Lucene search
K
AmazonMost viewed

8850 matches found

Amazon
Amazon
added 2022/08/19 12:0 a.m.69 views

Medium: kernel

Issue Overview: An out-of-bounds write flaw was found in the Linux kernels framebuffer-based console driver functionality in the way a user triggers ioctl FBIOPUTVSCREENINFO with malicious data. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7.8CVSS7.1AI score0.00846EPSS
Exploits1
Amazon
Amazon
added 2022/07/20 12:0 a.m.69 views

Medium: git

Issue Overview: A vulnerability was found in Git. This flaw occurs due to Git not checking the ownership of directories in a local multi-user system when running commands specified in the local repository configuration. This issue allows the owner of the repository to cause arbitrary commands to ...

7.8CVSS7.9AI score0.00445EPSS
Exploits0
Amazon
Amazon
added 2022/04/28 12:0 a.m.69 views

Medium: containerd, docker

Issue Overview: A flaw was found in Moby Docker Engine, where containers were started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to programs with inheritable file capabilities to elevate those capabilities to the permitted set when...

5.9CVSS6AI score0.00492EPSS
Exploits0
Amazon
Amazon
added 2022/03/08 12:0 a.m.69 views

Medium: tomcat8

Issue Overview: The fix for bug CVE-2020-9484 introduced a time of check, time of use vulnerability into Apache Tomcat 10.1.0-M1 to 10.1.0-M8, 10.0.0-M5 to 10.0.14, 9.0.35 to 9.0.56 and 8.5.55 to 8.5.73 that allowed a local attacker to perform actions with the privileges of the user that the Tomc...

7CVSS7.7AI score0.56636EPSS
Exploits15
Amazon
Amazon
added 2021/08/16 12:0 a.m.69 views

Important: kernel

Issue Overview: A flaw was found in the Linux kernel's KVM implementation, where improper handing of the VMIO|VMPFNMAP VMAs in KVM bypasses RO checks and leads to pages being freed while still accessible by the VMM and guest. This flaw allows users who can start and control a VM to read/write...

8.7CVSS6.6AI score0.0066EPSS
Exploits1
Amazon
Amazon
added 2021/07/21 12:0 a.m.69 views

Important: kernel

Issue Overview: An out-of-bounds write flaw was found in the Linux kernel's seqfile in the Filesystem layer. This flaw allows a local attacker with a user privilege to gain access to out-of-bound memory, leading to a system crash or a leak of internal kernel information. The issue results from no...

7.8CVSS7.3AI score0.09808EPSS
Exploits6
Amazon
Amazon
added 2021/07/13 12:0 a.m.69 views

Medium: nspr, nss-softokn, nss-util

Issue Overview: When importing a curve25519 private key in PKCS8format with leading 0x00 bytes, it is possible to trigger an out-of-bounds read in the Network Security Services NSS library. This could lead to information disclosure. This vulnerability affects Firefox ESR 60.8, Firefox 68, and...

10CVSS7.8AI score0.03552EPSS
Exploits1
Amazon
Amazon
added 2021/05/24 12:0 a.m.69 views

Important: thunderbird

Issue Overview: Further techniques that built on the slipstream research combined with a malicious webpage could have exposed both an internal network's hosts as well as services running on the user's local machine. This vulnerability affects Firefox 85 CVE-2021-23991 CVE-2021-23992 CVE-2021-2396...

8.8CVSS7.2AI score0.01764EPSS
Exploits3
Amazon
Amazon
added 2020/11/18 12:0 a.m.69 views

Low: curl

Issue Overview: A flaw was found in libcurl from versions 7.29.0 through 7.71.1. An application that performs multiple requests with libcurl's multi API, and sets the CURLOPTCONNECTONLY option, might experience libcurl using the wrong connection. The highest threat from this vulnerability is to...

7.5CVSS6.8AI score0.03721EPSS
Exploits1
Amazon
Amazon
added 2020/10/28 12:0 a.m.69 views

Important: kernel

Issue Overview: An issue in the HID driver in the Linux kernel may lead to invalid memory access. CVE-2022-20565 In the Linux kernel 5.0.21 and 5.3.11, mounting a crafted btrfs filesystem image, performing some operations, and then making a syncfs system call can lead to a use-after-free in...

7.8CVSS7.4AI score0.03252EPSS
Exploits3
Amazon
Amazon
added 2020/06/03 12:0 a.m.69 views

Important: bind

Issue Overview: A malicious actor who intentionally exploits this lack of effective limitation on the number of fetches performed when processing referrals can, through the use of specially crafted referrals, cause a recursing server to issue a very large number of fetches in an attempt to proces...

8.6CVSS6.9AI score0.93422EPSS
Exploits6
Amazon
Amazon
added 2019/11/19 12:0 a.m.69 views

Medium: glibc

Issue Overview: In the GNU C Library aka glibc or libc6 through 2.28, the getaddrinfo function would successfully parse a string that contained an IPv4 address followed by whitespace and arbitrary characters, which could lead applications to incorrectly assume that it had parsed a valid string,...

5.3CVSS6.2AI score0.00479EPSS
Exploits0
Amazon
Amazon
added 2019/05/29 12:0 a.m.69 views

Medium: libxml2

Issue Overview: A denial of service flaw was found in libxml2. A remote attacker could provide a specially crafted XML or HTML file that, when processed by an application using libxml2, would cause that application to leak potentially sensitive information.CVE-2015-8242 A denial of service flaw w...

9.8CVSS8.6AI score0.0721EPSS
Exploits2
Amazon
Amazon
added 2019/03/21 12:0 a.m.69 views

Medium: binutils

Issue Overview: The bfdcacheclose function in bfd/cache.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause a heap use after free and possibly achieve code execution via a crafted nested archive file. This issue...

7.8CVSS8.8AI score0.05944EPSS
Exploits9
Amazon
Amazon
added 2018/03/16 12:0 a.m.69 views

Important: kernel

Issue Overview: Out-of-bounds write via userland offsets in ebtentry struct in netfilter/ebtables.c: A flaw was found in the Linux kernel's implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory. CVE-2018-10...

7.2CVSS6.6AI score0.00451EPSS
Exploits0
Amazon
Amazon
added 2016/04/06 12:0 a.m.69 views

Important: mysql56

Issue Overview: wolfSSL formerly CyaSSL before 3.6.8 does not properly handle faults associated with the Chinese Remainder Theorem CRT process when allowing ephemeral key exchange without low memory optimizations on a server, which makes it easier for remote attackers to obtain private RSA keys b...

7.2CVSS7AI score0.30146EPSS
Exploits7
Amazon
Amazon
added 2015/03/13 12:0 a.m.69 views

Critical: php54

Issue Overview: A heap-based buffer overflow was found in glibc's nsshostnamedigitsdots function, which is used by the gethostbyname and gethostbyname2 glibc function calls. A remote attacker able to make an application call either of these functions could use this flaw to execute arbitrary code...

10CVSS9.3AI score0.94859EPSS
Exploits38
Amazon
Amazon
added 2015/02/11 12:0 a.m.69 views

Medium: php54

Issue Overview: sapi/cgi/cgimain.c in the CGI component in PHP through 5.4.36, 5.5.x through 5.5.20, and 5.6.x through 5.6.4, when mmap is used to read a .php file, does not properly consider the mapping's length during processing of an invalid file that begins with a character and lacks a newlin...

7.5CVSS8.8AI score0.53166EPSS
Exploits12
Amazon
Amazon
added 2014/10/28 12:0 a.m.69 views

Important: php54

Issue Overview: An out of bounds read flaw was found in the way the xmlrpc extension parsed dates in the ISO 8601 format. A specially crafted XML-RPC request or response could possibly cause a PHP application to crash. CVE-2014-3668 An integer overflow flaw was found in the way custom objects wer...

7.5CVSS10AI score0.28862EPSS
Exploits3
Amazon
Amazon
added 2014/06/03 12:0 a.m.69 views

Medium: lighttpd

Issue Overview: Multiple directory traversal vulnerabilities in 1 modevhost and 2 modsimplevhost in lighttpd before 1.4.35 allow remote attackers to read arbitrary files via a .. dot dot in the host name, related to requestcheckhostname. SQL injection vulnerability in modmysqlvhost.c in lighttpd...

9.8CVSS9AI score0.61665EPSS
Exploits4
Amazon
Amazon
added 2024/04/18 12:0 a.m.68 views

Important: tomcat

Issue Overview: Apache Commons FileUpload before 1.5 does not limit the number of request parts to be processed resulting in the possibility of an attacker triggering a DoS with a malicious upload or series of uploads. Note that, like all of the file upload limits, the new configuration option...

7.5CVSS7.5AI score0.51547EPSS
Exploits1
Amazon
Amazon
added 2024/02/05 12:0 a.m.68 views

Important: kernel

Issue Overview: An out-of-bounds access vulnerability involving netfilter was reported and fixed as: f1082dd31fe4 netfilter: nftables: Reject tables of unsupported family; While creating a new netfilter table, lack of a safeguard against invalid nftables family pf values within nftablesnewtable...

7.8CVSS8.1AI score0.00767EPSS
Exploits1
Amazon
Amazon
added 2023/08/07 12:0 a.m.68 views

Important: cni-plugins

Issue Overview: http2/hpack: avoid quadratic complexity in hpack decoding CVE-2022-41723 Affected Packages: cni-plugins Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories. Issue Correction:...

7.5CVSS7.2AI score0.04561EPSS
Exploits0
Amazon
Amazon
added 2023/04/05 12:0 a.m.68 views

Important: python27

Issue Overview: An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA RFC 3490 decoder, such that a crafted, unreasonably long name being presented to the decoder could lead to a CPU denial of service...

7.5CVSS8.2AI score0.20459EPSS
Exploits4
Amazon
Amazon
added 2023/01/20 12:0 a.m.68 views

Medium: freetype

Issue Overview: A heap buffer overflow flaw was found in Freetype's sfntinitface function in the sfobjs.c file. The vulnerability occurs when creating a face with a strange file and invalid index. This flaw allows an attacker to read and modify a small amount of memory, causing the application to...

9.8CVSS8AI score0.02636EPSS
Exploits2
Amazon
Amazon
added 2022/12/12 12:0 a.m.68 views

Important: kernel

Issue Overview: A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function ipv6renewoptions of the component IPv6 Handler. The manipulation leads to memory leak. The attack can be launched remotely. It is recommended to apply a...

8.8CVSS5.9AI score0.02014EPSS
Exploits1
Amazon
Amazon
added 2022/12/06 12:0 a.m.68 views

Important: git

Issue Overview: Git is an open source, scalable, distributed revision control system. Versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4 are subject to exposure of sensitive information to a malicious actor. When performing a local clone where the source and targ...

8.8CVSS6.8AI score0.02938EPSS
Exploits1
Amazon
Amazon
added 2022/10/11 12:0 a.m.68 views

Important: kernel

Issue Overview: An out-of-bounds write flaw was found in the Linux kernels framebuffer-based console driver functionality in the way a user triggers ioctl FBIOPUTVSCREENINFO with malicious data. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7.8CVSS6.6AI score0.06214EPSS
Exploits17
Amazon
Amazon
added 2022/03/08 12:0 a.m.68 views

Important: expat

Issue Overview: An integer overflow was found in expat. The issue occurs in storeRawNames by abusing the mbuffer expansion logic to allow allocations very close to INTMAX and out-of-bounds heap writes. This flaw can cause a denial of service or potentially arbitrary code execution. CVE-2022-25315...

9.8CVSS8.8AI score0.04781EPSS
Exploits1
Amazon
Amazon
added 2022/02/08 12:0 a.m.68 views

Important: kernel

Issue Overview: A denial of service flaw for virtual machine guests in the Linux kernel's Xen hypervisor subsystem was found in the way users call some interrupts with high frequency from one of the guests. A local user could use this flaw to starve the resources resulting in a denial of service...

9.8CVSS6.9AI score0.05528EPSS
Exploits14
Amazon
Amazon
added 2021/09/08 12:0 a.m.68 views

Medium: golang

Issue Overview: A flaw was found in Go, acting as an unintended proxy or intermediary, where ReverseProxy forwards connection headers if the first one was empty. This flaw allows an attacker to drop arbitrary headers. The highest threat from this vulnerability is to integrity. CVE-2021-33197 A fl...

7.5CVSS6.7AI score0.07032EPSS
Exploits3
Amazon
Amazon
added 2021/02/17 12:0 a.m.68 views

Important: kernel

Issue Overview: A use-after-free flaw was found in kernel/trace/ringbuffer.c in Linux kernel. There was a race problem in traceopen and resize of cpu buffer running parallely on different cpus, may cause a denial of service problem DOS. This flaw could even allow a local attacker with special use...

8.1CVSS6.4AI score0.06563EPSS
Exploits1
Amazon
Amazon
added 2020/11/11 12:0 a.m.68 views

Important: kernel

Issue Overview: In binderreleasework of binder.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

8.8CVSS8.1AI score0.07693EPSS
Exploits9
Amazon
Amazon
added 2020/06/03 12:0 a.m.68 views

Important: squid

Issue Overview: An issue was discovered in Squid through 4.7. When handling the tag esi:when when ESI is enabled, Squid calls ESIExpression::Evaluate. This function uses a fixed stack buffer to hold the expression while it's being evaluated. When processing the expression, it could either evaluat...

9.8CVSS7.5AI score0.27246EPSS
Exploits0
Amazon
Amazon
added 2019/07/18 12:0 a.m.68 views

Important: qemu

Issue Overview: A heap buffer overflow issue was found in the loaddevicetree function of QEMU, which is invoked to load a device tree blob at boot time. It occurs due to device tree size manipulation before buffer allocation, which could overflow a signed int type. A user/process could use this...

9.8CVSS8.3AI score0.05546EPSS
Exploits1
Amazon
Amazon
added 2018/04/05 12:0 a.m.68 views

Low: ruby

Issue Overview: Command injection in lib/resolv.rb:lazyinitialize allows arbitrary code execution: The "lazyinitialize" function in lib/resolv.rb did not properly process certain filenames. A remote attacker could possibly exploit this flaw to inject and execute arbitrary commands. CVE-2017-17790...

9.8CVSS8.9AI score0.05913EPSS
Exploits1
Amazon
Amazon
added 2018/02/20 12:0 a.m.68 views

Important: kernel

Issue Overview: Stack-based out-of-bounds read via vmcall instruction Linux kernel compiled with the KVM virtualization CONFIGKVM support is vulnerable to an out-of-bounds read access issue. It could occur when emulating vmcall instructions invoked by a guest. A guest user/process could use this...

7.8CVSS7AI score0.93838EPSS
Exploits98
Amazon
Amazon
added 2016/12/15 12:0 a.m.68 views

Important: tomcat6

Issue Overview: CVE-2016-6816 tomcat: HTTP Request smuggling vulnerability due to permitting invalid character in HTTP requests CVE-2016-8735 tomcat: Remote code execution vulnerability in JmxRemoteLifecycleListener Affected Packages: tomcat6 Issue Correction: Run yum update tomcat6 or yum update...

9.8CVSS8.1AI score0.90338EPSS
Exploits7
Amazon
Amazon
added 2016/06/24 12:0 a.m.68 views

Medium: kernel

Issue Overview: A flaw was discovered in processing setsockopt for 32 bit processes on 64 bit systems. This flaw will allow attackers to alter arbitary kernel memory when unloading a kernel module. This action is usually restricted to root-priveledged users but can also be leveraged if the kernel...

7.8CVSS6.8AI score0.05676EPSS
Exploits10
Amazon
Amazon
added 2016/06/02 12:0 a.m.68 views

Medium: php56

Issue Overview: The following security-related issues were resolved: Out-of-bounds read in imagescale CVE-2013-7456 Integer underflow causing arbitrary null write in fread/gzread CVE-2016-5096 Integer overflow in phphtmlentities CVE-2016-5094 Integer overflow in phpfilterfullspecialchars...

8.6CVSS9.6AI score0.05487EPSS
Exploits3
Amazon
Amazon
added 2016/02/09 12:0 a.m.68 views

Important: ntp

Issue Overview: It was discovered that ntpd as a client did not correctly check the originate timestamp in received packets. A remote attacker could use this flaw to send a crafted packet to an ntpd client that would effectively disable synchronization with the server, or push arbitrary...

7.7CVSS7.7AI score0.17245EPSS
Exploits3
Amazon
Amazon
added 2015/12/14 12:0 a.m.68 views

Medium: openssh

Issue Overview: A flaw was found in the way OpenSSH handled PAM authentication when using privilege separation. An attacker with valid credentials on the system and able to fully compromise a non-privileged pre-authentication process using a different flaw could use this flaw to authenticate as...

8.5CVSS8.3AI score0.09302EPSS
Exploits1
Amazon
Amazon
added 2015/08/17 12:0 a.m.68 views

Medium: php55

Issue Overview: PHP process crashes when processing an invalid file with the "phar" extension. CVE-2015-5589 As discussed upstream https://bugs.php.net/bug.php?id=69669, mysqlnd is vulnerable to the attack described in https://www.duosecurity.com/blog/backronym-mysql-vulnerability. CVE-2015-3152...

10CVSS9AI score0.07083EPSS
Exploits2
Amazon
Amazon
added 2015/08/17 12:0 a.m.68 views

Medium: php54

Issue Overview: PHP process crashes when processing an invalid file with the "phar" extension. CVE-2015-5589 As discussed upstream https://bugs.php.net/bug.php?id=69669, mysqlnd is vulnerable to the attack described in https://www.duosecurity.com/blog/backronym-mysql-vulnerability. CVE-2015-3152...

10CVSS9AI score0.07083EPSS
Exploits2
Amazon
Amazon
added 2015/07/07 12:0 a.m.68 views

Medium: php54

Issue Overview: Upstream reports that six security-related issues in PHP were fixed in this release, as well as several security issues in bundled sqlite library CVE-2015-3414, CVE-2015-3415, CVE-2015-3416. All PHP 5.4 users are encouraged to upgrade to this version. Please see the upstream relea...

10CVSS8.4AI score0.16948EPSS
Exploits3
Amazon
Amazon
added 2015/05/05 12:0 a.m.68 views

Important: ntp

Issue Overview: The symmetric-key feature in the receive function in ntpproto.c in ntpd in NTP 4.x before 4.2.8p2 requires a correct MAC only if the MAC field has a nonzero length, which makes it easier for man-in-the-middle attackers to spoof packets by omitting the MAC. CVE-2015-1798 The...

4.3CVSS6.4AI score0.02219EPSS
Exploits0
Amazon
Amazon
added 2014/10/16 12:0 a.m.68 views

Important: nss

Issue Overview: A flaw was found in the way SSL 3.0 handled padding bytes when decrypting messages encrypted using block ciphers in cipher block chaining CBC mode. This flaw allows a man-in-the-middle MITM attacker to decrypt a selected byte of a cipher text in as few as 256 tries if they are abl...

4.3CVSS6.7AI score0.99999EPSS
Exploits7
Amazon
Amazon
added 2014/08/07 12:0 a.m.68 views

Medium: openssl

Issue Overview: A flaw was discovered in the way OpenSSL handled DTLS packets. A remote attacker could use this flaw to cause a DTLS server or client using OpenSSL to crash or use excessive amounts of memory. Multiple buffer overflows in crypto/srp/srplib.c in the SRP implementation in OpenSSL...

7.5CVSS7.9AI score0.7408EPSS
Exploits0
Amazon
Amazon
added 2014/07/23 12:0 a.m.68 views

Medium: file

Issue Overview: A denial of service flaw was found in the way the File Information fileinfo extension parsed certain Composite Document Format CDF files. A remote attacker could use this flaw to crash a PHP application using fileinfo via a specially crafted CDF file. Buffer overflow in the mconve...

6.5CVSS8.6AI score0.20805EPSS
Exploits3
Amazon
Amazon
added 2014/05/21 12:0 a.m.68 views

Medium: php54

Issue Overview: The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a...

5CVSS8.5AI score0.0304EPSS
Exploits1
Total number of security vulnerabilities5000