Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9593 matches found

Prion
Prionadded 2024/02/22 5:15 p.m.26 views

Design/Logic Flaw

In the Linux kernel, the following vulnerability has been resolved: bpf: Reject variable offset alu on PTRTOFLOWKEYS For PTRTOFLOWKEYS, checkflowkeysaccess only uses fixed off for validation. However, variable offset ptr alu is not prohibited for this ptr kind. So the variable offset is not...

7.4AI score0.00021EPSS
Exploits0References5
OSV
OSVadded 2024/02/22 5:15 p.m.1 views

UBUNTU-CVE-2023-52452

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix accesses to uninit stack slots Privileged programs are supposed to be able to read uninitialized stack memory ever since 6715df8d5 but, before this patch, these accesses were permitted inconsistently. In particular,...

7.8CVSS6.2AI score0.00015EPSS
Exploits0References13
OSV
OSVadded 2024/02/22 4:13 p.m.4 views

CVE-2024-26589 bpf: Reject variable offset alu on PTR_TO_FLOW_KEYS

In the Linux kernel, the following vulnerability has been resolved: bpf: Reject variable offset alu on PTRTOFLOWKEYS For PTRTOFLOWKEYS, checkflowkeysaccess only uses fixed off for validation. However, variable offset ptr alu is not prohibited for this ptr kind. So the variable offset is not...

7.8CVSS5.9AI score0.00021EPSS
Exploits0References8
Vulnrichment
Vulnrichmentadded 2024/02/22 4:13 p.m.33 views

CVE-2024-26589 bpf: Reject variable offset alu on PTR_TO_FLOW_KEYS

In the Linux kernel, the following vulnerability has been resolved: bpf: Reject variable offset alu on PTRTOFLOWKEYS For PTRTOFLOWKEYS, checkflowkeysaccess only uses fixed off for validation. However, variable offset ptr alu is not prohibited for this ptr kind. So the variable offset is not...

6.7AI score0.00021EPSS
Exploits0References5
Debian CVE
Debian CVEadded 2024/02/22 4:13 p.m.36 views

CVE-2024-26589

In the Linux kernel, the following vulnerability has been resolved: bpf: Reject variable offset alu on PTRTOFLOWKEYS For PTRTOFLOWKEYS, checkflowkeysaccess only uses fixed off for validation. However, variable offset ptr alu is not prohibited for this ptr kind. So the variable offset is not...

7.8CVSS6.8AI score0.00021EPSS
Exploits0
NVD
NVDadded 2024/02/22 5:15 a.m.11 views

CVE-2024-23137

A maliciously crafted STP or SLDPRT file, when parsed in ODXSWDLL.dll through Autodesk applications, can be used to uninitialized variables. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process...

7.8CVSS6.9AI score0.02823EPSS
Exploits0References3
Prion
Prionadded 2024/02/22 5:15 a.m.13 views

Security feature bypass

A maliciously crafted STP or SLDPRT file when ODXSWDLL.dll parsed through Autodesk AutoCAD can be used to uninitialized variable. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process...

7.6AI score0.02823EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/02/22 4:49 a.m.21 views

CVE-2024-23137 Multiple Vulnerabilities in the Autodesk AutoCAD Desktop Software

A maliciously crafted STP or SLDPRT file, when parsed in ODXSWDLL.dll through Autodesk applications, can be used to uninitialized variables. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process...

7.8CVSS7.2AI score0.02823EPSS
Exploits0References3
CNNVD
CNNVDadded 2024/02/22 12:0 a.m.3 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a security vulnerability that stems from not checking the offset of variables...

7.8CVSS7.7AI score0.00021EPSS
Exploits0References7
UbuntuCve
UbuntuCveadded 2024/02/22 12:0 a.m.54 views

CVE-2024-26589

In the Linux kernel, the following vulnerability has been resolved: bpf: Reject variable offset alu on PTRTOFLOWKEYS For PTRTOFLOWKEYS, checkflowkeysaccess only uses fixed off for validation. However, variable offset ptr alu is not prohibited for this ptr kind. So the variable offset is not...

7.8CVSS6.3AI score0.00021EPSS
Exploits0References13
OSV
OSVadded 2024/02/21 11:15 p.m.3 views

AZL-38497 CVE-2024-26147 affecting package helm for versions less than 3.13.2-3

Helm is a package manager for Charts for Kubernetes. Versions prior to 3.14.2 contain an uninitialized variable vulnerability when Helm parses index and plugin yaml files missing expected content. When either an index.yaml file or a plugins plugin.yaml file were missing all metadata a panic would...

7.5CVSS7AI score0.00294EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2024/02/21 11:15 p.m.25 views

CVE-2024-26147

Helm is a package manager for Charts for Kubernetes. Versions prior to 3.14.2 contain an uninitialized variable vulnerability when Helm parses index and plugin yaml files missing expected content. When either an index.yaml file or a plugins plugin.yaml file were missing all metadata a panic would...

7.5CVSS6.9AI score0.00294EPSS
Exploits0References3
Prion
Prionadded 2024/02/21 11:15 p.m.19 views

Hardcoded credentials

Helm is a package manager for Charts for Kubernetes. Versions prior to 3.14.2 contain an uninitialized variable vulnerability when Helm parses index and plugin yaml files missing expected content. When either an index.yaml file or a plugins plugin.yaml file were missing all metadata a panic would...

5CVSS7.5AI score0.00294EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/02/21 10:21 p.m.28 views

CVE-2024-26147 Helm's Missing YAML Content Leads To Panic

Helm is a package manager for Charts for Kubernetes. Versions prior to 3.14.2 contain an uninitialized variable vulnerability when Helm parses index and plugin yaml files missing expected content. When either an index.yaml file or a plugins plugin.yaml file were missing all metadata a panic would...

7.5CVSS7.7AI score0.00294EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/02/21 10:21 p.m.22 views

CVE-2024-26147 Helm's Missing YAML Content Leads To Panic

Helm is a package manager for Charts for Kubernetes. Versions prior to 3.14.2 contain an uninitialized variable vulnerability when Helm parses index and plugin yaml files missing expected content. When either an index.yaml file or a plugins plugin.yaml file were missing all metadata a panic would...

7.5CVSS7.6AI score0.00294EPSS
Exploits0References2
OSV
OSVadded 2024/02/21 10:21 p.m.27 views

CVE-2024-26147 Helm's Missing YAML Content Leads To Panic

Helm is a package manager for Charts for Kubernetes. Versions prior to 3.14.2 contain an uninitialized variable vulnerability when Helm parses index and plugin yaml files missing expected content. When either an index.yaml file or a plugins plugin.yaml file were missing all metadata a panic would...

7.5CVSS7.6AI score0.00294EPSS
Exploits0References4
CVE
CVEadded 2024/02/21 10:21 p.m.336 views

CVE-2024-26147

CVE-2024-26147 affects Helm before 3.14.2. When Helm parses index.yaml or plugins/plugin.yaml with missing content, an uninitialized variable can cause a panic. In the Helm SDK this is exposed via LoadIndexFile, DownloadIndexFile, or LoadDir, and in the Helm client it can affect repo-adding workf...

7.5CVSS7.6AI score0.00294EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2024/02/21 10:15 p.m.1 views

CVE-2023-52155

A SQL Injection vulnerability in /admin/sauvegarde/run.php in PMB 7.4.7 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via the sauvegardes variable through the /admin/sauvegarde/run.php endpoint...

7.2CVSS6.1AI score0.00399EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2024/02/21 10:15 p.m.0 views

CVE-2023-52155

A SQL Injection vulnerability in /admin/sauvegarde/run.php in PMB 7.4.7 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via the sauvegardes variable through the /admin/sauvegarde/run.php endpoint...

7.2CVSS6.2AI score0.00399EPSS
Exploits1References2
OSV
OSVadded 2024/02/21 12:4 a.m.12 views

GHSA-3366-9287-7QPR Path disclosure in JavaScript variable

Impact Path disclosure in JavaScript variable Patches Patch in PrestaShop 8.1.4 References https://owasp.org/www-community/attacks/FullPathDisclosure Thanks to https://github.com/hugo-fasone...

5.8CVSS5.2AI score0.003EPSS
Exploits0References5
Rows per page
Query Builder