Lucene search
K
OsvMost viewed

909148 matches found

OSV
OSV
added 2016/12/16 12:0 a.m.75 views

DLA-749-1 php5 - security update

Bulletin has no description...

9.8CVSS7.5AI score0.50427EPSS
Exploits14
OSV
OSV
added 2004/03/02 12:0 a.m.75 views

DSA-454 linux-kernel-2.2.22-alpha - failing function and TLB flush

Bulletin has no description...

7.2CVSS6.2AI score0.02434EPSS
Exploits2
OSV
OSV
added 2003/07/16 12:0 a.m.75 views

DSA-351 php4 - cross-site scripting

Bulletin has no description...

4.3CVSS6.2AI score0.06982EPSS
Exploits1
OSV
OSV
added 2026/06/15 8:22 p.m.74 views

GHSA-6JV3-5F52-599M python-multipart: Semicolon treated as querystring field separator enables parameter smuggling

Summary QuerystringParser treated ; as a field separator in application/x-www-form-urlencoded bodies, in addition to &. The WHATWG URL standard, modern browsers, and Python's urllib.parse since the CVE-2021-23336 fix treat only & as a separator. This creates a parser differential: the same bytes...

3.7CVSS5.7AI score0.00176EPSS
Exploits0References2
OSV
OSV
added 2025/07/16 8:19 a.m.74 views

BIT-TOMCAT-2025-53506 Apache Tomcat: DoS via excessive h2 streams at connection start

Uncontrolled Resource Consumption vulnerability in Apache Tomcat if an HTTP/2 client did not acknowledge the initial settings frame that reduces the maximum permitted concurrent streams. This issue affects Apache Tomcat: from 11.0.0 through 11.0.8, from 10.1.0 through 10.1.42, from 9.0.0 through...

7.5CVSS7.2AI score0.01898EPSS
Exploits0References4
OSV
OSV
added 2024/04/09 12:30 p.m.74 views

GHSA-PRVG-RH5H-74JR Apache Zeppelin CSRF vulnerability in the Credentials page

Cross-Site Request Forgery CSRF vulnerability in Credential page of Apache Zeppelin allows an attacker to submit malicious request. This issue affects Apache Zeppelin Apache Zeppelin version 0.9.0 and prior versions...

5.4CVSS5.4AI score0.00482EPSS
Exploits0References4
OSV
OSV
added 2024/03/06 11:5 a.m.74 views

BIT-RUBY-2021-33621

The cgi gem before 0.1.0.2, 0.2.x before 0.2.2, and 0.3.x before 0.3.5 for Ruby allows HTTP response splitting. This is relevant to applications that use untrusted user input either to generate an HTTP response or to create a CGI::Cookie object...

8.8CVSS8.8AI score0.02287EPSS
Exploits1References9
OSV
OSV
added 2024/03/06 10:54 a.m.74 views

BIT-CODEIGNITER-2022-21647

CodeIgniter is an open source PHP full-stack web framework. Deserialization of Untrusted Data was found in the old function in CodeIgniter4. Remote attackers may inject auto-loadable arbitrary objects with this vulnerability, and possibly execute existing PHP code on the server. We are aware of a...

9.8CVSS9.2AI score0.37671EPSS
Exploits0References2
OSV
OSV
added 2024/02/26 8:19 p.m.74 views

PYSEC-2024-164

Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. If an excessively large value is specified as the starting index for an array in abidecode, it can cause the read position to overflow. This results in the decoding of values outside the intended array bounds, potential...

5.3CVSS5.1AI score0.00542EPSS
Exploits1References4
OSV
OSV
added 2023/05/08 8:15 p.m.74 views

CVE-2023-32233

In the Linux kernel through 6.3.1, a use-after-free in Netfilter nftables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs because anonymous sets are mishandled...

7.8CVSS6.5AI score
Exploits0References11
OSV
OSV
added 2023/03/03 12:0 a.m.74 views

DLA-3351-1 apache2 - security update

Bulletin has no description...

9CVSS7.8AI score0.57941EPSS
Exploits1
OSV
OSV
added 2022/08/30 8:54 p.m.74 views

GHSA-C8FJ-4PM8-MP2C Broken Authorization in ZITADEL Actions

Impact Actions, introduced in ZITADEL 1.42.0 on the API and 1.56.0 for Console, is a feature, where users with role ORGOWNER are able to create Javascript Code, which is invoked by the system at certain points during the login. Actions, for example, allow creating authorizations user grants on...

8.7CVSS8.7AI score0.00788EPSS
Exploits0References7
OSV
OSV
added 2022/06/11 12:0 a.m.74 views

DSA-5161-1 linux - security update

Bulletin has no description...

8.2CVSS6.9AI score0.02972EPSS
Exploits7
OSV
OSV
added 2022/06/01 12:0 a.m.74 views

ASB-A-157929241

In WindowManager, there is a possible tapjacking attack due to an incorrect window flag when processing user input. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

7.3CVSS7.3AI score0.00111EPSS
Exploits0References1
OSV
OSV
added 2022/05/17 12:0 a.m.74 views

DLA-3012-1 libxml2 - security update

Bulletin has no description...

6.5CVSS6.9AI score0.0363EPSS
Exploits5
OSV
OSV
added 2022/04/07 3:20 p.m.74 views

GHSA-3HJG-VC7R-RCRW Denial of Service vulnerability in @podium/layout and @podium/proxy

Impact An attacker using the Trailer header as part of the request against proxy endpoints has the ability to take down the server. All Podium layouts that include podlets with proxy endpoints are affected. Patches @podium/layout which is the main way developers/users are vulnerable to this...

7.5CVSS7.4AI score0.01594EPSS
Exploits0References6
OSV
OSV
added 2021/07/08 12:0 p.m.74 views

RUSTSEC-2021-0074 Incorrect handling of embedded SVG and MathML leads to mutation XSS

Affected versions of this crate did not account for namespace-related parsing differences between HTML, SVG, and MathML. Even if the svg and math elements are not allowed, the underlying HTML parser still treats them differently. Running cleanup without accounting for these differing namespaces...

6.1CVSS6.1AI score0.00702EPSS
Exploits1References3
OSV
OSV
added 2020/12/16 12:0 a.m.74 views

DLA-2496-1 firefox-esr - security update

Bulletin has no description...

8.8CVSS7AI score0.01876EPSS
Exploits0
OSV
OSV
added 2020/09/03 5:12 p.m.74 views

GHSA-9PCF-H8Q9-63F6 Sandbox Breakout / Arbitrary Code Execution in safe-eval

All versions of safe-eval are vulnerable to Sandbox Escape leading to Remote Code Execution. A payload chaining a function's callee and caller constructors can escape the sandbox and execute arbitrary code. For example, the payload = const targetKey = Object.keysthis0; Object.definePropertythis,...

8.2AI score
Exploits0References1
OSV
OSV
added 2024/09/18 7:17 a.m.73 views

BIT-GITLAB-2024-6685 Authorization Bypass Through User-Controlled Key in GitLab

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.7 prior to 17.1.7, 17.2 prior to 17.2.5, and 17.3 prior to 17.3.2, where group runners information was disclosed to unauthorised group members...

4.3CVSS4AI score0.00372EPSS
Exploits0References3
OSV
OSV
added 2024/03/18 5:35 p.m.73 views

GO-2024-2614 Password brute force attack in github.com/IceWhaleTech/CasaOS-UserService

The CasaOS web application does not have protection against password brute force attacks. An attacker can use a password brute force attack to find and gain full access to the server. This vulnerability allows attackers to get super user-level access over the server...

9.8CVSS9.5AI score0.00977EPSS
Exploits1References3
OSV
OSV
added 2024/03/06 11:3 a.m.73 views

BIT-PHP-2022-37454

The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function interface...

9.8CVSS9.4AI score0.05193EPSS
Exploits1References15
OSV
OSV
added 2023/10/25 6:20 a.m.73 views

BIT-2023-44311

Multiple reflected cross-site scripting XSS vulnerabilities in the Plugin for OAuth 2.0 module's OAuth2ProviderApplicationRedirect class in Liferay Portal 7.4.3.41 through 7.4.3.89, and Liferay DXP 7.4 update 41 through update 89 allow remote attackers to inject arbitrary web script or HTML via t...

9.6CVSS6AI score0.00462EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/07/11 7:19 p.m.73 views

GO-2023-1878 Insufficient sanitization of Host header in net/http

The HTTP/1 client does not fully validate the contents of the Host header. A maliciously crafted Host header can inject additional headers or entire requests. With fix, the HTTP/1 client now refuses to send requests containing an invalid Request.Host or Request.URL.Host value...

6.5CVSS7.3AI score0.0125EPSS
Exploits0References3
OSV
OSV
added 2023/04/07 3:30 p.m.73 views

GHSA-85PF-R4C7-3J9R Apache Airflow Drill Provider vulnerable to improper input validation

Apache Software Foundation's Apache Airflow Drill Provider before 2.3.2 is vulnerable to improper input validation because the host passed in drill connection is not sanitized...

8.7CVSS7.3AI score0.02062EPSS
Exploits0References8
OSV
OSV
added 2022/10/18 12:0 a.m.73 views

DSA-5256-1 bcel - security update

Bulletin has no description...

7.5CVSS8AI score0.17673EPSS
Exploits2
OSV
OSV
added 2022/07/31 12:0 a.m.73 views

DSA-5196-1 libpgjava - security update

Bulletin has no description...

9.8CVSS9.4AI score0.0301EPSS
Exploits1
OSV
OSV
added 2022/07/07 1:15 p.m.73 views

CVE-2022-32205

A malicious server can serve excessive amounts of Set-Cookie: headers in a HTTP response to curl and curl 7.84.0 stores all of them. A sufficiently large amount of big cookies make subsequent HTTP requests to this, or other servers to which the cookies match, create requests that become larger th...

4.3CVSS1.1AI score0.26915EPSS
Exploits1References9
OSV
OSV
added 2022/07/06 12:0 a.m.73 views

DSA-5178-1 intel-microcode - security update

Bulletin has no description...

5.5CVSS7AI score0.06451EPSS
Exploits0
OSV
OSV
added 2022/05/18 8:6 p.m.73 views

GHSA-CGX6-HPWQ-FHV5 Integer Overflow or Wraparound in libxml2 affects Nokogiri

Summary Nokogiri v1.13.5 upgrades the packaged version of its dependency libxml2 from v2.9.13 to v2.9.14. libxml2 v2.9.14 addresses CVE-2022-29824. This version also includes several security-related bug fixes for which CVEs were not created, including a potential double-free, potential memory...

8.6CVSS7.2AI score0.0363EPSS
Exploits5References4
OSV
OSV
added 2022/03/16 12:0 a.m.73 views

GHSA-X3MH-JVJW-3XWX openssl-src's infinite loop in `BN_mod_sqrt()` reachable when parsing certificates

The BNmodsqrt function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a...

7.5CVSS7.7AI score0.70561EPSS
Exploits2References37
OSV
OSV
added 2021/05/10 7:35 p.m.73 views

GHSA-7QW8-847F-PGGM Improper Locking in github.com/containers/storage

A deadlock vulnerability was found in github.com/containers/storage in versions before 1.28.1. When a container image is processed, each layer is unpacked using tar. If one of those layers is not a valid tar archive this causes an error leading to an unexpected situation where the code indefinite...

6.5CVSS6.7AI score0.01587EPSS
Exploits1References11
OSV
OSV
added 2020/12/17 12:0 p.m.73 views

RUSTSEC-2020-0093 Async-h1 request smuggling possible with long unread bodies

This vulnerability affects any webserver that uses async-h1 behind a reverse proxy, including all such Tide applications. If the server does not read the body of a request which is longer than some buffer length, async-h1 will attempt to read a subsequent request from the body content starting at...

7.5CVSS6.5AI score0.01008EPSS
Exploits0References3
OSV
OSV
added 2020/12/09 12:0 a.m.73 views

DLA-2485-1 golang-golang-x-net-dev - security update

Bulletin has no description...

7.8CVSS7.2AI score0.83433EPSS
Exploits1
OSV
OSV
added 2020/10/27 7:47 p.m.73 views

GHSA-PV36-H7JH-QM62 Heap buffer overflow in CefSharp

Impact A memory corruption bugHeap overflow in the FreeType font rendering library. This can be exploited by attackers to execute arbitrary code by using specially crafted fonts with embedded PNG images . As per https://www.secpod.com/blog/chrome-zero-day-under-active-exploitation-patch-now/ Goog...

6.5CVSS8.8AI score0.5063EPSS
Exploits2References19
OSV
OSV
added 2020/06/02 2:15 p.m.73 views

CVE-2020-13401

An issue was discovered in Docker Engine before 19.03.11. An attacker in a container, with the CAPNETRAW capability, can craft IPv6 router advertisements, and consequently spoof external IPv6 hosts, obtain sensitive information, or cause a denial of service...

6CVSS7.2AI score
Exploits0References9
OSV
OSV
added 2020/05/26 3:11 p.m.73 views

GHSA-JP5V-5GX4-JMJ9 Ability to forge per-form CSRF tokens in Rails

It is possible to, given a global CSRF token such as the one present in the authenticitytoken meta tag, forge a per-form CSRF token for any action for that session. Impact ------ Given the ability to extract the global CSRF token, an attacker would be able to construct a per-form CSRF token for...

4.3CVSS6.4AI score0.01673EPSS
Exploits1References7
OSV
OSV
added 2015/10/02 12:0 a.m.73 views

DLA-324-1 binutils - security update

Bulletin has no description...

9.8CVSS9.4AI score0.03602EPSS
Exploits0
OSV
OSV
added 2012/08/30 12:0 a.m.73 views

DSA-2537-1 typo3-src - several

Bulletin has no description...

4.6CVSS6AI score0.0212EPSS
Exploits1
OSV
OSV
added 2025/02/04 7:14 a.m.72 views

BIT-GRAFANA-2024-11741

Grafana is an open-source platform for monitoring and observability. The Grafana Alerting VictorOps integration was not properly protected and could be exposed to users with Viewer permission. Fixed in versions 11.5.0, 11.4.1, 11.3.3, 11.2.6, 11.1.11, 11.0.11 and 10.4.15...

4.3CVSS4.6AI score0.00368EPSS
Exploits0References3
OSV
OSV
added 2024/11/19 5:22 p.m.72 views

CVE-2024-53064 idpf: fix idpf_vc_core_init error path

In the Linux kernel, the following vulnerability has been resolved: idpf: fix idpfvccoreinit error path In an event where the platform running the device control plane is rebooted, reset is detected on the driver. It releases all the resources and waits for the reset to complete. Once the reset i...

5.5CVSS6AI score0.0019EPSS
Exploits0References5
OSV
OSV
added 2024/11/19 5:20 p.m.72 views

GO-2024-3267 Zoraxy has an authenticated command injection in the Web SSH feature in github.com/tobychui/zoraxy

Zoraxy has an authenticated command injection in the Web SSH feature in github.com/tobychui/zoraxy. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from...

8.6CVSS9.3AI score0.01442EPSS
Exploits0References4
OSV
OSV
added 2024/09/30 8:29 p.m.72 views

RHSA-2022:8267 Red Hat Security Advisory: kernel security, bug fix, and enhancement update

Bulletin has no description...

8.2CVSS8.1AI score0.12746EPSS
Exploits36References985
OSV
OSV
added 2024/09/30 2:30 p.m.72 views

RLSA-2024:7001 Important: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: CVE-2023-6040 CVE-2024-26595 CVE-2021-46984 CVE-2023-52478 CVE-2023-52476 CVE-2023-52522 CVE-2021-47101 CVE-2021-47097 CVE-2023-52605...

8.8CVSS7.9AI score0.01028EPSS
Exploits2References124
OSV
OSV
added 2024/09/02 12:0 p.m.73 views

RUSTSEC-2024-0368 olm-sys: wrapped library unmaintained, potentially vulnerable

After several cryptographic vulnerabilities in libolm were disclosed publicly, the Matrix Foundation has officially deprecated the library. olm-sys is a thin wrapper around libolm and is now deprecated and potentially vulnerable in kind. Users of olm-sys and its higher-level abstraction, olm-rs,...

5.3CVSS4.9AI score0.00536EPSS
Exploits3References4
OSV
OSV
added 2024/07/17 12:0 a.m.72 views

ALSA-2024:4573 Important: java-21-openjdk security update

The java-21-openjdk packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java Software Development Kit. Security Fixes: OpenJDK: RangeCheckElimination array index overflow 8323231 CVE-2024-21147 OpenJDK: potential UTF8 size overflow 8314794 CVE-2024-21131 OpenJDK: Excessive...

7.4CVSS6.9AI score0.01257EPSS
Exploits0References13
OSV
OSV
added 2024/06/20 4:11 p.m.72 views

GHSA-HW5F-6WVV-XCRH SFTPGo has insufficient access control for password reset

Impact SFTPGo WebAdmin and WebClient support password reset. This feature is disabled in the default configuration. In SFTPGo versions prior to v2.6.1, if the feature is enabled, even users with access restrictions e.g. expired can reset their password and log in. Patches Fixed in v2.6.1...

6.5CVSS5.5AI score0.00307EPSS
Exploits0References6
OSV
OSV
added 2024/06/14 1:59 p.m.72 views

RLSA-2024:3271 Important: bind and dhcp security update

The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server is operating correctly. The Dynamic Hos...

7.5CVSS8.3AI score0.99995EPSS
Exploits1References4
OSV
OSV
added 2024/05/14 7:29 a.m.72 views

BIT-PHP-2024-2756 __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix

Due to an incomplete fix to CVE-2022-31629 https://github.com/advisories/GHSA-c43m-486j-j32p , network and same-site attackers can set a standard insecure cookie in the victim's browser which is treated as a Host- or Secure- cookie by PHP applications...

6.5CVSS7.3AI score0.3786EPSS
Exploits0References7
OSV
OSV
added 2024/04/02 7:34 p.m.72 views

GO-2024-2668 Login username enumeration in github.com/IceWhaleTech/CasaOS-UserService

The Casa OS Login page has a username enumeration vulnerability in the login page that was patched in Casa OS v0.4.7. The issue exists because the application response differs depending on whether the username or password is incorrect, allowing an attacker to enumerate usernames by observing the...

7.5CVSS6.3AI score0.00618EPSS
Exploits1References1
Total number of security vulnerabilities5000