Lucene search
K

8 matches found

SUSE CVE
SUSE CVE
added 2025/03/09 2:26 a.m.5 views

SUSE CVE-2020-5209

In NetHack before 3.6.5, unknown options starting with -de and -i can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation. This vulnerability affects systems that have NetHack installed suid/sgid and shared systems that allow users to influence command line...

7.8CVSS8.1AI score0.00803EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/10/06 12:0 a.m.3 views

PT-2024-30891 · Nicejob · Nicejob

Name of the Vulnerable Software and Affected Versions: NiceJob versions prior to 3.6.5 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS on web pages created by NiceJob...

6.5CVSS5.8AI score0.00251EPSS
Exploits0References6
OSV
OSV
added 2023/04/04 1:15 p.m.2 views

DEBIAN-CVE-2023-28998

The Nextcloud Desktop Client is a tool to synchronize files from Nextcloud Server. Starting with version 3.0.0 and prior to version 3.6.5, a malicious server administrator can gain full access to an end-to-end encrypted folder. They can decrypt files, recover the folder structure, and add new...

6.1CVSS6.3AI score0.00679EPSS
Exploits1References1
OSV
OSV
added 2023/04/04 1:15 p.m.2 views

UBUNTU-CVE-2023-28998

The Nextcloud Desktop Client is a tool to synchronize files from Nextcloud Server. Starting with version 3.0.0 and prior to version 3.6.5, a malicious server administrator can gain full access to an end-to-end encrypted folder. They can decrypt files, recover the folder structure, and add new...

6.7CVSS6.6AI score0.00679EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2020/06/19 12:0 a.m.7 views

PT-2020-8464

Name of the Vulnerable Software and Affected Versions: Mattermost Server versions prior to 3.7.3 Mattermost Server versions prior to 3.6.5 Description: An issue was discovered in Mattermost Server. A System Administrator can place a SAML certificate at an arbitrary pathname. Recommendations: For...

9.9CVSS6AI score0.27661EPSS
Exploits45References115
Snyk
Snyk
added 2020/02/16 1:17 p.m.5 views

Command Injection

Overview codecov is a npm package for uploading reports to Codecov. Affected versions of this package are vulnerable to Command Injection. The value provided as part of the gcov-root argument is executed by the exec function within lib/codecov.js. This vulnerability exists due to an incomplete fi...

8.8CVSS7AI score0.02918EPSS
Exploits2References2
OSV
OSV
added 2020/01/28 6:15 p.m.3 views

DEBIAN-CVE-2020-5213

In NetHack before 3.6.5, too long of a value for the SYMBOL configuration file option can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation. This vulnerability affects systems that have NetHack installed suid/sgid and shared systems that allow users to...

9.8CVSS9.3AI score0.01067EPSS
Exploits0References1
OSV
OSV
added 2020/01/28 6:15 p.m.3 views

UBUNTU-CVE-2020-5212

In NetHack before 3.6.5, an extremely long value for the MENUCOLOR configuration file option can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation. This vulnerability affects systems that have NetHack installed suid/sgid and shared systems that allow users...

9.8CVSS6.4AI score0.01067EPSS
Exploits0References3
Rows per page
Query Builder