Lucene search
K

522 matches found

Exploit DB
Exploit DB
added 2021/04/21 12:0 a.m.535 views

Hasura GraphQL 1.3.3 - Denial of Service

Exploit Title: Hasura GraphQL 1.3.3 - Denial of Service Software: Hasura GraphQL Software Link: https://github.com/hasura/graphql-engine Version: 1.3.3 Author: Dolev Farhi Date: 4/19/2021 Tested on: Ubuntu import sys import requests import threading HASURASCHEME = 'http' HASURAHOST = '192.168.1.1...

7AI score
Exploits0
0day.today
0day.today
added 2021/04/16 12:0 a.m.23 views

glFTPd 2.11a - Remote Denial of Service Exploit

Exploit Title: glFTPd 2.11a - Remote Denial of Service Exploit Author: xynmaps Vendor Homepage: https://glftpd.io/ Software Link: https://glftpd.io/files/glftpd-LNX-2.11a1.1.1kx64.tgz Version: 2.11a Tested on: Parrot Security OS 5.9.0 ------------------------------- encoding=utf8 author =...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2021/04/15 12:0 a.m.250 views

glFTPd 2.11a - Remote Denial of Service

Exploit Title: glFTPd 2.11a - Remote Denial of Service Date: 15/05/2021 Exploit Author: xynmaps Vendor Homepage: https://glftpd.io/ Software Link: https://glftpd.io/files/glftpd-LNX-2.11a1.1.1kx64.tgz Version: 2.11a Tested on: Parrot Security OS 5.9.0 ------------------------------- encoding=utf8...

7.4AI score
Exploits0
Fedora
Fedora
added 2021/03/19 8:25 p.m.26 views

[SECURITY] Fedora 34 Update: suricata-6.0.2-1.fc34

The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic...

0.2AI score
Exploits0
Fedora
Fedora
added 2021/03/12 12:7 a.m.20 views

[SECURITY] Fedora 32 Update: suricata-5.0.6-1.fc32

The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic...

0.2AI score
Exploits0
Fedora
Fedora
added 2021/03/11 11:38 p.m.43 views

[SECURITY] Fedora 33 Update: suricata-5.0.6-1.fc33

The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic...

0.2AI score
Exploits0
OSV
OSV
added 2021/02/10 11:2 a.m.2 views

OESA-2021-1037 gssproxy security update

This is a proxy for GSSAPI which deals with credential handling.\r\n\r\n Security Fixes:\r\n\r\n DISPUTED gssproxy aka gss-proxy before 0.8.3 does not unlock condmutex before pthread exit in gpworkermain in gpworkers.c. NOTE: An upstream comment states "We are already on a shutdown path when...

9.8CVSS6.9AI score0.01681EPSS
Exploits0References2
Fedora
Fedora
added 2021/02/10 1:20 a.m.78 views

[SECURITY] Fedora 33 Update: mutt-2.0.5-1.fc33

Mutt is a small but very powerful text-based MIME mail client. Mutt is highly configurable, and is well suited to the mail power user with advanced features like key bindings, keyboard macros, mail threading, regular expression searches and a powerful pattern matching language for selecting group...

6.5CVSS1AI score0.02796EPSS
Exploits0
Ubuntu
Ubuntu
added 2021/01/25 3:8 p.m.116 views

USN-4703-1: Mutt vulnerability

It was discovered that Mutt incorrectly handled certain email messages. An attacker could possibly use this issue to cause a denial of service...

6.5CVSS6.3AI score0.02796EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2020/12/15 8:13 p.m.74 views

Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM Tivoli Netcool System Service Monitors/Application Service Monitors (CVE-2018-5407,CVE-2020-1967,CVE-2018-0734,CVE-2019-1563,CVE-2019-1549,CVE-2019-1552,CVE-2019-1559,CVE-2018-0735)

Summary There is a security advisory for openSSL1.0.2p which is used by IBM Tivoli Netcool System Service Monitors/Application Service Monitors 4.0.1 Vulnerability Details CVEID: CVE-2018-5407 DESCRIPTION: Multiple SMT/Hyper-Threading architectures and processors could allow a local attacker to...

7.5CVSS0.6AI score0.53336EPSS
Exploits6Affected Software1
Exploit DB
Exploit DB
added 2020/11/26 12:0 a.m.827 views

Pure-FTPd 1.0.48 - Remote Denial of Service

Exploit Title: Pure-FTPd 1.0.48 - Remote Denial of Service Date: 2020. nov. 26., 09:32:17 CET Exploit Author: xynmaps Vendor Homepage: https://www.pureftpd.org/project/pure-ftpd/ Software Link: https://github.com/jedisct1/pure-ftpd/ Version: 1.0.48 Tested on: Parrot Security OS 5.9.0 encoding=utf...

7.4AI score
Exploits0
RustSec
RustSec
added 2020/11/10 12:0 p.m.23 views

Potential segfault in `localtime_r` invocations

Impact Unix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires an environment variable to be set in a different thread than the affected functions. This may occur without the user's knowledge, notably in a third-party library...

5.3CVSS3.6AI score0.01881EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2020/11/02 6:21 a.m.25 views

CVE-2020-11173

u'Two threads running simultaneously from user space can lead to race condition in fastRPC driver' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wir...

7AI score0.00139EPSS
Exploits0References1
Kitploit
Kitploit
added 2020/10/27 11:30 a.m.28 views

TASER - Python3 Resource Library For Creating Security Related Tooling

TASER T esting A nd SE ecurity R esource is a Python resource library used to simplify the process of creating offensive security tooling, especially those relating to web or external assessments. It's modular design makes it easy for code to be customized and re-purposed in a variety of scenario...

7.6AI score
Exploits0References3
Fedora
Fedora
added 2020/10/23 10:47 p.m.11 views

[SECURITY] Fedora 31 Update: suricata-4.1.9-1.fc31

The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic...

0.2AI score
Exploits0
Fedora
Fedora
added 2020/10/23 10:41 p.m.10 views

[SECURITY] Fedora 32 Update: suricata-5.0.4-1.fc32

The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic...

0.2AI score
Exploits0
Talos Blog
Talos Blog
added 2020/10/20 8:12 a.m.18 views

Dynamic Data Resolver - Version 1.0.1 beta

By Holger Unterbrink. Cisco Talos is releasing a new beta version of Dynamic Data Resolver DDR today. This release comes with a new architecture for samples using multi-threading. The process and thread tracing has been completely reimplemented. We also fixed a few bugs and memory leaks. Another...

2AI score
Exploits0
Kitploit
Kitploit
added 2020/10/16 8:30 p.m.23 views

Eagle - Yet Another Vulnerability Scanner

Project Eagle is a plugin based vulnerabilities scanner with threading support used for detection of low-hanging bugs on mass scale .---. .----------- / \ / ------ / / \ / ----- ////// ' / --- Multipurpose vulnerability scanner //// / // : : --- v1.0b / / / / '-- 2019-2020 //..\ ====UU====UU====...

6.6AI score
Exploits0References1
OSV
OSV
added 2020/08/05 2:52 p.m.39 views

GHSA-X3RH-M7VP-35F2 Operation on a Resource after Expiration or Release in Jetty Server

In Eclipse Jetty, versions 9.4.27.v20200227 to 9.4.29.v20200521, in case of too large response headers, Jetty throws an exception to produce an HTTP 431 error. When this happens, the ByteBuffer containing the HTTP response headers is released back to the ByteBufferPool twice. Because of this doub...

9.4CVSS9.5AI score0.11138EPSS
Exploits0References21
OPENSUSE Linux
OPENSUSE Linux
added 2020/07/26 12:0 a.m.75 views

Security update for webkit2gtk3 (important)

openSUSE Security Update: Security update for webkit2gtk3 Announcement ID: openSUSE-SU-2020:1064-1 Rating: important References: 1173998 Cross-References: CVE-2020-13753 CVE-2020-9802 CVE-2020-9803 CVE-2020-9805 CVE-2020-9806 CVE-2020-9807 CVE-2020-9843 CVE-2020-9850 Affected Products: openSUSE...

10CVSS8.4AI score0.77246EPSS
Exploits5References1
Rows per page
Query Builder