Lucene search
K
OsvMost viewed

909148 matches found

OSV
OSV
•added 2023/05/05 3:42 p.m.•53 views

RXSA-2023:1566 Important: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: stack overflow in doprocdointvec and procskipspaces CVE-2022-4378 ALSA: pcm: Move rwsem lock inside sndctlelemread to prevent UAF CVE-2023-0266 kernel: FUSE filesystem low-privileged user...

7.8CVSS8AI score0.0788EPSS
Exploits14References5
OSV
OSV
•added 2023/04/10 12:0 a.m.•53 views

DLA-3389-1 lldpd - security update

Bulletin has no description...

7.5CVSS7.7AI score0.03235EPSS
Exploits0
OSV
OSV
•added 2023/04/03 7:18 p.m.•53 views

GHSA-33PV-VCGH-JFG9 Wagtail vulnerable to denial-of-service via memory exhaustion when uploading large files

Impact A memory exhaustion bug exists in Wagtail's handling of uploaded images and documents. For both images and documents, files are loaded into memory during upload for additional processing. A user with access to upload images or documents through the Wagtail admin interface could upload a fi...

5.9CVSS5AI score0.0107EPSS
Exploits0References11
OSV
OSV
•added 2023/04/01 12:0 a.m.•53 views

ASB-A-231985227

In factoryReset of WifiServiceImpl.java, there is a possible way to preserve WiFi settings due to a logic error in the code. This could lead to local non-security issues across resets with no additional execution privileges needed. User interaction is not needed for exploitation...

6.3AI score
Exploits0References2
OSV
OSV
•added 2023/03/08 7:29 p.m.•53 views

GO-2023-1611 Path traversal in github.com/gookit/goutil

fsutil.Unzip is vulnerable to path traversal attacks due to improper validation of paths...

8.8CVSS8.6AI score0.00849EPSS
Exploits0References2
OSV
OSV
•added 2023/01/28 12:0 a.m.•53 views

DLA-3288-1 curl - security update

Bulletin has no description...

9.8CVSS6.7AI score0.04325EPSS
Exploits4
OSV
OSV
•added 2023/01/24 8:54 p.m.•53 views

GHSA-V3CG-7R9H-R2G6 Field-level security issue with .keyword fields in OpenSearch

Advisory title: Field-level security issue with .keyword fields Affected versions: OpenSearch 1.0.0-1.3.7 and 2.0.0-2.4.1 Patched versions: OpenSearch 1.3.8 and 2.5.0 Impact: There is an issue in the implementation of field-level security FLS and field masking where rules written to explicitly...

5.7CVSS5.9AI score0.00821EPSS
Exploits0References4
OSV
OSV
•added 2023/01/23 12:0 a.m.•53 views

ALSA-2023:0333 Moderate: curl security update

The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Security Fixes: curl: POST following PUT confusion CVE-2022-32221 For more details about the security issues, including the impact, a CVSS...

9.8CVSS7.9AI score0.04325EPSS
Exploits1References4
OSV
OSV
•added 2022/12/07 6:39 p.m.•53 views

GO-2022-1114 ZipSlip when unzipping files in github.com/duke-git/lancet

A ZipSlip vulnerability exists when using the fileutil package to unzip files...

8.8CVSS7.1AI score0.00793EPSS
Exploits1References3
OSV
OSV
•added 2022/11/25 7:15 p.m.•53 views

PYSEC-2022-42996

MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems not Windows or macos, MPXJ's use of File.createTempFile.. results in temporary files being created with the permissions -rw-r--r--. This means that any other...

3.3CVSS6.5AI score0.00208EPSS
Exploits0References2
OSV
OSV
•added 2022/11/09 9:15 p.m.•53 views

CVE-2022-23824

IBPB may not prevent return branch predictions from being specified by pre-IBPB branch targets leading to a potential information disclosure...

5.5CVSS1.9AI score
Exploits0References6
OSV
OSV
•added 2022/11/03 7:0 p.m.•53 views

GHSA-236J-RFX5-WQ38 OpenCart SQL injection vulnerability

OpenCart 3.0.3.7 allows users to obtain database information or read server files through SQL injection in the background...

4.9CVSS5.2AI score0.00726EPSS
Exploits1References3
OSV
OSV
•added 2022/10/31 12:0 a.m.•53 views

DLA-3173-1 linux-5.10 - security update

Bulletin has no description...

8.8CVSS7.7AI score0.03763EPSS
Exploits16
OSV
OSV
•added 2022/09/28 12:0 a.m.•53 views

DSA-5244-1 chromium - security update

Bulletin has no description...

8.8CVSS6.9AI score0.00616EPSS
Exploits8
OSV
OSV
•added 2022/09/05 10:15 a.m.•53 views

PYSEC-2022-43069

Apache IoTDB version 0.13.0 is vulnerable by session id attack. Users should upgrade to version 0.13.1 which addresses this issue...

8.8CVSS8.6AI score0.01089EPSS
Exploits0References5
OSV
OSV
•added 2022/08/22 6:0 p.m.•53 views

GO-2022-0603 Panic in gopkg.in/yaml.v3

An issue in the Unmarshal function can cause a program to panic when attempting to deserialize invalid input...

7.5CVSS7.3AI score0.035EPSS
Exploits1References2
OSV
OSV
•added 2022/07/05 11:15 a.m.•53 views

CVE-2022-2097

AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not encrypt the entirety of the data under some circumstances. This could reveal sixteen bytes of data that was preexisting in the memory that wasn't written. In the special case of "in place" encryption...

5.3CVSS1.6AI score
Exploits0References13
OSV
OSV
•added 2022/06/25 7:11 a.m.•53 views

GHSA-2JX3-5J9V-PRPP BlockWishList SQL Injection vulnerability

Impact An authenticated customer can perform SQL injection Patches Issue is fixed in 2.1.1...

8.1CVSS8.3AI score0.24146EPSS
Exploits6References5
OSV
OSV
•added 2022/05/26 2:15 p.m.•53 views

CVE-2022-1664

Dpkg::Source::Archive in dpkg, the Debian package management system, before version 1.21.8, 1.20.10, 1.19.8, 1.18.26 is prone to a directory traversal vulnerability. When extracting untrusted source packages in v2 and v3 source package formats that include a debian.tar, the in-place extraction ca...

9.8CVSS4.5AI score
Exploits0References7
OSV
OSV
•added 2022/05/25 12:15 p.m.•53 views

CVE-2022-26945

go-getter up to 1.5.11 and 2.0.2 allowed protocol switching, endless redirect, and configuration bypass via abuse of custom HTTP response header processing. Fixed in 1.6.1 and 2.1.0...

9.8CVSS9.3AI score0.03054EPSS
Exploits0References2
OSV
OSV
•added 2022/05/19 3:15 p.m.•53 views

CVE-2022-22978

In spring security versions prior to 5.4.11+, 5.5.7+ , 5.6.4+ and older unsupported versions, RegexRequestMatcher can easily be misconfigured to be bypassed on some servlet containers. Applications using RegexRequestMatcher with . in the regular expression are possibly vulnerable to an...

9.8CVSS9.4AI score0.10037EPSS
Exploits6References1
OSV
OSV
•added 2022/05/14 12:0 a.m.•53 views

DLA-3006-1 openjdk-8 - security update

Bulletin has no description...

7.5CVSS6.6AI score0.04046EPSS
Exploits0
OSV
OSV
•added 2022/05/13 1:38 a.m.•53 views

GHSA-5GG7-5WV8-4GCJ Undertow Request Smuggling vulnerability

It was discovered that Undertow before 1.4.17, 1.3.31 and 2.0.0 processes http request headers with unusual whitespaces which can cause possible http request smuggling...

7.5CVSS8.4AI score0.01858EPSS
Exploits0References7
OSV
OSV
•added 2022/04/26 9:21 p.m.•53 views

GHSA-75P6-52G3-RQC8 Keycloak vulnerable to privilege escalation on Token Exchange feature

A privilege escalation flaw was found in the token exchange feature of keycloak. Missing authorization allows a client application holding a valid access token to exchange tokens for any target client by passing the clientid of the target. This could allow a client to gain unauthorized access to...

9.8CVSS9.5AI score0.01299EPSS
Exploits0References4
OSV
OSV
•added 2022/04/04 6:15 p.m.•53 views

PYSEC-2022-195

Twisted is an event-based framework for internet applications, supporting Python 3.6+. Prior to version 22.4.0rc1, the Twisted Web HTTP 1.1 server, located in the twisted.web.http module, parsed several HTTP request constructs more leniently than permitted by RFC 7230. This non-conformant parsing...

8.1CVSS0.3AI score0.028EPSS
Exploits0References4
OSV
OSV
•added 2022/02/11 11:26 p.m.•53 views

GO-2022-0646 CBC padding oracle issue in AWS S3 Crypto SDK for golang in github.com/aws/aws-sdk-go

A padding oracle vulnerability exists in the AWS S3 Crypto SDK for GoLang versions prior to V2. The SDK allows users to encrypt files with AES-CBC without computing a Message Authentication Code MAC, which then allows an attacker who has write access to the target's S3 bucket and can observe...

5.6CVSS4.8AI score0.00348EPSS
Exploits1References7
OSV
OSV
•added 2022/02/09 12:56 a.m.•53 views

GHSA-52RG-HPWQ-QP56 Allocation of Resources Without Limits or Throttling in Keycloak

A vulnerability was found in Keycloak before 11.0.1 where DoS attack is possible by sending twenty requests simultaneously to the specified keycloak server, all with a Content-Length header value that exceeds the actual byte count of the request body...

7.5CVSS7.3AI score0.02242EPSS
Exploits0References3
OSV
OSV
•added 2021/10/26 2:15 p.m.•53 views

CVE-2021-41158

FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. Prior to version 1.10.7, an attacker can perform a SIP digest leak attack against FreeSWITCH and receive the...

7.5CVSS1.6AI score
Exploits0References3
OSV
OSV
•added 2021/10/04 5:15 p.m.•53 views

CVE-2021-41103

containerd is an open source container runtime with an emphasis on simplicity, robustness and portability. A bug was found in containerd where container root directories and some plugins had insufficiently restricted permissions, allowing otherwise unprivileged Linux users to traverse directory...

7.8CVSS7.6AI score
Exploits0References7
OSV
OSV
•added 2021/09/08 5:42 p.m.•53 views

GHSA-F34X-8PF6-QC9C HTTP header injection in Sonatype Nexus Repository

Sonatype Nexus Repository 3.x through 3.33.1-01 is vulnerable to an HTTP header injection. By sending a crafted HTTP request, a remote attacker may disclose sensitive information or request external resources from a vulnerable instance...

8.2CVSS8.2AI score0.02322EPSS
Exploits0References5
OSV
OSV
•added 2021/08/09 8:44 p.m.•53 views

GHSA-F865-M6CQ-J9VX ReDOS in Mpmath

A Regular Expression Denial of Service ReDOS vulnerability was discovered in Mpmath v1.0.0 when the mpmathify function is called...

8.7CVSS7.3AI score0.041EPSS
Exploits1References17
OSV
OSV
•added 2021/07/25 12:0 a.m.•53 views

DSA-4944-1 krb5 - security update

Bulletin has no description...

7.5CVSS7.4AI score0.10276EPSS
Exploits0
OSV
OSV
•added 2021/05/28 12:0 a.m.•53 views

DSA-4921-1 nginx - security update

Bulletin has no description...

7.7CVSS6.5AI score0.52838EPSS
Exploits10
OSV
OSV
•added 2021/05/13 12:0 a.m.•53 views

DSA-4915-1 postgresql-11 - security update

Bulletin has no description...

8.8CVSS7.8AI score0.0199EPSS
Exploits0
OSV
OSV
•added 2021/04/14 8:4 p.m.•53 views

GO-2020-0016 Infinite loop in github.com/ulikunitz/xz

An attacker can construct a series of bytes such that calling Reader.Read on the bytes could cause an infinite loop. If parsing user supplied input, this may be used as a denial of service vector...

7.5CVSS7.2AI score0.01438EPSS
Exploits0References2
OSV
OSV
•added 2021/04/14 8:4 p.m.•53 views

GO-2021-0090 Denial of service in github.com/tendermint/tendermint

Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures...

6.5CVSS6.4AI score0.00905EPSS
Exploits1References3
OSV
OSV
•added 2021/03/09 12:38 a.m.•53 views

GHSA-JPCM-4485-69P7 Sensitive information disclosure via log in com.bmuschko:gradle-vagrant-plugin

Impact The com.bmuschko:gradle-vagrant-plugin Gradle plugin contains an information disclosure vulnerability due to the logging of the system environment variables. When this Gradle plugin is executed in public CI/CD, this can lead to sensitive credentials being exposed to malicious actors. Patch...

7.4CVSS6.3AI score0.01176EPSS
Exploits1References5
OSV
OSV
•added 2021/02/08 12:0 a.m.•53 views

DSA-4848-1 golang-1.11 - security update

Bulletin has no description...

7.8CVSS7.2AI score0.0473EPSS
Exploits0
OSV
OSV
•added 2020/12/16 11:15 a.m.•53 views

CVE-2020-28458

All versions of package datatables.net are vulnerable to Prototype Pollution due to an incomplete fix for https://snyk.io/vuln/SNYK-JS-DATATABLESNET-598806...

7.3CVSS7.2AI score
Exploits0References7
OSV
OSV
•added 2020/12/01 12:0 a.m.•53 views

ASB-A-160265164

In SPDIFEncoder::writeBurstBufferBytes and related methods of SPDIFEncoder.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation...

9.3CVSS8AI score0.0146EPSS
Exploits0References3
OSV
OSV
•added 2020/11/03 12:25 p.m.•53 views

RLSA-2020:4670 Moderate: idm:DL1 and idm:client security, bug fix, and enhancement update

Rocky Enterprise Software Foundation Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. The following packages have been upgraded to a later upstream version: ipa 4.8.7, softhsm...

6.1CVSS8.2AI score0.99019EPSS
Exploits16References61
OSV
OSV
•added 2020/10/27 8:33 p.m.•53 views

GHSA-HGGM-JPG3-V476 RSA decryption vulnerable to Bleichenbacher timing vulnerability

RSA decryption was vulnerable to Bleichenbacher timing vulnerabilities, which would impact people using RSA decryption in online scenarios. This is fixed in cryptography 3.2...

8.2CVSS5.9AI score0.02454EPSS
Exploits0References10
OSV
OSV
•added 2020/09/23 9:15 p.m.•53 views

CVE-2020-25595

An issue was discovered in Xen through 4.14.x. The PCI passthrough code improperly uses register data. Code paths in Xen's MSI handling have been identified that act on unsanitized values read back from device hardware registers. While devices strictly compliant with PCI specifications shouldn't ...

7.8CVSS3.3AI score
Exploits0References7
OSV
OSV
•added 2020/02/28 4:53 p.m.•53 views

GHSA-84J7-475P-HP8V HTTP Response Splitting in Puma

In Puma RubyGem before 4.3.2 and 3.12.3, if an application using Puma allows untrusted input in a response header, an attacker can use newline characters i.e. CR, LF or/r, /n to end the header and inject malicious content, such as additional headers or an entirely new response body. This...

6.5CVSS6.6AI score0.04569EPSS
Exploits0References11
OSV
OSV
•added 2020/02/17 12:0 a.m.•53 views

DSA-4627-1 webkit2gtk - security update

Bulletin has no description...

9.3CVSS7.6AI score0.02633EPSS
Exploits0
OSV
OSV
•added 2019/06/15 12:0 p.m.•53 views

RUSTSEC-2019-0006 Buffer overflow and format vulnerabilities in functions exposed without unsafe

ncurses exposes functions from the ncurses library which: - Pass buffers without length to C functions that may write an arbitrary amount of data, leading to a buffer overflow. instr, mvwinstr, etc - Passes rust &str to strings expecting C format arguments, allowing hostile input to execute a...

9.8CVSS8.7AI score0.01615EPSS
Exploits0References3
OSV
OSV
•added 2019/04/27 12:0 p.m.•53 views

RUSTSEC-2019-0001 Uncontrolled recursion leads to abort in HTML serialization

Affected versions of this crate did use recursion for serialization of HTML DOM trees. This allows an attacker to cause abort due to stack overflow by providing a pathologically nested input. The flaw was corrected by serializing the DOM tree iteratively instead...

7.5CVSS7.5AI score0.01411EPSS
Exploits0References3
OSV
OSV
•added 2019/03/24 12:0 a.m.•53 views

DLA-1725-1 rsync - security update

Bulletin has no description...

9.8CVSS8.4AI score0.07489EPSS
Exploits0
OSV
OSV
•added 2019/01/31 6:29 p.m.•53 views

CVE-2019-6111

An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned only directory traversal attacks are prevented...

5.9CVSS1.7AI score
Exploits0References23
OSV
OSV
•added 2018/12/10 12:0 a.m.•53 views

DSA-4353-1 php7.0 - security update

Bulletin has no description...

8.5CVSS7AI score0.9523EPSS
Exploits9
Total number of security vulnerabilities5000