Lucene search
K
DebiancveMost viewed

59600 matches found

Debian CVE
Debian CVE
•added 2022/04/15 5:56 p.m.•54 views

CVE-2021-44508

An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. A lack of NULL checks in calls to iousopen in srunix/iousopen.c allows attackers to crash the application by dereferencing a NULL pointer...

7.5CVSS7.4AI score0.01548EPSS
Exploits0
Debian CVE
Debian CVE
•added 2022/04/04 7:46 p.m.•54 views

CVE-2022-1162

Removed by vendor...

9.8CVSS7.5AI score0.76177EPSS
Exploits3
Debian CVE
Debian CVE
•added 2022/04/01 10:17 p.m.•54 views

CVE-2022-0741

Removed by vendor...

7.5CVSS7.1AI score0.01419EPSS
Exploits0
Debian CVE
Debian CVE
•added 2022/03/28 9:28 p.m.•54 views

CVE-2022-26280

Libarchive v3.6.0 was discovered to contain an out-of-bounds read via the component zipxlzmaaloneinit...

6.5CVSS6.5AI score0.01877EPSS
Exploits1
Debian CVE
Debian CVE
•added 2022/03/23 11:55 a.m.•54 views

CVE-2022-0635

Versions affected: BIND 9.18.0 When a vulnerable version of named receives a series of specific queries, the named process will eventually terminate due to a failed assertion check...

7.5CVSS7.6AI score0.01285EPSS
Exploits0
Debian CVE
Debian CVE
•added 2022/03/14 12:0 a.m.•54 views

CVE-2021-42388

Heap out-of-bounds read in Clickhouse's LZ4 compression codec when parsing a malicious query. As part of the LZ4::decompressImpl loop, a 16-bit unsigned user-supplied value 'offset' is read from the compressed data. The offset is later used in the length of a copy operation, without checking the...

8.1CVSS8AI score0.01549EPSS
Exploits1
Debian CVE
Debian CVE
•added 2022/03/08 2:7 p.m.•54 views

CVE-2021-3698

A flaw was found in Cockpit in versions prior to 260 in the way it handles the certificate verification performed by the System Security Services Daemon SSSD. This flaw allows client certificates to authenticate successfully, regardless of the Certificate Revocation List CRL configuration or the...

7.5CVSS7.3AI score0.0065EPSS
Exploits0
Debian CVE
Debian CVE
•added 2022/02/21 2:30 p.m.•54 views

CVE-2021-44142

The Samba vfsfruit module uses extended file attributes EA, xattr to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions prior to 4.13.17, 4.14.12 and 4.15.5 with vfsfruit configured allow out-of-bounds heap read and wri...

9CVSS8.3AI score0.74042EPSS
Exploits1
Debian CVE
Debian CVE
•added 2022/02/18 12:0 a.m.•54 views

CVE-2020-25717

A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation...

8.5CVSS7AI score0.01612EPSS
Exploits0
Debian CVE
Debian CVE
•added 2022/02/16 12:0 a.m.•54 views

CVE-2021-43300

Stack overflow in PJSUA API when calling pjsuarecordercreate. An attacker-controlled 'filename' argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation...

9.8CVSS9.1AI score0.02339EPSS
Exploits0
Debian CVE
Debian CVE
•added 2022/02/15 2:4 p.m.•54 views

CVE-2022-24684

Removed by vendor...

6.5CVSS6.5AI score0.01375EPSS
Exploits0
Debian CVE
Debian CVE
•added 2022/02/09 10:4 p.m.•54 views

CVE-2021-0167

Removed by vendor...

6.7CVSS6.6AI score0.00236EPSS
Exploits0
Debian CVE
Debian CVE
•added 2022/02/09 10:4 p.m.•54 views

CVE-2021-0161

Removed by vendor...

6.7CVSS6AI score0.00292EPSS
Exploits0
Debian CVE
Debian CVE
•added 2022/01/19 11:23 a.m.•54 views

CVE-2022-21299

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows...

5.3CVSS5.2AI score0.03458EPSS
Exploits0
Debian CVE
Debian CVE
•added 2022/01/14 12:0 a.m.•54 views

CVE-2022-23218

The deprecated compatibility function svcunixcreate in the sunrpc module of the GNU C Library aka glibc through 2.34 copies its path argument on the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of service or if an application is not...

9.8CVSS8.6AI score0.04729EPSS
Exploits1
Debian CVE
Debian CVE
•added 2021/09/30 1:12 p.m.•54 views

CVE-2021-41720

Removed by vendor...

7.5AI score
Exploits0
Debian CVE
Debian CVE
•added 2021/06/15 12:0 a.m.•54 views

CVE-2021-31618

Apache HTTP Server protocol handler for the HTTP/2 protocol checks received request headers against the size limitations as configured for the server and used for the HTTP/1 protocol as well. On violation of these restrictions and HTTP response is sent to the client with a status code indicating...

7.5CVSS7.7AI score0.51208EPSS
Exploits0
Debian CVE
Debian CVE
•added 2021/05/06 2:18 p.m.•54 views

CVE-2020-35519

An out-of-bounds OOB memory access flaw was found in x25bind in net/x25/afx25.c in the Linux kernel version v5.12-rc5. A bounds check failure allows a local attacker with a user account on the system to gain access to out-of-bounds memory, leading to a system crash or a leak of internal kernel...

7.8CVSS6.6AI score0.00408EPSS
Exploits0
Debian CVE
Debian CVE
•added 2021/04/26 12:0 a.m.•54 views

CVE-2021-21220

Insufficient validation of untrusted input in V8 in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS9.4AI score0.70435EPSS
Exploits6
Debian CVE
Debian CVE
•added 2021/04/06 6:7 p.m.•54 views

CVE-2021-28688

The fix for XSA-365 includes initialization of pointers such that subsequent cleanup code wouldn't use uninitialized or stale values. This initialization went too far and may under certain conditions also overwrite pointers which are in need of cleaning up. The lack of cleanup would result in...

6.5CVSS7.2AI score0.00332EPSS
Exploits0
Debian CVE
Debian CVE
•added 2021/04/02 5:54 p.m.•54 views

CVE-2021-1765

This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave. Maliciously crafted web content may violate iframe sandboxing policy...

6.5CVSS2.1AI score0.01408EPSS
Exploits0
Debian CVE
Debian CVE
•added 2021/02/16 4:55 p.m.•54 views

CVE-2021-23841

The OpenSSL public API function X509issuerandserialhash attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. However it fails to correctly handle any errors that may occur while parsing the issuer field which might occur if the...

5.9CVSS6.8AI score0.07471EPSS
Exploits0
Debian CVE
Debian CVE
•added 2020/12/15 4:57 p.m.•54 views

CVE-2020-27777

A flaw was found in the way RTAS handled memory accesses in userspace to kernel communication. On a locked down usually due to Secure Boot guest system running on top of PowerVM or KVM hypervisors pseries platform a root like local user could use this flaw to further increase their privileges to...

7.2CVSS6.4AI score0.00506EPSS
Exploits1
Debian CVE
Debian CVE
•added 2020/11/23 4:15 p.m.•54 views

CVE-2020-12351

Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access...

8.8CVSS8.1AI score0.07693EPSS
Exploits5
Debian CVE
Debian CVE
•added 2020/09/13 5:28 p.m.•54 views

CVE-2020-25285

A race condition between hugetlb sysctl handlers in mm/hugetlb.c in the Linux kernel before 5.8.8 could be used by local attackers to corrupt memory, cause a NULL pointer dereference, or possibly have unspecified other impact, aka CID-17743798d812...

6.4CVSS7AI score0.00272EPSS
Exploits0
Debian CVE
Debian CVE
•added 2020/06/01 3:28 p.m.•54 views

CVE-2020-12062

The scp client in OpenSSH 8.2 incorrectly sends duplicate responses to the server upon a utimes system call failure, which allows a malicious unprivileged user on the remote server to overwrite arbitrary files in the client's download directory by creating a crafted subdirectory anywhere on the...

7.5CVSS7.9AI score0.02267EPSS
Exploits0
Debian CVE
Debian CVE
•added 2020/02/27 8:25 p.m.•54 views

CVE-2020-7062

In PHP versions 7.2.x below 7.2.28, 7.3.x below 7.3.15 and 7.4.x below 7.4.3, when using file upload functionality, if upload progress tracking is enabled, but session.uploadprogress.cleanup is set to 0 disabled, and the file upload fails, the upload procedure would try to clean up data that does...

7.5CVSS7.3AI score0.0351EPSS
Exploits1
Debian CVE
Debian CVE
•added 2019/12/03 3:40 p.m.•54 views

CVE-2019-19530

In the Linux kernel before 5.2.10, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/class/cdc-acm.c driver, aka CID-c52873e5a1ef...

4.9CVSS6.9AI score0.00426EPSS
Exploits0
Debian CVE
Debian CVE
•added 2019/08/16 1:15 a.m.•54 views

CVE-2019-15099

drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor...

7.8CVSS6.9AI score0.03771EPSS
Exploits0
Debian CVE
Debian CVE
•added 2019/05/15 4:54 p.m.•54 views

CVE-2013-7285

Xstream API versions up to 1.4.6 and version 1.4.10, if the security framework has not been initialized, may allow a remote attacker to run arbitrary shell commands by manipulating the processed input stream when unmarshaling XML or any supported format. e.g. JSON...

9.8CVSS8.2AI score0.84362EPSS
Exploits5
Debian CVE
Debian CVE
•added 2019/02/20 3:0 a.m.•54 views

CVE-2019-8943

WordPress through 5.0.3 allows Path Traversal in wpcropimage. An attacker who has privileges to crop an image can write the output image to an arbitrary directory via a filename containing two image extensions and ../ sequences, such as a filename ending with the .jpg?/../../file.jpg substring...

6.5CVSS7.3AI score0.91985EPSS
Exploits9
Debian CVE
Debian CVE
•added 2019/02/06 8:0 p.m.•54 views

CVE-2019-3822

libcurl versions from 7.36.0 to before 7.64.0 are vulnerable to a stack-based buffer overflow. The function creating an outgoing NTLM type-3 header lib/vauth/ntlm.c:Curlauthcreatentlmtype3message, generates the request HTTP header contents based on previously received data. The check that exists ...

9.8CVSS6.7AI score0.12771EPSS
Exploits1
Debian CVE
Debian CVE
•added 2018/11/16 6:0 p.m.•54 views

CVE-2018-16395

Removed by vendor...

9.8CVSS9.4AI score0.10715EPSS
Exploits0
Debian CVE
Debian CVE
•added 2018/10/31 6:0 p.m.•54 views

CVE-2018-16840

A heap use-after-free flaw was found in curl versions from 7.59.0 through 7.61.1 in the code related to closing an easy handle. When closing and cleaning up an 'easy' handle in the Curlclose function, the library code first frees a struct without nulling the pointer and might then subsequently...

9.8CVSS7.2AI score0.03333EPSS
Exploits0
Debian CVE
Debian CVE
•added 2018/09/28 12:0 a.m.•54 views

CVE-2018-17567

Jekyll through 3.6.2, 3.7.x through 3.7.3, and 3.8.x through 3.8.3 allows attackers to access arbitrary files by specifying a symlink in the "include" key in the "config.yml" file...

7.5CVSS7.4AI score0.0217EPSS
Exploits0
Debian CVE
Debian CVE
•added 2018/08/16 8:0 p.m.•54 views

CVE-2016-9598

libxml2, as used in Red Hat JBoss Core Services, allows context-dependent attackers to cause a denial of service out-of-bounds read and application crash via a crafted XML document. NOTE: this vulnerability exists because of a missing fix for CVE-2016-4483...

6.5CVSS7.8AI score0.0104EPSS
Exploits0
Debian CVE
Debian CVE
•added 2018/07/10 9:0 p.m.•54 views

CVE-2018-3693

Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a speculative buffer overflow and side-channel analysis...

5.6CVSS6.8AI score0.08416EPSS
Exploits0
Debian CVE
Debian CVE
•added 2018/02/23 11:0 p.m.•54 views

CVE-2018-1305

Security constraints defined by annotations of Servlets in Apache Tomcat 9.0.0.M1 to 9.0.4, 8.5.0 to 8.5.27, 8.0.0.RC1 to 8.0.49 and 7.0.0 to 7.0.84 were only applied once a Servlet had been loaded. Because security constraints defined in this way apply to the URL pattern and any URLs below that...

6.5CVSS7.1AI score0.15026EPSS
Exploits2
Debian CVE
Debian CVE
•added 2017/10/31 9:0 p.m.•54 views

CVE-2017-1000257

An IMAP FETCH response line indicates the size of the returned data, in number of bytes. When that response says the data is zero bytes, libcurl would pass on that non-existing data with a pointer and the size zero to the deliver-data function. libcurl's deliver-data function treats zero as a mag...

9.1CVSS9.5AI score0.06224EPSS
Exploits0
Debian CVE
Debian CVE
•added 2017/08/10 10:0 p.m.•54 views

CVE-2016-6797

Removed by vendor...

7.5CVSS6.6AI score0.0807EPSS
Exploits0
Debian CVE
Debian CVE
•added 2017/01/27 10:1 p.m.•54 views

CVE-2017-3261

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Networking. Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple...

4.3CVSS5.1AI score0.02499EPSS
Exploits0
Debian CVE
Debian CVE
•added 2017/01/18 9:0 p.m.•54 views

CVE-2016-10148

The wpajaxupdateplugin function in wp-admin/includes/ajax-actions.php in WordPress before 4.6 makes a getplugindata call before checking the updateplugins capability, which allows remote authenticated users to bypass intended read-access restrictions via the plugin parameter to...

4.3CVSS5.1AI score0.01641EPSS
Exploits0
Debian CVE
Debian CVE
•added 2016/12/29 9:2 a.m.•54 views

CVE-2016-9878

An issue was discovered in Pivotal Spring Framework before 3.2.18, 4.2.x before 4.2.9, and 4.3.x before 4.3.5. Paths provided to the ResourceServlet were not properly sanitized and as a result exposed to directory traversal attacks...

7.5CVSS7.6AI score0.0564EPSS
Exploits0
Debian CVE
Debian CVE
•added 2016/08/06 8:0 p.m.•54 views

CVE-2016-5696

net/ipv4/tcpinput.c in the Linux kernel before 4.7 does not properly determine the rate of challenge ACK segments, which makes it easier for remote attackers to hijack TCP sessions via a blind in-window attack...

5.8CVSS6.5AI score0.15073EPSS
Exploits3
Debian CVE
Debian CVE
•added 2016/03/03 12:0 a.m.•54 views

CVE-2016-0799

The fmtstr function in crypto/bio/bprint.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g improperly calculates string lengths, which allows remote attackers to cause a denial of service overflow and out-of-bounds read or possibly have unspecified other impact via a long string, as...

10CVSS9.4AI score0.32414EPSS
Exploits1
Debian CVE
Debian CVE
•added 2016/01/19 12:0 a.m.•54 views

CVE-2016-1907

The sshpacketreadpoll2 function in packet.c in OpenSSH before 7.1p2 allows remote attackers to cause a denial of service out-of-bounds read and application crash via crafted network traffic...

5.3CVSS5.9AI score0.14341EPSS
Exploits0
Debian CVE
Debian CVE
•added 2015/08/24 12:0 a.m.•54 views

CVE-2015-6563

The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITORREQPAMINITCTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafte...

6.4CVSS6.6AI score0.00378EPSS
Exploits0
Debian CVE
Debian CVE
•added 2015/05/21 12:0 a.m.•54 views

CVE-2015-4000

The TLS protocol 1.2 and earlier, when a DHEEXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHEEXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHEEXPORT and then...

4.3CVSS5.4AI score0.9986EPSS
Exploits1
Debian CVE
Debian CVE
•added 2015/01/09 9:0 p.m.•54 views

CVE-2014-9585

The vdsoaddr function in arch/x86/vdso/vma.c in the Linux kernel through 3.18.2 does not properly choose memory locations for the vDSO area, which makes it easier for local users to bypass the ASLR protection mechanism by guessing a location at the end of a PMD...

2.1CVSS6.5AI score0.00557EPSS
Exploits1
Debian CVE
Debian CVE
•added 2014/11/10 11:0 a.m.•54 views

CVE-2014-8559

The dwalk function in fs/dcache.c in the Linux kernel through 3.17.2 does not properly maintain the semantics of renamelock, which allows local users to cause a denial of service deadlock and system hang via a crafted application...

5.5CVSS6.2AI score0.00738EPSS
Exploits1
Total number of security vulnerabilities5000