Lucene search
+L

5 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2021-19393

Malware in sbrugna...

7.3CVSS6.3AI score0.00289EPSS
Exploits0References4
OPENSUSE Linux
OPENSUSE Linux
added 2025/09/08 12:0 a.m.5 views

Security update for 7zip (moderate)

openSUSE Security Update: Security update for 7zip Announcement ID: openSUSE-SU-2025:0339-1 Rating: moderate References: 1246706 1246707 1249130 Cross-References: CVE-2025-53816 CVE-2025-53817 CVSS scores: CVE-2025-53816 SUSE: 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N...

4.8CVSS7.2AI score0.00635EPSS
Exploits2References3
Debian CVE
Debian CVE
added 2025/02/18 7:25 p.m.11 views

CVE-2024-45781

A flaw was found in grub2. When reading a symbolic link's name from a UFS filesystem, grub2 fails to validate the string length taken as an input. The lack of validation may lead to a heap out-of-bounds write, causing data integrity issues and eventually allowing an attacker to circumvent secure...

6.7CVSS6.3AI score0.00243EPSS
Exploits0
OSV
OSV
added 2024/12/04 4:58 p.m.44 views

MGASA-2024-0388 Updated python-aiohttp packages fix security vulnerabilities

When using aiohttp as a web server and configuring static routes, it is necessary to specify the root path for static files. Additionally, the option 'followsymlinks' can be used to determine whether to follow symbolic links outside the static root directory. When 'followsymlinks' is set to True,...

7.5CVSS7.3AI score0.76875EPSS
Exploits15References4
Node.js
Node.js
added 2021/08/31 4:14 p.m.53 views

UNIX Symbolic Link (Symlink) Following

Overview Impact Arbitrary File Creation, Arbitrary File Overwrite, Arbitrary Code Execution @npmcli/arborist, the library that calculates dependency trees and manages the nodemodules folder hierarchy for the npm command line interface, aims to guarantee that package dependency contracts will be...

4.4CVSS0.4AI score0.00553EPSS
Exploits0Affected Software1
Rows per page
Query Builder