Lucene search
K

256 matches found

Github Security Blog
Github Security Blog
added 2026/02/02 8:50 p.m.12 views

picklescan vulnerable to arbitrary file create using logging.FileHandler

Summary Unsafe pickle deserialization allows unauthenticated attackers to perform Arbitrary File Creation. By chaining the logging.FileHandler class, an attacker can bypass RCE-focused blocklists to create empty files on the server. The vulnerability allows creating zero-byte files in arbitrary...

5.8AI score
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.18 views

PT-2026-51155

Name of the Vulnerable Software and Affected Versions picklescan versions prior to 1.0.1 Description Unsafe pickle deserialization allows unauthenticated attackers to create arbitrary zero-byte files. This is achieved through the instantiation of the logging.FileHandler class. By crafting malicio...

6.9CVSS6.5AI score0.00288EPSS
Exploits1References16
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : c-ares-1.13.0-6.el8.2 (AXSA:2023-6142:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6142:03 advisory. c-ares: 0-byte UDP payload Denial of Service CVE-2023-32067 Tenable has extracted the preceding description block directly from the MiracleLinux security...

7.5CVSS8.2AI score0.01577EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.7 views

MiracleLinux 9 : c-ares-1.17.1-5.el9.1 (AXSA:2023-6019:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6019:01 advisory. c-ares: 0-byte UDP payload Denial of Service CVE-2023-32067 Tenable has extracted the preceding description block directly from the MiracleLinux security...

7.5CVSS7.9AI score0.01577EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

MiracleLinux 7 : libssh2-1.8.0-3.el7 (AXSA:2019-4034:04)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2019-4034:04 advisory. libssh2: Zero-byte allocation with a specially crafted SFTP packed leading to an out-of-bounds read CVE-2019-3858 libssh2: Out-of-bounds reads with...

9.1CVSS7.5AI score0.06448EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.2 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000740)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000740 advisory. The hashaccept function in crypto/algifhash.c in the Linux kernel before 4.3.6 allows local users to cause a denial of service OOPS by attempting to trigger use of...

5.5CVSS6.5AI score0.00426EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003151)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003151 advisory. The hashaccept function in crypto/algifhash.c in the Linux kernel before 4.3.6 allows local users to cause a denial of service OOPS by attempting to trigger use of...

5.5CVSS6.5AI score0.00426EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002915)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002915 advisory. The hashaccept function in crypto/algifhash.c in the Linux kernel before 4.3.6 allows local users to cause a denial of service OOPS by attempting to trigger use of...

5.5CVSS6.5AI score0.00426EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.4 views

PT-2026-28490

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 7.1.2-18 ImageMagick versions prior to 6.9.13-43 Description ImageMagick is software used for editing and manipulating digital images. A flaw exists where a zero-byte out-of-bounds write occurs in the X11 display...

5.5CVSS5.9AI score0.00141EPSS
Exploits0References115
SUSE CVE
SUSE CVE
added 2025/12/10 12:34 a.m.4 views

SUSE CVE-2023-53840

In the Linux kernel, the following vulnerability has been resolved: usb: early: xhci-dbc: Fix a potential out-of-bound memory access If xdbcbulkwrite fails, the values in 'buf' can be anything. So the string is not guaranteed to be NULL terminated when xdbctrace is called. Reserve an extra byte,...

5.5CVSS6.5AI score0.00206EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.5 views

Siemens SIMATIC Devices Improper Check for Unusual or Exceptional Conditions (CVE-2024-25739)

createemptylvol in drivers/mtd/ubi/vtbl.c in the Linux kernel through 6.7.4 can attempt to allocate zero bytes, and crash, because of a missing check for ubi-lebsize. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEV...

5.5CVSS6.9AI score0.00248EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2005-0213

Malware in sbrugna...

5CVSS6.4AI score0.01699EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-1533

Malware in sbrugna...

5CVSS6.1AI score0.02079EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2001-1395

Malware in sbrugna...

4.6CVSS6.4AI score0.00312EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-3118

Malware in sbrugna...

5.9CVSS5.6AI score0.00601EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2001-1407

Malware in sbrugna...

7.5CVSS6.4AI score0.01913EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2005-1901

Malware in sbrugna...

5CVSS6.4AI score0.0312EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-1518

Malware in sbrugna...

9.1CVSS9AI score0.06224EPSS
Exploits0References16
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2005-1126

Malware in sbrugna...

5CVSS6.2AI score0.01591EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-2481

Malware in sbrugna...

10CVSS6.1AI score0.04323EPSS
Exploits0References12
Rows per page
Query Builder