CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2168 matches found

OSV•added 2021/06/23 11:42 p.m.•15 views

GHSA-HJ56-84JW-67H6 Potential Denial-of-Service in bindata

In the bindata RubyGem before version 2.4.10 there is a potential denial-of-service vulnerability. In affected versions it is very slow for certain classes in BinData to be created. For example BinData::Bit100000, BinData::Bit100001, BinData::Bit100002, BinData::Bit. In combination with...

6.3CVSS3.7AI score0.00437EPSS

Exploits1References8

Github Security Blog•added 2021/06/23 11:42 p.m.•56 views

Potential Denial-of-Service in bindata

4.3CVSS4.8AI score0.00437EPSS

Exploits1References8Affected Software1

CVE•added 2021/06/23 11:40 p.m.•135 views

CVE-2021-32823

CVE-2021-32823 affects the bindata RubyGem prior to version 2.4.10, where creating certain BinData classes (e.g., Bit100000, Bit100001, Bit100002, Bit) can cause a CPU-based denial of service, especially in combination with user_input.constantize. The vulnerability has been documented across mult...

4.3CVSS3.8AI score0.00437EPSS

Exploits1References5Affected Software1

Cvelist•added 2021/06/23 11:40 p.m.•18 views

CVE-2021-32823 Potential Denial-of-Service in bindata

3.7CVSS4.4AI score0.00437EPSS

Exploits1References5

Debian CVE•added 2021/06/23 11:40 p.m.•24 views

CVE-2021-32823

4.3CVSS3.8AI score0.00437EPSS

Exploits1

CNNVD•added 2021/06/23 12:0 a.m.•2 views

BinData 安全漏洞

BinData is an open source declarative way to read and write structured binary data.BinData makes it easy to create new data types. It supports all common primitive data types found in the structured binary data format . Support for dependencies and variable length fields is built in. A security...

4.3CVSS5AI score0.00437EPSS

Exploits1References7

OSV•added 2021/06/11 1:14 p.m.•15 views

SUSE-SU-2021:1963-1 Security update for crowbar-openstack, grafana, kibana, monasca-installer, python-Django, python-py, rubygem-activerecord-session_store

This update for crowbar-openstack, grafana, kibana, monasca-installer, python-Django, python-py, rubygem-activerecord-sessionstore contains the following fixes: Security fixes included in this update: crowbar-openstack: - CVE-2016-8611: Added rate limiting for the '/images' API POST method...

7.5CVSS6.8AI score0.92396EPSS

Exploits2References19

OpenVAS•added 2021/06/09 12:0 a.m.•25 views

SUSE: Security Advisory (SUSE-SU-2018:2039-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS7AI score0.00099EPSS

Exploits0References2

OpenVAS•added 2021/06/09 12:0 a.m.•16 views

SUSE: Security Advisory (SUSE-SU-2020:1582-1)

7.8CVSS7.9AI score0.00151EPSS

Exploits0References2

OpenVAS•added 2021/06/09 12:0 a.m.•21 views

SUSE: Security Advisory (SUSE-SU-2020:2053-1)

5.9CVSS5.8AI score0.00556EPSS

Exploits0References2

OpenVAS•added 2021/06/09 12:0 a.m.•16 views

SUSE: Security Advisory (SUSE-SU-2015:2337-1)

4.3CVSS5.2AI score0.00361EPSS

Exploits0References2

OpenVAS•added 2021/06/09 12:0 a.m.•13 views

SUSE: Security Advisory (SUSE-SU-2020:1582-2)

7.8CVSS7.9AI score0.00151EPSS

Exploits0References2

OpenVAS•added 2021/06/09 12:0 a.m.•18 views

SUSE: Security Advisory (SUSE-SU-2016:3084-1)

7.5CVSS7.6AI score0.00395EPSS

Exploits0References6

OpenVAS•added 2021/06/09 12:0 a.m.•20 views

SUSE: Security Advisory (SUSE-SU-2018:0262-1)

4.7CVSS5.5AI score0.00136EPSS

Exploits0References2

OpenVAS•added 2021/06/09 12:0 a.m.•18 views

SUSE: Security Advisory (SUSE-SU-2021:0115-1)

7.5CVSS7.6AI score0.02922EPSS

Exploits1References2

OpenVAS•added 2021/06/09 12:0 a.m.•17 views

SUSE: Security Advisory (SUSE-SU-2015:2190-1)

5CVSS6.7AI score0.13251EPSS

Exploits0References2

Debian•added 2021/06/06 7:0 p.m.•51 views

[SECURITY] [DLA 2678-1] ruby-nokogiri security update

Debian LTS Advisory DLA-2678-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany June 06, 2021 https://wiki.debian.org/LTS Package : ruby-nokogiri Version : 1.6.8.1-1+deb9u1 CVE ID : CVE-2020-26247 Debian Bug : 978967 An XXE vulnerability was found in Nokogiri, a...

4.3CVSS6.5AI score0.00259EPSS

Exploits0

RedHat Linux•added 2021/06/03 11:21 a.m.•0 views

rubygem-json: Unsafe object creation vulnerability in JSON

A flaw was found in rubygem-json. While parsing certain JSON documents, the json gem including the one bundled with Ruby can be coerced into creating arbitrary objects in the target system. This is the same issue as CVE-2013-0269...

7.5CVSS7.2AI score0.05892EPSS

Exploits0References5

NVD•added 2021/05/27 7:15 p.m.•14 views

CVE-2020-10716

A flaw was found in Red Hat Satellite's Job Invocation, where the "User Input" entry was not properly restricted to the view. This flaw allows a malicious Satellite user to scan through the Job Invocation, with the ability to search for passwords and other sensitive data. This flaw affects...

6.5CVSS0.00156EPSS

Exploits0References2

Prion•added 2021/05/27 7:15 p.m.•14 views

Design/Logic Flaw

4CVSS6.4AI score0.00156EPSS

Exploits0References2Affected Software3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by