Lucene search
K
OsvMost viewed

907645 matches found

OSV
OSV
•added 2022/11/01 5:45 p.m.•51 views

GHSA-8RWR-X37P-MX23 X.509 Email Address 4-byte Buffer Overflow

A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue certificate...

9.8CVSS8.4AI score0.89804EPSS
Exploits6References50
OSV
OSV
•added 2022/10/29 2:15 a.m.•51 views

CVE-2022-42916

In curl before 7.86.0, the HSTS check could be bypassed to trick it into staying with HTTP. Using its HSTS support, curl can be instructed to use HTTPS directly instead of using an insecure cleartext HTTP step even when HTTP is provided in the URL. This mechanism could be bypassed if the host nam...

7.5CVSS0.1AI score0.01644EPSS
Exploits0References11
OSV
OSV
•added 2022/10/21 12:0 a.m.•51 views

CVE-2022-3597

LibTIFF 4.4.0 has an out-of-bounds write in TIFFmemcpy in libtiff/tifunix.c:346 when called from extractImageSection, tools/tiffcrop.c:6826, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit...

5.5CVSS6.4AI score0.00949EPSS
Exploits1References8
OSV
OSV
•added 2022/10/18 9:46 p.m.•51 views

GHSA-C6W8-7MP3-34J9 .NET Remote Code Execution Vulnerability

Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 6.0, .NET 5.0, and .NET Core 3.1. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability. A Remote Code Execution vulnerability exis...

6.3CVSS7.3AI score0.01556EPSS
Exploits0References11
OSV
OSV
•added 2022/10/14 11:59 p.m.•51 views

GO-2022-1052 Uncontrolled resource consumption during consensus in github.com/tendermint/tendermint

Mishandling of timestamps during consensus process can cause a denial of service. While reaching consensus, different tendermint nodes can observe a different timestamp for a consensus evidence. This mismatch can cause the evidence to be invalid, upon which the node producing the evidence will be...

6.5CVSS6.3AI score0.01742EPSS
Exploits0References3
OSV
OSV
•added 2022/10/06 8:1 p.m.•51 views

GHSA-745P-R637-7VVP Codeigniter4's Secure or HttpOnly flag set in Config\Cookie is not reflected in Cookies issued

Impact Setting $secure or $httponly value to true in Config\Cookie is not reflected in setcookie or Response::setCookie. Note This vulnerability does not affect session cookies. The following code does not issue a cookie with the secure flag even if you set $secure = true in Config\Cookie. php...

2.6CVSS4.2AI score0.00825EPSS
Exploits1References9
OSV
OSV
•added 2022/09/16 12:0 a.m.•51 views

GHSA-PQW5-JMP5-PX4V parse-url parses http URLs incorrectly, making it vulnerable to host name spoofing

parse-url prior to 8.1.0 is vulnerable to Misinterpretation of Input. parse-url parses certain http or https URLs incorrectly, identifying the URL's protocol as ssh. It may also parse the host name incorrectly...

6.1CVSS6.3AI score0.00586EPSS
Exploits1References4
OSV
OSV
•added 2022/09/08 7:15 p.m.•51 views

PYSEC-2022-268

Improper Restriction of Rendered UI Layers or Frames in GitHub repository ikus060/rdiffweb prior to 2.4.1...

10CVSS3.1AI score0.00933EPSS
Exploits1References3
OSV
OSV
•added 2022/08/15 6:2 p.m.•51 views

GO-2022-0564 Signature forgery in github.com/biscuit-auth/biscuit-go

An attacker can forge Biscuit v1 tokens with any access level. There is no known workaround for Biscuit v1. The Biscuit v2 specification avoids this vulnerability...

9.8CVSS9.4AI score0.0096EPSS
Exploits1References1
OSV
OSV
•added 2022/07/20 8:52 p.m.•51 views

GO-2022-0524 Stack exhaustion when reading certain archives in compress/gzip

Calling Reader.Read on an archive containing a large number of concatenated 0-length compressed files can cause a panic due to stack exhaustion...

7.5CVSS7.8AI score0.01615EPSS
Exploits0References4
OSV
OSV
•added 2022/07/06 6:23 p.m.•51 views

GO-2022-0229 Panic in certificate parsing in crypto/x509 and golang.org/x/crypto/cryptobyte

On 32-bit architectures, a malformed input to crypto/x509 or the ASN.1 parsing functions of golang.org/x/crypto/cryptobyte can lead to a panic. The malformed certificate can be delivered via a crypto/tls connection to a client, or to a server that accepts client certificates. net/http clients can...

7.8CVSS7.4AI score0.02582EPSS
Exploits0References5
OSV
OSV
•added 2022/06/28 12:0 a.m.•51 views

GHSA-6Q8V-2HVM-FX37 Apache Tika contains incomplete fix for regex DoS

The initial fixes in CVE-2022-30126 and CVE-2022-30973 for regexes in the StandardsExtractingContentHandler were insufficient, and we found a separate, new regex DoS in a different regex in the StandardsExtractingContentHandler. These are now fixed in 1.28.4 and 2.4.1...

3.3CVSS4.8AI score0.01892EPSS
Exploits0References4
OSV
OSV
•added 2022/06/24 12:0 a.m.•51 views

GHSA-X95W-QF3M-PQPX Cross-site Scripting in Jenkins Filesystem List Parameter Plugin

Jenkins Filesystem List Parameter Plugin 0.0.7 and earlier does not escape the name and description of File system objects list parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

8CVSS5.8AI score0.00738EPSS
Exploits0References3
OSV
OSV
•added 2022/06/22 12:0 a.m.•51 views

DSA-5168-1 chromium - security update

Bulletin has no description...

8.8CVSS6.9AI score0.01551EPSS
Exploits3
OSV
OSV
•added 2022/06/01 12:0 a.m.•51 views

ASB-A-162326603

In rndissetresponse of rndis.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS6.3AI score0.01054EPSS
Exploits1References2
OSV
OSV
•added 2022/05/26 4:15 p.m.•51 views

CVE-2022-30784

A crafted NTFS image can cause heap exhaustion in ntfsgetattributevalue in NTFS-3G through 2021.8.22...

7.8CVSS1AI score
Exploits0References9
OSV
OSV
•added 2022/05/10 8:7 a.m.•51 views

ALSA-2022:1915 Moderate: httpd:2.4 security and bug fix update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: modproxyuwsgi: out-of-bounds read via a crafted request uri-path CVE-2021-36160 httpd:...

8.2CVSS8.9AI score0.82295EPSS
Exploits1References5
OSV
OSV
•added 2022/05/09 12:0 p.m.•51 views

RUSTSEC-2022-0018 Timing attack

Affecting versions did not compare tokens in constant time, which could make it possible for an attacker to guess the 2fa token of a user. This has been fixed by using using the crate constanttimeeq for comparison...

4.2CVSS4.3AI score0.00789EPSS
Exploits0References3
OSV
OSV
•added 2022/05/09 12:0 a.m.•51 views

CVE-2022-1621 Heap buffer overflow in vim_strncpy find_word in vim/vim

Heap buffer overflow in vimstrncpy findword in GitHub repository vim/vim prior to 8.2.4919. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution...

7.3CVSS8.1AI score0.02303EPSS
Exploits1References12
OSV
OSV
•added 2022/04/02 12:0 a.m.•51 views

GHSA-7627-MP87-JF6Q Command injection in cocoapods-downloader

The package cocoapods-downloader before 1.6.0, from 1.6.2 and before 1.6.3 are vulnerable to Command Injection via git argument injection. When calling the Pod::Downloader.preprocessoptions function and using git, both the git and branch parameters are passed to the git ls-remote subcommand in a...

8.1CVSS9.9AI score0.02713EPSS
Exploits0References8
OSV
OSV
•added 2022/03/07 12:0 a.m.•51 views

DLA-2935-1 expat - security update

Bulletin has no description...

9.8CVSS8.4AI score0.34174EPSS
Exploits1
OSV
OSV
•added 2022/02/04 10:32 p.m.•51 views

CVE-2022-23591 Stack overflow in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The GraphDef format in TensorFlow does not allow self recursive functions. The runtime assumes that this invariant is satisfied. However, a GraphDef containing a fragment such as the following can be consumed when loading a SavedModel. This...

7.5CVSS7.7AI score0.00789EPSS
Exploits0References4
OSV
OSV
•added 2021/12/01 12:0 a.m.•51 views

ASB-A-195082750

fs/seqfile.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05...

7.8CVSS8.1AI score0.09729EPSS
Exploits6References2
OSV
OSV
•added 2021/10/22 4:24 p.m.•51 views

GHSA-5H9G-X5RV-25WG Cross-site scripting vulnerability in TinyMCE

Impact A cross-site scripting XSS vulnerability was discovered in the schema validation logic of the core parser. The vulnerability allowed arbitrary JavaScript execution when inserting a specially crafted piece of content into the editor using the clipboard or editor APIs. This malicious content...

6.1CVSS6AI score0.01066EPSS
Exploits1References3
OSV
OSV
•added 2021/10/01 12:0 a.m.•51 views

ASB-A-184622099

In qrtrrecvmsg of qrtr.c, there is a possible leak of kernel memory due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS6.3AI score0.00366EPSS
Exploits0References2
OSV
OSV
•added 2021/09/01 12:0 a.m.•51 views

ASB-A-188554048

In the SELinux policy configured in systemapp.te, there is a possible way for systemapp to gain code execution in other processes due to an overly-permissive SELinux policy. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed fo...

6.7CVSS7AI score0.00109EPSS
Exploits0References2
OSV
OSV
•added 2021/06/30 12:38 a.m.•51 views

UVI-2021-1001089 net: bridge: fix vlan tunnel dst null pointer dereference

net: bridge: fix vlan tunnel dst null pointer dereference This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.13 by commit...

7.2AI score
Exploits0
OSV
OSV
•added 2021/06/29 1:42 p.m.•51 views

ALSA-2021:2569 Moderate: libxml2 security update

The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fixes: libxml2: Use-after-free in xmlEncodeEntitiesInternal in entities.c CVE-2021-3516 libxml2: Heap-based buffer overflow in xmlEncodeEntitiesInternal in entities.c CVE-2021-3517 libxml2...

8.8CVSS7.8AI score0.0828EPSS
Exploits1References5
OSV
OSV
•added 2021/05/18 6:8 a.m.•51 views

ALSA-2021:1809 Moderate: httpd:2.4 security, bug fix, and enhancement update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modsessioncookie does not respect expiry time CVE-2018-17199 httpd: modproxyuwsgi buffer overflow CVE-2020-11984 httpd: modhttp2 concurrent pool usage CVE-2020-11993 For mor...

9.8CVSS7.4AI score0.90039EPSS
Exploits4References4
OSV
OSV
•added 2020/12/31 9:15 a.m.•51 views

CVE-2020-35911

An issue was discovered in the lockapi crate before 0.4.2 for Rust. A data race can occur because of MappedRwLockReadGuard unsoundness...

4.7CVSS7.1AI score0.00324EPSS
Exploits0References1
OSV
OSV
•added 2020/12/01 12:0 a.m.•51 views

ASB-A-147802478

In doepollctl and eploopcheckproc of eventpoll.c, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS8.2AI score0.00268EPSS
Exploits0References3
OSV
OSV
•added 2020/11/23 12:0 a.m.•51 views

DSA-4797-1 webkit2gtk - security update

Bulletin has no description...

8.8CVSS7.9AI score0.04528EPSS
Exploits2
OSV
OSV
•added 2020/11/17 12:0 a.m.•51 views

DSA-4792-1 openldap - security update

Bulletin has no description...

7.5CVSS7.7AI score0.02858EPSS
Exploits0
OSV
OSV
•added 2020/11/09 1:15 a.m.•51 views

CVE-2020-24407

Magento versions 2.4.0 and 2.3.5p1 and earlier are affected by an unsafe file upload vulnerability that could result in arbitrary code execution. This vulnerability could be abused by authenticated users with administrative permissions to the System/Data and Transfer/Import components...

9.1CVSS7AI score
Exploits0References1
OSV
OSV
•added 2020/11/06 2:15 p.m.•51 views

PYSEC-2020-26

Synopsys hub-rest-api-python aka blackduck on PyPI version 0.0.25 - 0.0.52 does not validate SSL certificates in certain cases...

7.5CVSS3.4AI score0.01112EPSS
Exploits1References6
OSV
OSV
•added 2020/10/07 3:15 p.m.•51 views

CVE-2020-14355

Multiple buffer overflow vulnerabilities were found in the QUIC image decoding process of the SPICE remote display system, before spice-0.14.2-1. Both the SPICE client spice-gtk and server are affected by these flaws. These flaws allow a malicious client or server to send specially crafted messag...

6.6CVSS4.6AI score
Exploits0References9
OSV
OSV
•added 2020/04/14 3:27 p.m.•51 views

GHSA-G2F6-V5QH-H2MQ Nexus Repository Manager 3 - Remote Code Execution

Sonatype Nexus Repository before 3.21.2 allows JavaEL Injection issue 1 of 2...

8.8CVSS8.7AI score0.99064EPSS
Exploits10References8
OSV
OSV
•added 2020/03/26 12:0 a.m.•51 views

DLA-2160-1 php5 - security update

Bulletin has no description...

7.5CVSS7.2AI score0.0351EPSS
Exploits2
OSV
OSV
•added 2020/02/17 12:0 a.m.•51 views

DSA-4627-1 webkit2gtk - security update

Bulletin has no description...

9.3CVSS7.6AI score0.02633EPSS
Exploits0
OSV
OSV
•added 2019/11/19 6:15 p.m.•51 views

CVE-2019-18934

Unbound 1.6.4 through 1.9.4 contain a vulnerability in the ipsec module that can cause shell code execution after receiving a specially crafted answer. This issue can only be triggered if unbound was compiled with --enable-ipsecmod support, and ipsecmod is enabled and used in the configuration...

7.3CVSS7.1AI score0.03212EPSS
Exploits1References7
OSV
OSV
•added 2019/08/24 12:0 a.m.•51 views

DLA-1896-1 commons-beanutils - security update

Bulletin has no description...

7.5CVSS7.5AI score0.28839EPSS
Exploits1
OSV
OSV
•added 2019/08/15 5:31 p.m.•51 views

ALSA-2019:2511 Important: mysql:8.0 security update

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs. The following packages have been upgraded to a later upstream version: mysql 8.0.17. Security Fixes: mysql: Server: Replication multiple unspecified vulnerabilities...

7.1CVSS7.8AI score0.04457EPSS
Exploits0References100
OSV
OSV
•added 2019/04/27 12:0 p.m.•51 views

RUSTSEC-2019-0001 Uncontrolled recursion leads to abort in HTML serialization

Affected versions of this crate did use recursion for serialization of HTML DOM trees. This allows an attacker to cause abort due to stack overflow by providing a pathologically nested input. The flaw was corrected by serializing the DOM tree iteratively instead...

7.5CVSS7.5AI score0.01411EPSS
Exploits0References3
OSV
OSV
•added 2018/11/07 12:0 a.m.•51 views

DLA-1570-1 mariadb-10.0 - security update

Bulletin has no description...

6.5CVSS6.6AI score0.03968EPSS
Exploits0
OSV
OSV
•added 2018/07/27 12:0 a.m.•51 views

DLA-1445-1 busybox - security update

Bulletin has no description...

9.8CVSS7.3AI score0.32381EPSS
Exploits17
OSV
OSV
•added 2018/03/12 9:29 p.m.•51 views

CVE-2016-9953

The verifycertificate function in lib/vtls/schannel.c in libcurl 7.30.0 through 7.51.0, when built for Windows CE using the schannel TLS backend, allows remote attackers to obtain sensitive information, cause a denial of service crash, or possibly have unspecified other impact via a wildcard...

9.8CVSS9.2AI score0.01831EPSS
Exploits0References2
OSV
OSV
•added 2017/11/17 5:29 a.m.•51 views

CVE-2017-1000158

CPython aka Python up to 2.7.13 is vulnerable to an integer overflow in the PyStringDecodeEscape function in stringobject.c, resulting in heap-based buffer overflow and possible arbitrary code execution...

9.8CVSS5.1AI score
Exploits0References9
OSV
OSV
•added 2017/08/04 12:0 a.m.•51 views

DSA-3925-1 qemu - security update

Bulletin has no description...

7.5CVSS6.5AI score0.04093EPSS
Exploits0
OSV
OSV
•added 2016/09/23 12:0 a.m.•51 views

DSA-3673-2 openssl - regression update

Bulletin has no description...

6.8AI score
Exploits0
OSV
OSV
•added 2016/07/04 12:0 a.m.•51 views

DSA-3616-1 linux - security update

Bulletin has no description...

7.8CVSS6.5AI score0.00462EPSS
Exploits0
Total number of security vulnerabilities5000