Lucene search
+L

33 matches found

susecve
susecve
added 2026/07/01 3:36 a.m.6 views

SUSE CVE-2026-11979

libxml2 is vulnerable to multiple stack-based buffer overflows in the xmlcatalog utility when running in --shell mode. The usershell function processes user input using fixed-size stack buffers without proper bounds checking. By supplying an overly long input line, an attacker can overflow intern...

7CVSS6.7AI score0.00148EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/06/30 2:58 a.m.11 views

CVE-2026-11979

A flaw was found in libxml2, specifically within the xmlcatalog utility when operating in shell mode. An attacker can exploit multiple stack-based buffer overflows by providing an excessively long input line. This leads to memory corruption, which may cause the application to crash or potentially...

7.8CVSS6.2AI score0.00148EPSS
Exploits0References5
nessus
nessus
added 2026/06/30 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-11979

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libxml2 is vulnerable to multiple stack-based buffer overflows in the xmlcatalog utility when running in --shell mode. The usershell function processes user inp...

7.8CVSS6.8AI score0.00148EPSS
Exploits0References4
nvd
nvd
added 2026/06/29 2:16 p.m.8 views

CVE-2026-11979

libxml2 is vulnerable to multiple stack-based buffer overflows in the xmlcatalog utility when running in --shell mode. The usershell function processes user input using fixed-size stack buffers without proper bounds checking. By supplying an overly long input line, an attacker can overflow intern...

7.8CVSS0.00148EPSS
Exploits0References2
osv
osv
added 2026/06/29 2:16 p.m.4 views

UBUNTU-CVE-2026-11979

libxml2 is vulnerable to multiple stack-based buffer overflows in the xmlcatalog utility when running in --shell mode. The usershell function processes user input using fixed-size stack buffers without proper bounds checking. By supplying an overly long input line, an attacker can overflow intern...

7.8CVSS6.7AI score0.00148EPSS
Exploits0References3
euvd
euvd
added 2026/06/29 1:21 p.m.8 views

EUVD-2026-40092

libxml2 is vulnerable to multiple stack-based buffer overflows in the xmlcatalog utility when running in --shell mode. The usershell function processes user input using fixed-size stack buffers without proper bounds checking. By supplying an overly long input line, an attacker can overflow intern...

1.8CVSS6.7AI score0.00148EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/06/29 1:21 p.m.7 views

CVE-2026-11979

libxml2 is vulnerable to multiple stack-based buffer overflows in the xmlcatalog utility when running in --shell mode. The usershell function processes user input using fixed-size stack buffers without proper bounds checking. By supplying an overly long input line, an attacker can overflow intern...

1.8CVSS6.7AI score0.00148EPSS
Exploits0References3
osv
osv
added 2026/06/29 1:21 p.m.4 views

CVE-2026-11979 Stack-Based Buffer Overflow in libxml2

libxml2 is vulnerable to multiple stack-based buffer overflows in the xmlcatalog utility when running in --shell mode. The usershell function processes user input using fixed-size stack buffers without proper bounds checking. By supplying an overly long input line, an attacker can overflow intern...

1.8CVSS6.8AI score0.00148EPSS
Exploits0References5
alpinelinux
alpinelinux
added 2026/06/29 1:21 p.m.9 views

CVE-2026-11979

libxml2 is vulnerable to multiple stack-based buffer overflows in the xmlcatalog utility when running in --shell mode. The usershell function processes user input using fixed-size stack buffers without proper bounds checking. By supplying an overly long input line, an attacker can overflow intern...

7.8CVSS6.6AI score0.00148EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/29 12:0 a.m.14 views

PT-2026-53257

Name of the Vulnerable Software and Affected Versions libxml2 affected versions not specified Description The xmlcatalog utility is susceptible to multiple stack-based buffer overflows when operating in --shell mode. The usershell function processes user input using fixed-size stack buffers witho...

7.8CVSS6.9AI score0.00148EPSS
Exploits0References18
ptsecurity
ptsecurity
added 2026/06/16 12:0 a.m.11 views

PT-2026-50146

Name of the Vulnerable Software and Affected Versions Deno versions prior to 2.7.10 Description In the node:child process implementation on Windows, the escapeShellArg helper function fails to properly quote arguments containing cmd.exe metacharacters such as &, |, , ^, !, , and and does not...

8.1CVSS6.2AI score0.00283EPSS
Exploits1References4
veracode
veracode
added 2026/05/15 4:36 a.m.20 views

OS Command Injection

OliveTin is vulnerable to Command Injection. The vulnerability is due to insufficient input validation in Shell mode, where password-typed arguments and webhook-extracted JSON values bypass checkShellArgumentSafety before being passed to sh -c, allowing authenticated or unauthenticated attackers ...

9.9CVSS6.1AI score0.00448EPSS
Exploits2References2Affected Software1
github
github
added 2026/03/13 8:2 p.m.10 views

Deno vulnerable to command Injection via incomplete shell metacharacter blocklist in node:child_process

Summary A command injection vulnerability exists in Deno's node:childprocess polyfill shell: true mode that bypasses the fix for CVE-2026-27190 GHSA-hmh4-3xvx-q5hr. An attacker who controls arguments passed to spawnSync or spawn with shell: true can execute arbitrary OS commands, bypassing Deno's...

9.8CVSS6.1AI score0.02213EPSS
Exploits2References3Affected Software1
osv
osv
added 2026/03/13 8:2 p.m.4 views

GHSA-4C96-W8V2-P28J Deno vulnerable to command Injection via incomplete shell metacharacter blocklist in node:child_process

Summary A command injection vulnerability exists in Deno's node:childprocess polyfill shell: true mode that bypasses the fix for CVE-2026-27190 GHSA-hmh4-3xvx-q5hr. An attacker who controls arguments passed to spawnSync or spawn with shell: true can execute arbitrary OS commands, bypassing Deno's...

8.1CVSS6.1AI score0.01483EPSS
Exploits1References3
attackerkb
attackerkb
added 2026/03/12 7:41 p.m.5 views

CVE-2026-32260

Deno is a JavaScript, TypeScript, and WebAssembly runtime. From 2.7.0 to 2.7.1, A command injection vulnerability exists in Deno's node:childprocess polyfill shell: true mode that bypasses the fix for CVE-2026-27190. The two-stage argument sanitization in transformDenoShellCommand...

9.8CVSS6AI score0.02213EPSS
Exploits2References2Affected Software1
cve
cve
added 2026/03/12 7:41 p.m.15 views

CVE-2026-32260

Summary: CVE-2026-32260 affects Deno’s node:child_process polyfill (shell: true mode). From 2.7.0 to 2.7.1, a two-stage argument sanitization in transformDenoShellCommand contains a priority bug: when an argument includes a $VAR pattern, it is wrapped in double quotes instead of single quotes. Th...

9.8CVSS6AI score0.01483EPSS
Exploits1References1Affected Software1
susecve
susecve
added 2026/03/04 12:25 a.m.6 views

SUSE CVE-2026-27626

OliveTin gives access to predefined shell commands from a web interface. In versions up to and including 3000.10.0, OliveTin's shell mode safety check checkShellArgumentSafety blocks several dangerous argument types but not password. A user supplying a password-typed argument can inject shell...

9.9CVSS6.1AI score0.00448EPSS
Exploits2References3
euvd
euvd
added 2026/02/25 4:18 p.m.7 views

EUVD-2026-8600

OliveTin: OS Command Injection via password argument type and webhook JSON extraction bypasses shell safety checks...

9.9CVSS5.3AI score0.00448EPSS
Exploits2References2
nvd
nvd
added 2026/02/25 3:16 a.m.12 views

CVE-2026-27626

OliveTin gives access to predefined shell commands from a web interface. In versions up to and including 3000.10.0, OliveTin's shell mode safety check checkShellArgumentSafety blocks several dangerous argument types but not password. A user supplying a password-typed argument can inject shell...

9.9CVSS0.00448EPSS
Exploits2References1
attackerkb
attackerkb
added 2026/02/25 2:43 a.m.10 views

CVE-2026-27626

OliveTin gives access to predefined shell commands from a web interface. In versions up to and including 3000.10.0, OliveTin's shell mode safety check checkShellArgumentSafety blocks several dangerous argument types but not password. A user supplying a password-typed argument can inject shell...

9.9CVSS5.9AI score0.00448EPSS
Exploits2References2Affected Software1
Rows per page
Query Builder