Lucene search
K
OsvMost viewed

908620 matches found

OSV
OSV
•added 2024/03/01 12:0 a.m.•51 views

ASB-A-273935108

In getConfig of SoftVideoDecoderOMXComponent.cpp, there is a possible out of bounds write due to a missing validation check. This could lead to a local non-security issue with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.6AI score0.00126EPSS
Exploits0References2
OSV
OSV
•added 2024/02/20 12:0 a.m.•51 views

ALSA-2024:0887 Moderate: go-toolset:rhel8 security update

Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Security Fixes: golang: net/http/internal: Denial of Service DoS via Resource Consumption via HTTP requests CVE-2023-39326 golang: cmd/go: Protocol Fallback when fetching modules CVE-2023-452...

7.5CVSS7.2AI score0.01208EPSS
Exploits0References6
OSV
OSV
•added 2024/02/04 8:15 p.m.•51 views

CVE-2023-52425

libexpat through 2.5.0 allows a denial of service resource consumption because many full reparsings are required in the case of a large token for which multiple buffer fills are needed...

7.5CVSS7.3AI score
Exploits0References8
OSV
OSV
•added 2024/01/23 6:15 p.m.•51 views

PYSEC-2024-18

Whoogle Search is a self-hosted metasearch engine. In versions 0.8.3 and prior, the window endpoint does not sanitize user-supplied input from the location variable and passes it to the send method which sends a GET request on lines 339-343 in request.py, which leads to a server-side request...

9.8CVSS9.2AI score0.0098EPSS
Exploits1References8
OSV
OSV
•added 2024/01/12 3:15 a.m.•51 views

PYSEC-2024-10

In Gentoo Portage before 3.0.47, there is missing PGP validation of executed code: the standalone emerge-webrsync downloads a .gpgsig file but does not perform signature verification. Unless emerge-webrsync is used, Portage is not vulnerable...

9.8CVSS9.5AI score0.00464EPSS
Exploits0References5
OSV
OSV
•added 2024/01/09 6:30 p.m.•51 views

GHSA-98G6-XH36-X2P7 Microsoft.Data.SqlClient and System.Data.SqlClient vulnerable to SQL Data Provider Security Feature Bypass

Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability...

8.7CVSS9.5AI score0.0118EPSS
Exploits0References3
OSV
OSV
•added 2023/12/01 12:0 a.m.•51 views

ASB-A-275626001

In a2dpvendoropusdecoderdecodepacket of a2dpvendoropusdecoder.cc, there is a possible out of bounds write due to a heap buffer overflow. This could lead to paired device escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

9.8CVSS9.5AI score0.00524EPSS
Exploits0References2
OSV
OSV
•added 2023/11/14 12:0 a.m.•51 views

ALSA-2023:7090 Moderate: libmicrohttpd security update

GNU libmicrohttpd is a small C library that makes it easy to run an HTTP server as part of another application. Security Fixes: libmicrohttpd: remote DoS CVE-2023-27371 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information,...

5.9CVSS5.9AI score0.01243EPSS
Exploits1References4
OSV
OSV
•added 2023/11/13 12:0 a.m.•51 views

DSA-5553-1 postgresql-15 - security update

Bulletin has no description...

8.8CVSS7AI score0.04322EPSS
Exploits0
OSV
OSV
•added 2023/11/07 12:0 a.m.•51 views

ALSA-2023:6738 Moderate: java-21-openjdk security and bug fix update

The java-21-openjdk packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java Software Development Kit. Security Fixes: OpenJDK: memory corruption issue on x8664 with AVX-512 8317121 CVE-2023-22025 OpenJDK: certificate path validation issue during client authentication...

5.3CVSS6.2AI score0.014EPSS
Exploits0References6
OSV
OSV
•added 2023/11/01 12:0 a.m.•51 views

ASB-A-274006187

Bulletin has no description...

5.5CVSS7.2AI score0.00182EPSS
Exploits0References1
OSV
OSV
•added 2023/10/30 3:25 p.m.•51 views

GHSA-JQ35-85CJ-FJ4P /sys/devices/virtual/powercap accessible by default to containers

Intel's RAPL Running Average Power Limit feature, introduced by the Sandy Bridge microarchitecture, provides software insights into hardware energy consumption. To facilitate this, Intel introduced the powercap framework in Linux kernel 3.13, which reads values via relevant MSRs model specific...

5.8AI score
Exploits0References8
OSV
OSV
•added 2023/10/23 6:17 a.m.•51 views

BIT-2023-43814

Discourse is an open source platform for community discussion. Attackers with details specific to a poll in a topic can use the /polls/groupedpollresults endpoint to view the content of options in the poll and the number of votes for groups of poll participants. This impacts private polls where t...

3.7CVSS6.7AI score0.00314EPSS
Exploits0References1Affected Software1
OSV
OSV
•added 2023/10/19 4:8 p.m.•51 views

GHSA-R344-XW3P-2FRJ Apollo Router vulnerable to Improper Check or Handling of Exceptional Conditions

Impact The Apollo Router is a configurable, high-performance graph router written in Rust to run a federated supergraph that uses Apollo Federation. Affected versions are subject to a Denial-of-Service DoS type vulnerability which causes the Router to panic and terminate when a multi-part respons...

7.5CVSS7.5AI score0.00726EPSS
Exploits0References6
OSV
OSV
•added 2023/10/18 12:0 a.m.•51 views

ALSA-2023:5849 Important: nodejs:18 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 nodejs: integrity checks according t...

7.5CVSS8.6AI score0.99999EPSS
Exploits19References10
OSV
OSV
•added 2023/10/10 10:22 p.m.•51 views

GHSA-XPW8-RCWV-8F8P io.netty:netty-codec-http2 vulnerable to HTTP/2 Rapid Reset Attack

A client might overload the server by issue frequent RST frames. This can cause a massive amount of load on the remote system and so cause a DDOS attack. Impact This is a DDOS attack, any http2 server is affected and so you should update as soon as possible. Patches This is patched in version...

7.5CVSS7.9AI score0.99999EPSS
Exploits19References6
OSV
OSV
•added 2023/10/10 6:23 p.m.•51 views

GHSA-VX74-F528-FXQG github.com/nghttp2/nghttp2 has HTTP/2 Rapid Reset

Impact Rapidly creating and cancelling streams HEADERS frame immediately followed by RSTSTREAM without bound cause denial of service. See https://vulners.com/cve/CVE-2023-44487 for details. Patches nghttp2 v1.57.0 mitigates this vulnerability by default. Workarounds If upgrading to nghttp2 v1.57....

7.5CVSS7.9AI score0.99999EPSS
Exploits19References4
OSV
OSV
•added 2023/10/04 6:50 p.m.•51 views

GHSA-M755-GXXG-R5QH Zope management interface vulnerable to stored cross site scripting via the title property

Impact The title property, available on most Zope objects, can be used to store script code that is executed while viewing the affected object in the Zope Management Interface ZMI because the title property is displayed unquoted in the breadcrumbs element. All versions of Zope 4 and Zope 5 are...

3.1CVSS4.5AI score0.00404EPSS
Exploits0References6
OSV
OSV
•added 2023/09/29 9:14 p.m.•51 views

PYSEC-2023-183

opencv-python versions before v4.8.1.78 bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863. opencv-python v4.8.1.78 upgrades the bundled libwebp binary to v1.3.2...

8.8CVSS6.8AI score0.99694EPSS
Exploits9References3
OSV
OSV
•added 2023/09/13 12:0 a.m.•51 views

DSA-5497-1 libwebp - security update

Bulletin has no description...

8.8CVSS7.3AI score0.99694EPSS
Exploits9
OSV
OSV
•added 2023/08/14 12:0 a.m.•51 views

DSA-5477-1 samba - security update

Bulletin has no description...

7.5CVSS6.7AI score0.62606EPSS
Exploits0
OSV
OSV
•added 2023/08/01 12:0 a.m.•51 views

ASB-A-250574778

In processMessageImpl of ClientModeImpl.java, there is a possible credential disclosure in the TOFU flow due to a logic error in the code. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

9.8CVSS9.2AI score0.00639EPSS
Exploits0References4
OSV
OSV
•added 2023/07/25 10:53 p.m.•51 views

GO-2023-1923 Panic when handling invalid HAProxy PROXY v2 request in github.com/mastercactapus/proxyprotocol

Panic when handling invalid HAProxy PROXY v2 request in github.com/mastercactapus/proxyprotocol...

7.5CVSS7.4AI score0.04295EPSS
Exploits1References3
OSV
OSV
•added 2023/07/13 2:37 a.m.•51 views

RSEC-2023-1 Double-free and invalid free vulnerabilities

The readxl R package has been found susceptible to vulnerabilities due to its dependency on libxls library version 1.4.0. Two distinct memory management issues were discovered in the readMSAT and readMSATbody functions within the ole.c component of libxls. The first vulnerability is a double-free...

8.8CVSS7.3AI score0.02052EPSS
Exploits3References4
OSV
OSV
•added 2023/06/26 7:15 p.m.•51 views

CVE-2020-23066

Cross Site Scripting vulnerability in TinyMCE v.4.9.6 and before and v.5.0.0 thru v.5.1.4 allows an attacker to execute arbitrary code via the editor function...

6.1CVSS6.6AI score0.01248EPSS
Exploits1References2Affected Software1
OSV
OSV
•added 2023/06/08 12:0 a.m.•51 views

DLA-3449-1 openssl - security update

Bulletin has no description...

7.5CVSS6.9AI score0.73461EPSS
Exploits0
OSV
OSV
•added 2023/05/17 5:7 p.m.•52 views

GHSA-95X4-J7VC-H8MF ReactPHP's HTTP server continues parsing unused multipart parts after reaching input field and file upload limits

Summary Previous versions of ReactPHP's HTTP server component contain a potential DoS vulnerability that can cause high CPU load when processing large HTTP request bodies. This vulnerability has little to no impact on the default configuration, but can be exploited when explicitly using the...

5.3CVSS6.7AI score0.0068EPSS
Exploits0References9
OSV
OSV
•added 2023/05/16 12:0 a.m.•51 views

ALSA-2023:2780 Moderate: Image Builder security, bug fix, and enhancement update

Image Builder is a service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Security Fixes: golang: archive/tar: unbounded memory consumption when reading headers CVE-2022-2879 golang: net/http/httputil: ReverseProxy should not forward...

7.5CVSS7.1AI score0.05623EPSS
Exploits1References12
OSV
OSV
•added 2023/05/14 12:0 a.m.•51 views

DLA-3420-1 golang-websocket - security update

Bulletin has no description...

7.5CVSS7.5AI score0.02342EPSS
Exploits0
OSV
OSV
•added 2023/04/12 9:45 p.m.•51 views

GO-2023-1713 Path traversal in github.com/sjqzhang/go-fastdfs

An attacker can craft a remote request to upload a file to "/group1/upload" that uses path traversal to instead write the file contents to an attacker controlled path on the server...

9.8CVSS8.3AI score0.03524EPSS
Exploits1References5
OSV
OSV
•added 2023/04/05 6:2 p.m.•51 views

GO-2023-1546 Denial of service in go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp

The otelhttp package of opentelemetry-go-contrib is vulnerable to a denial-of-service attack. The otelhttp package uses the httpconv.ServerRequest function to annotate metric measurements for the http.server.requestcontentlength, http.server.responsecontentlength, and http.server.duration...

7.5CVSS9.4AI score0.05994EPSS
Exploits1References1
OSV
OSV
•added 2023/03/06 7:15 a.m.•51 views

CVE-2023-22858

An Improper Access Control vulnerability in BlogEngine.NET 3.3.8.0, allows unauthenticated visitors to access the files of unpublished blogs...

5.3CVSS7.1AI score0.00362EPSS
Exploits0References1
OSV
OSV
•added 2023/03/01 12:0 a.m.•51 views

ASB-A-234442700

In sendHalfSheetCancelBroadcast of HalfSheetActivity.java, there is a possible way to learn nearby BT MAC addresses due to an unrestricted broadcast intent. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS5.1AI score0.00091EPSS
Exploits0References2
OSV
OSV
•added 2023/02/28 12:0 a.m.•51 views

ALSA-2023:0970 Moderate: httpd security and bug fix update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: moddav: out-of-bounds read/write of zero byte CVE-2006-20001 httpd: modproxyajp: Possible request smuggling CVE-2022-36760 httpd: modproxy: HTTP response splitting...

9CVSS7.8AI score0.57941EPSS
Exploits0References8
OSV
OSV
•added 2023/02/28 12:0 a.m.•51 views

ALSA-2023:0965 Moderate: php security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later upstream version: php 8.0.27. BZ2161667 Security Fixes: XKCP: buffer overflow in the SHA-3 reference implementation CVE-2022-37454 php: standard insecure cook...

9.8CVSS8.8AI score0.49336EPSS
Exploits6References12
OSV
OSV
•added 2023/01/12 8:25 a.m.•51 views

RLSA-2023:0089 Moderate: libreoffice security update

LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and...

8.8CVSS7.7AI score0.04354EPSS
Exploits0References5
OSV
OSV
•added 2022/12/31 12:0 a.m.•51 views

DLA-3258-1 node-loader-utils - security update

Bulletin has no description...

9.8CVSS8.8AI score0.02601EPSS
Exploits1
OSV
OSV
•added 2022/12/13 7:44 p.m.•51 views

GHSA-G8Q8-FGGX-9R3Q Keycloak vulnerable to path traversal via double URL encoding

Keycloak does not properly validate URLs included in a redirect. An attacker could construct a malicious request to bypass validation and access other URLs and potentially sensitive information within the domain, or possibly conduct further attacks...

9.1CVSS8.6AI score0.05796EPSS
Exploits0References5
OSV
OSV
•added 2022/12/05 10:15 p.m.•51 views

CVE-2022-35260

curl can be told to parse a .netrc file for credentials. If that file endsin a line with 4095 consecutive non-white space letters and no newline, curlwould first read past the end of the stack-based buffer, and if the readworks, write a zero byte beyond its boundary.This will in most cases cause ...

6.5CVSS2AI score0.01761EPSS
Exploits1References7
OSV
OSV
•added 2022/12/05 10:15 p.m.•51 views

CVE-2022-43548

A OS Command Injection vulnerability exists in Node.js versions 14.21.1, 16.18.1, 18.12.1, 19.0.1 due to an insufficient IsAllowedHost check that can easily be bypassed because IsIPAddress does not properly check if an IP address is invalid before making DBS requests allowing rebinding attacks.Th...

8.1CVSS1.8AI score
Exploits0References5
OSV
OSV
•added 2022/11/14 7:15 a.m.•51 views

PYSEC-2022-42980

Pillow before 9.3.0 allows denial of service via SAMPLESPERPIXEL...

7.5CVSS3.7AI score0.01102EPSS
Exploits0References5
OSV
OSV
•added 2022/11/01 5:45 p.m.•51 views

GHSA-8RWR-X37P-MX23 X.509 Email Address 4-byte Buffer Overflow

A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue certificate...

9.8CVSS8.4AI score0.89804EPSS
Exploits6References50
OSV
OSV
•added 2022/10/29 2:15 a.m.•51 views

CVE-2022-42916

In curl before 7.86.0, the HSTS check could be bypassed to trick it into staying with HTTP. Using its HSTS support, curl can be instructed to use HTTPS directly instead of using an insecure cleartext HTTP step even when HTTP is provided in the URL. This mechanism could be bypassed if the host nam...

7.5CVSS0.1AI score0.01644EPSS
Exploits0References11
OSV
OSV
•added 2022/10/18 9:46 p.m.•51 views

GHSA-C6W8-7MP3-34J9 .NET Remote Code Execution Vulnerability

Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 6.0, .NET 5.0, and .NET Core 3.1. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability. A Remote Code Execution vulnerability exis...

6.3CVSS7.3AI score0.01556EPSS
Exploits0References11
OSV
OSV
•added 2022/10/14 11:59 p.m.•51 views

GO-2022-1052 Uncontrolled resource consumption during consensus in github.com/tendermint/tendermint

Mishandling of timestamps during consensus process can cause a denial of service. While reaching consensus, different tendermint nodes can observe a different timestamp for a consensus evidence. This mismatch can cause the evidence to be invalid, upon which the node producing the evidence will be...

6.5CVSS6.3AI score0.01742EPSS
Exploits0References3
OSV
OSV
•added 2022/10/06 8:1 p.m.•51 views

GHSA-745P-R637-7VVP Codeigniter4's Secure or HttpOnly flag set in Config\Cookie is not reflected in Cookies issued

Impact Setting $secure or $httponly value to true in Config\Cookie is not reflected in setcookie or Response::setCookie. Note This vulnerability does not affect session cookies. The following code does not issue a cookie with the secure flag even if you set $secure = true in Config\Cookie. php...

2.6CVSS4.2AI score0.00825EPSS
Exploits1References9
OSV
OSV
•added 2022/09/29 5:25 p.m.•51 views

GO-2022-1026 Incorrect validation of root DNSSEC public keys in github.com/peterzen/goresolver

DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. Root DNSSEC public keys are not validated, permitting an attacker to present a self-signed root key and delegation chain...

7.5CVSS7.4AI score0.00242EPSS
Exploits0References1
OSV
OSV
•added 2022/09/29 12:0 a.m.•51 views

GHSA-7FQM-JM52-F9VC rdiffweb vulnerable to Use of Cache Containing Sensitive Information

rdiffweb prior to version 2.4.9 is vulnerable to Use of Cache Containing Sensitive Information. Due to improper cache control, an attacker can view sensitive information even if they are not logged into an account. Version 2.4.9 contains a patch for this issue...

5.1CVSS4.4AI score0.00493EPSS
Exploits1References5
OSV
OSV
•added 2022/09/16 12:0 a.m.•51 views

GHSA-PQW5-JMP5-PX4V parse-url parses http URLs incorrectly, making it vulnerable to host name spoofing

parse-url prior to 8.1.0 is vulnerable to Misinterpretation of Input. parse-url parses certain http or https URLs incorrectly, identifying the URL's protocol as ssh. It may also parse the host name incorrectly...

6.1CVSS6.3AI score0.00586EPSS
Exploits1References4
OSV
OSV
•added 2022/09/08 7:15 p.m.•51 views

PYSEC-2022-268

Improper Restriction of Rendered UI Layers or Frames in GitHub repository ikus060/rdiffweb prior to 2.4.1...

10CVSS3.1AI score0.00933EPSS
Exploits1References3
Total number of security vulnerabilities5000