Lucene search
K
OsvMost viewed

910218 matches found

OSV
OSV
added 2014/09/24 12:0 a.m.63 views

DSA-3032-1 bash - security update

Bulletin has no description...

10CVSS10AI score0.99999EPSS
Exploits131
OSV
OSV
added 2009/11/05 12:0 a.m.63 views

DSA-1927-1 linux-2.6 - several vulnerabilities

Bulletin has no description...

7.8CVSS7AI score0.0493EPSS
Exploits12
OSV
OSV
added 2008/02/10 12:0 a.m.63 views

DSA-1484-1 xulrunner - several vulnerabilities

Bulletin has no description...

9.3CVSS9.7AI score0.08633EPSS
Exploits6
OSV
OSV
added 2025/01/08 7:20 a.m.62 views

BIT-REDIS-2024-51741 Redis allows denial-of-service due to malformed ACL selectors

Redis is an open source, in-memory database that persists on disk. An authenticated with sufficient privileges may create a malformed ACL selector which, when accessed, triggers a server panic and subsequent denial of service. The problem is fixed in Redis 7.2.7 and 7.4.2...

4.4CVSS5.4AI score0.00299EPSS
Exploits0References5
OSV
OSV
added 2024/11/14 1:15 p.m.62 views

CVE-2024-10978

Incorrect privilege assignment in PostgreSQL allows a less-privileged application user to view or change different rows from those intended. An attack requires the application to use SET ROLE, SET SESSION AUTHORIZATION, or an equivalent feature. The problem arises when an application query uses...

4.2CVSS6.6AI score0.00705EPSS
Exploits0References4
OSV
OSV
added 2024/09/23 8:29 a.m.62 views

SUSE-SU-2024:3383-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-43911: wifi: mac80211: fix NULL dereference at band check in starting tx ba session bsc1229827. - CVE-2024-43899: drm/amd/display: Fix null pointer deref in...

9.1CVSS8.4AI score0.01219EPSS
Exploits11References874
OSV
OSV
added 2024/08/21 4:4 p.m.62 views

GO-2022-1236 usememos/memos makes Incorrect Use of Privileged APIs in github.com/usememos/memos

usememos/memos makes Incorrect Use of Privileged APIs in github.com/usememos/memos...

8.1CVSS8.1AI score0.00761EPSS
Exploits1References4
OSV
OSV
added 2024/07/12 9:0 p.m.62 views

GHSA-9794-PC4R-438W Local File Inclusion in Solara

A Local File Inclusion LFI vulnerability was identified in widgetti/solara, in version 1.35.1, which was fixed in version 1.35.1. This vulnerability arises from the application's failure to properly validate URI fragments for directory traversal sequences such as '../' when serving static files. ...

8.6CVSS8.3AI score0.02884EPSS
Exploits0References4
OSV
OSV
added 2024/06/02 10:30 p.m.62 views

GHSA-CJCC-P67M-7QXM Unsafe Reflection in base Component class in yiisoft/yii2

Yii2 supports attaching Behaviors to Components by setting properties having the format 'as '. Internally this is done using the set magic method. If the value passed to this method is not an instance of the Behavior class, a new object is instantiated using Yii::createObject$value. However, ther...

8.1CVSS8.3AI score0.7939EPSS
Exploits1References9
OSV
OSV
added 2024/05/22 12:0 a.m.62 views

ALSA-2024:3271 Important: bind and dhcp security update

The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server is operating correctly. The Dynamic Hos...

7.5CVSS8.3AI score0.99995EPSS
Exploits1References8
OSV
OSV
added 2024/04/01 12:0 a.m.62 views

ASB-A-311374917

In assertPackageWithSharedUserIdIsPrivileged of InstallPackageHelper.java, there is a possible execution of arbitrary app code as a privileged app due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is...

7.8CVSS7.8AI score0.0009EPSS
Exploits0References2
OSV
OSV
added 2024/03/15 7:53 p.m.62 views

GHSA-MP76-7W5V-PR75 TurboBoost Commands vulnerable to arbitrary method invocation

Impact TurboBoost Commands has existing protections in place to guarantee that only public methods on Command classes can be invoked; however, the existing checks aren't as robust as they should be. It's possible for a sophisticated attacker to invoke more methods than should be permitted dependi...

8.1CVSS8.1AI score0.00796EPSS
Exploits0References6
OSV
OSV
added 2024/03/06 11:23 a.m.62 views

BIT-GITLAB-2020-10091

GitLab 9.3 through 12.8.1 allows XSS. A cross-site scripting vulnerability was found when viewing particular file types...

6.1CVSS5.8AI score0.00691EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 11:11 a.m.62 views

BIT-GITLAB-2023-1401 Insertion of Sensitive Information Into Sent Data in GitLab

An issue has been discovered in GitLab DAST scanner affecting all versions starting from 3.0.29 before 4.0.5, in which the DAST scanner leak cross site cookies on redirect during authorization...

5CVSS4.4AI score0.00432EPSS
Exploits1References3
OSV
OSV
added 2024/03/06 10:54 a.m.62 views

BIT-CODEIGNITER-2022-21715

CodeIgniter4 is the 4.x branch of CodeIgniter, a PHP full-stack web framework. A cross-site scripting XSS vulnerability was found in API\ResponseTrait in Codeigniter4 prior to version 4.1.8. Attackers can do XSS attacks if a potential victim is using API\ResponseTrait. Version 4.1.8 contains a...

6.1CVSS5.6AI score0.01002EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 10:54 a.m.62 views

BIT-CODEIGNITER-2022-23556

CodeIgniter is a PHP full-stack web framework. This vulnerability may allow attackers to spoof their IP address when the server is behind a reverse proxy. This issue has been patched, please upgrade to version 4.2.11 or later, and configure Config\App::$proxyIPs. As a workaround, do not use...

7.5CVSS7AI score0.00373EPSS
Exploits1References2
OSV
OSV
added 2024/02/19 9:15 a.m.62 views

CVE-2024-26308

Allocation of Resources Without Limits or Throttling vulnerability in Apache Commons Compress.This issue affects Apache Commons Compress: from 1.21 before 1.26. Users are recommended to upgrade to version 1.26, which fixes the issue...

5.5CVSS6.8AI score
Exploits0References3
OSV
OSV
added 2024/01/25 9:15 p.m.62 views

CVE-2023-52251

An issue discovered in provectus kafka-ui 0.4.0 through 0.7.1 allows remote attackers to execute arbitrary code via the q parameter of /api/clusters/local/topics/topic/messages...

8.8CVSS8AI score0.85025EPSS
Exploits5References2
OSV
OSV
added 2024/01/02 12:0 a.m.62 views

ALSA-2024:0003 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 115.6.0. Security Fixes: Mozilla: Heap-buffer-overflow affecting WebGL DrawElementsInstanced method with Mesa VM driver CVE-2023-6856 Mozilla: Memory safety bugs fixed in Firefox 121, Firefo...

8.8CVSS8.8AI score0.20472EPSS
Exploits0References24
OSV
OSV
added 2023/11/14 8:36 p.m.62 views

GHSA-XX9P-XXVH-7G8J Aiohttp has inconsistent interpretation of `Content-Length` vs. `Transfer-Encoding` differing in C and Python fallbacks

Impact Aiohttp has a security vulnerability regarding the inconsistent interpretation of the http protocol. As we know that HTTP/1.1 is persistent, if we have both Content-LengthCL and Transfer-EncodingTE it can lead to incorrect interpretation of two entities that parse the HTTP and we can poiso...

3.4CVSS6AI score0.00827EPSS
Exploits1References7
OSV
OSV
added 2023/10/27 9:55 p.m.62 views

GHSA-7C2Q-5QMR-V76Q DoS vulnerabilities persist in ESAPI file uploads despite remediation of CVE-2023-24998

Impact ESAPI 2.5.2.0 and later addressed the DoS vulnerability described in CVE-2023-24998, which Apache Commons FileUpload 1.5 attempted to remediate. But while writing up a new security bulletin regarding the impact on the affected ESAPI HTTPUtilities.getFileUploads methods or more specifically...

7.5CVSS7.2AI score
Exploits0References2
OSV
OSV
added 2023/10/26 8:53 p.m.62 views

GHSA-X9W5-V3Q2-3RHW browserify-sign upper bound check issue in `dsaVerify` leads to a signature forgery attack

Summary An upper bound check issue in dsaVerify function allows an attacker to construct signatures that can be successfully verified by any public key, thus leading to a signature forgery attack. Details In dsaVerify function, it checks whether the value of the signature is legal by calling...

7.5CVSS6.7AI score0.00508EPSS
Exploits0References8
OSV
OSV
added 2023/10/25 6:20 a.m.62 views

BIT-2023-44309

Multiple stored cross-site scripting XSS vulnerabilities in the fragment components in Liferay Portal 7.4.2 through 7.4.3.53, and Liferay DXP 7.4 before update 54 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into any non-HTML field of a linked sourc...

9CVSS5.7AI score0.00462EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/06/22 9:30 p.m.62 views

GHSA-MPV3-G8M3-3FJC Grafana vulnerable to Authentication Bypass by Spoofing

Grafana is validating Azure AD accounts based on the email claim. On Azure AD, the profile email field is not unique and can be easily modified. This leads to account takeover and authentication bypass when Azure AD OAuth is configured with a multi-tenant app...

9.4CVSS9.6AI score0.04094EPSS
Exploits0References6
OSV
OSV
added 2023/05/17 9:30 p.m.62 views

GHSA-WJQ3-7JXX-WHJ9 mlflow Path Traversal vulnerability

mlflow prior to 2.3.0 is vulnerable to path traversal due to a bypass of the fix for CVE-2023-1177...

9.8CVSS9.3AI score0.06311EPSS
Exploits1References5
OSV
OSV
added 2023/04/24 9:30 a.m.62 views

GHSA-4R6H-8V6P-XVW6 Prototype Pollution in sheetJS

All versions of SheetJS CE through 0.19.2 are vulnerable to "Prototype Pollution" when reading specially crafted files. Workflows that do not read arbitrary files for example, exporting data to spreadsheet files are unaffected. A non-vulnerable version cannot be found via npm, as the repository...

7.8CVSS7.8AI score0.00988EPSS
Exploits1References7
OSV
OSV
added 2023/04/20 9:18 p.m.62 views

GHSA-QRGF-9GPC-VRXW Bypass of CSRF protection in the presence of predictable userInfo

Description The CSRF protection enforced by the @fastify/csrf-protection library in combination with @fastify/cookie can be bypassed from network and same-site attackers under certain conditions. @fastify/csrf-protection supports an optional userInfo parameter that binds the CSRF token to the use...

5.3CVSS5.7AI score0.00829EPSS
Exploits0References8
OSV
OSV
added 2023/01/10 12:0 a.m.62 views

DSA-5312-1 libjettison-java - security update

Bulletin has no description...

7.5CVSS7.2AI score0.01395EPSS
Exploits2
OSV
OSV
added 2022/12/28 3:30 a.m.62 views

GHSA-87MM-QXM5-CP3F go-resolver vulnerable to attacker-controlled domains due to unvalidated RRSIG RRs

go-resolver's DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. The owner name of RRSIG RRs is not validated, permitting an attacker to present the RRSIG for an attacker-controlled domain in a...

7.7CVSS6.3AI score0.00227EPSS
Exploits0References4
OSV
OSV
added 2022/12/19 10:48 p.m.62 views

GHSA-H4Q8-96P6-JCGR ghinstallation returns app JWT in error responses

Impact In ghinstallation v1, when the request to refresh an installation token failed, the HTTP request and response would be returned for debugging. https://github.com/bradleyfalzon/ghinstallation/blob/24e56b3fb7669f209134a01eff731d7e2ef72a5c/transport.goL172-L174 The request contained the beare...

5CVSS4.7AI score0.00382EPSS
Exploits1References8
OSV
OSV
added 2022/07/12 12:0 a.m.62 views

OSV-2022-572 Heap-buffer-overflow in dhcp_reply

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=49002 Crash type: Heap-buffer-overflow READ 1 Crash state: dhcpreply dhcppacket FuzzDhcp...

7.2AI score
Exploits0References1
OSV
OSV
added 2022/05/24 5:16 p.m.62 views

GHSA-GV2W-88HX-8M9R Improper Authorization in Undertoe

A file inclusion vulnerability was found in the AJP connector enabled with a default AJP configuration port of 8009 in Undertow version 2.0.29.Final and before and was fixed in 2.0.30.Final. A remote, unauthenticated attacker could exploit this vulnerability to read web application files from a...

8.6CVSS9.6AI score0.9927EPSS
Exploits45References5
OSV
OSV
added 2022/04/11 9:38 p.m.62 views

GHSA-GX8X-G87M-H5Q6 Denial of Service (DoS) in Nokogiri on JRuby

Summary Nokogiri v1.13.4 updates the vendored org.cyberneko.html library to 1.9.22.noko2 which addresses CVE-2022-24839. That CVE is rated 7.5 High Severity. See GHSA-9849-p7jc-9rmv for more information. Please note that this advisory only applies to the JRuby implementation of Nokogiri = 1.13.4...

7.5CVSS7.5AI score0.02114EPSS
Exploits0References7
OSV
OSV
added 2022/04/01 5:26 p.m.62 views

GHSA-R9W3-G83Q-M6HQ Prototype Pollution in deepmerge-ts

deepmerge-ts is used to merge 2 or more objects respecting type information. deepmerge-ts is vulnerable to Prototype Pollution via file deepmerge.ts, function defaultMergeRecords. A fix was released in version 4.0.2. Currently, there is no known workaround...

8.1CVSS8.8AI score0.01612EPSS
Exploits0References5
OSV
OSV
added 2022/02/09 12:46 a.m.62 views

GHSA-CMX4-P4V5-HMR5 Server-side request forgery (SSRF) in Apache Batik

Apache Batik is vulnerable to server-side request forgery, caused by improper input validation by the "xlink:href" attributes. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests...

7.5CVSS8.3AI score0.1074EPSS
Exploits0References16
OSV
OSV
added 2021/11/23 8:15 p.m.62 views

PYSEC-2021-850

In Django-wiki, versions 0.0.20 to 0.7.8 are vulnerable to Stored Cross-Site Scripting XSS in Notifications Section. An attacker who has access to edit pages can inject JavaScript payload in the title field. When a victim gets a notification regarding the changes made in the application, the...

5.4CVSS2.7AI score0.00583EPSS
Exploits0References5
OSV
OSV
added 2021/10/01 12:0 a.m.62 views

ASB-A-175451844

In several functions of ttyio.c and related files, there is a possible way to corrupt kernel memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

4.4CVSS6.9AI score0.00468EPSS
Exploits1References2
OSV
OSV
added 2021/09/30 5:10 p.m.62 views

GHSA-XV7V-RF6G-XWRC Directory Traversal in typo3/phar-stream-wrapper

The PharStreamWrapper aka phar-stream-wrapper package 2.x before 2.1.1 and 3.x before 3.1.1 for TYPO3 does not prevent directory traversal, which allows attackers to bypass a deserialization protection mechanism, as demonstrated by a phar:///path/bad.phar/../good.phar URL...

9.8CVSS9.4AI score0.05586EPSS
Exploits0References26
OSV
OSV
added 2021/05/19 11:2 p.m.62 views

GHSA-HPW7-3VQ3-MMV6 Insecure deserialization in Wire

Due to how Wire handles type information in its serialization format, malicious payloads can be passed to a deserializer. e.g. using a surrogate on the sender end, an attacker can pass information about a different type for the receiving end. And by doing so allowing the serializer to create any...

9.1CVSS9AI score0.01584EPSS
Exploits1References3
OSV
OSV
added 2021/05/13 10:29 p.m.62 views

GHSA-2MQ8-99Q7-55WX Code injection in keycloak

A flaw was found in keycloak. The new account console in keycloak can allow malicious code to be executed using the referrer URL. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

8.3CVSS7.4AI score0.0119EPSS
Exploits0References4
OSV
OSV
added 2021/02/11 12:0 a.m.62 views

DLA-2555-1 netty - security update

Bulletin has no description...

6.2CVSS6.6AI score0.01777EPSS
Exploits1
OSV
OSV
added 2020/11/03 12:26 p.m.62 views

RLSA-2020:4676 Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:Rocky Linux module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting wi...

8.8CVSS7.5AI score0.04027EPSS
Exploits2References27
OSV
OSV
added 2020/11/02 12:0 p.m.62 views

RUSTSEC-2020-0081 `mio` invalidly assumes the memory layout of std::net::SocketAddr

The mio crate has assumed std::net::SocketAddrV4 and std::net::SocketAddrV6 have the same memory layout as the system C representation sockaddr. It has simply casted the pointers to convert the socket addresses to the system representation. The standard library does not say anything about the...

5.5CVSS5.3AI score0.00389EPSS
Exploits1References3
OSV
OSV
added 2020/08/05 2:53 p.m.62 views

GHSA-9WCG-JRWF-8GG7 Prototype Pollution in express-fileupload

This affects the package express-fileupload before 1.1.8. If the parseNested option is enabled, sending a corrupt HTTP request can lead to denial of service or arbitrary code execution...

9.8CVSS9.6AI score0.04762EPSS
Exploits1References7
OSV
OSV
added 2020/07/15 12:0 a.m.62 views

DSA-4724-1 webkit2gtk - security update

Bulletin has no description...

10CVSS8.5AI score0.77246EPSS
Exploits5
OSV
OSV
added 2020/07/10 12:0 a.m.62 views

DLA-2278-1 squid3 - security update

Bulletin has no description...

9.8CVSS7.7AI score0.74477EPSS
Exploits1
OSV
OSV
added 2020/06/15 7:57 p.m.62 views

GHSA-XXGP-PCFC-3VGC Privilege Escalation in Hibernate Validator

In Hibernate Validator 5.2.x before 5.2.5.Final, 5.3.x before 5.3.6.Final, and 5.4.x before 5.4.2.Final, it was found that when the security manager's reflective permissions, which allows it to access the private members of the class, are granted to Hibernate Validator, a potential privilege...

7CVSS7.7AI score0.00482EPSS
Exploits0References23
OSV
OSV
added 2019/03/21 12:0 a.m.62 views

DLA-1722-1 firefox-esr - security update

Bulletin has no description...

9.8CVSS7.9AI score0.19762EPSS
Exploits11
OSV
OSV
added 2018/12/10 7:29 p.m.62 views

UBUNTU-CVE-2018-1279

Pivotal RabbitMQ for PCF, all versions, uses a deterministically generated cookie that is shared between all machines when configured in a multi-tenant cluster. A remote attacker who can gain information about the network topology can guess this cookie and, if they have access to the right ports ...

8.5CVSS7AI score0.0183EPSS
Exploits0References3
OSV
OSV
added 2018/08/10 2:37 p.m.62 views

MGASA-2018-0326 Updated mp3gain packages fix security vulnerabilities

A NULL pointer dereference was discovered in syncbuffer in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes a segmentation fault and application crash, which leads to remote denial of service CVE-2017-14406. A stack-based buffer over-read was discovered in...

7.8CVSS7.2AI score0.01636EPSS
Exploits0References5
Total number of security vulnerabilities5000