Lucene search
K

91 matches found

OSV
OSV
added 2024/02/15 5:15 a.m.5 views

CVE-2022-23085

A user-provided integer option was passed to nmreqcopyin without checking if it would overflow. This insufficient bounds checking could lead to kernel memory corruption. On systems configured to include netmap in their devfsruleset, a privileged process running in a jail can affect the host...

8.2CVSS5.9AI score0.0049EPSS
Exploits0References2
OSV
OSV
added 2024/02/15 5:15 a.m.8 views

CVE-2022-23084

The total size of the user-provided nmreq to nmreqcopyin was first computed and then trusted during the copyin. This time-of-check to time-of-use bug could lead to kernel memory corruption. On systems configured to include netmap in their devfsruleset, a privileged process running in a jail can...

7.5CVSS5.8AI score0.00243EPSS
Exploits0References2
Kitploit
Kitploit
added 2023/11/22 11:30 a.m.38 views

Deepsecrets - Secrets Scanner That Understands Code

Yet another tool - why? Existing tools don't really "understand" code. Instead, they mostly parse texts. DeepSecrets expands classic regex-search approaches with semantic analysis, dangerous variable detection, and more efficient usage of entropy analysis. Code understanding supports 500+ languag...

7.2AI score
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/07/14 2:4 a.m.4 views

SUSE CVE-2023-38199

coreruleset aka OWASP ModSecurity Core Rule Set through 3.3.4 does not detect multiple Content-Type request headers on some platforms. This might allow attackers to bypass a WAF with a crafted payload, aka "Content-Type confusion" between the WAF and the backend application. This occurs when the...

9.8CVSS6.9AI score0.00631EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:24 a.m.6 views

SUSE CVE-2014-9769

pcrejitcompile.c in PCRE 8.35 does not properly use table jumps to optimize nested alternatives, which allows remote attackers to cause a denial of service stack memory corruption or possibly have unspecified other impact via a crafted string, as demonstrated by packets encountered by Suricata...

7.5CVSS7.6AI score0.02351EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:21 a.m.4 views

SUSE CVE-2015-1573

The nftflushtable function in net/netfilter/nftablesapi.c in the Linux kernel before 3.18.5 mishandles the interaction between cross-chain jumps and ruleset flushes, which allows local users to cause a denial of service panic by leveraging the CAPNETADMIN capability...

5.5CVSS7AI score0.00367EPSS
Exploits0References3
Kitploit
Kitploit
added 2022/11/17 11:30 a.m.32 views

nuvola - Tool To Dump And Perform Automatic And Manual Security Analysis On Aws Environments Configurations And Services

nuvola with the lowercase n is a tool to dump and perform automatic and manual security analysis on AWS environments configurations and services using predefined, extensible and custom rules created using a simple Yaml syntax. The general idea behind this project is to create an abstracted digita...

7.5AI score
Exploits0References6
OSV
OSV
added 2022/09/20 7:15 a.m.2 views

UBUNTU-CVE-2022-39955

The OWASP ModSecurity Core Rule Set CRS is affected by a partial rule set bypass by submitting a specially crafted HTTP Content-Type header field that indicates multiple character encoding schemes. A vulnerable back-end can potentially be exploited by declaring multiple Content-Type "charset" nam...

9.8CVSS7.1AI score0.01115EPSS
Exploits0References3
Kitploit
Kitploit
added 2022/04/17 12:30 p.m.317 views

OWASP Coraza WAF - A Golang Modsecurity Compatible Web Application Firewall Library

Welcome to OWASP Coraza Web Application Firewall, OWASP Coraza is a golang enterprise-grade Web Application Firewall framework that supports Modsecurity's seclang language and is 100% compatible with OWASP Core Ruleset. Prerequisites Linux distribution Debian and Centos are recommended, Windows i...

7.4AI score
Exploits0References9
NVD
NVD
added 2021/12/30 10:15 p.m.18 views

CVE-2021-20149

Trendnet AC2600 TEW-827DRU version 2.08B01 does not have sufficient access controls for the WAN interface. The default iptables ruleset for governing access to services on the device only apply to IPv4. All services running on the devices are accessible via the WAN interface via IPv6 by default...

9.8CVSS0.01432EPSS
Exploits0References1
Prion
Prion
added 2020/12/28 8:15 p.m.13 views

Input validation

An issue was discovered in Joomla! 1.7.0 through 3.9.22. Lack of input validation while handling ACL rulesets can cause write ACL violations...

5CVSS7.5AI score0.06095EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2019/11/14 2:15 a.m.7 views

CVE-2011-1489

A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages were logged when multiple rulesets were used and some output batches contained messages belonging to more than one ruleset. A local attacker could cause denial of the rsyslogd daemon service via a log message...

5.5CVSS6.4AI score0.00474EPSS
Exploits1References10
OSV
OSV
added 2019/11/14 2:15 a.m.10 views

CVE-2011-1490

A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages are logged when multiple rulesets were used and some output batches contained messages belonging to more than one ruleset. A local attacker could cause denial of the rsyslogd daemon service via a log message...

5.5CVSS6.4AI score0.00378EPSS
Exploits0References8
OSV
OSV
added 2019/04/21 2:29 a.m.3 views

UBUNTU-CVE-2019-11391

DISPUTED An issue was discovered in OWASP ModSecurity Core Rule Set CRS through 3.1.0. /rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf allows remote attackers to cause a denial of service ReDOS by entering a specially crafted string with $a at the beginning and nested repetition operators. NOTE: t...

5.3CVSS5.8AI score0.01625EPSS
Exploits1References3
vulnersOsv
vulnersOsv
added 2019/04/08 3:18 p.m.4 views

com.github.shyiko.ktlint:ktlint-ruleset-standard (>=0.2.0 <=0.2.2), com.github.shyiko.ktlint:ktlint-test (>=0.2.0 <=0.2.2) +1 more potentially affected by CVE-2019-1010260 via com.github.shyiko.ktlint:ktlint-core (>=0.2.0 <=0.2.2)

com.github.shyiko.ktlint:ktlint-core MAVEN version =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.2 Source cves: CVE-2019-1010260 Source advisory: OSV:GHSA-R8H9-HQ9C-2P5C...

9.3CVSS7.5AI score0.01482EPSS
Exploits1
Veracode
Veracode
added 2019/02/12 5:47 a.m.13 views

XML External Entity (XXE)

PMD is vulnerable to XML external entity XXE attacks. XML external entities are being parsed in ruleset files, allowing an attacker who is able to tamper the ruleset file to perform XXE attacks to forge requests or cause a denial of service condition...

8.1CVSS7.7AI score0.01234EPSS
Exploits1References4Affected Software2
Kitploit
Kitploit
added 2019/01/27 12:48 p.m.168 views

FTW - Framework For Testing WAFs

This project was created by researchers from ModSecurity and Fastly to help provide rigorous tests for WAF rules. It uses the OWASP Core Ruleset V3 as a baseline to test rules on a WAF. Each rule from the ruleset is loaded into a YAML file that issues HTTP requests that will trigger these rules...

7.6AI score
Exploits0References3
Kitploit
Kitploit
added 2017/10/10 9:36 p.m.13 views

RHAPIS - Network Intrusion Detection Systems Simulator

Network intrusion detection systems simulator. RHAPIS provides a simulation environment through which user is able to execute any IDS operation. Basic Usage Type HELP in the console in order to see the available commands. RHAPIS is written in Lua language. You need to have installed Lua in order ...

6.6AI score
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2017/06/20 12:0 a.m.2 views

VulnCheck KEV: CVE-2003-0681

A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets 1 recipient 2, final, or 3 mailer-specific envelope recipients, has unknown consequences...

7.5CVSS6AI score0.20081EPSS
Exploits1References1
Akamai Blog
Akamai Blog
added 2017/03/29 9:15 a.m.15 views

Update: Vulnerability found in Apache Struts

Akamai has created two new WAF rules in response to new information about the Apache Struts2 vulnerability. The first rule, the most recent version of KRS Rule 3000014, is a standard part of the Kona Ruleset and protects against the many common attacks leveraging this vulnerability. This rule is...

6.6AI score
Exploits0
Rows per page
Query Builder