Lucene search
K
OsvMost viewed

907650 matches found

OSV
OSV
•added 2024/03/06 10:51 a.m.•50 views

BIT-DJANGO-2023-43665

In Django 3.2 before 3.2.22, 4.1 before 4.1.12, and 4.2 before 4.2.6, the django.utils.text.Truncator chars and words methods when used with html=True are subject to a potential DoS denial of service attack via certain inputs with very long, potentially malformed HTML text. The chars and words...

7.5CVSS6.6AI score0.01236EPSS
Exploits0References9
OSV
OSV
•added 2024/02/12 8:17 p.m.•50 views

RLSA-2024:0627 Moderate: gnutls security update

The gnutls packages provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Security Fixes: gnutls: incomplete fix for CVE-2023-5981 CVE-2024-0553 For more details about the security issues, including the impact,...

7.5CVSS7.2AI score0.01614EPSS
Exploits1References2
OSV
OSV
•added 2024/02/03 12:47 a.m.•50 views

GHSA-VH55-786G-WJWJ .NET Information Disclosure Vulnerability

Microsoft is releasing this security advisory to provide information about a vulnerability in .NET Core 3.1 and .NET 6.0. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability. An information disclosure vulnerability exists in .NE...

5.9CVSS5.7AI score0.0192EPSS
Exploits0References6
OSV
OSV
•added 2024/02/01 12:0 a.m.•50 views

ALSA-2024:0647 Moderate: rpm security update

The RPM Package Manager RPM is a command-line driven package management system capable of installing, uninstalling, verifying, querying, and updating software packages. Security Fixes: rpm: TOCTOU race in checks for unsafe symlinks CVE-2021-35937 rpm: races with chown/chmod/capabilities calls...

6.7CVSS7.4AI score0.00491EPSS
Exploits3References8
OSV
OSV
•added 2024/01/25 12:0 a.m.•50 views

ALSA-2024:0474 Moderate: tomcat security update

Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: tomcat: Open Redirect vulnerability in FORM authentication CVE-2023-41080 tomcat: FileUpload: DoS due to accumulation of temporary files on Windows CVE-2023-42794 tomcat: improper...

6.1CVSS6.7AI score0.05972EPSS
Exploits2References10
OSV
OSV
•added 2024/01/12 7:57 p.m.•50 views

RLSA-2024:0158 Important: .NET 6.0 security update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.126 and .NET Runtime 6.0.26...

9.8CVSS7.7AI score0.02868EPSS
Exploits0References4
OSV
OSV
•added 2023/12/22 8:36 p.m.•50 views

CVE-2023-50730 Grackle has StackOverflowError in GraphQL query processing

Grackle is a GraphQL server written in functional Scala, built on the Typelevel stack. The GraphQL specification requires that GraphQL fragments must not form cycles, either directly or indirectly. Prior to Grackle version 0.18.0, that requirement wasn't checked, and queries with cyclic fragments...

7.5CVSS7.8AI score0.00827EPSS
Exploits0References5
OSV
OSV
•added 2023/12/14 5:15 a.m.•50 views

CVE-2023-49935

An issue was discovered in SchedMD Slurm 23.02.x and 23.11.x. There is Incorrect Access Control because of a slurmd Message Integrity Bypass. An attacker can reuse root-level authentication tokens during interaction with the slurmd process. This bypasses the RPC message hashes that protect agains...

8.8CVSS6.9AI score
Exploits0References6
OSV
OSV
•added 2023/11/17 9:38 p.m.•50 views

GHSA-RQ42-58QF-V3QX LibreNMS vulnerable to rate limiting bypass on login page

Summary Application is using two login methods and one of them is using GET request for authentication. There is no rate limiting security feature at GET request or backend is not validating that. PoC Go to /?username=admin&password=password&submit= Capture request in Burpsuite intruder and add...

5.3CVSS6.5AI score0.00599EPSS
Exploits1References6
OSV
OSV
•added 2023/11/09 9:30 p.m.•50 views

GHSA-5CVX-CWPX-9RJH Moodle Code Injection vulnerability

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user who also has direct access to the web server outside of the Moodle webroot could utilise a local file include to achieve remote code execution...

6.5CVSS8.1AI score0.0137EPSS
Exploits0References6
OSV
OSV
•added 2023/11/07 12:0 a.m.•50 views

ALSA-2023:6474 Moderate: podman security, bug fix, and enhancement update

The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes. Security Fixes: golang: html/template: improper handling of JavaScript whitespace CVE-2023-24540 net/http...

9.8CVSS8.2AI score0.04561EPSS
Exploits1References28
OSV
OSV
•added 2023/11/07 12:0 a.m.•50 views

ALSA-2023:6615 Moderate: python-cryptography security update

The python-cryptography packages contain a Python Cryptographic Authority's PyCA's cryptography library, which provides cryptographic primitives and recipes to Python developers. Security Fixes: python-cryptography: memory corruption via immutable objects CVE-2023-23931 For more details about the...

6.5CVSS6.8AI score0.01301EPSS
Exploits1References4
OSV
OSV
•added 2023/11/06 7:32 a.m.•50 views

BIT-2020-2574

Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.6.46 and prior, 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise...

5.9CVSS5.9AI score0.03485EPSS
Exploits0References7Affected Software1
OSV
OSV
•added 2023/10/26 6:15 p.m.•50 views

CVE-2023-31419

A flaw was discovered in Elasticsearch, affecting the search API that allowed a specially crafted query string to cause a Stack Overflow and ultimately a Denial of Service...

7.5CVSS6.5AI score
Exploits0References3
OSV
OSV
•added 2023/10/23 12:0 a.m.•50 views

ALSA-2023:5989 Important: varnish security update

Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and over again, giving the website a significant speed up. Security Fixes: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rap...

7.5CVSS8.3AI score0.99999EPSS
Exploits19References4
OSV
OSV
•added 2023/10/19 6:17 a.m.•50 views

BIT-2023-45348

Apache Airflow, versions 2.7.0 and 2.7.1, is affected by a vulnerability that allows an authenticated user to retrieve sensitive configuration information when the "exposeconfig" option is set to "non-sensitive-only". The exposeconfig option is False by default.It is recommended to upgrade to a...

4.3CVSS6.5AI score0.01232EPSS
Exploits0References2Affected Software1
OSV
OSV
•added 2023/10/18 4:15 a.m.•50 views

CVE-2023-38546

This flaw allows an attacker to insert cookies at will into a running program using libcurl, if the specific series of conditions are met. libcurl performs transfers. In its API, an application creates "easy handles" that are the individual handles for single transfers. libcurl provides a functio...

3.7CVSS7.3AI score0.06208EPSS
Exploits0References11
OSV
OSV
•added 2023/10/17 2:21 p.m.•50 views

GHSA-RC4V-99CR-PJCM Prototype Pollution in ali-security/mongoose

Impact This vulnerability causes a Prototype Pollution in document.js, through functions such as findByIdAndUpdate. For applications using Express and EJS, this can potentially allow remote code execution. Patches The original patched version for mongoose 5.3.3 did not include a fix for...

10CVSS8.3AI score
Exploits0References4
OSV
OSV
•added 2023/10/13 12:0 a.m.•50 views

DLA-3617-1 tomcat9 - security update

Bulletin has no description...

7.5CVSS8.2AI score0.99999EPSS
Exploits22
OSV
OSV
•added 2023/10/10 10:22 p.m.•50 views

GHSA-XPW8-RCWV-8F8P io.netty:netty-codec-http2 vulnerable to HTTP/2 Rapid Reset Attack

A client might overload the server by issue frequent RST frames. This can cause a massive amount of load on the remote system and so cause a DDOS attack. Impact This is a DDOS attack, any http2 server is affected and so you should update as soon as possible. Patches This is patched in version...

7.5CVSS7.9AI score0.99999EPSS
Exploits19References6
OSV
OSV
•added 2023/08/01 12:0 a.m.•50 views

ASB-A-250574778

In processMessageImpl of ClientModeImpl.java, there is a possible credential disclosure in the TOFU flow due to a logic error in the code. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

9.8CVSS9.2AI score0.00639EPSS
Exploits0References4
OSV
OSV
•added 2023/07/05 10:15 p.m.•50 views

PYSEC-2023-107

Fides is an open-source privacy engineering platform for managing the fulfillment of data privacy requests in a runtime environment, and the enforcement of privacy regulations in code. A path traversal directory traversal vulnerability affects fides versions lower than version 2.15.1, allowing...

7.5CVSS7AI score0.0109EPSS
Exploits0References3
OSV
OSV
•added 2023/06/26 4:53 p.m.•50 views

GO-2023-1832 Verification bypass in github.com/notaryproject/notation-go

An attacker who controls or compromises a registry can lead a user to verify the wrong artifact...

8.8CVSS8.4AI score0.00354EPSS
Exploits0References4
OSV
OSV
•added 2023/05/01 12:0 a.m.•50 views

ASB-A-175190844

In multiple buttons of grantpermissions.xml, there is a possible way to bypass permissions dialogs due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

6.8AI score
Exploits0References2
OSV
OSV
•added 2023/04/20 9:18 p.m.•50 views

GHSA-QRGF-9GPC-VRXW Bypass of CSRF protection in the presence of predictable userInfo

Description The CSRF protection enforced by the @fastify/csrf-protection library in combination with @fastify/cookie can be bypassed from network and same-site attackers under certain conditions. @fastify/csrf-protection supports an optional userInfo parameter that binds the CSRF token to the use...

5.3CVSS5.7AI score0.00829EPSS
Exploits0References8
OSV
OSV
•added 2023/02/28 12:0 a.m.•50 views

ALSA-2023:0970 Moderate: httpd security and bug fix update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: moddav: out-of-bounds read/write of zero byte CVE-2006-20001 httpd: modproxyajp: Possible request smuggling CVE-2022-36760 httpd: modproxy: HTTP response splitting...

9CVSS7.8AI score0.57941EPSS
Exploits0References8
OSV
OSV
•added 2023/01/30 12:0 a.m.•50 views

DLA-3293-1 modsecurity-crs - security update

Bulletin has no description...

9.8CVSS8.5AI score0.01672EPSS
Exploits3
OSV
OSV
•added 2022/12/22 3:33 a.m.•50 views

GHSA-HJRF-2M68-5959 jsonwebtoken's insecure implementation of key retrieval function could lead to Forgeable Public/Private Tokens from RSA to HMAC

Overview Versions =8.5.1 of jsonwebtoken library can be misconfigured so that passing a poorly implemented key retrieval function referring to the secretOrPublicKey argument from the readme link will result in incorrect verification of tokens. There is a possibility of using a different algorithm...

5CVSS6.2AI score0.00753EPSS
Exploits0References6
OSV
OSV
•added 2022/12/07 6:45 p.m.•50 views

GO-2022-1113 Server-side request forgery in github.com/oam-dev/kubevela

When using Helm Chart as the component delivery method, the request address of the warehouse is not restricted, and there is a blind SSRF vulnerability...

6.5CVSS5.6AI score0.00376EPSS
Exploits0References2
OSV
OSV
•added 2022/10/31 12:0 a.m.•50 views

DLA-3173-1 linux-5.10 - security update

Bulletin has no description...

8.8CVSS7.7AI score0.03763EPSS
Exploits16
OSV
OSV
•added 2022/10/21 8:29 p.m.•50 views

GHSA-X459-P2RX-F8FF .NET Denial of Service Vulnerability

Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 6.0 and .NET 5.0. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability. A Denial of Service vulnerability exists in .NET 6.0 and...

7.5CVSS7.4AI score0.03739EPSS
Exploits0References8
OSV
OSV
•added 2022/10/04 2:32 p.m.•50 views

RLSA-2022:6778 Important: bind security update

The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server is operating correctly. Security Fixes:...

7.5CVSS7.6AI score0.02299EPSS
Exploits0References3
OSV
OSV
•added 2022/09/19 5:15 p.m.•50 views

CVE-2022-40468

Potential leak of left-over heap data if custom error page templates containing special non-standard variables are used. Tinyproxy commit 84f203f and earlier use uninitialized buffers in processrequest function...

7.5CVSS3.2AI score
Exploits0References6
OSV
OSV
•added 2022/08/11 12:0 a.m.•50 views

DLA-3072-1 postgresql-11 - security update

Bulletin has no description...

8CVSS7.6AI score0.0152EPSS
Exploits0
OSV
OSV
•added 2022/08/03 6:15 a.m.•50 views

CVE-2022-35737

SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to a C API...

7.5CVSS3.2AI score
Exploits0References6
OSV
OSV
•added 2022/06/28 2:20 a.m.•50 views

GSD-2022-2274 heap buffer overflow in OpenSSL version 3.0.4

In OpenSSL version 3.0.4 a heap buffer overflow exists in the AVX512 support that can be attacked via network resulting in code execution. This is reachable via four code paths: RSAZ 1024, RSAZ 512, Dual 1024 RSAZ, and Default constant-time Montgomery modular exponentiation. Please note this issu...

9.3AI score
Exploits0References6
OSV
OSV
•added 2022/06/22 12:0 a.m.•50 views

GHSA-PM37-5J5M-6CVW Cross-site Scripting in NukeViet CMS

There is a Cross Site Scripting Stored XSS vulnerability in NukeViet CMS before 4.5.02...

5.4CVSS5.2AI score0.00772EPSS
Exploits1References4
OSV
OSV
•added 2022/05/24 7:1 p.m.•50 views

GHSA-4MGV-M5CM-F9H7 Vault GitHub Action did not correctly mask multi-line secrets in output

HashiCorp vault-action aka Vault GitHub Action before 2.2.0 allows attackers to obtain sensitive information from log files because a multi-line secret was not correctly registered with GitHub Actions for log masking. The vault-action implementation did not correctly handle the marking of...

7.5CVSS7.3AI score0.0188EPSS
Exploits1References7
OSV
OSV
•added 2022/05/24 5:25 p.m.•51 views

GHSA-5C4V-VH95-C67C Jenkins Email Extension Plugin SMTP password transmitted and displayed in plain text

Email Extension Plugin stores an SMTP password in its global configuration file hudson.plugins.emailext.ExtendedEmailPublisher.xml on the Jenkins controller as part of its configuration. While this password is stored encrypted on disk, it is transmitted and displayed in plain text as part of the...

3.7CVSS7.6AI score0.00755EPSS
Exploits0References5
OSV
OSV
•added 2022/05/24 4:59 p.m.•50 views

GHSA-HHG2-G6H6-C266 Yii SQL injection vulnerability

The findByCondition function in framework/db/ActiveRecord.php in Yii 2.x before 2.0.15 allows remote attackers to conduct SQL injection attacks via a findOne or findAll call, unless a developer recognizes an undocumented need to sanitize array input...

9.8CVSS9AI score0.01363EPSS
Exploits0References4
OSV
OSV
•added 2022/05/18 6:23 p.m.•50 views

GO-2022-0273 Panic due to crafted inputs in archive/zip

The NewReader and OpenReader functions in archive/zip can cause a panic or an unrecoverable fatal error when reading an archive that claims to contain a large number of files, regardless of its actual size. This is caused by an incomplete fix for CVE-2021-33196...

7.5CVSS7.8AI score0.06934EPSS
Exploits0References4
OSV
OSV
•added 2022/05/18 12:0 a.m.•50 views

GHSA-X454-72FX-69Q3 Missing permission check in Jenkins SSH Plugin

A missing permission check in Jenkins SSH Plugin 2.6.1 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins...

4.3CVSS4.7AI score0.00684EPSS
Exploits0References4
OSV
OSV
•added 2022/05/14 4:1 a.m.•50 views

GHSA-594H-CX6W-P4JF Typo3 Host Header Spoofing Vulnerability

TYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, 6.1.0 before 6.1.9, and 6.2.0 before 6.2.3 allows remote attackers to have unspecified impact via a crafted HTTP Host header, related to "Host Spoofing."...

5CVSS5.3AI score0.02662EPSS
Exploits0References9
OSV
OSV
•added 2022/05/14 1:38 a.m.•50 views

GHSA-95Q3-PPPP-R683 Crash when decoding malformed HTTP requests or malformed JSON payload

When parsing a malformed JSON payload, libprocess in Apache Mesos versions 1.4.0 to 1.5.0 might crash due to an uncaught exception. Parsing chunked HTTP requests with trailers can lead to a libprocess crash too because of the mistakenly planted assertion. A malicious actor can therefore cause a...

7.5CVSS7.2AI score0.03674EPSS
Exploits0References2
OSV
OSV
•added 2022/05/14 1:10 a.m.•50 views

GHSA-8QQ4-8JVQ-MFW4 Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat

When using a VirtualDirContext with Apache Tomcat 7.0.0 to 7.0.80 it was possible to bypass security constraints and/or view the source code of JSPs for resources served by the VirtualDirContext using a specially crafted request...

7.5CVSS6.5AI score0.708EPSS
Exploits4References14
OSV
OSV
•added 2022/05/14 1:8 a.m.•50 views

GHSA-9J7M-RJQX-48VH RubyGems Regular Expression Denial of Service vulnerability

Algorithmic complexity vulnerability in Gem::Version::VERSIONPATTERN in lib/rubygems/version.rb in RubyGems before 1.8.23.1, 1.8.24 through 1.8.25, 2.0.x before 2.0.8, and 2.1.x before 2.1.0, as used in Ruby 1.9.0 through 2.0.0p247, allows remote attackers to cause a denial of service CPU...

4.3CVSS5.4AI score0.03343EPSS
Exploits0References15
OSV
OSV
•added 2022/05/05 2:48 a.m.•50 views

GHSA-XC85-32MF-XPV8 Rack arbitrary code execution via timing attack

Rack::Session::Cookie in Rack 1.5.x before 1.5.2, 1.4.x before 1.4.5, 1.3.x before 1.3.10, 1.2.x before 1.2.8, and 1.1.x before 1.1.6 allows remote attackers to guess the session cookie, gain privileges, and execute arbitrary code via a timing attack involving an HMAC comparison function that doe...

5.1CVSS9.6AI score0.05281EPSS
Exploits0References14
OSV
OSV
•added 2022/04/18 12:0 a.m.•50 views

DSA-5122-1 gzip - security update

Bulletin has no description...

8.8CVSS8.5AI score0.04271EPSS
Exploits0
OSV
OSV
•added 2022/04/13 12:0 a.m.•50 views

GHSA-5PV7-HX9M-8JH3 Missing permission checks in Jenkins Publish Over FTP Plugin

Missing permission checks in Jenkins Publish Over FTP Plugin prior to 1.17 allow attackers with Overall/Read permission to connect to an FTP server using attacker-specified credentials...

4.3CVSS4.7AI score0.0072EPSS
Exploits0References4
OSV
OSV
•added 2022/04/10 12:0 a.m.•50 views

DSA-5118-1 thunderbird - security update

Bulletin has no description...

8.8CVSS7.5AI score0.1446EPSS
Exploits7
Total number of security vulnerabilities5000