Lucene search
K

29 matches found

Fedora
Fedora
added 2026/05/01 3:6 a.m.23 views

[SECURITY] Fedora 43 Update: pyp2spec-0.14.1-1.fc43

pyp2spec is a tech preview. It is a tool generating Fedora RPM spec files for Python distributions. It utilizes the benefits of pyproject-rpm-macros...

5.3AI score
Exploits0
Fedora
Fedora
added 2026/05/01 1:27 a.m.20 views

[SECURITY] Fedora 42 Update: pyp2spec-0.14.1-1.fc42

pyp2spec is a tech preview. It is a tool generating Fedora RPM spec files for Python distributions. It utilizes the benefits of pyproject-rpm-macros...

5.3AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 11:23 a.m.11 views

CVE-2021-31414

The unofficial vscode-rpm-spec extension before 0.3.2 for Visual Studio Code allows remote code execution via a crafted workspace configuration...

9.8CVSS8AI score0.02414EPSS
Exploits0References1
OSV
OSV
added 2026/01/06 4:3 p.m.5 views

SUSE-SU-2026:0043-1 Security update for qemu

This update for qemu fixes the following issues: Security issues fixed: - CVE-2023-1544: out-of-bounds read in VMWare's paravirtual RDMA device operations can be exploited through a malicious guest driver to crash the QEMU process on the host bsc1209554. - CVE-2024-6505: heap-based buffer overflo...

6.8CVSS7.3AI score0.0065EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-18314

Malware in sbrugna...

9.8CVSS9.2AI score0.02414EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-18210

Malware in sbrugna...

9.3CVSS7.7AI score0.02326EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2023/04/12 8:46 p.m.346 views

Exploit for Missing Authentication for Critical Function in F5 Big-Ip_Access_Policy_Manager

Tippa My Tongue Tippa My Tongue is an exploit that uses CVE-2...

9.8CVSS9.9AI score0.99956EPSS
Exploits70
Tenable Nessus
Tenable Nessus
added 2023/04/02 12:0 a.m.19 views

Fedora 37 : netconsd (2023-88629e9585)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-88629e9585 advisory. Update to 0.2 to address CVE-2023-28753; Fixes: RHBZ2181655 Tenable has extracted the preceding description block directly from the Fedora security advisory...

9.8CVSS8.2AI score0.01851EPSS
Exploits1References2
Packet Storm
Packet Storm
added 2022/11/24 12:0 a.m.366 views

F5 BIG-IP iControl Remote Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'F5 BIG-IP iControl Authenticated RCE via RPM Creator', 'Description' = %q This module exploits a newline injection into an RPM .rpmspec file that...

0.5AI score0.87987EPSS
Exploits9
Rapid7 Blog
Rapid7 Blog
added 2022/11/16 3:0 p.m.118 views

CVE-2022-41622 and CVE-2022-41800 (FIXED): F5 BIG-IP and iControl REST Vulnerabilities and Exposures

Rapid7 discovered several vulnerabilities and exposures in F5 BIG-IP and BIG-IQ devices running a customized distribution of CentOS detailed in F5's Base Operating Systems support article. The affected products are detailed in the vendor advisories below: CVE-2022-41622: BIG-IP and BIG-IQ are...

10AI score0.87987EPSS
Exploits9
Oracle linux
Oracle linux
added 2021/06/04 12:0 a.m.254 views

glibc security update

2.28-151.0.1.el84 - merge RH patches for ol8-u4 release Review-exception: Patch merge - Provide glibc.pthread.mutexspincount tunable for pthread adaptive - spin mutex Orabug: 27982358. Reviewed-by: Qing Zhao - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag ...

9.8CVSS0.4AI score0.04731EPSS
Exploits2
OSV
OSV
added 2021/04/16 4:15 a.m.13 views

CVE-2021-31414

The unofficial vscode-rpm-spec extension before 0.3.2 for Visual Studio Code allows remote code execution via a crafted workspace configuration...

9.8CVSS7.9AI score
Exploits0References2
NVD
NVD
added 2021/04/16 4:15 a.m.20 views

CVE-2021-31414

The unofficial vscode-rpm-spec extension before 0.3.2 for Visual Studio Code allows remote code execution via a crafted workspace configuration...

9.8CVSS0.02414EPSS
Exploits0References2
CVE
CVE
added 2021/04/16 3:50 a.m.84 views

CVE-2021-31414

CVE-2021-31414 affects the vscode-rpm-spec extension for Visual Studio Code (pre-0.3.2). The vulnerability enables remote code execution via a crafted workspace configuration. Multiple connected sources (NVD, Red Hat, OSV, CVE lists) confirm the issue and its impact, but detailed fix information ...

9.8CVSS9.7AI score0.02414EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2018/03/01 8:29 p.m.23 views

CVE-2017-9274

A shell command injection in the obs-service-sourcevalidator before 0.7 could be used to execute code as the packager when checking RPM SPEC files with specific macro constructs...

7.8CVSS8.2AI score0.02326EPSS
Exploits0References3
NVD
NVD
added 2018/03/01 8:29 p.m.17 views

CVE-2017-9274

A shell command injection in the obs-service-sourcevalidator before 0.7 could be used to execute code as the packager when checking RPM SPEC files with specific macro constructs...

9.3CVSS8.1AI score0.02326EPSS
Exploits0References3
OSV
OSV
added 2018/03/01 8:29 p.m.4 views

DEBIAN-CVE-2017-9274

A shell command injection in the obs-service-sourcevalidator before 0.7 could be used to execute code as the packager when checking RPM SPEC files with specific macro constructs...

7.8CVSS7.8AI score0.02326EPSS
Exploits0References1
OSV
OSV
added 2018/03/01 8:29 p.m.8 views

UBUNTU-CVE-2017-9274

A shell command injection in the obs-service-sourcevalidator before 0.7 could be used to execute code as the packager when checking RPM SPEC files with specific macro constructs...

7.8CVSS7.2AI score0.02326EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2018/03/01 8:29 p.m.25 views

CVE-2017-9274

A shell command injection in the obs-service-sourcevalidator before 0.7 could be used to execute code as the packager when checking RPM SPEC files with specific macro constructs...

9.3CVSS7.2AI score0.02326EPSS
Exploits0References2
Prion
Prion
added 2018/03/01 8:29 p.m.19 views

Command injection

A shell command injection in the obs-service-sourcevalidator before 0.7 could be used to execute code as the packager when checking RPM SPEC files with specific macro constructs...

9.3CVSS7.8AI score0.02326EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder