Lucene search
K
AmazonMost viewed

8850 matches found

Amazon
Amazon
added 2023/03/22 12:0 a.m.9 views

Low: tpm2-tss

Issue Overview: tpm2-tss is an open source software implementation of the Trusted Computing Group TCG Trusted Platform Module TPM 2 Software Stack TSS2. In affected versions Tss2RCSetHandler and Tss2RCDecode both index into layerhandler with an 8 bit layer number, but the array only has...

6.4CVSS7.6AI score0.00519EPSS
Exploits1
Amazon
Amazon
added 2023/03/22 12:0 a.m.9 views

Medium: ImageMagick

Issue Overview: ImageMagick 7.1.0-49 is vulnerable to Denial of Service. When it parses a PNG image e.g., for resize, the convert process could be left waiting for stdin input. CVE-2022-44267 ImageMagick 7.1.0-49 is vulnerable to Information Disclosure. When it parses a PNG image e.g., for resize...

6.5CVSS7.7AI score0.89855EPSS
Exploits31
Amazon
Amazon
added 2023/03/22 12:0 a.m.9 views

Important: protobuf

Issue Overview: A parsing vulnerability for the MessageSet type in the ProtocolBuffers versions prior to and including 3.16.1, 3.17.3, 3.18.2, 3.19.4, 3.20.1 and 3.21.5 for protobuf-cpp, and versions prior to and including 3.16.1, 3.17.3, 3.18.2, 3.19.4, 3.20.1 and 4.21.5 for protobuf-python can...

7.5CVSS6.8AI score0.01151EPSS
Exploits0
Amazon
Amazon
added 2023/03/22 12:0 a.m.9 views

Important: clamav

Issue Overview: A vulnerability in the OOXML parsing module in Clam AntiVirus ClamAV Software version 0.104.1 and LTS version 0.103.4 and prior versions could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improp...

8.6CVSS6.6AI score0.0663EPSS
Exploits1
Amazon
Amazon
added 2023/03/22 12:0 a.m.9 views

Critical: nss

Issue Overview: NSS Network Security Services up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS 7, or PKCS 12 are likely to be impacted. Applications using...

9.8CVSS8.2AI score0.17563EPSS
Exploits0
Amazon
Amazon
added 2023/03/22 12:0 a.m.9 views

Medium: bind

Issue Overview: A cache poisoning vulnerability was found in BIND when using forwarders. Bogus NS records supplied by the forwarders may be cached and used by name if it needs to recurse for any reason. This issue causes it to obtain and pass on potentially incorrect answers. This flaw allows a...

6.8CVSS6.7AI score0.0325EPSS
Exploits0
Amazon
Amazon
added 2023/03/22 12:0 a.m.9 views

Medium: tomcat9

Issue Overview: Apache Tomcat 10.0.0-M1 to 10.0.6, 9.0.0.M1 to 9.0.46 and 8.5.0 to 8.5.66 did not correctly parse the HTTP transfer-encoding request header in some circumstances leading to the possibility to request smuggling when used with a reverse proxy. Specifically: - Tomcat incorrectly...

7CVSS6.6AI score0.75353EPSS
Exploits16
Amazon
Amazon
added 2023/02/08 12:0 a.m.9 views

Important: kernel-livepatch-5.10.144-127.601

Issue Overview: A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function ipv6renewoptions of the component IPv6 Handler. The manipulation leads to memory leak. The attack can be launched remotely. It is recommended to apply a...

7.5CVSS7.1AI score0.02211EPSS
Exploits0
Amazon
Amazon
added 2023/01/23 12:0 a.m.9 views

Medium: java-1.8.0-amazon-corretto

Issue Overview: Improve CORBA communication: CORBA deserialization can result in outbound network connections with data passed in. CVE-2023-21830 Better Banking of Sounds: JARSoundbankReader can load classes from remote URLs. CVE-2023-21843 Affected Packages: java-1.8.0-amazon-corretto Note: This...

5.3CVSS7.2AI score0.01357EPSS
Exploits0
Amazon
Amazon
added 2022/12/08 12:0 a.m.9 views

Important: kernel

Issue Overview: A vulnerability classified as problematic has been found in Linux Kernel. This affects the function fibnhmatch of the file net/ipv4/fibsemantics.c of the component IPv4 Handler. The manipulation leads to out-of-bounds read. It is possible to initiate the attack remotely. It is...

7.8CVSS4.7AI score0.03651EPSS
Exploits1
Amazon
Amazon
added 2022/10/24 12:0 a.m.9 views

Important: kernel

Issue Overview: A flaw was found in the Linux kernel. The existing KVM SEV API has a vulnerability that allows a non-root host user-level application to crash the host kernel by creating a confidential guest VM instance in AMD CPU that supports Secure Encrypted Virtualization SEV. CVE-2022-0171 A...

7.8CVSS4.1AI score0.0127EPSS
Exploits2
Amazon
Amazon
added 2022/08/18 12:0 a.m.9 views

Medium: kernel

Issue Overview: An out-of-bounds read flaw was found in the Linux kernel's TeleTYpe subsystem. The issue occurs in how a user triggers a race condition using ioctls TIOCSPTLCK and TIOCGPTPEER and TIOCSTI and TCXONC with leakage of memory in the flushtoldisc function. This flaw allows a local user...

7.8CVSS5.6AI score0.05561EPSS
Exploits3
Amazon
Amazon
added 2022/01/28 12:0 a.m.9 views

Important: kernel

Issue Overview: A flaw was found in the Linux kernel. A use-after-free memory flaw was found in the perf subsystem allowing a local attacker with permission to monitor perf events to corrupt memory and possibly escalate privileges. The highest threat from this vulnerability is to data...

7.8CVSS6.3AI score0.01026EPSS
Exploits3
Amazon
Amazon
added 2022/01/28 12:0 a.m.9 views

Important: kernel

Issue Overview: In the Linux kernel 5.3.10, there is a use-after-free read in the perftracelockacquire function related to include/trace/events/lock.h. CVE-2019-19769 A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem. This flaw occurs while importing the Commercial...

7.1CVSS6.3AI score0.03097EPSS
Exploits1
Amazon
Amazon
added 2021/11/18 12:0 a.m.9 views

Medium: docker

Issue Overview: Lack of content verification in Docker-CE Also known as Moby versions 1.12.6-0, 1.10.3, 17.03.0, 17.03.1, 17.03.2, 17.06.0, 17.06.1, 17.06.2, 17.09.0, and earlier allows a remote attacker to cause a Denial of Service via a crafted image layer payload, aka gzip bombing...

6.5CVSS6.8AI score0.0247EPSS
Exploits0
Amazon
Amazon
added 2021/09/21 12:0 a.m.9 views

Important: kernel-livepatch-4.14.243-185.433

Issue Overview: No CVE associated with this advisory Affected Packages: kernel-livepatch-4.14.243-185.433 Issue Correction: Please ensure you have live patching enabled. Run yum update kernel-livepatch-4.14.243-185.433 or yum update --advisory ALAS2LIVEPATCH-2021-062 to update your system. New...

7CVSS7AI score0.00303EPSS
Exploits0
Amazon
Amazon
added 2026/06/22 12:0 a.m.8 views

Important: kernel6.18

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: bpf: fix end-of-list detection in cgroupstoragegetnextkey CVE-2026-45838 In the Linux kernel, the following vulnerability has been resolved: bpf: reject negative CO-RE accessor indices in bpfcoreparsespec...

8.2CVSS6.5AI score0.00278EPSS
Exploits0
Amazon
Amazon
added 2026/06/22 12:0 a.m.8 views

Important: poppler

Issue Overview: A flaw was found in Poppler's Splash backend. A remote attacker could exploit this vulnerability by crafting a malicious PDF file that, when rendered, triggers an integer overflow in the tilingPatternFill function. This overflow leads to an undersized heap memory allocation,...

7.8CVSS6.1AI score0.00252EPSS
Exploits0
Amazon
Amazon
added 2026/06/22 12:0 a.m.8 views

Important: kernel6.12

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: xfrm: hold dev ref until after transportfinish NFHOOK CVE-2026-31663 In the Linux kernel, the following vulnerability has been resolved: rtnetlink: add missing netlinknscapable check for peer netns CVE-2026-31692 ...

9.3CVSS6.8AI score0.00442EPSS
Exploits0
Amazon
Amazon
added 2026/06/22 12:0 a.m.8 views

Medium: golist

Issue Overview: x509.Certificate.VerifyHostname previously called matchHostnames in a loop over all DNS Subject Alternative Name SAN entries. This caused strings.Splithost, "." to execute repeatedly on the same input hostname. With a large DNS SAN list, verification costs scaled quadratically bas...

7.5CVSS6.1AI score0.0065EPSS
Exploits0
Amazon
Amazon
added 2026/06/22 12:0 a.m.8 views

Medium: golist

Issue Overview: x509.Certificate.VerifyHostname previously called matchHostnames in a loop over all DNS Subject Alternative Name SAN entries. This caused strings.Splithost, "." to execute repeatedly on the same input hostname. With a large DNS SAN list, verification costs scaled quadratically bas...

7.5CVSS6AI score0.0065EPSS
Exploits0
Amazon
Amazon
added 2026/06/22 12:0 a.m.8 views

Important: kernel-livepatch-6.18.30-61.119

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry CVE-2026-46316 In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Reassign nestedmmus array behind...

9.3CVSS5.8AI score0.0018EPSS
Exploits0
Amazon
Amazon
added 2026/06/22 12:0 a.m.8 views

Important: kernel-livepatch-6.18.30-61.116

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry CVE-2026-46316 In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Reassign nestedmmus array behind...

9.3CVSS5.8AI score0.0018EPSS
Exploits0
Amazon
Amazon
added 2026/06/22 12:0 a.m.8 views

Important: kernel-livepatch-6.18.33-63.124

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry CVE-2026-46316 In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Reassign nestedmmus array behind...

9.3CVSS5.8AI score0.0018EPSS
Exploits0
Amazon
Amazon
added 2026/06/22 12:0 a.m.8 views

Important: openssl

Issue Overview: Issue summary: Parsing a crafted DER-encoded ASN.1 structure with a primitive element whose content exceeds 2 gigabytes in length may cause a heap buffer over-read on 64-bit Unix and Unix-like platforms. Impact summary: The heap buffer over-read may crash the application Denial of...

9.1CVSS6.8AI score0.00684EPSS
Exploits0
Amazon
Amazon
added 2026/06/22 12:0 a.m.8 views

Important: squid

Issue Overview: Due to an Improper Input Validation bug, Squid is vulnerable to a Heap-based Buffer Overflow attack against cache digests. This problem allows a trusted server to perform a Heap-based Buffer Overflow when sending maliciously crafted replies to cachedigest request messages. This...

5.7AI score
Exploits0
Amazon
Amazon
added 2026/06/22 12:0 a.m.8 views

Important: kernel-livepatch-6.12.80-106.156

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry CVE-2026-46316 In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Reassign nestedmmus array behind...

9.3CVSS5.8AI score0.0018EPSS
Exploits0
Amazon
Amazon
added 2026/06/22 12:0 a.m.8 views

Medium: golang

Issue Overview: x509.Certificate.VerifyHostname previously called matchHostnames in a loop over all DNS Subject Alternative Name SAN entries. This caused strings.Splithost, "." to execute repeatedly on the same input hostname. With a large DNS SAN list, verification costs scaled quadratically bas...

7.5CVSS6.1AI score0.0065EPSS
Exploits0
Amazon
Amazon
added 2026/06/22 12:0 a.m.8 views

Important: vim

Issue Overview: Vim is an open source, command line text editor. Prior to 9.2.0280, a path traversal bypass in Vim's zip.vim plugin allows overwriting of arbitrary files when opening specially crafted zip archives, circumventing the previous fix for CVE-2025-53906. This vulnerability is fixed in...

8.8CVSS7.7AI score0.00917EPSS
Exploits1
Amazon
Amazon
added 2026/06/22 12:0 a.m.8 views

Important: freerdp

Issue Overview: FreeRDP before 3.26.0 contains a heap-buffer-overflow vulnerability in gdiCacheToSurface that allows remote attackers to write out-of-bounds heap memory. The vulnerability occurs because rectangle validation clamps coordinates to UINT16MAX but performs copy operations using...

9.8CVSS6.7AI score0.03472EPSS
Exploits4
Amazon
Amazon
added 2026/06/22 12:0 a.m.8 views

Important: amazon-cloudwatch-agent

Issue Overview: Parsing arbitrary HTML can consume excessive CPU time, possibly leading to denial of service. CVE-2026-25680 The RSA and DSA public key parsers did not enforce size limits on key parameters. A crafted public key with an excessively large modulus or DSA parameter could cause severa...

10CVSS6AI score0.005EPSS
Exploits0
Amazon
Amazon
added 2026/06/22 12:0 a.m.8 views

Important: containerd

Issue Overview: Memory exhaustion DoS causing OOM kill of containerd process NOTE: https://github.com/containerd/containerd/security/advisories/GHSA-jpcc-p29g-p8mq CVE-2026-47262 Image cache poisoning via unvalidated checkpoint image references, enabling cross-pod code execution NOTE:...

5.9AI score
Exploits0
Amazon
Amazon
added 2026/06/08 12:0 a.m.8 views

Medium: sendmail

Issue Overview: sendmail through at least 8.14.7 allows SMTP smuggling in certain configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because sendmail...

5.3CVSS5.9AI score0.01073EPSS
Exploits2
Amazon
Amazon
added 2026/06/08 12:0 a.m.8 views

Important: thunderbird

Issue Overview: Three inter-frame chunk discard paths in the push-mode APNG parser clear the chunk-header flag without consuming the chunk body and CRC, allowing attacker-controlled bytes inside an ignored ancillary chunk to be reinterpreted as a fresh chunk header on the next call to...

9.8CVSS5.8AI score0.00605EPSS
Exploits0
Amazon
Amazon
added 2026/06/08 12:0 a.m.8 views

Important: nvidia-open

Issue Overview: NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel driver, where a user could cause an incorrect permission assignment for a critical resource. A successful exploit of this vulnerability might lead to data tampering and denial of service...

8.8CVSS6AI score0.00206EPSS
Exploits0
Amazon
Amazon
added 2026/06/08 12:0 a.m.8 views

Important: nvidia-persistenced

Issue Overview: NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel driver, where a user could cause an incorrect permission assignment for a critical resource. A successful exploit of this vulnerability might lead to data tampering and denial of service...

8.8CVSS6AI score0.00206EPSS
Exploits0
Amazon
Amazon
added 2026/06/08 12:0 a.m.8 views

Medium: libssh2

Issue Overview: A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the function userauthpassword of the file src/userauth.c. Such manipulation of the argument usernamelen/passwordlen leads to integer overflow. The attack may be launched remotely. The name ...

7.5CVSS7AI score0.00466EPSS
Exploits0
Amazon
Amazon
added 2026/06/08 12:0 a.m.8 views

Important: 389-ds-base

Issue Overview: A flaw was found in 389-ds-base. The getldapmessagecontrolsext function in the LDAP server does not enforce an upper bound on the number of controls per LDAP message. A remote, unauthenticated attacker can send a specially crafted LDAP request containing hundreds of thousands of...

7.5CVSS5.4AI score0.00815EPSS
Exploits0
Amazon
Amazon
added 2026/06/08 12:0 a.m.8 views

Important: libsolv

Issue Overview: A flaw was found in libsolv. This heap buffer overflow occurs during the decompression of attacker-controlled compressed data within .solv files due to insufficient input validation. An attacker can provide a specially crafted .solv file, which, when processed by a vulnerable...

7.8CVSS5.9AI score0.00399EPSS
Exploits1
Amazon
Amazon
added 2026/06/08 12:0 a.m.8 views

Important: nvidia-modprobe

Issue Overview: NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel driver, where a user could cause an incorrect permission assignment for a critical resource. A successful exploit of this vulnerability might lead to data tampering and denial of service...

8.8CVSS6AI score0.00206EPSS
Exploits0
Amazon
Amazon
added 2026/06/08 12:0 a.m.8 views

Important: libnvidia-nscq

Issue Overview: NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel driver, where a user could cause an incorrect permission assignment for a critical resource. A successful exploit of this vulnerability might lead to data tampering and denial of service...

8.8CVSS6AI score0.00206EPSS
Exploits0
Amazon
Amazon
added 2026/06/08 12:0 a.m.8 views

Important: ruby4.0

Issue Overview: Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to versions 0.3.10, 0.4.24, 0.5.14, and 0.6.4, a man-in-the-middle attacker can cause Net::IMAPstarttls to return "successfully", without starting TLS. This issue has been patched in...

9.8CVSS5.4AI score0.00685EPSS
Exploits0
Amazon
Amazon
added 2026/06/08 12:0 a.m.8 views

Important: nginx

Issue Overview: NGINX Plus and NGINX Open Source have a vulnerability in the ngxhttprewritemodule module. This vulnerability exists when a rewrite directive uses a regex pattern with distinct, overlapping Perl-Compatible Regular Expression PCRE captures for example, ^/.$ and a replacement string...

9.2CVSS6AI score0.04261EPSS
Exploits3
Amazon
Amazon
added 2026/06/08 12:0 a.m.8 views

Important: cuda-drivers

Issue Overview: NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel driver, where a user could cause an incorrect permission assignment for a critical resource. A successful exploit of this vulnerability might lead to data tampering and denial of service...

8.8CVSS6AI score0.00206EPSS
Exploits0
Amazon
Amazon
added 2026/06/08 12:0 a.m.8 views

Important: dotnet8.0

Issue Overview: Heap-based buffer overflow in .NET allows an unauthorized attacker to elevate privileges locally. CVE-2026-32177 Loop with unreachable exit condition 'infinite loop' in ASP.NET Core allows an unauthorized attacker to deny service over a network. CVE-2026-42899 Affected Packages:...

7.5CVSS5.7AI score0.0243EPSS
Exploits0
Amazon
Amazon
added 2026/06/08 12:0 a.m.8 views

Important: kmod-nvidia-open-dkms

Issue Overview: NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel driver, where a user could cause an incorrect permission assignment for a critical resource. A successful exploit of this vulnerability might lead to data tampering and denial of service...

8.8CVSS6AI score0.00206EPSS
Exploits0
Amazon
Amazon
added 2026/06/08 12:0 a.m.8 views

Medium: python3.12

Issue Overview: The import hook in CPython that handles legacy .pyc files SourcelessFileLoader is incorrectly handled in FileLoader a base class and so does not use io.opencode to read the .pyc files. sys.audit handlers for this audit event therefore do not fire. CVE-2026-2297...

6.1CVSS5.4AI score0.00229EPSS
Exploits1
Amazon
Amazon
added 2026/06/08 12:0 a.m.8 views

Important: containerd

Issue Overview: An authenticated SSH client that repeatedly opened channels which were rejected by the server caused unbounded memory growth, eventually crashing the server process and affecting all connected users. Rejected channels are now properly removed from the connection's internal state a...

10CVSS5.8AI score0.005EPSS
Exploits0
Amazon
Amazon
added 2026/05/26 12:0 a.m.8 views

Important: kernel-livepatch-6.18.20-41.237

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net/rds: reset opnents when zerocopy page pin fails CVE-2026-43494 Affected Packages: kernel-livepatch-6.18.20-41.237 Issue Correction: Please ensure you have live patching enabled. Run dnf update...

7.8CVSS5.2AI score0.00269EPSS
Exploits3
Amazon
Amazon
added 2026/05/26 12:0 a.m.8 views

Important: kernel-livepatch-6.12.77-99.140

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net/rds: reset opnents when zerocopy page pin fails CVE-2026-43494 Affected Packages: kernel-livepatch-6.12.77-99.140 Issue Correction: Please ensure you have live patching enabled. Run dnf update...

7.8CVSS5.2AI score0.00269EPSS
Exploits3
Total number of security vulnerabilities5000