Lucene search
K

4276 matches found

GitLab Advisory Database
GitLab Advisory Database
added 2020/03/30 12:0 a.m.17 views

Release of Invalid Pointer or Reference

An issue was discovered in USC iLab cereal. It employs caching of std::sharedptr values, using the raw pointer address as a unique identifier. This becomes problematic if a std::sharedptr variable goes out of scope and is freed, and a new std::sharedptr is allocated at the same address...

9.8CVSS1.6AI score0.01977EPSS
Exploits1References1Affected Software1
Fedora
Fedora
added 2020/03/29 12:16 a.m.31 views

[SECURITY] Fedora 32 Update: PyYAML-5.3.1-1.fc32

YAML is a data serialization format designed for human readability and interaction with scripting languages. PyYAML is a YAML parser and emitter for Python. PyYAML features a complete YAML 1.1 parser, Unicode support, pickle support, capable extension API, and sensible error messages. PyYAML...

10CVSS1.7AI score0.05299EPSS
Exploits1
OpenVAS
OpenVAS
added 2020/03/29 12:0 a.m.30 views

Fedora: Security Advisory for PyYAML (FEDORA-2020-e9741a6a15)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS9.8AI score0.05299EPSS
Exploits1References2
Fedora
Fedora
added 2020/03/27 1:10 p.m.25 views

[SECURITY] Fedora 31 Update: PyYAML-5.3.1-1.fc31

YAML is a data serialization format designed for human readability and interaction with scripting languages. PyYAML is a YAML parser and emitter for Python. PyYAML features a complete YAML 1.1 parser, Unicode support, pickle support, capable extension API, and sensible error messages. PyYAML...

10CVSS1.7AI score0.05299EPSS
Exploits1
Fedora
Fedora
added 2020/03/27 10:46 a.m.40 views

[SECURITY] Fedora 30 Update: PyYAML-5.3.1-1.fc30

YAML is a data serialization format designed for human readability and interaction with scripting languages. PyYAML is a YAML parser and emitter for Python. PyYAML features a complete YAML 1.1 parser, Unicode support, pickle support, capable extension API, and sensible error messages. PyYAML...

10CVSS1.7AI score0.05299EPSS
Exploits1
Node.js
Node.js
added 2020/03/26 6:40 p.m.16 views

Incorrect Account Used for Signing

Overview Versions of eth-ledger-bridge-keyring prior to 0.2.1 may use incorrect accounts for signing transactions. The vulnerability impacts cases where the user signs a personal message or transaction without first adding the account. This includes cases where the user has already added the...

6.7AI score
Exploits0Affected Software1
NVD
NVD
added 2020/03/26 1:15 p.m.21 views

CVE-2020-10969

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to javax.swing.JEditorPane...

8.8CVSS9AI score0.03473EPSS
Exploits0References8
OSV
OSV
added 2020/03/26 1:15 p.m.29 views

CVE-2020-10969

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to javax.swing.JEditorPane...

8.8CVSS6.5AI score
Exploits0References8
OSV
OSV
added 2020/03/26 1:15 p.m.0 views

DEBIAN-CVE-2020-10969

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to javax.swing.JEditorPane...

8.8CVSS7.1AI score0.03473EPSS
Exploits0References1
NVD
NVD
added 2020/03/26 1:15 p.m.32 views

CVE-2020-10968

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.aoju.bus.proxy.provider.remoting.RmiProvider aka bus-proxy...

8.8CVSS9AI score0.03538EPSS
Exploits0References8
OSV
OSV
added 2020/03/26 1:15 p.m.39 views

CVE-2020-10968

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.aoju.bus.proxy.provider.remoting.RmiProvider aka bus-proxy...

8.8CVSS6.5AI score
Exploits0References8
OSV
OSV
added 2020/03/26 1:15 p.m.2 views

DEBIAN-CVE-2020-10968

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.aoju.bus.proxy.provider.remoting.RmiProvider aka bus-proxy...

8.8CVSS7.1AI score0.03538EPSS
Exploits0References1
Prion
Prion
added 2020/03/26 1:15 p.m.26 views

Design/Logic Flaw

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to javax.swing.JEditorPane...

6.8CVSS9AI score0.03473EPSS
Exploits0References8Affected Software30
Prion
Prion
added 2020/03/26 1:15 p.m.27 views

Open redirect

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.aoju.bus.proxy.provider.remoting.RmiProvider aka bus-proxy...

6.8CVSS8.9AI score0.03538EPSS
Exploits0References8Affected Software30
UbuntuCve
UbuntuCve
added 2020/03/26 1:15 p.m.29 views

CVE-2020-10969

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to javax.swing.JEditorPane...

8.8CVSS7.1AI score0.03473EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2020/03/26 1:15 p.m.37 views

CVE-2020-10968

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.aoju.bus.proxy.provider.remoting.RmiProvider aka bus-proxy...

8.8CVSS7.1AI score0.03538EPSS
Exploits0References4
OSV
OSV
added 2020/03/26 1:15 p.m.1 views

UBUNTU-CVE-2020-10969

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to javax.swing.JEditorPane...

8.8CVSS7.2AI score0.03473EPSS
Exploits0References5
CVE
CVE
added 2020/03/26 12:43 p.m.451 views

CVE-2020-10968

CVE-2020-10968 affects FasterXML jackson-databind 2.x before 2.9.10.4. The issue arises from how serialization gadgets interact with typing, specifically related to org.aoju.bus.proxy.provider.remoting.RmiProvider (bus-proxy). The result is a deserialization vulnerability with high impact to conf...

8.8CVSS8.3AI score0.03538EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2020/03/26 12:43 p.m.27 views

CVE-2020-10968

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.aoju.bus.proxy.provider.remoting.RmiProvider aka bus-proxy...

9AI score0.03538EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2020/03/26 12:43 p.m.37 views

CVE-2020-10968

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.aoju.bus.proxy.provider.remoting.RmiProvider aka bus-proxy...

8.8CVSS8.8AI score0.03538EPSS
Exploits0
Rows per page
Query Builder