Lucene search
K
OsvMost viewed

911032 matches found

OSV
OSV
•added 2024/02/09 12:15 a.m.•54 views

CVE-2024-23639 micronaut-core management endpoints vulnerable to drive-by localhost attack

Micronaut Framework is a modern, JVM-based, full stack Java framework designed for building modular, easily testable JVM applications with support for Java, Kotlin and the Groovy language. Enabled but unsecured management endpoints are susceptible to drive-by localhost attacks. While not typical ...

5.1CVSS7.4AI score0.00261EPSS
Exploits0References4
OSV
OSV
•added 2023/12/22 4:15 p.m.•54 views

CVE-2023-42465

Sudo before 1.9.15 might allow row hammer attacks for authentication bypass or privilege escalation because application logic sometimes is based on not equaling an error value instead of equaling a success value, and because the values do not resist flips of a single bit...

7CVSS7.5AI score
Exploits0References13
OSV
OSV
•added 2023/11/20 9:15 a.m.•54 views

PYSEC-2023-240

Apache Software Foundation Apache Submarine has a bug when serializing against yaml. The bug is caused by snakeyaml https://nvd.nist.gov/vuln/detail/CVE-2022-1471 . Apache Submarine uses JAXRS to define REST endpoints. In order to handle YAML requests using application/yaml content-type, it defin...

9.8CVSS7.7AI score0.01747EPSS
Exploits8References4
OSV
OSV
•added 2023/11/14 12:0 a.m.•54 views

ALSA-2023:7065 Moderate: tomcat security and bug fix update

Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: Apache Commons FileUpload: FileUpload DoS with excessive parts CVE-2023-24998 tomcat: not including the secure attribute causes information disclosure CVE-2023-28708 tomcat: Fix for...

7.5CVSS7AI score0.51547EPSS
Exploits1References8
OSV
OSV
•added 2023/10/24 6:37 p.m.•54 views

RLSA-2023:5738 Important: go-toolset and golang security and bug fix update

Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. The golang packages provide the Go programming language compiler. Security Fixes: golang: net/http, x/net/http2: rapid stream resets can cause excessive work CVE-2023-44487 CVE-2023-39325...

7.5CVSS8.3AI score0.99999EPSS
Exploits19References4
OSV
OSV
•added 2023/10/23 6:17 a.m.•54 views

BIT-2023-44388

Discourse is an open source platform for community discussion. A malicious request can cause production log files to quickly fill up and thus result in the server running out of disk space. This problem has been patched in the 3.1.1 stable and 3.2.0.beta2 versions of Discourse. It is possible to...

7.5CVSS6.8AI score0.00531EPSS
Exploits0References2Affected Software1
OSV
OSV
•added 2023/10/19 6:17 a.m.•54 views

BIT-2023-45348

Apache Airflow, versions 2.7.0 and 2.7.1, is affected by a vulnerability that allows an authenticated user to retrieve sensitive configuration information when the "exposeconfig" option is set to "non-sensitive-only". The exposeconfig option is False by default.It is recommended to upgrade to a...

4.3CVSS6.5AI score0.01232EPSS
Exploits0References2Affected Software1
OSV
OSV
•added 2023/07/06 11:15 p.m.•54 views

PYSEC-2023-115

Sentry is an error tracking and performance monitoring platform. Starting in version 23.6.0 and prior to version 23.6.2, the Sentry API incorrectly returns the access-control-allow-credentials: true HTTP header if the Origin request header ends with the system.base-hostname option of Sentry...

6.8CVSS6.6AI score0.00636EPSS
Exploits0References4
OSV
OSV
•added 2023/07/03 4:48 p.m.•54 views

CVE-2023-36814 zopefoundation's Products.CMFCore vulnerable to unauthenticated denial of service and crash via unchecked use of input with Python's marshal module

Products.CMFCore are the key framework services for the Zope Content Management Framework CMF. The use of Python's marshal module to handle unchecked input in a public method on PortalFolder objects can lead to an unauthenticated denial of service and crash situation. The code in question is...

7.5CVSS7.5AI score0.00723EPSS
Exploits0References4
OSV
OSV
•added 2023/06/21 12:0 a.m.•54 views

ALSA-2023:3708 Important: kernel-rt security and bug fix update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: use-after-free vulnerability in the perfgroupdetach function of the Linux Kernel Performance Events CVE-2023-2235 kernel: netfilte...

7.8CVSS7.4AI score0.12966EPSS
Exploits10References14
OSV
OSV
•added 2023/05/24 3:30 p.m.•54 views

GHSA-P9XG-9378-CQP7 Cross-site scripting in Liferay Portal

Cross-site scripting XSS vulnerability in the Account module in Liferay Portal 7.4.3.21 through 7.4.3.62, and Liferay DXP 7.4 update 21 through 62 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a user's 1 First Name, 2 Middle Name, 3 Last Name, ...

5.4CVSS5.2AI score0.00446EPSS
Exploits0References3
OSV
OSV
•added 2023/03/30 8:15 p.m.•54 views

CVE-2023-27533

A vulnerability in input validation exists in curl 8.0 during communication using the TELNET protocol may allow an attacker to pass on maliciously crafted user name and "telnet options" during server negotiation. The lack of proper input scrubbing allows an attacker to send content or perform...

8.8CVSS7.7AI score0.01993EPSS
Exploits1References5
OSV
OSV
•added 2023/03/20 9:27 p.m.•54 views

GHSA-RWMF-W63J-P7GV CairoSVG improperly processes SVG files loaded from external resources

SSRF vulnerability Summary When CairoSVG processes an SVG file, it can make requests to the inner host and different outside hosts. Operating system, version and so on Linux, Debian Buster LTS core 5.10 / Parrot OS 5.1 Electro Ara, python 3.9 Tested CairoSVG version 2.6.0 Details A specially...

9.9CVSS7.8AI score0.00722EPSS
Exploits0References7
OSV
OSV
•added 2023/03/15 9:36 p.m.•54 views

GHSA-PJ73-V5MW-PM9J Possible XSS Security Vulnerability in SafeBuffer#bytesplice

There is a vulnerability in ActiveSupport if the new bytesplice method is called on a SafeBuffer with untrusted user input. This vulnerability has been assigned the CVE identifier CVE-2023-28120. Versions Affected: All. Not affected: None Fixed Versions: 7.0.4.3, 6.1.7.3 Impact ActiveSupport uses...

5.3CVSS5.7AI score0.00907EPSS
Exploits0References8
OSV
OSV
•added 2023/02/08 10:31 p.m.•54 views

GHSA-P52G-CM5J-MJV4 openssl-src subject to Timing Oracle in RSA Decryption

A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a network in a Bleichenbacher style attack. To achieve a successful decryption an attacker would have to be able to send a very large number of trial messages fo...

5.9CVSS6.7AI score0.16195EPSS
Exploits0References5
OSV
OSV
•added 2022/11/29 9:30 p.m.•54 views

GHSA-CVH4-CJC9-84QM owncast is vulnerable to SQL Injection

SQL Injection in GitHub repository owncast/owncast prior to 0.0.13...

9.8CVSS9.5AI score0.00903EPSS
Exploits0References6
OSV
OSV
•added 2022/11/25 7:15 p.m.•54 views

PYSEC-2022-42996

MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems not Windows or macos, MPXJ's use of File.createTempFile.. results in temporary files being created with the permissions -rw-r--r--. This means that any other...

3.3CVSS6.5AI score0.00208EPSS
Exploits0References2
OSV
OSV
•added 2022/11/16 9:15 a.m.•54 views

CVE-2022-45047

Class org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider in Apache MINA SSHD = 2.9.1 uses Java deserialization to load a serialized java.security.PrivateKey. The class is one of several implementations that an implementor using Apache MINA SSHD can choose for loading the host keys ...

9.8CVSS9.4AI score
Exploits0References2
OSV
OSV
•added 2022/09/16 6:48 p.m.•54 views

GHSA-W3W9-VRF5-8MX8 ReactPHP's HTTP server parses encoded cookie names so malicious `__Host-` and `__Secure-` cookies can be sent

Impact In ReactPHP's HTTP server component versions below v1.7.0, when ReactPHP is processing incoming HTTP cookie values, the cookie names are url-decoded. This may lead to cookies with prefixes like Host- and Secure- confused with cookies that decode to such prefix, thus leading to an attacker...

5.3CVSS6.6AI score0.00804EPSS
Exploits0References7
OSV
OSV
•added 2022/09/10 12:0 a.m.•54 views

GHSA-J95R-86HX-XWXG Rank Math SEO plugin vulnerable to Server-Side Request Forgery

Server-Side Request Forgery SSRF vulnerability in Rank Math SEO plugin = 1.0.95 at WordPress...

9.8CVSS8AI score0.00747EPSS
Exploits0References4
OSV
OSV
•added 2022/08/30 12:0 a.m.•54 views

DLA-3087-1 webkit2gtk - security update

Bulletin has no description...

8.8CVSS9AI score0.09785EPSS
Exploits0
OSV
OSV
•added 2022/06/30 12:0 a.m.•54 views

DLA-3065-1 linux - security update

Bulletin has no description...

8.8CVSS7.9AI score0.06451EPSS
Exploits29
OSV
OSV
•added 2022/06/19 12:0 a.m.•54 views

GHSA-PFRX-2Q88-QQ97 Got allows a redirect to a UNIX socket

The got package before 11.8.5 and 12.1.0 for Node.js allows a redirect to a UNIX socket...

5.3CVSS6.3AI score0.01855EPSS
Exploits0References7
OSV
OSV
•added 2022/05/26 4:15 p.m.•54 views

CVE-2022-30789

A crafted NTFS image can cause a heap-based buffer overflow in ntfschecklogclientarray in NTFS-3G through 2021.8.22...

7.8CVSS3.5AI score
Exploits0References9
OSV
OSV
•added 2022/05/25 12:15 p.m.•54 views

CVE-2022-26945

go-getter up to 1.5.11 and 2.0.2 allowed protocol switching, endless redirect, and configuration bypass via abuse of custom HTTP response header processing. Fixed in 1.6.1 and 2.1.0...

9.8CVSS9.3AI score0.03054EPSS
Exploits0References2
OSV
OSV
•added 2022/05/24 5:24 p.m.•54 views

GHSA-QCCH-9268-59JW Wildfly EJB Client causes DoS

A flaw was discovered in Wildfly's EJB Client as shipped with Red Hat JBoss EAP 7, where some specific EJB transaction objects may get accumulated over the time and can cause services to slow down and eventually unavailable. An attacker can take advantage and cause denial of service attack and ma...

6.5CVSS7.5AI score0.01203EPSS
Exploits0References24
OSV
OSV
•added 2022/05/22 12:0 a.m.•54 views

DSA-5142-1 libxml2 - security update

Bulletin has no description...

6.5CVSS6.9AI score0.0363EPSS
Exploits5
OSV
OSV
•added 2022/05/21 12:0 p.m.•54 views

RUSTSEC-2022-0031 Panic due to improper UTF-8 indexing

When parsing untrusted rulex expressions, rulex may panic, possibly enabling a Denial of Service attack. This happens when the expression contains a multi- byte UTF-8 code point in a string literal or after a backslash, because rulex tries to slice into the code point and panics as a result. The...

6.5CVSS6.4AI score0.00796EPSS
Exploits0References3
OSV
OSV
•added 2022/05/19 3:15 p.m.•54 views

CVE-2022-22978

In spring security versions prior to 5.4.11+, 5.5.7+ , 5.6.4+ and older unsupported versions, RegexRequestMatcher can easily be misconfigured to be bypassed on some servlet containers. Applications using RegexRequestMatcher with . in the regular expression are possibly vulnerable to an...

9.8CVSS9.4AI score0.10037EPSS
Exploits6References1
OSV
OSV
•added 2022/05/12 12:0 a.m.•54 views

GHSA-2GP3-6C9P-JP7W Cross site scripting in code-server

Cross-site scripting XSS vulnerability exists in Coder Code-Server before 3.12.0, allows attackers to execute arbitrary code via crafted URL...

6.1CVSS6.1AI score0.0079EPSS
Exploits1References4
OSV
OSV
•added 2022/05/01 12:0 a.m.•54 views

DLA-2989-1 ghostscript - security update

Bulletin has no description...

7.8CVSS7.4AI score0.01088EPSS
Exploits0
OSV
OSV
•added 2022/03/18 5:50 p.m.•54 views

GHSA-6XP6-FMC8-PMMR Temporary Directory Hijacking Vulnerability in Keycloak

A flaw was found in keycloak. Directories can be created prior to the Java process creating them in the temporary directory, but with wider user permissions, allowing the attacker to have access to the contents that keycloak stores in this directory. The highest threat from this vulnerability is ...

7.3CVSS6.9AI score0.00299EPSS
Exploits0References4
OSV
OSV
•added 2022/03/15 9:11 a.m.•54 views

ALSA-2022:0892 Moderate: libarchive security update

The libarchive programming library can create and read several different streaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM images. Libarchive is used notably in the bsdtar utility, scripting language bindings such as python-libarchive, and several popular desktop file...

7.8CVSS7.8AI score0.00367EPSS
Exploits0References3
OSV
OSV
•added 2022/01/21 11:43 p.m.•54 views

GHSA-RHQ2-3VR9-6MCR Files on the host computer can be accessed from the Gradio interface

Impact This is a vulnerability that affects anyone who creates and publicly shares Gradio interfaces using gradio=2.5.0...

9.3CVSS7.3AI score0.03794EPSS
Exploits1References5
OSV
OSV
•added 2022/01/06 8:40 p.m.•54 views

GHSA-W4FJ-CCR6-7PCP Apache NiFi Insertion of Sensitive Information into Log File

An information disclosure vulnerability was found in Apache NiFi 1.10.0. The sensitive parameter parser would log parsed values for debugging purposes. This would expose literal values entered in a sensitive property when no parameter was present...

5.3CVSS4.9AI score0.03959EPSS
Exploits0References8
OSV
OSV
•added 2021/12/17 8:42 p.m.•54 views

GHSA-3W6P-8F82-GW8R Using JMSAppender in log4j configuration may lead to deserialization of untrusted data

Impact ClickHouse JDBC Bridge uses slf4j-log4j12 1.7.32, which depends on log4j 1.2.17. It allows a remote attacker to execute code on the server, if you changed default log4j configuration by adding JMSAppender and an insecure JMS broker. Patches The patch version 2.0.7 removed log4j dependency ...

8.1CVSS9.3AI score0.81147EPSS
Exploits9References4
OSV
OSV
•added 2021/12/09 5:15 p.m.•54 views

PYSEC-2021-851

Flask-AppBuilder is a development framework built on top of Flask. Verions prior to 3.3.4 contain an improper authentication vulnerability in the REST API. The issue allows for a malicious actor with a carefully crafted request to successfully authenticate and gain access to existing protected RE...

8.8CVSS2.5AI score0.0125EPSS
Exploits0References3
OSV
OSV
•added 2021/12/01 12:0 a.m.•54 views

ASB-A-143559931

In ResolverActivity, there is a possible user interaction bypass due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation...

7.3CVSS7.4AI score0.00261EPSS
Exploits0References1
OSV
OSV
•added 2021/11/23 12:0 a.m.•54 views

DSA-5012-1 openjdk-17 - security update

Bulletin has no description...

6.8CVSS6.4AI score0.14839EPSS
Exploits0
OSV
OSV
•added 2021/11/01 12:0 a.m.•54 views

ASB-A-204573007

In eploopcheckproc of eventpoll.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.8AI score0.01047EPSS
Exploits0References2
OSV
OSV
•added 2021/10/12 10:3 p.m.•54 views

GHSA-M43C-649M-PM48 Integer Overflow or Wraparound in OpenCV.

In opencv/modules/imgcodecs/src/utils.cpp, functions FillUniColor and FillUniGray do not check the input length, which can lead to integer overflow. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 corresponding with OpenCV-Python 3.3.0....

8.8CVSS8.8AI score0.03235EPSS
Exploits1References8
OSV
OSV
•added 2021/10/01 12:0 a.m.•54 views

DSA-4979-1 mediawiki - security update

Bulletin has no description...

8.8CVSS6.3AI score0.01943EPSS
Exploits2
OSV
OSV
•added 2021/09/30 5:10 p.m.•54 views

GHSA-HF66-R44G-P7J9 Inefficient Regular Expression Complexity in handsontable

The package handsontable from 0 and before 10.0.0 are vulnerable to Regular Expression Denial of Service ReDoS in Handsontable.helper.isNumeric function...

7.5CVSS7.4AI score0.02751EPSS
Exploits1References10
OSV
OSV
•added 2021/09/22 8:15 p.m.•54 views

PYSEC-2021-338

Leo Editor v6.2.1 was discovered to contain a regular expression denial of service ReDoS vulnerability in the component plugins/importers/dart.py...

7.5CVSS3.4AI score0.01193EPSS
Exploits1References2
OSV
OSV
•added 2021/09/21 7:13 a.m.•54 views

RLSA-2021:3590 Moderate: mysql:8.0 security, bug fix, and enhancement update

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and libraries. The following packages have been upgraded to a later upstream version: mysql 8.0.26. BZ1996693 Security Fixes: mysql: Server: Stored Procedure multiple...

7.2CVSS7.9AI score0.41478EPSS
Exploits3References142
OSV
OSV
•added 2021/06/03 7:22 p.m.•54 views

GHSA-J239-4GQG-5J54 Inadequate Encryption Strength

Primetek Primefaces 5.x is vulnerable to a weak encryption flaw resulting in remote code execution...

9.8CVSS9.6AI score0.94104EPSS
Exploits6References5
OSV
OSV
•added 2021/06/01 12:0 a.m.•54 views

DSA-4924-1 squid - security update

Bulletin has no description...

7.5CVSS6.7AI score0.95785EPSS
Exploits5
OSV
OSV
•added 2021/05/11 4:43 p.m.•54 views

GHSA-3Q6F-8GRX-PR4V Cross-site scripting in jspdf

It's possible to use nested script tags in order to bypass the filtering regex...

6.1CVSS6.2AI score0.01573EPSS
Exploits1References8
OSV
OSV
•added 2021/02/06 12:0 a.m.•54 views

DLA-2546-1 intel-microcode - security update

Bulletin has no description...

5.5CVSS6.2AI score0.0051EPSS
Exploits0
OSV
OSV
•added 2021/01/31 12:0 a.m.•54 views

DLA-2538-1 mariadb-10.1 - security update

Bulletin has no description...

6.8CVSS6.5AI score0.03012EPSS
Exploits0
Total number of security vulnerabilities5000