Lucene search
K

74 matches found

Veracode
Veracode
added 2024/07/10 9:10 a.m.13 views

Improper Verification Of Cryptographic Signature

electron-updater is vulnerable to Improper Verification of Cryptographic Signature. The vulnerability is caused due to improper handling and comparison of file paths, allowing an attacker to bypass signature verification by exploiting environment variable expansion and tricking the application in...

7.5CVSS6.7AI score0.00336EPSS
Exploits1References4Affected Software1
Veracode
Veracode
added 2023/12/25 2:3 p.m.15 views

Denial Of Service

fish:sid is vulnerable to Denial of service. The vulnerability due to allow these markers to be read on command substitution output, rather than transforming them into a safe internal representation. It leads to unexpected behavior with direct input and allow an attacker to execute denial of...

6.6CVSS7.3AI score0.00475EPSS
Exploits1References4Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 6:26 p.m.35 views

K16878: PAM vulnerabilities CVE-2011-3148 and CVE-2011-3149

Security Advisory Description Description CVE-2011-3148 Stack-based buffer overflow in the assembleline function in modules/pamenv/pamenv.c in Linux-PAM aka pam before 1.1.5 allows local users to cause a denial of service crash and possibly execute arbitrary code via a long string of white spaces...

4.6CVSS7.1AI score0.00696EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 6:20 a.m.3 views

SUSE CVE-2004-0747

Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables...

7.8CVSS7.2AI score0.01607EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:52 a.m.3 views

SUSE CVE-2017-2669

Dovecot before version 2.2.29 is vulnerable to a denial of service. When 'dict' passdb and userdb were used for user authentication, the username sent by the IMAP/POP3 client was sent through varexpand to perform %variable expansion. Sending specially crafted %variable fields could result in...

7.5CVSS7AI score0.0464EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:52 a.m.5 views

SUSE CVE-2020-27749

A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that...

7.5CVSS7.3AI score0.00573EPSS
Exploits0References24
RedHat Linux
RedHat Linux
added 2021/09/28 2:40 p.m.3 views

grub2: Stack buffer overflow in grub_parser_split_cmdline()

A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with...

7.2CVSS6.1AI score0.00573EPSS
Exploits0References4
OSV
OSV
added 2021/08/17 10:6 a.m.8 views

OPENSUSE-SU-2021:1162-1 Security update for SUSE Manager Client Tools

This update fixes the following issues: ansible: - The support level for ansible is l2, not l3 dracut-saltboot: - Force installation of libexpat.so.1 bsc1188846 - Use kernel parameters from PXE formula also for local boot golang-github-prometheus-prometheus: - Provide and reload firewalld...

7.5CVSS7.1AI score0.1956EPSS
Exploits0References12
OpenVAS
OpenVAS
added 2021/08/13 12:0 a.m.28 views

openSUSE: Security Advisory for golang-github-prometheus-prometheus (openSUSE-SU-2021:2664-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.5CVSS6.7AI score0.1956EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2021/08/12 12:0 a.m.227 views

Security update for golang-github-prometheus-prometheus (moderate)

openSUSE Security Update: Security update for golang-github-prometheus-prometheus Announcement ID: openSUSE-SU-2021:2664-1 Rating: moderate References: 1186242 SLE-18254 Cross-References: CVE-2021-29622 CVSS scores: CVE-2021-29622 NVD : 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Affected...

6.5CVSS7.2AI score0.1956EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/07/20 10:22 p.m.7 views

grub2: Stack buffer overflow in grub_parser_split_cmdline()

A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with...

7.2CVSS6.1AI score0.00573EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/05/18 1:47 p.m.2 views

grub2: Stack buffer overflow in grub_parser_split_cmdline()

A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with...

7.2CVSS6.1AI score0.00573EPSS
Exploits0References4
OSV
OSV
added 2021/03/26 11:2 a.m.4 views

OESA-2021-1095 grub2 security update

GNU GRUB is a Multiboot boot loader. It was derived from GRUB, the GRand Unified Bootloader, which was originally designed and implemented by Erich Stefan Boleyn. Briefly, a boot loader is the first software program that runs when a computer starts. It is responsible for loading and transferring...

8.2CVSS7.8AI score0.01738EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2021/03/02 9:13 p.m.4 views

grub2: Stack buffer overflow in grub_parser_split_cmdline()

A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with...

7.2CVSS6.1AI score0.00573EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/03/02 9:2 p.m.3 views

grub2: Stack buffer overflow in grub_parser_split_cmdline()

A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with...

7.2CVSS6.1AI score0.00573EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/03/02 8:57 p.m.3 views

grub2: Stack buffer overflow in grub_parser_split_cmdline()

A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with...

7.2CVSS6.1AI score0.00573EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/03/02 7:55 p.m.6 views

grub2: Stack buffer overflow in grub_parser_split_cmdline()

A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with...

7.2CVSS6.1AI score0.00573EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/03/02 7:39 p.m.5 views

grub2: Stack buffer overflow in grub_parser_split_cmdline()

A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with...

7.2CVSS6.1AI score0.00573EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/03/02 7:28 p.m.3 views

grub2: Stack buffer overflow in grub_parser_split_cmdline()

A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with...

7.2CVSS6.1AI score0.00573EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/03/02 7:23 p.m.5 views

grub2: Stack buffer overflow in grub_parser_split_cmdline()

A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with...

7.2CVSS6.1AI score0.00573EPSS
Exploits0References4
Rows per page
Query Builder