1378 matches found
CAN-2005-2967
CVE-2005-2967 is a format-string vulnerability in the CDDB processing component of the xine-lib library. Across multiple distributions (Debian, Ubuntu, Gentoo, Mandrake/Mandriva, FreeBSD ports, etc.), advisories describe that an attacker can cause arbitrary code execution by pointing a vulnerable...
CAN-2005-2337
CVE-2005-2337 is a Ruby vulnerability involving bypass of the language’s safe level checks, potentially allowing an attacker to execute arbitrary code. The JVNDB entry describes bypassing safe level to run arbitrary scripts, implying code execution beyond safety restrictions. Ubuntu advisories US...
CAN-2005-3121
CVE-2005-3121 affects the module-assistant tool; a rule file before 0.9.10 creates a temporary file insecurely, allowing local users to perform unauthorized operations. Debian notes fixed in 0.9.10 (DSA-867-1) and provides upgrade guidance. Open questions remain about real-world exploitation deta...
CVE-2103-2929
CVE-2013-2929 is a Linux kernel flaw in the get_dumpable() function of the ptrace subsystem that could lead to information disclosure on systems where fs.suid_dumpable is set non-default. Debian lists this CVE among many in DSA-2906-1 and notes a fixed package for oldstable (2.6.32-48squeeze5). A...
CVE-2023-21723
Technical details are not publicly available in the provided documents; no affected products, impact, or remediation are specified. Monitor for updates.
CVE-2011-2390
In CVE-2011-2390, Ubuntu describes a misconfiguration in the kdump/mkdumprd OpenSSH integration where the default StrictHostKeyChecking is set to no. This enables a remote attacker controlling a malicious kdump server to impersonate the legitimate server and access security sensitive information ...
CVE-2013-3109
The connected OSV entry for UBUNTU-CVE-2013-3109 lists a vulnerability described as “SSL vaildation failed to validate hostnames.” The UB:CVE-2013-3109 Ubuntu entry also shows this description. No concrete affected product/version details, root-cause analysis, impact assessment, exploit status, o...
CVE-2015-8159
Technical details for CVE-2015-8159 are not publicly available in the provided documents. Monitor for updates.
CVE-2015-3413
Technical details are not publicly available in the provided documents. Monitor for updates on CVE-2015-3413 from Ubuntu/OSV references.
CVE-2015-4663
Technical details are not publicly available in the provided documents. Monitor for updates from Ubuntu or OSV entries for CVE-2015-4663.
CVE-2020-17582
Technical details for CVE-2020-17582 are not publicly available in the provided documents. Monitor for updates; no affected products, impact, or remediation information can be stated from the supplied data.
CVE-2023-40325
CVE-2023-40325 is connected to multiple Moodle vulnerabilities reported by Nessus plugins. The affected self‑reported Moodle ranges are: < 3.9.23, < 3.11.16 for 3.11.x, < 4.0.10 for 4.0.x, < 4.1.5 for 4.1.x, and
CVE-2023-40321
Technical details for CVE-2023-40321 are not provided in the supplied documents. No confirmed affected products, impact, or fixes are disclosed here. Monitor connected sources (Ubuntu/CVE references) for updates.
CVE-2023-40322
CVE-2023-40322 relates to Moodle and involves an insufficient access check that can allow access to other users’ message data. Connected sources indicate Moodle versions affected include pre-3.9.23, pre-3.11.16 for 3.11.x, pre-4.0.10 for 4.0.x, pre-4.1.5 for 4.1.x, and pre-4.2.2 for 4.2.x. Some N...
CVE-2023-40320
CVE-2023-40320 pertains to Moodle and is characterized by a self-XSS vulnerability that can lead to account takeover. Multiple third-party sources describe a stored/self-XSS risk in Moodle but do not provide concrete details on affected versions or a published patch in the supplied documents. Exp...
CVE-2023-40324
CVE-2023-40324 is linked to unpatched Linux distributions per Nessus data. The connected UNPATCHED_CVE_2023_40324.NASL plugin indicates one or more packages on Linux/Ubuntu are affected with no vendor-provided patch available, referencing an Ubuntu entry for CVE-2023-40324. The information does n...
CVE-2014-5515
According to the Ubuntu security entry for CVE-2014-5515, ntopng had several vulnerabilities that were fixed upstream in version 1.2.1. The connected records provide no further details (affected versions, root cause, impact, or exploit information). No MITRE/attack details are included. Remediati...
CVE-2014-5511
Removed by vendor...
CVE-2014-5513
CVE-2014-5513 is reflected in the Ubuntu security entry for ntopng, which notes vulnerabilities fixed upstream in version 1.2.1. The connected document confirms ntopng as affected and provides a fixed-upstream reference, but the specific root cause, vulnerable component details, impact scope, or ...
CVE-2014-5514
Removed by vendor...