Lucene search
+L
FreebsdMost viewed

6591 matches found

FreeBSD
FreeBSD
•added 2023/11/22 12:0 a.m.•34 views

electron{25,26} -- use after free in Garbage Collection

Electron developers report: This update fixes the following vulnerability: Security: backported fix for CVE-2023-5997...

8.8CVSS7.1AI score0.00972EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2023/11/14 12:0 a.m.•34 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 4 security fixes: 1497997 High CVE-2023-5997: Use after free in Garbage Collection. Reported by Anonymous on 2023-10-31 1499298 High CVE-2023-6112: Use after free in Navigation. Reported by Sergei Glazunov of Google Project Zero on 2023-11-04...

8.8CVSS7.6AI score0.30339EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2023/11/07 12:0 a.m.•34 views

chromium -- security update

Chrome Releases reports: This update includes 1 security fix: 1497859 High CVE-2023-5996: Use after free in WebAudio. Reported by Huang Xilin of Ant Group Light-Year Security Lab via Tianfu Cup 2023 on 2023-10-30...

8.8CVSS7.5AI score0.01976EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2023/10/11 12:0 a.m.•34 views

electron25 -- Use after free in extensions vulnerability

Electron developers report: This update fixes the following vulnerability: Security: backported fix for CVE-2023-5187...

8.8CVSS8.7AI score0.00833EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2023/10/11 12:0 a.m.•34 views

apache -- Apache ZooKeeper: Authorization bypass in SASL Quorum Peer Authentication

[email protected] reports: Authorization Bypass Through User-Controlled Key vulnerability in Apache ZooKeeper. If SASL Quorum Peer authentication is enabled in ZooKeeper quorum.auth.enableSasl=true, the authorization is done by verifying that the instance part in SASL authentication ID is liste...

9.1CVSS7.4AI score0.01713EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2023/08/30 12:0 a.m.•34 views

electron24 -- multiple vulnerabilities

Electron developers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2023-4427. Security: backported fix for CVE-2023-4428. Security: backported fix for CVE-2023-4430. Security: backported fix for CVE-2023-4572...

8.8CVSS8.4AI score0.3398EPSS
Exploits0References4
FreeBSD
FreeBSD
•added 2023/08/15 12:0 a.m.•34 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This update includes 26 security fixes: 1448548 High CVE-2023-2312: Use after free in Offline. Reported by avaue at S.S.L. on 2023-05-24 1458303 High CVE-2023-4349: Use after free in Device Trust Connectors. Reported by Weipeng Jiang @Krace of VRI on 2023-06-27 1454817 Hi...

8.8CVSS7.8AI score0.45912EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2023/08/10 12:0 a.m.•34 views

postgresql-server -- Extension script @substitutions@ within quoting allow SQL injection

PostgreSQL Project reports An extension script is vulnerable if it uses @extowner@, @extschema@, or @extschema:...@ inside a quoting construct dollar quoting, '', or "". No bundled extension is vulnerable. Vulnerable uses do appear in a documentation example and in non-bundled extensions. Hence,...

8.8CVSS7.4AI score0.01572EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2023/08/02 12:0 a.m.•34 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This update includes 17 security fixes: 1466183 High CVE-2023-4068: Type Confusion in V8. Reported by Jerry on 2023-07-20 1465326 High CVE-2023-4069: Type Confusion in V8. Reported by Man Yue Mo of GitHub Security Lab on 2023-07-17 1462951 High CVE-2023-4070: Type Confusi...

8.8CVSS7.8AI score0.24116EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2023/07/12 12:0 a.m.•34 views

electron22 -- multiple vulnerabilities

Electron developers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2023-3422. Security: backported fix for CVE-2023-3421. Security: backported fix for CVE-2023-3420...

8.8CVSS7AI score0.56192EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2023/05/16 12:0 a.m.•34 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This update includes 12 security fixes: 1444360 Critical CVE-2023-2721: Use after free in Navigation. Reported by Guang Gong of Alpha Lab, Qihoo 360 on 2023-05-10 1400905 High CVE-2023-2722: Use after free in Autofill UI. Reported by Rong Jian of VRI on 2022-12-14 1435166...

8.8CVSS7.4AI score0.29136EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2023/05/09 12:0 a.m.•34 views

vscode -- Visual Studio Code Information Disclosure Vulnerability

[email protected] reports: Visual Studio Code Information Disclosure Vulnerability A information disclosure vulnerability exists in VS Code 1.78.0 and earlier versions on Windows when file system operations are performed on malicious UNC paths. Examples include reading or resolving metadata of...

6.6CVSS6.3AI score0.00878EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2023/03/13 12:0 a.m.•34 views

rack -- possible denial of service vulnerability in header parsing

oooooooq reports: Carefully crafted input can cause header parsing in Rack to take an unexpected amount of time, possibly resulting in a denial of service attack vector. Any applications that parse headers using Rack virtually all Rails applications are impacted...

5.3CVSS7.3AI score0.01081EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2023/02/14 12:0 a.m.•34 views

git -- "git apply" overwriting paths outside the working tree

git team reports: By feeding a crafted input to "git apply", a path outside the working tree can be overwritten as the user who is running "git apply"...

7.5CVSS7.5AI score0.01144EPSS
Exploits3References1
FreeBSD
FreeBSD
•added 2023/02/08 12:0 a.m.•34 views

py-cryptography -- includes a vulnerable copy of OpenSSL

pyca/cryptography's wheels include a statically linked copy of OpenSSL. The versions of OpenSSL included in cryptography 0.8.1-39.0.0 are vulnerable to a security issue. More details about the vulnerabilities themselves can be found in https://www.openssl.org/news/secadv/20221213.txt and...

7.4CVSS8.1AI score0.59501EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2022/12/13 12:0 a.m.•34 views

typo3 -- multiple vulnerabilities

TYPO3 reports: TYPO3-CORE-SA-2022-012: Denial of Service in Page Error Handling. TYPO3-CORE-SA-2022-013: Weak Authentication in Frontend Login. TYPO3-CORE-SA-2022-014: Insufficient Session Expiration after Password Reset. TYPO3-CORE-SA-2022-015: Arbitrary Code Execution via Form Framework...

8.8CVSS1.6AI score0.00785EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2022/10/17 12:0 a.m.•34 views

go -- syscall, os/exec: unsanitized NUL in environment variables

The Go project reports: syscall, os/exec: unsanitized NUL in environment variables On Windows, syscall.StartProcess and os/exec.Cmd did not properly check for invalid environment variable values. A malicious environment variable value could exploit this behavior to set a value for a different...

7.5CVSS2.4AI score0.00778EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2022/07/12 12:0 a.m.•34 views

go -- multiple vulnerabilities

The Go project reports: net/http: improper sanitization of Transfer-Encoding header The HTTP/1 client accepted some invalid Transfer-Encoding headers as indicating a "chunked" encoding. This could potentially allow for request smuggling, but only if combined with an intermediate server that also...

7.5CVSS0.6AI score0.01885EPSS
Exploits3References1
FreeBSD
FreeBSD
•added 2021/12/06 12:0 a.m.•34 views

Gitlab -- Multiple Vulnerabilities

Gitlab reports: Group members with developer role can escalate their privilege to maintainer on projects that they import When user registration is limited, external users that aren't developers shouldn't have access to the CI Lint API Collision in access memoization leads to potential elevated...

8.8CVSS2.3AI score0.35649EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2021/11/01 12:0 a.m.•34 views

mailman -- 2.1.37 fixes XSS via user options, and moderator offline brute-force vuln against list admin password

Mark Sapiro reports: A potential XSS attack via the user options page has been reported by Harsh Jaiswal. This is fixed. CVE-2021-43331 LP: 1949401. A potential for for a list moderator to carry out an off-line brute force attack to obtain the list admin password has been reported by Andre Protas...

6.5CVSS6.5AI score0.01284EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2021/07/11 12:0 a.m.•34 views

Bacula-Web -- Multiple Vulnerabilities

Bacula-Web reports: Address Smarty CVE...

9.8CVSS1.8AI score0.82316EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2021/05/18 12:0 a.m.•34 views

libxml2 -- Possible denial of service

Daniel Veillard reports: A flaw was found in libxml2. Exponential entity expansion attack its possible bypassing all existing protection mechanisms and leading to denial of service...

6.5CVSS2.7AI score0.01861EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2021/04/07 12:0 a.m.•34 views

clamav -- Multiple vulnerabilites

Micah Snyder reports: CVE-2021-1252 Excel XLM parser infinite loop CVE-2021-1404 PDF parser buffer over-read; possible crash. CVE-2021-1405 Mail parser NULL-dereference crash...

7.8CVSS2.4AI score0.03155EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2021/03/02 12:0 a.m.•34 views

openvpn -- deferred authentication can be bypassed in specific circumstances

Gert Döring reports: OpenVPN 2.5.1 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with deferred authentication, which can be used to potentially trigger further information leaks...

7.5CVSS5.6AI score0.05107EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2020/12/08 12:0 a.m.•34 views

jasper -- heap overflow vulnerability

JasPer NEWS: Fix CVE-2020-27828, heap-overflow in cpcreate in jpcenc.c...

7.8CVSS1.6AI score0.01371EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2020/12/01 12:0 a.m.•34 views

FreeBSD -- ICMPv6 use-after-free in error message handling

Problem Description: When an ICMPv6 error message is received, the FreeBSD ICMPv6 stack may extract information from the message to hand to upper-layer protocols. As a part of this operation, it may parse IPv6 header options from a packet embedded in the ICMPv6 message. The handler for a routing...

7.5CVSS1AI score0.01221EPSS
Exploits0
FreeBSD
FreeBSD
•added 2020/10/22 12:0 a.m.•34 views

glpi -- Insecure Direct Object Reference on ajax/getDropdownValue.php

MITRE Corporation reports: In GLPI before 9.5.3, ajax/getDropdownValue.php has an Insecure Direct Object Reference IDOR vulnerability that allows an attacker to read data from any itemType e.g., Ticket, Users, etc...

4.3CVSS4.3AI score0.00858EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/08/27 12:0 a.m.•34 views

ark -- extraction outside of extraction directory

Albert Astals Cid reports: Overview A maliciously crafted TAR archive containing symlink entries would install files anywhere in the user's home directory upon extraction. Proof of concept For testing, an example of malicious archive can be found at dirsymlink.tar Impact Users can unwillingly...

4.3CVSS0.3AI score0.01496EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/08/25 12:0 a.m.•34 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This update includes 20 security fixes, including: 1109120 High CVE-2020-6558: Insufficient policy enforcement in iOS. Reported by Alison Huffman, Microsoft Browser Vulnerability Research on 2020-07-24 1116706 High CVE-2020-6559: Use after free in presentation API. Report...

9.3CVSS0.9AI score0.02296EPSS
Exploits3References1
FreeBSD
FreeBSD
•added 2020/06/24 12:0 a.m.•34 views

trafficserver -- resource consumption

Bryan Call reports: ATS is vulnerable to certain types of HTTP/2 HEADERS frames that can cause the server to allocate a large amount of memory and spin the thread...

7.5CVSS2.7AI score0.03909EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/06/17 12:0 a.m.•34 views

BIND -- Remote Denial of Service vulnerability

ISC reports: The asterisk character "" is allowed in DNS zone files, where it is most commonly present as a wildcard at a terminal node of the Domain Name System graph. However, the RFCs do not require and BIND does not enforce that an asterisk character be present only at a terminal node. A...

4.9CVSS0.7AI score0.02088EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/05/14 12:0 a.m.•34 views

Apache Ant leaks sensitive information via the java.io.tmpdir

Apache reports: Apache Ant 1.1 to 1.9.14 and 1.10.0 to 1.10.7 uses the default temporary directory identified by the Java system property java.io.tmpdir for several tasks and may thus leak sensitive information. The fixcrlf and replaceregexp tasks also copy files from the temporary directory back...

6.3CVSS2.2AI score0.01808EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/05/02 12:0 a.m.•34 views

json-c -- integer overflow and out-of-bounds write via a large JSON file

Tobias Stöckmann reports: I have discovered a way to trigger an out of boundary write while parsing a huge json file through a malicious input source. It can be triggered if an attacker has control over the input stream or if a huge load during filesystem operations can be triggered...

7.8CVSS7.9AI score0.01888EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2020/04/22 12:0 a.m.•34 views

kaminari -- potential XSS vulnerability

Kaminari Security Advisories: There was a vulnerability in versions of Kaminari that would allow an attacker to inject arbitrary code into pages with pagination links. The 1.2.1 gem including the patch has already been released. All past released versions are affected by this vulnerability...

6.4CVSS5AI score0.01508EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2020/04/15 12:0 a.m.•34 views

Zabbix -- Remote code execution

Zabbix reports: Fixed security vulnerability cve-2020-11800 remote code execution. ZBX-17600...

9.8CVSS2.3AI score0.09191EPSS
Exploits16References2
FreeBSD
FreeBSD
•added 2020/03/20 12:0 a.m.•34 views

Python -- multiple vulnerabilities

Python reports: gh-95778: Converting between int and str in bases other than 2 binary, 4, 8 octal, 16 hexadecimal, or 32 such as base 10 decimal now raises a ValueError if the number of digits in string form is above a limit to avoid potential denial of service attacks due to the algorithmic...

7.5CVSS0.4AI score0.03502EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/02/12 12:0 a.m.•34 views

ansible - subversion password leak from PID

Borja Tarraso reports: A flaw was found in Ansible 2.7.16 and prior, 2.8.8 and prior, and 2.9.5 and prior when a password is set with the argument "password" of svn module, it is used on svn command line, disclosing to other users within the same node. An attacker could take advantage by reading...

3.9CVSS1.8AI score0.00358EPSS
Exploits0References5
FreeBSD
FreeBSD
•added 2019/12/18 12:0 a.m.•34 views

NPM -- Multiple vulnerabilities

NPM reports: Global nodemodules Binary Overwrite Symlink reference outside of nodemodules Arbitrary File Write...

8.1CVSS2.2AI score0.03342EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2019/12/08 12:0 a.m.•34 views

rack -- information leak / session hijack vulnerability

National Vulnerability Database: There's a possible information leak / session hijack vulnerability in Rack RubyGem rack. This vulnerability is patched in versions 1.6.12 and 2.0.8. Attackers may be able to find and hijack sessions by using timing attacks targeting the session id. Session ids are...

6.3CVSS2.3AI score0.03687EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2019/12/06 12:0 a.m.•34 views

OpenSSL -- Overflow vulnerability

The OpenSSL project reports: rsaz512sqr overflow bug on x8664 CVE-2019-1551 Low There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, a...

5.3CVSS2.3AI score0.14298EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2019/11/07 12:0 a.m.•34 views

asterisk -- Re-invite with T.38 and malformed SDP causes crash

The Asterisk project reports: If Asterisk receives a re-invite initiating T.38 faxing and has a port of 0 and no c line in the SDP, a crash will occur...

7.5CVSS2AI score0.06677EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2019/07/23 12:0 a.m.•34 views

xymon-server -- multiple vulnerabilities

Japheth Cleaver reports: Several buffer overflows were reported by University of Cambridge Computer Security Incident Response Team...

9.8CVSS3.8AI score0.02425EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2019/06/27 12:0 a.m.•34 views

libzmq4 -- Stack overflow

Fang-Pen Lin reports: A remote, unauthenticated client connecting to a libzmq application, running with a socket listening with CURVE encryption/authentication enabled, may cause a stack overflow and overwrite the stack with arbitrary data, due to a buffer overflow in the library. Users running...

9.8CVSS4.1AI score0.42464EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2019/06/19 12:0 a.m.•34 views

FreeBSD -- Resource exhaustion in non-default RACK TCP stack

Problem Description: While processing acknowledgements, the RACK code uses several linked lists to maintain state entries. A malicious attacker can cause the lists to grow unbounded. This can cause an expensive list traversal on every packet being processed, leading to resource exhaustion and a...

7.8CVSS3.9AI score0.05226EPSS
Exploits1
FreeBSD
FreeBSD
•added 2019/03/14 12:0 a.m.•34 views

libssh2 -- multiple issues

libssh2 developers report: Defend against possible integer overflows in compmethodzlibdecomp. Defend against writing beyond the end of the payload in libssh2transportread. Sanitize paddinglength - libssh2transportread. This prevents an underflow resulting in a potential out-of-bounds read if a...

9.3CVSS2.4AI score0.09219EPSS
Exploits0References10
FreeBSD
FreeBSD
•added 2019/03/11 12:0 a.m.•34 views

Dovecot -- Multiple vulnerabilities

Aki Tuomi reports: Submission-login crashes with signal 11 due to null pointer access when authentication is aborted by disconnecting. This can lead to denial-of-service attack by persistent attackers. Aki Tuomi reports: Submission-login crashes when authentication is started over TLS secured...

7.5CVSS3AI score0.02433EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2019/02/05 12:0 a.m.•34 views

Gitlab -- Multiple vulnerabilities

Gitlab reports: Leak of Confidential Issue and Merge Request Titles Persistent XSS in User Status...

9.1CVSS3AI score0.01506EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2018/06/23 12:0 a.m.•34 views

GraphicsMagick -- SVG/Rendering vulnerability

GraphicsMagick News: Fix heap write overflow of PrimitiveInfo and PointInfo arrays. This is another manefestation of CVE-2016-2317, which should finally be fixed correctly due to active detection/correction of pending overflow rather than using estimation...

5.5CVSS2.5AI score0.0199EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2018/04/26 12:0 a.m.•34 views

wget -- cookie injection vulnerability

Harry Sintonen of F-Secure Corporation reports: GNU Wget is susceptible to a malicious web server injecting arbitrary cookies to the cookie jar file...

6.5CVSS1.4AI score0.1704EPSS
Exploits5References1
FreeBSD
FreeBSD
•added 2018/04/10 12:0 a.m.•34 views

Flash Player -- multiple vulnerabilities

Adobe reports: This update resolves a use-after-free vulnerability that could lead to remote code execution CVE-2018-4932. This update resolves out-of-bounds read vulnerabilities that could lead to information disclosure CVE-2018-4933, CVE-2018-4934. This update resolves out-of-bounds write...

9.3CVSS1.6AI score0.29073EPSS
Exploits8References1
Total number of security vulnerabilities5000