Lucene search
K

178 matches found

OSV
OSV
added 2022/11/08 6:20 a.m.20 views

RLSA-2022:7461 Moderate: libreoffice security update

LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and...

6.2CVSS7.6AI score0.00965EPSS
Exploits0References2
OSV
OSV
added 2022/07/13 9:26 a.m.9 views

SUSE-SU-2022:2382-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-29900, CVE-2022-29901: Fixed the RETBLEED attack, a new Spectre like Branch Target Buffer attack, that can leak arbitrary kernel information bsc1199657....

8.2CVSS8.3AI score0.04947EPSS
Exploits4References53
Code423n4
Code423n4
added 2022/06/03 12:0 a.m.7 views

LidoVault: require(msg.value == 0);

Reference: 2 Impact 8 Consider adding here requiremsg.value == 0; since it is non-ETH token. Affected code: --- The text was updated successfully, but these errors were encountered: All reactions...

7AI score
Exploits0
Vulnrichment
Vulnrichment
added 2022/05/26 7:24 p.m.5 views

CVE-2022-26769

A memory corruption issue was addressed with improved input validation. This issue is fixed in Security Update 2022-004 Catalina, macOS Monterey 12.4, macOS Big Sur 11.6.6. A malicious application may be able to execute arbitrary code with kernel privileges...

7.6AI score0.00943EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/03/18 6:15 p.m.7 views

CVE-2022-22578

A logic issue was addressed with improved validation. This issue is fixed in tvOS 15.3, iOS 15.3 and iPadOS 15.3, watchOS 8.4, macOS Monterey 12.2. A malicious application may be able to gain root privileges...

9.3CVSS7.3AI score0.00945EPSS
Exploits0References5
OSV
OSV
added 2022/03/18 6:15 p.m.0 views

CVE-2022-22578

A logic issue was addressed with improved validation. This issue is fixed in tvOS 15.3, iOS 15.3 and iPadOS 15.3, watchOS 8.4, macOS Monterey 12.2. A malicious application may be able to gain root privileges...

7.8CVSS5.8AI score0.00945EPSS
Exploits0References4
OSV
OSV
added 2022/03/18 6:15 p.m.0 views

CVE-2022-22584

A memory corruption issue was addressed with improved validation. This issue is fixed in tvOS 15.3, iOS 15.3 and iPadOS 15.3, watchOS 8.4, macOS Monterey 12.2. Processing a maliciously crafted file may lead to arbitrary code execution...

7.8CVSS6AI score0.01509EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/03/18 6:15 p.m.6 views

CVE-2022-22583

A permissions issue was addressed with improved validation. This issue is fixed in Security Update 2022-001 Catalina, macOS Monterey 12.2, macOS Big Sur 11.6.3. An application may be able to access restricted files...

5.5CVSS6AI score0.01633EPSS
Exploits0References4
Prion
Prion
added 2022/02/04 11:15 p.m.34 views

Buffer overflow

Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would allow limited reads and writes outside of arrays in TFLite. This exploits missing validation in the conversion from sparse tensors to dense tensors. The fix is included in TensorFlow 2.8.0. We...

6.5CVSS8.6AI score0.00837EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2021/09/28 5:11 a.m.4 views

OPENSUSE-SU-2021:1313-1 Security update for nodejs14

This update for nodejs14 fixes the following issues: - CVE-2021-3672: Fixed missing input validation on hostnames bsc1188881. - CVE-2021-22931: Fixed improper handling of untypical characters in domain names bsc1189370. - CVE-2021-22940: Use after free on close http2 on stream canceling bsc118936...

9.8CVSS7.8AI score0.37286EPSS
Exploits3References11
OSV
OSV
added 2021/09/23 2:22 p.m.7 views

OPENSUSE-SU-2021:3211-1 Security update for nodejs14

This update for nodejs14 fixes the following issues: - CVE-2021-3672: Fixed missing input validation on hostnames bsc1188881. - CVE-2021-22931: Fixed improper handling of untypical characters in domain names bsc1189370. - CVE-2021-22940: Use after free on close http2 on stream canceling bsc118936...

9.8CVSS7.8AI score0.37286EPSS
Exploits3References11
OSV
OSV
added 2021/09/08 3:15 p.m.0 views

CVE-2021-1840

A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. A local attacker may be able to elevate their privileges...

7.8CVSS5.8AI score0.00337EPSS
Exploits0References3
OSV
OSV
added 2021/09/03 7:22 a.m.5 views

SUSE-SU-2021:2940-1 Security update for python39

This update for python39 fixes the following issues: - CVE-2021-29921: Fixed improper input validation of octal string IP addresses bsc1185706. - Use versioned python-Sphinx to avoid dependency on other version of Python bsc1183858. - Stop providing 'python' symbol bsc1185588, which means python2...

9.8CVSS9.5AI score0.06827EPSS
Exploits1References5
Debian
Debian
added 2021/08/31 5:30 p.m.25 views

[SECURITY] [DLA 2752-1] squashfs-tools security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2752-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz August 31, 2021 https://wiki.debian.org/LTS -...

8.1CVSS8.3AI score0.025EPSS
Exploits1
OSV
OSV
added 2021/08/10 10:21 a.m.6 views

OPENSUSE-SU-2021:1130-1 Security update for php7

This update for php7 fixes the following issues: - CVE-2021-21704: Fixed security issues in pdofirebase module bsc1188035. - CVE-2021-21705: Fixed SSRF bypass in FILTERVALIDATEURL bsc1188037. This update was imported from the SUSE:SLE-15-SP2:Update update project...

5.9CVSS6AI score0.01945EPSS
Exploits2References5
RedHat Linux
RedHat Linux
added 2020/11/04 1:21 a.m.7 views

webkitgtk: Non-unique security origin for DOM object contexts

A logic issue was addressed with improved validation. This issue is fixed in iCloud for Windows 7.17, iTunes 12.10.4 for Windows, iCloud for Windows 10.9.2, tvOS 13.3.1, Safari 13.0.5, iOS 13.3.1 and iPadOS 13.3.1. A DOM object context may not have had a unique security origin...

7.8CVSS6.7AI score0.00399EPSS
Exploits0References5
OSV
OSV
added 2020/10/27 9:15 p.m.4 views

CVE-2019-8857

The issue was addressed with improved validation when an iCloud Link is created. This issue is fixed in iOS 13.3 and iPadOS 13.3. Live Photo audio and video data may be shared via iCloud links even if Live Photo is disabled in the Share Sheet carousel...

3.3CVSS5.7AI score0.00295EPSS
Exploits0References1
OSV
OSV
added 2020/10/27 8:15 p.m.0 views

CVE-2019-8737

A denial of service issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, macOS Catalina 10.15. An attacker in a privileged position may be able to perform a denial of service attack...

6.5CVSS6.8AI score0.00856EPSS
Exploits0References2
OSV
OSV
added 2020/10/27 8:15 p.m.1 views

CVE-2019-8564

A logic issue was addressed with improved validation. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. An attacker in a privileged network position can modify driver state...

7.5CVSS6.7AI score0.01009EPSS
Exploits0References1
OSV
OSV
added 2020/10/22 6:15 p.m.6 views

CVE-2020-3915

A path handling issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. A malicious application may be able to overwrite arbitrary files...

7.8CVSS7.2AI score0.00284EPSS
Exploits0References1
Rows per page
Query Builder