Fix CVE(s): CVE-2021-44142

SECURITY UPDATE: code exec via out-of-bounds read/write in vfsfruit - debian/patches/CVE-2021-44142.patch: refactor getentry function in order to add additional checks - CVE-2021-44142...

9CVSS7.1AI score0.74042EPSS

Exploits1References1

Code423n4•added 2021/05/17 12:0 a.m.•7 views

Unbounded loops

Handle paulius.eth Vulnerability details Impact Unbounded for loops may exceed gas limit. There are several places where iterations over dynamically sized arrays take place. For example, function removeNft iterates over all the NFTs and tries to find the one that is needed to be removed. However,...

7AI score

OPENSUSE Linux•added 2020/11/27 12:0 a.m.•37 views

Security update for ceph (moderate)

openSUSE Security Update: Security update for ceph Announcement ID: openSUSE-SU-2020:2057-1 Rating: moderate References: 1151612 1158257 1169134 1170487 1174591 1175061 1175240 1175781 1177843 Cross-References: CVE-2020-25660 Affected Products: openSUSE Leap 15.1 An update that solves one...

8.8CVSS7.4AI score0.01022EPSS

Exploits0References9

Tenable Nessus•added 2020/08/07 12:0 a.m.•279 views

SUSE SLED15 / SLES15 Security Update : java-11-openjdk (SUSE-SU-2020:2143-1)

This update for java-11-openjdk fixes the following issues : Update to upstream tag jdk-11.0.8+10 July 2020 CPU, bsc1174157 - Security fixes : + JDK-8230613: Better ASCII conversions + JDK-8231800: Better listing of arrays + JDK-8232014: Expand DTD support + JDK-8233234: Better Zip Naming +...

8.3CVSS6.6AI score0.05166EPSS

Exploits0References18

Hacker One•added 2020/05/14 6:46 p.m.•20 views

GitLab: Use of Ruby Forwardable module and runtime meta-programming may introduce vulnerabilities

I was digging through the gitlab-foss repository and noticed an interested pattern that seems to be adopted in a few places: the use of Forwardable with meta-programming over delegators, explicit attrreader methods or methodmissing. Heads up: the arbitrary file read vulnerability I demonstrate in...

7.4AI score

Oracle linux•added 2020/02/24 12:0 a.m.•52 views

Unbreakable Enterprise kernel security update

4.1.12-124.36.1.1 - KVM: nVMX: Check IO instruction VM-exit conditions Oliver Upton Orabug: 30847137 CVE-2020-2732 - KVM: nVMX: Refactor IO bitmap checks into helper function Oliver Upton Orabug: 30847137 CVE-2020-2732 - KVM: nVMX: Dont emulate instructions in guest mode Paolo Bonzini Orabug:...

6.8CVSS1.3AI score0.00927EPSS

Exploits1

UbuntuCve•added 2018/12/19 2:29 p.m.•24 views

CVE-2018-16883

sssd versions from 1.13.0 to before 2.0.0 did not properly restrict access to the infopipe according to the "alloweduids" configuration parameter. If sensitive information were stored in the user directory, this could be inadvertently disclosed to local attackers...

5.5CVSS6.4AI score0.00382EPSS

Kitploit•added 2018/04/06 8:39 p.m.•22 views

C5Scan - Vulnerability Scanner And Information Gatherer For The Concrete5 CMS

Vulnerability scanner and information gatherer for the Concrete5 CMS. Is a little out of date presently pending a refactor. concrete5 is an open-source content management system CMS for publishing content on the World Wide Web and intranets. concrete5 is designed for ease of use, for users with a...

8.1AI score

Kitploit•added 2016/11/26 2:22 p.m.•13 views

Faraday v2.2 - Collaborative Penetration Test and Vulnerability Management Platform

Faraday is the Integrated Multiuser Risk Environment you were looking for! It maps and leverages all the knowledge you generate in real time, letting you track and understand your audits. Our dashboard for CISOs and managers uncovers the impact and risk being assessed by the audit in real-time...

6.8AI score

Tenable Nessus•added 2016/07/29 12:0 a.m.•18 views

Fedora 23 : drupal7-views (2016-ed5f606dde)

Fixes Views - Less Critical - Access Bypass - SA-CONTRIB-2016-036 Changes since 7.x-3.13 : - Adding field handlers for statistics fields - \2200309 by helmo: Changed invalid placeholder from 'handler' to 'extender'. - \2708535 by stefan.r: Allow users to sort on a specific language, showing it...

5.5AI score

Tenable Nessus•added 2016/07/29 12:0 a.m.•15 views

Fedora 24 : drupal7-views (2016-fff25f75b4)

5.5AI score