Lucene search
K

10 matches found

Github Security Blog
Github Security Blog
added 2026/02/27 3:50 p.m.8 views

AWS CLI: cli_history database does not restrict file permissions on Unix systems

Summary AWS CLI is a command line tool for interacting with AWS services. When the clihistory feature is enabled, the history database file is created with default permissions, potentially allowing other local users on a multi-user system to read the file. Impact When clihistory is enabled, AWS C...

6AI score
Exploits0References2Affected Software1
OSV
OSV
added 2025/10/24 2:34 p.m.8 views

OESA-2025-2538 python3 security update

Python combines remarkable power with very clear syntax. It has modules, classes, exceptions, very high level dynamic data types, and dynamic typing. There are interfaces to many system calls and libraries, as well as to various windowing systems. New built-in modules are easily written in C or C...

7.5CVSS7.7AI score0.01109EPSS
Exploits8References5
Microsoft KB
Microsoft KB
added 2025/10/14 12:0 a.m.10 views

Support for Windows Server 2016 will end in January 2027

Support for Windows Server 2016 will end in January 2027 We recommend upgrading to the latest version of Windows Server. Running the latest version of Windows Server allows you to use the latest features – including the latest security features – and delivers the best performance.To learn more...

6.9AI score
Exploits0
Gentoo Linux
Gentoo Linux
added 2025/06/12 12:0 a.m.7 views

OpenImageIO: Multiple Vulnerabilities

Background OpenImageIO is a library for reading and writing images. Description Multiple vulnerabilities have been discovered in OpenImageIO. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no kno...

9.8CVSS7.6AI score0.01344EPSS
Exploits6
Positive Technologies
Positive Technologies
added 2024/07/16 12:0 a.m.9 views

PT-2024-28639

Name of the Vulnerable Software and Affected Versions JupyterLab extension template versions prior to 4.3.0 Description The JupyterLab extension template has a remote code execution RCE vulnerability in the update-integration-tests.yml workflow. This issue affects repositories created using the...

9.9CVSS7.7AI score0.01024EPSS
Exploits3References16
Gentoo Linux
Gentoo Linux
added 2024/07/05 12:0 a.m.42 views

WebKitGTK+: Multiple Vulnerabilities

Background WebKitGTK+ is a full-featured port of the WebKit rendering engine, suitable for projects requiring any kind of web integration, from hybrid HTML/CSS applications to full-fledged web browsers. Description Multiple vulnerabilities have been discovered in WebKitGTK+. Please review the CVE...

9.8CVSS7.7AI score0.10593EPSS
Exploits6
OSV
OSV
added 2024/03/19 5:15 p.m.4 views

CVE-2024-21677

This High severity Path Traversal vulnerability was introduced in version 6.13.0 of Confluence Data Center. This Path Traversal vulnerability, with a CVSS Score of 8.3, allows an unauthenticated attacker to exploit an undefinable vulnerability which has high impact to confidentiality, high impact...

8.8CVSS5.8AI score0.00926EPSS
Exploits0References2
OSV
OSV
added 2022/10/19 12:15 p.m.4 views

ALPINE-CVE-2022-39260

Git is an open source, scalable, distributed revision control system. git shell is a restricted login shell that can be used to implement Git's push/pull functionality via SSH. In versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4, the function that splits the...

8.8CVSS8.6AI score0.02938EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2011/07/08 9:29 a.m.5 views

Internet Explorer vulnerable to cross-site scripting

Overview Microsoft Internet Explorer contains a vulnerability in handling specific character encoding which may result in a cross-site scripting attack. Microsoft Internet Explorer contains a vulnerability in handling specific EUC-JP encoded characters, which may result in cross-site scripting...

2.6CVSS5.8AI score
Exploits0References3
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2008/05/20 3:0 p.m.4 views

NetCommons cross-site scripting vulnerability

Overview NetCommons from the NetCommons Project contains a cross-site scripting vulnerability. NetCommons from the NetCommons Project is an open source content management system which provides e-learning and groupware functions. NetCommons contains a cross-site scripting vulnerability. This...

4.3CVSS6.3AI score0.01223EPSS
Exploits0References9
Rows per page
Query Builder