Lucene search
K

18 matches found

OSV
OSV
added 2026/04/10 12:57 a.m.14 views

CLEANSTART-2026-RJ58492 On Unix platforms, when listing the contents of a directory using File

Multiple security vulnerabilities affect the kyverno-fips package. On Unix platforms, when listing the contents of a directory using File. See references for individual vulnerability details...

9.8CVSS6.9AI score0.01557EPSS
Exploits1References20
Debian CVE
Debian CVE
added 2025/10/24 10:6 a.m.5 views

CVE-2025-10680

OpenVPN 2.7alpha1 through 2.7beta1 on POSIX based platforms allows a remote authenticated server to inject shell commands via DNS variables when --dns-updown is in use...

8.8CVSS8.9AI score0.06932EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/10/09 12:38 p.m.20 views

CVE-2024-45720 Apache Subversion: Command line argument injection on Windows platforms

On Windows platforms, a "best fit" character encoding conversion of command line arguments to Subversion's executables e.g., svn.exe, etc. may lead to unexpected command line argument interpretation, including argument injection and execution of other programs, if a specially crafted command line...

8.2CVSS7.4AI score0.00604EPSS
Exploits0References1
CVE
CVE
added 2024/10/09 12:38 p.m.75 views

CVE-2024-45720

CVE-2024-45720 affects Subversion on Windows: a flawed “best fit” character encoding conversion of command-line arguments to svn.exe can cause misinterpretation of arguments, enabling argument injection and execution of other programs. Affected: all Subversion versions up to 1.14.3 on Windows; fi...

8.2CVSS8.5AI score0.00604EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2024/06/07 12:0 a.m.12 views

Fedora: Security Advisory (FEDORA-2024-25b47765c6)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.9AI score0.00354EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2023/11/27 3:47 p.m.6 views

Mozilla: Using Selection API would copy contents into X11 primary selection.

The Mozilla Foundation Security Advisory describes this flaw as: When using X11, text selected by the page using the Selection API was erroneously copied into the primary selection, a temporary storage not unlike the clipboard. This bug only affects Firefox on X11. Other systems are unaffected...

8.8CVSS7.3AI score0.00772EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2023/05/20 12:0 a.m.5 views

Fedora: Security Advisory for kitty (FEDORA-2023-a354113801)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
The Hacker News
The Hacker News
added 2023/03/14 12:2 p.m.52 views

GoBruteforcer: New Golang-Based Malware Breaches Web Servers Via Brute-Force Attacks

A new Golang-based malware dubbed GoBruteforcer has been found targeting web servers running phpMyAdmin, MySQL, FTP, and Postgres to corral the devices into a botnet. "GoBruteforcer chose a Classless Inter-Domain Routing CIDR block for scanning the network during the attack, and it targeted all I...

Exploits0
Fedora
Fedora
added 2022/10/02 12:18 a.m.38 views

[SECURITY] Fedora 37 Update: kitty-0.26.3-2.fc37

Offloads rendering to the GPU for lower system load and buttery smooth scrolling. Uses threaded rendering to minimize input latency. - Supports all modern terminal features: graphics images, unicode, true-col or, OpenType ligatures, mouse protocol, focus tracking, bracketed paste and several new...

7.8CVSS7.8AI score0.00499EPSS
Exploits1
OpenVAS
OpenVAS
added 2022/10/02 12:0 a.m.14 views

Fedora: Security Advisory for kitty (FEDORA-2022-04bc7cd075)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.8AI score0.00499EPSS
Exploits1References2
Fedora
Fedora
added 2017/05/12 2:14 p.m.19 views

[SECURITY] Fedora 26 Update: radicale-1.1.2-1.fc26

The Radicale Project is a CalDAV calendar and CardDAV contact server. It aims to be a light solution, easy to use, easy to install, easy to configur e. As a consequence, it requires few software dependencies and is pre-configur ed to work out-of-the-box. The Radicale Project runs on most of the...

8.1CVSS0.6AI score0.02016EPSS
Exploits1
n0where
n0where
added 2016/03/31 2:8 p.m.16 views

Nginx Web Application Firewall: NAXSI

NAXSI means Nginx Anti XSS & SQL Injection . Technically, it is a third party nginx module, available as a package for many UNIX-like platforms. This module, by default, reads a small subset of simple and readable rules containing 99% of known patterns involved in website vulnerabilities. For...

1.3AI score
Exploits0References4
Fedora
Fedora
added 2016/01/19 11:58 p.m.24 views

[SECURITY] Fedora 22 Update: radicale-1.1.1-1.fc22

The Radicale Project is a CalDAV calendar and CardDAV contact server. It aims to be a light solution, easy to use, easy to install, easy to configur e. As a consequence, it requires few software dependencies and is pre-configur ed to work out-of-the-box. The Radicale Project runs on most of the...

10CVSS7.2AI score0.02945EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2011/08/16 12:0 a.m.6 views

Postfix SMTP Server SASL Authentication Memory Corruption (CVE-2011-1720)

A memory corruption vulnerability has been reported in Postfix SMTP server. Postfix is a popular mail server for Unix-like platforms. The vulnerability is specific to Postfix servers that use Cyrus Simple Authentication and Security Layer SASL library. SASL is a framework for providing...

6.8CVSS9.7AI score0.21646EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2010/12/22 12:0 a.m.17 views

Exim MTA string_format Remote Code Execution (CVE-2010-4344)

The Exim mail server is a full featured mail transfer agent MTA used in Unix-like platforms. It contains implementations of SMTP server for incoming messages as well ,as a SMTP or LMTP client for incoming email. A heap buffer overflow vulnerability has been reported in Exim Mail Transfer Agent MT...

9.3CVSS9.8AI score0.71794EPSS
Exploits6
Packet Storm
Packet Storm
added 2010/10/13 12:0 a.m.20 views

Generic Web Application Unix Command Execution

$Id: genericexec.rb 10642 2010-10-11 19:30:57Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

0.6AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2010/05/12 12:0 a.m.5 views

Ingres Database iidbms Heap Overflow

Ingres Database is a relational database product available for both Windows and Unix-like platforms. A vulnerability has been reported in Ingres Database that could be exploited by remote attackers to compromise a vulnerable system. The vulnerability is due to insufficient boundary checking in th...

8AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2010/01/21 12:0 a.m.7 views

Update Protection against Zeus Web Server SSL2_Client_Hello Buffer Overflow

Zeus Web Server is a web server for Unix and Unix-like platforms. A buffer overflow was detected in Zeus Web Server SSL2 implementation SSL2CLIENTHELLO...

7.4AI score
Exploits0
Rows per page
Query Builder