Lucene search
K
OsvMost viewed

907635 matches found

OSV
OSV
•added 2022/05/13 1:9 a.m.•52 views

GHSA-V45R-RJ5X-HPG2 Cleartext Transmission of Sensitive Information in Apache CXF

The SymmetricBinding in Apache CXF before 2.6.13 and 2.7.x before 2.7.10, when EncryptBeforeSigning is enabled and the UsernameToken policy is set to an EncryptedSupportingToken, transmits the UsernameToken in cleartext, which allows remote attackers to obtain sensitive information by sniffing th...

4.3CVSS8.8AI score0.07053EPSS
Exploits0References18
OSV
OSV
•added 2022/04/12 4:15 p.m.•52 views

CVE-2021-31805

The fix issued for CVE-2020-17530 was incomplete. So from Apache Struts 2.0.0 to 2.5.29, still some of the tag’s attributes could perform a double evaluation if a developer applied forced OGNL evaluation by using the %... syntax. Using forced OGNL evaluation on untrusted user input can lead to a...

9.8CVSS9.7AI score
Exploits0References4
OSV
OSV
•added 2022/04/04 6:15 p.m.•52 views

PYSEC-2022-195

Twisted is an event-based framework for internet applications, supporting Python 3.6+. Prior to version 22.4.0rc1, the Twisted Web HTTP 1.1 server, located in the twisted.web.http module, parsed several HTTP request constructs more leniently than permitted by RFC 7230. This non-conformant parsing...

8.1CVSS0.3AI score0.028EPSS
Exploits0References4
OSV
OSV
•added 2022/02/25 8:32 p.m.•52 views

GHSA-FQ42-C5RG-92C2 Vulnerable dependencies in Nokogiri

Summary Nokogiri v1.13.2 upgrades two of its packaged dependencies: - vendored libxml2 from v2.9.12 to v2.9.13 - vendored libxslt from v1.1.34 to v1.1.35 Those library versions address the following upstream CVEs: - libxslt: CVE-2021-30560 CVSS 8.8, High severity - libxml2: CVE-2022-23308...

8.1AI score
Exploits0References2
OSV
OSV
•added 2022/02/24 1:9 p.m.•52 views

GHSA-53M6-44RC-H2Q5 Missing server signature validation in OctoberCMS

Impact This advisory affects authors of plugins and themes listed on the October CMS marketplace where an end-user will inadvertently expose authors to potential financial loss by entering their private license key into a compromised server. It has been disclosed that a project fork of October CM...

4.8CVSS5AI score0.00634EPSS
Exploits0References4
OSV
OSV
•added 2022/02/17 5:33 p.m.•52 views

GO-2021-0239 Improper sanitization when resolving values from DNS in net

The LookupCNAME, LookupSRV, LookupMX, LookupNS, and LookupAddr functions and their respective methods on the Resolver type may return arbitrary values retrieved from DNS which do not follow the established RFC 1035 rules for domain names. If these names are used without further sanitization, for...

7.5CVSS7.8AI score0.03231EPSS
Exploits1References4
OSV
OSV
•added 2022/02/16 12:1 a.m.•52 views

GHSA-2M9W-9XH2-WXC3 Link Following in Jenkins Pipeline Multibranch Plugin

Jenkins Pipeline: Multibranch Plugin prior to 2.23.1, 2.26.1, 696.698.v9b4218eea50f, and 707.v71c3f0a6ccdb follows symbolic links to locations outside of the checkout directory for the configured SCM when reading files using the readTrusted step, allowing attackers able to configure Pipelines...

6.5CVSS7.2AI score0.01758EPSS
Exploits0References3
OSV
OSV
•added 2022/01/21 11:29 p.m.•52 views

GHSA-6M93-343M-3JRC Cross-site Scripting in HTML2PDF

An issue was discovered in Spipu HTML2PDF before 5.2.4. Attackers can trigger deserialization of arbitrary data via the injection of a malicious tag in the converted HTML document...

8.8CVSS8.9AI score0.01581EPSS
Exploits1References7
OSV
OSV
•added 2021/11/09 9:15 a.m.•52 views

RLSA-2021:4381 Moderate: GNOME security, bug fix, and enhancement update

GNOME is the default desktop environment of Rocky Linux. The following packages have been upgraded to a later upstream version: gdm 40.0, webkit2gtk3 2.32.3. BZ1909300 Security Fixes: webkitgtk: Use-after-free in AudioSourceProviderGStreamer leading to arbitrary code execution CVE-2020-13558...

9.8CVSS9.1AI score0.14542EPSS
Exploits8References69
OSV
OSV
•added 2021/11/09 8:24 a.m.•52 views

RLSA-2021:4154 Moderate: container-tools:rhel8 security, bug fix, and enhancement update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: buildah: Host environment variables leaked in build container when using chroot isolation CVE-2021-3602 containers/storage: DoS via malicious image CVE-2021-20291 For...

6.5CVSS6.7AI score0.01587EPSS
Exploits1References55
OSV
OSV
•added 2021/11/01 12:0 a.m.•52 views

ASB-A-195630721

In enforceCrossUserOrProfilePermission of PackageManagerService.java, there is a possible bypass of INTERACTACROSSPROFILES permission due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed...

7.8CVSS7.8AI score0.00105EPSS
Exploits0References2
OSV
OSV
•added 2021/10/26 2:15 p.m.•52 views

CVE-2021-41158

FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. Prior to version 1.10.7, an attacker can perform a SIP digest leak attack against FreeSWITCH and receive the...

7.5CVSS1.6AI score
Exploits0References3
OSV
OSV
•added 2021/10/06 5:51 p.m.•52 views

GO-2021-0113 Out-of-bounds read in golang.org/x/text/language

Due to improper index calculation, an incorrectly formatted language tag can cause Parse to panic via an out of bounds read. If Parse is used to process untrusted user inputs, this may be used as a vector for a denial of service attack...

7.5CVSS7.4AI score0.01356EPSS
Exploits0References2
OSV
OSV
•added 2021/10/04 5:15 p.m.•52 views

CVE-2021-41103

containerd is an open source container runtime with an emphasis on simplicity, robustness and portability. A bug was found in containerd where container root directories and some plugins had insufficiently restricted permissions, allowing otherwise unprivileged Linux users to traverse directory...

7.8CVSS7.6AI score
Exploits0References7
OSV
OSV
•added 2021/09/21 7:13 a.m.•52 views

ALSA-2021:3590 Moderate: mysql:8.0 security, bug fix, and enhancement update

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and libraries. The following packages have been upgraded to a later upstream version: mysql 8.0.26. BZ1996693 Security Fixes: mysql: Server: Stored Procedure multiple...

8CVSS7.9AI score0.41478EPSS
Exploits3References142
OSV
OSV
•added 2021/09/21 7:8 a.m.•52 views

RLSA-2021:3572 Moderate: nss and nspr security, bug fix, and enhancement update

Network Security Services NSS is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. Netscape Portable Runtime NSPR provides platform independence for non-GUI operating system facilities. The following packages have been upgrad...

7.5CVSS8.2AI score0.03854EPSS
Exploits0References11
OSV
OSV
•added 2021/07/25 12:0 a.m.•52 views

DSA-4944-1 krb5 - security update

Bulletin has no description...

7.5CVSS7.4AI score0.10276EPSS
Exploits0
OSV
OSV
•added 2021/06/03 7:22 p.m.•52 views

GHSA-J239-4GQG-5J54 Inadequate Encryption Strength

Primetek Primefaces 5.x is vulnerable to a weak encryption flaw resulting in remote code execution...

9.8CVSS9.6AI score0.94104EPSS
Exploits6References5
OSV
OSV
•added 2021/05/13 12:0 a.m.•52 views

DSA-4915-1 postgresql-11 - security update

Bulletin has no description...

8.8CVSS7.8AI score0.0199EPSS
Exploits0
OSV
OSV
•added 2021/02/19 12:0 a.m.•52 views

DLA-2569-1 python-django - security update

Bulletin has no description...

5.9CVSS7.9AI score0.35963EPSS
Exploits1
OSV
OSV
•added 2021/02/15 12:0 a.m.•52 views

DLA-2559-1 busybox - security update

Bulletin has no description...

9.8CVSS7.2AI score0.32381EPSS
Exploits17
OSV
OSV
•added 2021/02/12 12:0 a.m.•52 views

DLA-2556-1 unbound1.9 - security update

Bulletin has no description...

7.5CVSS6.8AI score0.03588EPSS
Exploits0
OSV
OSV
•added 2020/12/17 12:0 p.m.•52 views

RUSTSEC-2020-0093 Async-h1 request smuggling possible with long unread bodies

This vulnerability affects any webserver that uses async-h1 behind a reverse proxy, including all such Tide applications. If the server does not read the body of a request which is longer than some buffer length, async-h1 will attempt to read a subsequent request from the body content starting at...

7.5CVSS6.5AI score0.01008EPSS
Exploits0References3
OSV
OSV
•added 2020/12/16 11:15 a.m.•52 views

CVE-2020-28458

All versions of package datatables.net are vulnerable to Prototype Pollution due to an incomplete fix for https://snyk.io/vuln/SNYK-JS-DATATABLESNET-598806...

7.3CVSS7.2AI score
Exploits0References7
OSV
OSV
•added 2020/12/04 12:0 a.m.•52 views

DLA-2481-1 openldap - security update

Bulletin has no description...

7.5CVSS7.7AI score0.02858EPSS
Exploits0
OSV
OSV
•added 2020/11/29 12:0 p.m.•52 views

RUSTSEC-2020-0075 Unexpected panic when decoding tokens

Prior to 0.10.0 it was possible to have both decoding functions panic unexpectedly, by supplying tokens with an incorrect base62 encoding. The documentation stated that an error should have been reported instead...

5.5CVSS5.4AI score0.00465EPSS
Exploits1References3
OSV
OSV
•added 2020/11/26 12:0 a.m.•52 views

DLA-2467-1 lxml - security update

Bulletin has no description...

6.1CVSS6.8AI score0.03934EPSS
Exploits2
OSV
OSV
•added 2020/11/03 12:25 p.m.•52 views

RLSA-2020:4670 Moderate: idm:DL1 and idm:client security, bug fix, and enhancement update

Rocky Enterprise Software Foundation Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. The following packages have been upgraded to a later upstream version: ipa 4.8.7, softhsm...

6.1CVSS8.2AI score0.99019EPSS
Exploits16References61
OSV
OSV
•added 2020/11/03 12:0 a.m.•52 views

DLA-2431-1 libonig - security update

Bulletin has no description...

9.8CVSS7.7AI score0.10539EPSS
Exploits6
OSV
OSV
•added 2020/10/27 8:33 p.m.•52 views

GHSA-HGGM-JPG3-V476 RSA decryption vulnerable to Bleichenbacher timing vulnerability

RSA decryption was vulnerable to Bleichenbacher timing vulnerabilities, which would impact people using RSA decryption in online scenarios. This is fixed in cryptography 3.2...

8.2CVSS5.9AI score0.02454EPSS
Exploits0References10
OSV
OSV
•added 2020/09/23 9:15 p.m.•52 views

CVE-2020-25595

An issue was discovered in Xen through 4.14.x. The PCI passthrough code improperly uses register data. Code paths in Xen's MSI handling have been identified that act on unsanitized values read back from device hardware registers. While devices strictly compliant with PCI specifications shouldn't ...

7.8CVSS3.3AI score
Exploits0References7
OSV
OSV
•added 2020/09/01 12:0 a.m.•52 views

ASB-A-150156492

In the Bluetooth service, there is a possible spoofing attack due to a logic error. This could lead to remote information disclosure of sensitive information with no additional execution privileges needed. User interaction is needed for exploitation...

5.7CVSS5.4AI score0.00333EPSS
Exploits0References2
OSV
OSV
•added 2020/06/15 6:51 p.m.•52 views

GHSA-VMQM-G3VH-847M Denial of service in Apache Xerces2

Apache Xerces2 Java Parser before 2.12.0 allows remote attackers to cause a denial of service CPU consumption via a crafted message to an XML service, which triggers hash table collisions...

7.5CVSS7.1AI score0.17461EPSS
Exploits0References20
OSV
OSV
•added 2020/05/08 6:54 p.m.•52 views

GHSA-GW55-JM4H-X339 Improper Validation of Certificate with Host Mismatch in Java-WebSocket

The Java-WebSocket Client does not perform hostname verification. - This means that SSL certificates of other hosts are accepted as long as they are trusted. To exploit this vulnerability an attacker has to perform a man-in-the-middle MITM attack between a Java application using the Java-WebSocke...

9CVSS8.5AI score0.00771EPSS
Exploits0References3
OSV
OSV
•added 2020/03/05 10:9 p.m.•52 views

GHSA-58MJ-PW57-4VM2 Cross-site scripting in PHPMailer

PHPMailer versions prior to 5.2.24 released July 26th 2017 have an XSS vulnerability in one of the code examples, CVE-2017-11503. The codegenerator.phps example did not filter user input prior to output. This file is distributed with a .phps extension, so it it not normally executable unless it i...

6.1CVSS6.2AI score0.024EPSS
Exploits1References8
OSV
OSV
•added 2020/02/17 12:0 a.m.•52 views

DSA-4626-1 php7.3 - security update

Bulletin has no description...

9.1CVSS7.5AI score0.08888EPSS
Exploits5
OSV
OSV
•added 2019/12/06 12:0 a.m.•52 views

DSA-4579-1 nss - security update

Bulletin has no description...

8.8CVSS7.8AI score0.02994EPSS
Exploits1
OSV
OSV
•added 2019/10/06 12:0 a.m.•52 views

DSA-4542-1 jackson-databind - security update

Bulletin has no description...

9.8CVSS8.9AI score0.10763EPSS
Exploits1
OSV
OSV
•added 2019/09/25 12:0 a.m.•52 views

DSA-4531-1 linux - security update

Bulletin has no description...

8.8CVSS7.5AI score0.00763EPSS
Exploits2
OSV
OSV
•added 2019/09/09 12:0 a.m.•52 views

DSA-4520-1 trafficserver - security update

Bulletin has no description...

7.8CVSS7.2AI score0.87806EPSS
Exploits1
OSV
OSV
•added 2019/05/10 12:0 a.m.•52 views

DLA-1782-1 openjdk-7 - security update

Bulletin has no description...

8.1CVSS7.3AI score0.37618EPSS
Exploits1
OSV
OSV
•added 2019/04/15 3:29 p.m.•52 views

CVE-2019-0232

When running on Windows with enableCmdLineArguments enabled, the CGI Servlet in Apache Tomcat 9.0.0.M1 to 9.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 is vulnerable to Remote Code Execution due to a bug in the way the JRE passes command line arguments to Windows. The CGI Servlet is disabled by...

8.1CVSS7.3AI score0.99652EPSS
Exploits9References32
OSV
OSV
•added 2019/03/30 12:0 a.m.•52 views

DSA-4420-1 thunderbird - security update

Bulletin has no description...

9.8CVSS7.9AI score0.19762EPSS
Exploits11
OSV
OSV
•added 2019/03/24 12:0 a.m.•52 views

DLA-1725-1 rsync - security update

Bulletin has no description...

9.8CVSS8.4AI score0.07489EPSS
Exploits0
OSV
OSV
•added 2019/01/31 6:29 p.m.•52 views

CVE-2019-6111

An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned only directory traversal attacks are prevented...

5.9CVSS1.7AI score
Exploits0References23
OSV
OSV
•added 2019/01/17 1:57 p.m.•52 views

GHSA-PH58-4VRJ-W6HR bootstrap Cross-site Scripting vulnerability

In Bootstrap before 3.4.0, XSS is possible in the affix configuration target property...

6.1CVSS6.2AI score0.03984EPSS
Exploits1References18
OSV
OSV
•added 2019/01/09 5:29 a.m.•52 views

CVE-2018-20677

In Bootstrap before 3.4.0, XSS is possible in the affix configuration target property...

6.1CVSS5.8AI score
Exploits0References14
OSV
OSV
•added 2018/12/11 5:29 p.m.•52 views

PYSEC-2018-32

urllib3 before version 1.23 does not remove the Authorization HTTP header when following a cross-origin redirect i.e., a redirect that differs in host, port, or scheme. This can allow for credentials in the Authorization header to be exposed to unintended hosts or transmitted in cleartext...

9.8CVSS2.9AI score0.04488EPSS
Exploits0References11
OSV
OSV
•added 2018/09/06 12:0 a.m.•52 views

DLA-1497-1 qemu - security update

Bulletin has no description...

10CVSS7.8AI score0.74041EPSS
Exploits11
OSV
OSV
•added 2018/09/02 12:0 a.m.•52 views

DLA-1491-1 tomcat8 - security update

Bulletin has no description...

7.5CVSS7.9AI score0.213EPSS
Exploits0
Total number of security vulnerabilities5000