Lucene search
K
OsvMost viewed

907369 matches found

OSV
OSV
•added 2023/11/07 12:0 a.m.•56 views

ALSA-2023:6420 Moderate: grafana security and enhancement update

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fixes: grafana: persistent xss in grafana core plugins CVE-2022-23552 grafana: plugin signature bypass CVE-2022-31123 grafana: data source and plugin proxy endpoints leaking...

8.1CVSS7.2AI score0.05623EPSS
Exploits0References20
OSV
OSV
•added 2023/10/29 12:0 a.m.•56 views

DLA-3638-1 h2o - security update

Bulletin has no description...

7.5CVSS8.2AI score0.99999EPSS
Exploits19
OSV
OSV
•added 2023/10/22 4:15 a.m.•56 views

CVE-2023-46301

iTerm2 before 3.4.20 allow potentially remote code execution because of mishandling of certain escape sequences related to upload...

9.8CVSS7.6AI score
Exploits0References4
OSV
OSV
•added 2023/10/16 12:0 a.m.•56 views

ALSA-2023:5721 Important: go-toolset:rhel8 security update

Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Security Fixes: golang: net/http, x/net/http2: rapid stream resets can cause excessive work CVE-2023-44487 CVE-2023-39325 HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS...

7.5CVSS8.3AI score0.99999EPSS
Exploits19References6
OSV
OSV
•added 2023/10/10 4:53 p.m.•56 views

CVE-2023-36478 HTTP/2 HPACK integer overflow and buffer allocation

Eclipse Jetty provides a web server and servlet container. In versions 11.0.0 through 11.0.15, 10.0.0 through 10.0.15, and 9.0.0 through 9.4.52, an integer overflow in MetaDataBuilder.checkSize allows for HTTP/2 HPACK header values to exceed their size limit. MetaDataBuilder.java determines if a...

7.5CVSS6.7AI score0.03754EPSS
Exploits1References12
OSV
OSV
•added 2023/07/20 12:0 a.m.•56 views

ALSA-2023:4175 Moderate: java-11-openjdk security and bug fix update

The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fixes: OpenJDK: ZIP file parsing infinite loop 8302483 CVE-2023-22036 OpenJDK: weakness in AES implementation 8308682 CVE-2023-22041 OpenJDK: improper handling o...

7.5CVSS7AI score0.01812EPSS
Exploits0References14
OSV
OSV
•added 2023/06/16 6:30 p.m.•56 views

GHSA-934G-FVCC-4833 jeecg-boot SQL injection vulnerability

jeecg-boot 3.5.0 and 3.5.1 have a SQL injection vulnerability the id parameter of the /jeecg-boot/jmreport/show interface...

9.8CVSS9.8AI score0.1248EPSS
Exploits1References3
OSV
OSV
•added 2023/03/06 11:15 p.m.•56 views

CVE-2022-45142

The fix for CVE-2022-3437 included changing memcmp to be constant time and a workaround for a compiler bug by adding "!= 0" comparisons to the result of memcmp. When these patches were backported to the heimdal-7.7.1 and heimdal-7.8.0 branches and possibly other branches a logic inversion sneaked...

7.5CVSS3AI score
Exploits0References2
OSV
OSV
•added 2023/03/03 5:17 p.m.•56 views

GO-2023-1602 Denial of service via deflate decompression bomb in github.com/russellhaering/gosaml2

A bug in SAML authentication library can result in Denial of Service attacks. Attackers can craft a "deflate"-compressed request which will consume significantly more memory during processing than the size of the original request. This may eventually lead to memory exhaustion and the process bein...

5.3CVSS5.2AI score0.00964EPSS
Exploits0References3
OSV
OSV
•added 2023/02/28 6:15 p.m.•56 views

CVE-2022-41725

A denial of service is possible from excessive resource consumption in net/http and mime/multipart. Multipart form parsing with mime/multipart.Reader.ReadForm can consume largely unlimited amounts of memory and disk files. This also affects form parsing in the net/http package with the Request...

7.5CVSS7.5AI score
Exploits0References5
OSV
OSV
•added 2023/02/27 12:0 a.m.•56 views

DLA-3346-1 python-werkzeug - security update

Bulletin has no description...

7.5CVSS6AI score0.0142EPSS
Exploits0
OSV
OSV
•added 2023/02/23 12:0 a.m.•56 views

DSA-5358-1 asterisk - security update

Bulletin has no description...

9.8CVSS7.3AI score0.01809EPSS
Exploits0
OSV
OSV
•added 2023/02/21 9:30 p.m.•56 views

GHSA-7J9M-J397-G4WX MongoDB .NET/C# Driver vulnerable to Deserialization of Untrusted Data

Under very specific circumstances, a privileged user is able to cause arbitrary code to be executed which may cause further disruption to services. This is specific to applications written in C. This affects all MongoDB .NET/C Driver versions prior to and including v2.18.0...

7.2CVSS6.7AI score0.01049EPSS
Exploits0References5
OSV
OSV
•added 2023/01/31 12:0 a.m.•56 views

DLA-3295-1 node-moment - security update

Bulletin has no description...

7.5CVSS7.7AI score0.05664EPSS
Exploits1
OSV
OSV
•added 2022/12/12 6:15 p.m.•56 views

PYSEC-2022-43002

Improper Privilege Management in GitHub repository ikus060/rdiffweb prior to 2.5.2...

9.8CVSS6.9AI score0.00789EPSS
Exploits1References5
OSV
OSV
•added 2022/12/09 12:0 a.m.•56 views

DSA-5298-1 cacti - security update

Bulletin has no description...

9.8CVSS9.8AI score0.99826EPSS
Exploits48
OSV
OSV
•added 2022/12/05 10:15 p.m.•56 views

CVE-2022-32221

When doing HTTPS transfers, libcurl might erroneously use the read callback CURLOPTREADFUNCTION to ask for data to send, even when the CURLOPTPOSTFIELDS option has been set, if the same handle previously was used to issue a PUT request which used that callback. This flaw may surprise the...

9.8CVSS8.7AI score0.04325EPSS
Exploits1References11
OSV
OSV
•added 2022/12/01 12:0 a.m.•56 views

ASB-A-242703118

In NotificationChannel of NotificationChannel.java, there is a possible failure to persist permissions settings due to resource exhaustion. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.7AI score0.0012EPSS
Exploits0References3
OSV
OSV
•added 2022/08/29 12:0 a.m.•56 views

DLA-3085-1 curl - security update

Bulletin has no description...

8.1CVSS6.6AI score0.3197EPSS
Exploits10
OSV
OSV
•added 2022/05/17 12:34 a.m.•56 views

GHSA-C2V7-J5GQ-WCQ4 Laravel Sensitive Data Exposure

Laravel before 5.5.10 mishandles the rememberme token verification process because DatabaseUserProvider does not have constant-time token comparison...

5.9CVSS5.6AI score0.01193EPSS
Exploits0References6
OSV
OSV
•added 2022/05/14 2:19 a.m.•56 views

GHSA-R58R-74GX-6WX3 Nokogiri gem, via libxml, is affected by DoS vulnerabilities

Use after free in libxml2 before 2.9.5, as used in Google Chrome prior to 63.0.3239.84 and other products, allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS8.5AI score0.02963EPSS
Exploits1References12
OSV
OSV
•added 2022/04/28 11:35 p.m.•56 views

GO-2021-0412 Incorrect authorization in github.com/containerd/imgcrypt

The imgcrypt library provides API extensions for containerd to support encrypted container images and implements the ctd-decoder command line tool for use by containerd to decrypt encrypted container images. The imgcrypt function CheckAuthorization is supposed to check whether the current used is...

7.5CVSS7.5AI score0.02676EPSS
Exploits1References3
OSV
OSV
•added 2022/04/12 12:0 a.m.•56 views

GHSA-VPGW-FFH3-648H Prototype Pollution in fullpage.js

fullPage utils are available to developers using window.fputils. They can use these utils for their own use-case other than fullPage as well. However, one of the utils deepExtend is vulnerable to Prototype Pollution vulnerability. Javascript is "prototype" language which means when a new "object"...

7.3CVSS9.4AI score0.01271EPSS
Exploits1References4
OSV
OSV
•added 2022/04/08 6:15 a.m.•56 views

CVE-2022-28805

singlevar in lparser.c in Lua from including 5.4.0 up to excluding 5.4.4 lacks a certain luaKexp2anyregup call, leading to a heap-based buffer over-read that might affect a system that compiles untrusted Lua code...

9.1CVSS2AI score
Exploits0References7
OSV
OSV
•added 2022/03/15 12:0 p.m.•56 views

RUSTSEC-2022-0014 Infinite loop in `BN_mod_sqrt()` reachable when parsing certificates

The BNmodsqrt function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a...

7.5CVSS7.9AI score0.70561EPSS
Exploits2References3
OSV
OSV
•added 2022/03/14 11:15 a.m.•56 views

CVE-2022-22721

If LimitXMLRequestBody is set to allow request bodies larger than 350MB defaults to 1M on 32 bit systems an integer overflow happens which later causes out of bounds writes. This issue affects Apache HTTP Server 2.4.52 and earlier...

9.1CVSS1.5AI score
Exploits0References16
OSV
OSV
•added 2022/03/03 9:15 p.m.•56 views

PYSEC-2022-160

Twisted is an event-based framework for internet applications, supporting Python 3.6+. Prior to 22.2.0, Twisted SSH client and server implement is able to accept an infinite amount of data for the peer's SSH version identifier. This ends up with a buffer using all the available memory. The attach...

7.5CVSS3.2AI score0.03608EPSS
Exploits1References4
OSV
OSV
•added 2022/02/25 12:1 a.m.•56 views

GHSA-Q62H-JW38-24VH Uncaught Exception in zip4j

zip4j up to 2.9.1 can throw various uncaught exceptions while parsing a specially crafted ZIP file, which could result in an application crash. This could be used to mount a denial of service attack against services that use zip4j library...

5.5CVSS5.4AI score0.00698EPSS
Exploits0References4
OSV
OSV
•added 2022/02/12 12:0 a.m.•56 views

DLA-2919-1 python2.7 - security update

Bulletin has no description...

9.8CVSS7.8AI score0.23293EPSS
Exploits1
OSV
OSV
•added 2022/01/12 10:33 p.m.•56 views

GHSA-M7VP-HQWV-7M5X Unbounded memory usage on exposed HTTP/2 (non-gRPC) endpoints

Impact The net/http Go package has a reported vulnerability tracked under CVE-2021-44716 which allows attacker controlled HTTP/2 requests to trigger unbounded memory usage in HTTP/2 endpoints. gRPC endpoints are not vulnerable as they rely on their own HTTP/2 implementation instead of the net/htt...

6.5AI score
Exploits0References1
OSV
OSV
•added 2022/01/07 12:9 a.m.•56 views

GHSA-6P56-WP2H-9HXR NumPy Buffer Overflow (Disputed)

A Buffer Overflow vulnerability exists in NumPy 1.9.x in the PyArrayNewFromDescrint function of ctors.c when specifying arrays of large dimensions over 32 from Python code, which could let a malicious user cause a Denial of Service. NOTE: The vendor does not agree this is a vulnerability; In very...

6CVSS5.3AI score0.01074EPSS
Exploits1References5
OSV
OSV
•added 2022/01/06 10:4 p.m.•56 views

GHSA-FG7R-2G4J-5CGR Race Condition in tokio

If a tokio::sync::oneshot channel is closed via the oneshot::Receiver::close method, a data race may occur if the oneshot::Sender::send method is called while the corresponding oneshot::Receiver is awaited or calling tryrecv. When these methods are called concurrently on a closed channel, the two...

8.1CVSS7.9AI score0.01162EPSS
Exploits0References5
OSV
OSV
•added 2022/01/06 8:42 p.m.•56 views

GHSA-CWFW-4GQ5-MRQX Regular Expression Denial of Service (ReDoS) in braces

A vulnerability was found in Braces versions from v2.2.0 up to but not including v2.3.1. Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS attacks. This has been patched in version 2.3.1...

5.3CVSS5.4AI score0.01363EPSS
Exploits1References4
OSV
OSV
•added 2021/11/09 12:0 a.m.•56 views

DLA-2814-1 openjdk-8 - security update

Bulletin has no description...

7.1CVSS6.3AI score0.14839EPSS
Exploits0
OSV
OSV
•added 2021/10/28 4:15 p.m.•56 views

CVE-2021-22097

In Spring AMQP versions 2.2.0 - 2.2.18 and 2.3.0 - 2.3.10, the Spring AMQP Message object, in its toString method, will deserialize a body for a message with content type application/x-java-serialized-object. It is possible to construct a malicious java.util.Dictionary object that can cause 100%...

6.5CVSS6.6AI score0.01037EPSS
Exploits0References1
OSV
OSV
•added 2021/09/01 6:32 p.m.•56 views

GHSA-H97F-5258-5593 Incorrect Authorization in serverless-offline

Serverless Offline 8.0.0 returns a 403 HTTP status code for a route that has a trailing / character, which might cause a developer to implement incorrect access control, because the actual behavior within the Amazon AWS environment is a 200 HTTP status code i.e., possibly greater than expected...

9.8CVSS9.5AI score0.0146EPSS
Exploits1References3
OSV
OSV
•added 2021/06/15 4:5 p.m.•56 views

GHSA-29QJ-RVV6-QRMV Cross-site scripting in RESTEasy

A cross-site scripting XSS flaw was found in RESTEasy in versions before 3.11.1.Final and before 4.5.3.Final, where it did not properly handle URL encoding when the RESTEASY003870 exception occurs. An attacker could use this flaw to launch a reflected XSS attack...

5.4CVSS6AI score0.01394EPSS
Exploits1References5
OSV
OSV
•added 2021/05/18 5:33 a.m.•56 views

ALSA-2021:1578 Important: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Integer overflow in IntelR Graphics Drivers CVE-2020-12362 kernel: memory leak in sofsetgetlargectrldata function in sound/soc/sof/ipc.c CVE-2019-18811 kernel: use-after-free caused by a...

7.8CVSS8.5AI score0.03292EPSS
Exploits6References26
OSV
OSV
•added 2021/05/01 12:0 a.m.•56 views

ASB-A-175451802

In tiocspgrp of ttyjobctrl.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS8.2AI score0.01129EPSS
Exploits2References2
OSV
OSV
•added 2021/04/25 12:0 a.m.•56 views

DLA-2638-1 jackson-databind - security update

Bulletin has no description...

8.8CVSS7.6AI score0.20929EPSS
Exploits16
OSV
OSV
•added 2021/03/25 12:0 a.m.•56 views

DSA-4875-1 openssl - security update

Bulletin has no description...

5.9CVSS7AI score0.62906EPSS
Exploits3
OSV
OSV
•added 2021/01/01 12:0 a.m.•56 views

ASB-A-169505740

In speculationctrlupdate of process.c, there is a possible way to disable Speculative Store Bypass Disable due to a logic error, which allows for side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction i...

5.5CVSS5.9AI score0.00463EPSS
Exploits0References2
OSV
OSV
•added 2021/01/01 12:0 a.m.•56 views

DSA-4822-1 p11-kit - security update

Bulletin has no description...

7.5CVSS6.6AI score0.03515EPSS
Exploits0
OSV
OSV
•added 2020/12/14 12:0 a.m.•56 views

DLA-2492-1 openssl - security update

Bulletin has no description...

5.9CVSS6AI score0.06968EPSS
Exploits3
OSV
OSV
•added 2020/08/03 12:0 a.m.•56 views

DSA-4739-1 webkit2gtk - security update

Bulletin has no description...

9.8CVSS7.3AI score0.04138EPSS
Exploits0
OSV
OSV
•added 2020/07/27 6:8 p.m.•56 views

GHSA-JPHG-QWRW-7W9G Unsafe object creation in json RubyGem

The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an Unsafe Object Creation Vulnerability. This is quite similar to CVE-2013-0269/GHSA-x457-cw4h-hq5f, but does not rely on poor garbage-collection behavior within Ruby. Specificall...

7.5CVSS6.8AI score0.06811EPSS
Exploits0References23
OSV
OSV
•added 2020/07/17 12:0 a.m.•56 views

DSA-4727-1 tomcat9 - security update

Bulletin has no description...

7.5CVSS7.7AI score0.87553EPSS
Exploits16
OSV
OSV
•added 2020/07/05 12:0 a.m.•56 views

DSA-4717-1 php7.0 - security update

Bulletin has no description...

7.5CVSS6.6AI score0.06264EPSS
Exploits6
OSV
OSV
•added 2020/03/06 12:0 a.m.•56 views

DLA-2135-1 jackson-databind - security update

Bulletin has no description...

9.8CVSS9.6AI score0.18671EPSS
Exploits0
OSV
OSV
•added 2020/01/19 12:0 a.m.•56 views

DSA-4605-1 openjdk-11 - security update

Bulletin has no description...

8.1CVSS6.8AI score0.04903EPSS
Exploits0
Total number of security vulnerabilities5000