67 matches found
OSV-2024-1071 Use-of-uninitialized-value in Poco::Dynamic::Var::~Var
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=42538385 Crash type: Use-of-uninitialized-value Crash state: Poco::Dynamic::Var::Var void Poco::JSON::Object::doStringifystd::1::mapstd::1::basicstringchar, Poco::JWT::Serializer::serialize...
AnythingLLM Operating System Command Injection Vulnerability
AnythingLLM is a document chatbot that meets business requirements. AnythingLLM suffers from an operating system command injection vulnerability that stems from improper handling of environment variables, leading to remote code execution...
CVE-2024-0762
Potential buffer overflow in unsafe UEFI variable handling in Phoenix SecureCore™ for select Intel platforms This issue affects: Phoenix SecureCore™ for Intel Kaby Lake: from 4.0.1.1 before 4.0.1.998; Phoenix SecureCore™ for Intel Coffee Lake: from 4.1.0.1 before 4.1.0.562; Phoenix SecureCore™ fo...
CVE-2024-0762
Potential buffer overflow in unsafe UEFI variable handling in Phoenix SecureCore™ for select Intel platforms This issue affects: Phoenix SecureCore™ for Intel Kaby Lake: from 4.0.1.1 before 4.0.1.998; Phoenix SecureCore™ for Intel Coffee Lake: from 4.1.0.1 before 4.1.0.562; Phoenix SecureCore™ fo...
PT-2024-18159 · Phoenix · Phoenix Securecore
Name of the Vulnerable Software and Affected Versions: Phoenix SecureCore for Intel Gemini Lake versions 4.1.0.1 through 4.1.0.566 Description: The issue is related to a potential buffer overflow in unsafe UEFI variable handling. Recommendations: For Phoenix SecureCore for Intel Gemini Lake...
SUSE CVE-2015-1877
The opengenericxdgmime function in xdg-open in xdg-utils 1.1.0 rc1 in Debian, when using dash, does not properly handle local variables, which allows remote attackers to execute arbitrary commands via a crafted file...
CVE-2022-32786
An issue in the handling of environment variables was addressed with improved validation. This issue is fixed in Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, macOS Monterey 12.5. An app may be able to modify protected parts of the file system...
CVE-2022-31739
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of when downloading files on Windows, the % character was not escaped, which could have led to a download incorrectly saved to attacker-influenced paths that used variables such as %HOMEPATH% or %APPDATA%...
SQL Injection
Overview blazer is an allows you to explore your data with SQL. Easily create charts and dashboards, and share them with your team. Affected versions of this package are vulnerable to SQL Injection by allowing specific variable values to modify the query rather than just the variable. This can...
PT-2021-5667 · Gerbv +3 · Gerbv +3
Name of the Vulnerable Software and Affected Versions: Gerbv versions 2.7.0 and dev commit b5f1eacd Gerbv forked version commit 71493260 Description: An out-of-bounds write issue exists in the RS-274X aperture macro variables handling functionality. This can be triggered by a specially-crafted...
OPENSUSE-SU-2020:1497-1 Security update for singularity
This update for singularity fixes the following issues: New version 3.6.3, addresses the following security issues: - CVE-2020-25039, boo1176705 When a Singularity action command run, shell, exec is run with the fakeroot or user namespace option, Singularity will extract a container image to a...
The vulnerability of Visual Studio Code’s source editor lies in its error handling after a project is opened, allowing an attacker to execute arbitrary code.
The vulnerability of Visual Studio Code’s source editor is related to a error in variable handling after a project is opened. Exploiting this vulnerability could allow an attacker to execute arbitrary code remotely...
Access Restriction Bypass
The Common UNIX Printing System CUPS is vulnerable to local privilege escalation to root due to insecure environment variable handling...
Design/Logic Flaw
pam-python before 1.0.7-1 has an issue in regard to the default environment variable handling of Python, which could allow for local root escalation in certain PAM setups...
CVE-2019-16729
pam-python before 1.0.7-1 has an issue in regard to the default environment variable handling of Python, which could allow for local root escalation in certain PAM setups...
The vulnerability of Visual Studio Code’s source editor, related to a bug in file handling after opening a project, allows attackers to modify file access rights and execute arbitrary code.
The vulnerability of Visual Studio Code’s source editor is related to a error in variable handling after a project is opened. Exploiting this vulnerability could allow an attacker to modify file access rights and execute arbitrary code...
Staubli Jacquard Industrial System JC6 Shellshock Vulnerability
Staubli Jacquard Industrial System JC6 suffers from a bash environment variable handling code injection vulnerability. Exploit Title: Staubli Jacquard Industrial System | GNU Bash Environment Variable Handling Code Injection Shellshock Exploit Author: t4rkd3vilz Vendor Homepage:...
Privilege escalation
Insecure SPANK environment variable handling exists in SchedMD Slurm before 16.05.11, 17.x before 17.02.9, and 17.11.x before 17.11.0rc2, allowing privilege escalation to root during Prolog or Epilog execution...
CVE-2014-9680
sudo before 1.8.12 does not ensure that the TZ environment variable is associated with a zoneinfo file, which allows local users to open arbitrary files for read access but not view file contents by running a program within an sudo session, as demonstrated by interfering with terminal output,...
SUSE-SU-2016:2904-1 Security update for sudo
This update for sudo fixes the following security issues: - Fix two security vulnerabilities that allowed users to bypass sudo's NOEXEC functionality: noexec bypass via system and popen CVE-2016-7032, bsc1007766 noexec bypass via wordexp CVE-2016-7076, bsc1007501 - Fix unsafe handling of TZ...