Lucene search
K

4 matches found

UbuntuCve
UbuntuCve
added 2026/03/12 9:16 p.m.4 views

CVE-2026-1527

ImpactWhen an application passes user-controlled input to the upgrade option of client.request, an attacker can inject CRLF sequences \r\n to: Inject arbitrary HTTP headers Terminate the HTTP request prematurely and smuggle raw data to non-HTTP services Redis, Memcached, Elasticsearch The...

4.6CVSS6AI score0.00256EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/09/02 4:7 a.m.3 views

postgresql: PostgreSQL executes arbitrary code in restore operation

A flaw was found in PostgreSQL. This vulnerability allows a malicious user of the PostgreSQL server to inject arbitrary code in dump files created by pgdump, pgdumpall, pgrestore, and pgupgrade, causing arbitrary code execution on the client machine or SQL injection when these dump files are...

8.8CVSS7.9AI score0.00385EPSS
Exploits0References5
OSV
OSV
added 2021/01/06 1:15 a.m.4 views

CVE-2020-36169

An issue was discovered in Veritas NetBackup through 8.3.0.1 and OpsCenter through 8.3.0.1. Processes using OpenSSL attempt to load and execute libraries from paths that do not exist by default on the Windows operating system. By default, on Windows systems, users can create directories under the...

8.8CVSS7.5AI score0.00435EPSS
Exploits0References1
CNVD
CNVD
added 2016/12/17 12:0 a.m.7 views

APT-Repository Signature Bypass Vulnerability

APT-Repository is an installation package management library for Linux. APT-Repository suffers from a signature bypass vulnerability that stems from a memory allocation failure during apt-get upgrade, which can be exploited by an attacker to bypass security restrictions and perform unauthorized...

5.9CVSS7AI score0.07308EPSS
Exploits2References1
Rows per page
Query Builder