Lucene search
K
OsvMost viewed

908419 matches found

OSV
OSV
•added 2020/01/29 12:0 a.m.•51 views

DLA-2085-1 zlib - security update

Bulletin has no description...

9.8CVSS8.5AI score0.07489EPSS
Exploits0
OSV
OSV
•added 2019/10/15 12:0 a.m.•51 views

DSA-4509-3 apache2 - security update

Bulletin has no description...

6.1CVSS7.4AI score0.81466EPSS
Exploits4
OSV
OSV
•added 2019/09/20 12:0 a.m.•51 views

DSA-4529-1 php7.0 - security update

Bulletin has no description...

9.8CVSS7.8AI score0.07031EPSS
Exploits6
OSV
OSV
•added 2019/08/24 12:0 a.m.•51 views

DLA-1896-1 commons-beanutils - security update

Bulletin has no description...

7.5CVSS7.5AI score0.28839EPSS
Exploits1
OSV
OSV
•added 2019/06/19 12:0 a.m.•51 views

DLA-1828-1 python-urllib3 - security update

Bulletin has no description...

6.1CVSS6.8AI score0.02056EPSS
Exploits1
OSV
OSV
•added 2019/06/18 4:36 p.m.•51 views

ALSA-2019:1529 Important: pki-deps:10.6 security update

The Public Key Infrastructure PKI Deps module contains fundamental packages required as dependencies for the pki-core module by AlmaLinux Certificate System. Security Fixes: tomcat: Due to a mishandling of close in NIO/NIO2 connectors user sessions can get mixed up CVE-2018-8037 tomcat: Insecure...

9.8CVSS7.2AI score0.94494EPSS
Exploits3References5
OSV
OSV
•added 2019/05/15 12:0 a.m.•51 views

DLA-1789-1 intel-microcode - security update

Bulletin has no description...

5.9CVSS6.7AI score0.01553EPSS
Exploits0
OSV
OSV
•added 2019/04/03 12:0 a.m.•51 views

DLA-1748-1 apache2 - security update

Bulletin has no description...

7.5CVSS6.8AI score0.1786EPSS
Exploits0
OSV
OSV
•added 2018/07/27 12:0 a.m.•51 views

DLA-1445-1 busybox - security update

Bulletin has no description...

9.8CVSS7.3AI score0.32919EPSS
Exploits17
OSV
OSV
•added 2018/03/29 7:29 a.m.•51 views

CVE-2018-7600

Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations...

9.8CVSS8.3AI score0.99993EPSS
Exploits46References21
OSV
OSV
•added 2018/03/12 9:29 p.m.•51 views

CVE-2016-9953

The verifycertificate function in lib/vtls/schannel.c in libcurl 7.30.0 through 7.51.0, when built for Windows CE using the schannel TLS backend, allows remote attackers to obtain sensitive information, cause a denial of service crash, or possibly have unspecified other impact via a wildcard...

9.8CVSS9.2AI score0.01831EPSS
Exploits0References2
OSV
OSV
•added 2017/11/17 5:29 a.m.•51 views

CVE-2017-1000158

CPython aka Python up to 2.7.13 is vulnerable to an integer overflow in the PyStringDecodeEscape function in stringobject.c, resulting in heap-based buffer overflow and possible arbitrary code execution...

9.8CVSS5.1AI score
Exploits0References9
OSV
OSV
•added 2017/09/20 12:0 a.m.•51 views

DSA-3980-1 apache2 - security update

Bulletin has no description...

7.5CVSS6.7AI score0.94999EPSS
Exploits9
OSV
OSV
•added 2017/08/04 12:0 a.m.•51 views

DSA-3925-1 qemu - security update

Bulletin has no description...

7.5CVSS6.5AI score0.04093EPSS
Exploits0
OSV
OSV
•added 2017/01/19 12:0 a.m.•51 views

DSA-3767-1 mysql-5.5 - security update

Bulletin has no description...

6.7CVSS6.3AI score0.04792EPSS
Exploits0
OSV
OSV
•added 2017/01/01 12:0 a.m.•51 views

DLA-772-1 linux - security update

Bulletin has no description...

10CVSS7.3AI score0.11127EPSS
Exploits25
OSV
OSV
•added 2016/12/20 10:59 p.m.•51 views

UBUNTU-CVE-2016-5303

Cross-site scripting XSS vulnerability in the Horde Text Filter API in Horde Groupware and Horde Groupware Webmail Edition before 5.2.16 allows remote attackers to inject arbitrary web script or HTML via crafted data:text/html content in a form 1 action or 2 xlink attribute...

6.1CVSS6.5AI score0.01509EPSS
Exploits0References6
OSV
OSV
•added 2016/12/18 12:0 a.m.•51 views

DSA-3738-1 tomcat7 - security update

Bulletin has no description...

9.8CVSS8.2AI score0.90338EPSS
Exploits7
OSV
OSV
•added 2016/09/23 12:0 a.m.•51 views

DSA-3673-2 openssl - regression update

Bulletin has no description...

6.8AI score
Exploits0
OSV
OSV
•added 2016/06/08 12:0 a.m.•51 views

DLA-508-1 expat - security update

Bulletin has no description...

7.8CVSS7AI score0.06539EPSS
Exploits0
OSV
OSV
•added 2016/05/05 1:59 a.m.•51 views

CVE-2016-2109

The asn1d2ireadbio function in crypto/asn1/ad2ifp.c in the ASN.1 BIO implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service memory consumption via a short invalid encoding...

7.5CVSS5.8AI score
Exploits0References55
OSV
OSV
•added 2015/11/10 12:0 a.m.•51 views

DSA-3396-1 linux - security update

Bulletin has no description...

5.9CVSS7.4AI score0.00675EPSS
Exploits1
OSV
OSV
•added 2015/06/07 12:0 a.m.•51 views

DSA-3280-1 php5 - security update

Bulletin has no description...

7.5CVSS7.7AI score0.50129EPSS
Exploits7
OSV
OSV
•added 2015/05/06 12:0 a.m.•51 views

DSA-3252-1 sqlite3 - security update

Bulletin has no description...

7.5CVSS7.6AI score0.05531EPSS
Exploits0
OSV
OSV
•added 2015/04/29 12:0 a.m.•51 views

DLA-212-1 php5 - security update

Bulletin has no description...

7.5CVSS7.8AI score0.38434EPSS
Exploits12
OSV
OSV
•added 2015/03/18 12:0 a.m.•51 views

DSA-3195-1 php5 - security update

Bulletin has no description...

7.5CVSS7.5AI score0.42593EPSS
Exploits18
OSV
OSV
•added 2014/07/31 12:0 a.m.•51 views

DLA-17-1 tor - new upstream version

Bulletin has no description...

5.8CVSS7.4AI score0.03146EPSS
Exploits0
OSV
OSV
•added 2013/02/13 12:0 a.m.•51 views

DSA-2622-1 polarssl - several

Bulletin has no description...

4.3CVSS6.6AI score0.35584EPSS
Exploits1
OSV
OSV
•added 2011/12/18 12:0 a.m.•51 views

DSA-2365-1 dtc - several

Bulletin has no description...

6.5CVSS6AI score0.01555EPSS
Exploits0
OSV
OSV
•added 2011/11/07 12:0 a.m.•51 views

DSA-2340-1 postgresql - weak password hashing

Bulletin has no description...

5CVSS7.2AI score0.04972EPSS
Exploits0
OSV
OSV
•added 2011/05/10 12:0 a.m.•51 views

DSA-2235-1 icedove - several

Bulletin has no description...

10CVSS9.7AI score0.73655EPSS
Exploits19
OSV
OSV
•added 2010/11/01 12:0 a.m.•51 views

DSA-2123-1 nss - cryptographic weaknesses

Bulletin has no description...

7.5CVSS8.8AI score0.02408EPSS
Exploits0
OSV
OSV
•added 2009/11/05 12:0 a.m.•51 views

DSA-1928-1 linux-2.6.24 - several vulnerabilities

Bulletin has no description...

7.8CVSS7AI score0.12461EPSS
Exploits32
OSV
OSV
•added 2009/10/22 12:0 a.m.•51 views

DSA-1915-1 linux-2.6 - several vulnerabilities

Bulletin has no description...

7.8CVSS7AI score0.12461EPSS
Exploits20
OSV
OSV
•added 2009/05/05 12:0 a.m.•51 views

DSA-1790-1 xpdf - multiple vulnerabilities

Bulletin has no description...

10CVSS7.7AI score0.07347EPSS
Exploits1
OSV
OSV
•added 2008/09/11 12:0 a.m.•51 views

DSA-1636-1 linux-2.6.24 - several vulnerabilities

Bulletin has no description...

9.3CVSS6AI score0.04353EPSS
Exploits12
OSV
OSV
•added 2008/08/21 12:0 a.m.•51 views

DSA-1630-1 fai-kernels linux-2.6 user-mode-linux - several vulnerabilities

Bulletin has no description...

7.8CVSS6.7AI score0.02452EPSS
Exploits11
OSV
OSV
•added 2007/04/26 12:0 a.m.•51 views

DSA-1282-1 php4

Bulletin has no description...

7.8CVSS7.7AI score0.40435EPSS
Exploits12
OSV
OSV
•added 2006/05/20 12:0 a.m.•51 views

DSA-1069-1 kernel-source-2.4.18 - several

Bulletin has no description...

10CVSS6.1AI score0.04078EPSS
Exploits8
OSV
OSV
•added 2005/09/19 12:0 a.m.•51 views

DSA-816-1 xfree86 - integer overflow

Bulletin has no description...

5.1CVSS6.2AI score0.03923EPSS
Exploits0
OSV
OSV
•added 2005/02/04 12:0 a.m.•51 views

DSA-667-1 squid - several

Bulletin has no description...

10CVSS6AI score0.40977EPSS
Exploits0
OSV
OSV
•added 2025/10/29 3:38 p.m.•50 views

GHSA-C2JP-C369-7PVX FastMCP Auth Integration Allows for Confused Deputy Account Takeover

Summary FastMCP documentation covers the scenario where it is possible to use Entra ID or other providers for authentication. In this context, because Entra ID does not support Dynamic Client Registration DCR, the FastMCP-hosted MCP server is acting as the authorization provider, as declared in t...

7.3CVSS5.9AI score
Exploits0References2
OSV
OSV
•added 2025/07/17 8:9 a.m.•50 views

BIT-TOMCAT-2024-23672 Apache Tomcat: WebSocket DoS with incomplete closing handshake

Denial of Service via incomplete cleanup vulnerability in Apache Tomcat. It was possible for WebSocket clients to keep WebSocket connections open leading to increased resource consumption.This issue affects Apache Tomcat: from 11.0.0 through 11.0.0, from 10.1.0 through 10.1.18, from 9.0.0 through...

6.3CVSS6.6AI score0.02313EPSS
Exploits0References7
OSV
OSV
•added 2025/06/01 12:0 a.m.•50 views

ASB-A-388828203

In multiple functions of LocationProviderManager.java, there is a possible background activity launch due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7AI score0.00086EPSS
Exploits0References2
OSV
OSV
•added 2025/06/01 12:0 a.m.•50 views

ASB-A-387498139

In multiple locations, there is a possible permanent denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS6.6AI score0.00076EPSS
Exploits0References2
OSV
OSV
•added 2025/03/21 9:42 p.m.•50 views

CVE-2025-30204 jwt-go allows excessive memory allocation during header parsing

golang-jwt is a Go implementation of JSON Web Tokens. Starting in version 3.2.0 and prior to versions 5.2.2 and 4.5.2, the function parse.ParseUnverified splits via a call to strings.Split its argument which is untrusted data on periods. As a result, in the face of a malicious request whose...

7.5CVSS6.5AI score0.00693EPSS
Exploits0References6
OSV
OSV
•added 2024/10/02 12:13 a.m.•50 views

RHSA-2023:1325 Red Hat Security Advisory: OpenShift Container Platform 4.13.0 security update

Bulletin has no description...

8.2CVSS8.6AI score0.05623EPSS
Exploits1References84
OSV
OSV
•added 2024/10/01 5:13 p.m.•50 views

RHSA-2019:4126 Red Hat Security Advisory: httpd24-httpd security, bug fix, and enhancement update

Bulletin has no description...

7.1CVSS7AI score0.81466EPSS
Exploits4References36
OSV
OSV
•added 2024/09/30 2:43 p.m.•50 views

RHSA-2023:1744 Red Hat Security Advisory: rh-nodejs14-nodejs security, bug fix, and enhancement update

Bulletin has no description...

8.6CVSS7AI score0.24928EPSS
Exploits3References27
OSV
OSV
•added 2024/09/16 2:9 a.m.•50 views

RHBA-2019:0326 Red Hat Bug Fix Advisory: OpenShift Container Platform 3.11 bug fix update

Bulletin has no description...

8.8CVSS6.4AI score0.98428EPSS
Exploits17References106
Total number of security vulnerabilities5000