Lucene search
+L

106 matches found

OSV
OSV
added 2024/01/23 6:35 p.m.18 views

GO-2024-2471 Chain halt panic in github.com/cometbft/cometbft

A vulnerability in CometBFT’s validation logic for VoteExtensionsEnableHeight can result in a chain halt when triggered through a governance parameter change proposal on an ABCI2 Application Chain. If a parameter change proposal including a VoteExtensionsEnableHeight modification is passed, nodes...

7.1AI score
Exploits0References2
OSV
OSV
added 2024/01/19 3:28 p.m.14 views

GHSA-QR8R-M495-7HC4 Validation of `VoteExtensionsEnableHeight` can cause chain halt in Go package github.com/cometbft/cometbft

Summary A vulnerability in CometBFT’s validation logic for VoteExtensionsEnableHeight can result in a chain halt when triggered through a governance parameter change proposal on an ABCI2 Application Chain. If a parameter change proposal including a VoteExtensionsEnableHeight modification is passe...

6.7AI score
Exploits0References3
Github Security Blog
Github Security Blog
added 2024/01/19 3:28 p.m.21 views

Validation of `VoteExtensionsEnableHeight` can cause chain halt in Go package github.com/cometbft/cometbft

Summary A vulnerability in CometBFT’s validation logic for VoteExtensionsEnableHeight can result in a chain halt when triggered through a governance parameter change proposal on an ABCI2 Application Chain. If a parameter change proposal including a VoteExtensionsEnableHeight modification is passe...

6.7AI score
Exploits0References3Affected Software1
CVE
CVE
added 2023/12/30 12:0 a.m.53 views

CVE-2022-46486

SCONE CVE-2022-46486 affects the Confidential Computing Platform where the __scone_dispatch component in Intel SGX-enabled deployments lacks pointer-validation logic in versions before 5.8.0. This flaw can allow an attacker to access sensitive information. Affected software: SCONE prior to 5.8.0 ...

5.5CVSS5.4AI score0.00335EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2023/12/27 12:30 a.m.33 views

Open redirect vulnerability in Flask-Security-Too

An open redirect vulnerability in the python package Flask-Security-Too =2.1.0 the autocorrectlocationheader configuration was changed to False - which means that location headers in redirects are relative by default. Thus, this issue may impact applications that were previously not impacted, if...

6.1CVSS6.9AI score0.01079EPSS
Exploits1References7Affected Software1
OSV
OSV
added 2023/12/27 12:30 a.m.16 views

GHSA-672H-6X89-76M5 Open redirect vulnerability in Flask-Security-Too

An open redirect vulnerability in the python package Flask-Security-Too =2.1.0 the autocorrectlocationheader configuration was changed to False - which means that location headers in redirects are relative by default. Thus, this issue may impact applications that were previously not impacted, if...

6.1CVSS6AI score0.01079EPSS
Exploits1References6
Veracode
Veracode
added 2023/12/22 7:35 a.m.35 views

Open Redirect

Keycloak Services is vulnerable to Open Redirect. The vulnerability is due to the redirecturi validation logic within RedirectUtils.java. This allows an attacker to steal an access token by bypassing the allowed host validation...

7.1CVSS6.5AI score0.0095EPSS
Exploits0References17Affected Software1
RedHat Linux
RedHat Linux
added 2023/12/14 7:1 p.m.47 views

Important: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.6 security update on RHEL 8

New Red Hat Single Sign-On 7.6.6 packages are now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.7CVSS6.6AI score0.01239EPSS
Exploits2References4
Code423n4
Code423n4
added 2023/11/10 12:0 a.m.8 views

Vulnerability in Token Withdrawal Function

Lines of code Vulnerability details Impact Flawed logic in token withdrawal function allows for selective withdrawal of high-value tokens and fails in single-token scenarios. // Sum up total amount of each token to withdraw. uint256 memory withdrawAmounts = new uint256; IERC20 prevToken; for...

7AI score
Exploits0
NVD
NVD
added 2023/11/07 6:15 p.m.25 views

CVE-2023-46744

Squidex is an open source headless CMS and content management hub. In affected versions a stored Cross-Site Scripting XSS vulnerability enables privilege escalation of authenticated users. The SVG element filtering mechanism intended to stop XSS attacks through uploaded SVG images, is insufficien...

5.4CVSS0.00499EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2023/10/31 12:0 a.m.35 views

Ubuntu: Security Advisory (USN-6458-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.8AI score0.02639EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/09/07 12:0 a.m.31 views

CVE-2023-41061

A validation issue was addressed with improved logic. This issue is fixed in watchOS 9.6.2, iOS 16.6.1 and iPadOS 16.6.1. A maliciously crafted attachment may result in arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. Recent assessments:...

7.8CVSS7.2AI score0.03151EPSS
In wildExploits0References7
OpenVAS
OpenVAS
added 2023/08/30 12:0 a.m.14 views

MyBB < 1.8.36 RCE Vulnerability

MyBB is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mybb:mybb";...

7.2CVSS7.3AI score0.01641EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/06/02 12:0 a.m.41 views

CVE-2023-33476

ReadyMedia MiniDLNA versions from 1.1.15 up to 1.3.2 is vulnerable to Buffer Overflow. The vulnerability is caused by incorrect validation logic when handling HTTP requests using chunked transport encoding. This results in other code later using attacker-controlled chunk values that exceed the...

9.6AI score0.02061EPSS
Exploits2References6
Veracode
Veracode
added 2022/07/18 4:33 a.m.172 views

Path Traversal

aws-java-sdk-s3 is vulnerable to path traversal. The vulnerability exists due to the insufficient guard logic used for the download directory in the leavesRoot function of TransferManager.java, allowing an attacker to access files from the S3 bucket that is one level up in the file system by...

7.9CVSS6.5AI score0.01431EPSS
Exploits1References2Affected Software2
Github Security Blog
Github Security Blog
added 2022/07/15 8:44 p.m.103 views

Partial Path Traversal in com.amazonaws:aws-java-sdk-s3

Overview A partial-path traversal issue exists within the downloadDirectory method in the AWS S3 TransferManager component of the AWS SDK for Java v1. Applications using the SDK control the destinationDirectory argument, but S3 object keys are determined by the application that uploaded the...

7.9CVSS7.6AI score0.01431EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2022/07/15 5:45 p.m.12 views

CVE-2022-31159 Partial Path Traversal in com.amazonaws:aws-java-sdk-s3

The AWS SDK for Java enables Java developers to work with Amazon Web Services. A partial-path traversal issue exists within the downloadDirectory method in the AWS S3 TransferManager component of the AWS SDK for Java v1 prior to version 1.12.261. Applications using the SDK control the...

7.9CVSS7.9AI score0.01431EPSS
Exploits1References1
NVD
NVD
added 2022/05/03 8:15 p.m.23 views

CVE-2022-28781

Improper input validation in Settings prior to SMR-May-2022 Release 1 allows attackers to launch arbitrary activity with system privilege. The patch adds proper validation logic to check the caller...

7.7CVSS0.00137EPSS
Exploits0References1
Prion
Prion
added 2022/05/03 8:15 p.m.21 views

Input validation

Improper input validation in Settings prior to SMR-May-2022 Release 1 allows attackers to launch arbitrary activity with system privilege. The patch adds proper validation logic to check the caller...

7.2CVSS6.5AI score0.00137EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/05/03 7:40 p.m.32 views

CVE-2022-28783

Improper validation of removing package name in Galaxy Themes prior to SMR May-2022 Release 1 allows attackers to uninstall arbitrary packages without permission. The patch adds proper validation logic for removing package name...

6.2CVSS7.2AI score0.00097EPSS
Exploits0References1
Rows per page
Query Builder