Lucene search
K
OsvMost viewed

909148 matches found

OSV
OSV
•added 2022/04/20 12:21 p.m.•49 views

RLSA-2022:1445 Important: java-17-openjdk security and bug fix update

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fixes: OpenJDK: Improper ECDSA signature verification Libraries, 8277233 CVE-2022-21449 OpenJDK: Defective secure validation in Apache Santuario Libraries, 82780...

7.5CVSS6.9AI score0.48235EPSS
Exploits6References9
OSV
OSV
•added 2022/04/18 7:15 p.m.•49 views

PYSEC-2022-194

PyPDF2 is an open source python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. In versions prior to 1.27.5 an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop if the PyPDF2 if the code attempts to get the content...

6.2CVSS2.7AI score0.01317EPSS
Exploits1References4
OSV
OSV
•added 2022/03/03 8:28 p.m.•49 views

GHSA-FMX4-26R3-WXPF Integer overflow in cmark-gfm table parsing extension leads to heap memory corruption

Impact CommonMarker uses cmark-gfm for rendering Github Flavored Markdown. An integer overflow in cmark-gfm's table row parsing may lead to heap memory corruption when parsing tables who's marker rows contain more than UINT16MAX columns. The impact of this heap corruption ranges from Information...

8.8CVSS9.2AI score0.0145EPSS
Exploits0References6
OSV
OSV
•added 2022/02/15 1:57 a.m.•49 views

GHSA-RGJG-66CX-5X9M Grafana Authentication Bypass

Grafana before 4.6.4 and 5.x before 5.2.3 allows authentication bypass because an attacker can generate a valid "remember me" cookie knowing only a username of an LDAP or OAuth user. Specific Go Packages Affected github.com/grafana/grafana/pkg/api...

9.8CVSS9.5AI score0.64284EPSS
Exploits0References7
OSV
OSV
•added 2022/01/08 12:22 a.m.•49 views

GHSA-WXGW-QJ99-44C2 Prototype Pollution in node-forge util.setPath API

Impact forge.util.setPath had a potential prototype pollution issue if called with untrusted keys. This API was not used by forge itself. Patches The forge.util.setPath API and related functions were removed in 0.10.0. Workarounds Don't call forge.util.setPath directly or indirectly with untruste...

8.2AI score
Exploits0References1
OSV
OSV
•added 2021/11/30 12:0 a.m.•49 views

DSA-5015-1 samba - security update

Bulletin has no description...

8.5CVSS7.2AI score0.01612EPSS
Exploits0
OSV
OSV
•added 2021/10/01 12:0 a.m.•49 views

ASB-A-169505929

In ibprctlset of bugs.c, there is a possible way to re-enable indirect branch speculation due to a permissions bypass. This could lead to local information disclosure via a Spectre v2 attack with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS6AI score0.00397EPSS
Exploits0References2
OSV
OSV
•added 2021/09/23 12:0 a.m.•49 views

DLA-2765-1 mupdf - security update

Bulletin has no description...

7.8CVSS5.7AI score0.068EPSS
Exploits7
OSV
OSV
•added 2021/09/16 3:15 p.m.•49 views

CVE-2021-34798

Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier...

7.5CVSS1AI score
Exploits0References17
OSV
OSV
•added 2021/09/08 2:15 p.m.•49 views

CVE-2021-28701

Another race in XENMAPSPACEgranttable handling Guests are permitted access to certain Xen-owned pages of memory. The majority of such pages remain allocated / associated with a guest for its entire lifetime. Grant table v2 status pages, however, are de-allocated when a guest switches back from v2...

7.8CVSS1.4AI score
Exploits0References8
OSV
OSV
•added 2021/08/25 8:54 p.m.•49 views

GHSA-8HFJ-XRJ2-PM22 Certificate check bypass in openssl-src

The X509VFLAGX509STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an...

7.4CVSS7.5AI score0.18339EPSS
Exploits1References27
OSV
OSV
•added 2021/08/03 2:56 a.m.•49 views

UVI-2021-1001489 udf: Fix NULL pointer dereference in udf_symlink function

udf: Fix NULL pointer dereference in udfsymlink function This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.4.276 by commit...

7.2AI score
Exploits0
OSV
OSV
•added 2021/08/01 12:0 a.m.•49 views

ASB-A-171705902

In fixuppistateowner of futex.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS8.2AI score0.01377EPSS
Exploits1References2
OSV
OSV
•added 2021/07/30 10:15 p.m.•49 views

PYSEC-2021-875

The module AccessControl defines security policies for Python code used in restricted code within Zope applications. Restricted code is any code that resides in Zope's object database, such as the contents of Script Python objects. The policies defined in AccessControl severely restrict access to...

7.5CVSS7.3AI score0.02277EPSS
Exploits0References3
OSV
OSV
•added 2021/07/28 12:0 a.m.•49 views

DSA-4945-1 webkit2gtk - security update

Bulletin has no description...

9.3CVSS7.5AI score0.03692EPSS
Exploits5
OSV
OSV
•added 2021/07/20 1:30 p.m.•49 views

ALSA-2021:2714 Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: sizet-to-int conversion vulnerability in the filesystem layer CVE-2021-33909 kernel: race condition for removal of the HCI controller CVE-2021-32399 For more details about the security...

7.8CVSS7.5AI score0.09729EPSS
Exploits7References2
OSV
OSV
•added 2021/07/20 12:0 a.m.•49 views

DLA-2713-1 linux - security update

Bulletin has no description...

7.8CVSS6.8AI score0.09729EPSS
Exploits9
OSV
OSV
•added 2021/07/13 5:15 p.m.•49 views

PYSEC-2021-331

Pillow through 8.2.0 and PIL aka Python Imaging Library through 1.1.7 allow an attacker to pass controlled parameters directly into a convert function to trigger a buffer overflow in Convert.c...

9.8CVSS5.7AI score0.03162EPSS
Exploits0References6
OSV
OSV
•added 2021/06/16 5:31 p.m.•49 views

GHSA-GQ67-PP9W-43GP Cryptographically weak CSRF tokens in Apache MyFaces

In the default configuration, Apache MyFaces Core versions 2.2.0 to 2.2.13, 2.3.0 to 2.3.7, 2.3-next-M1 to 2.3-next-M4, and 3.0.0-RC1 use cryptographically weak implicit and explicit cross-site request forgery CSRF tokens. Due to that limitation, it is possible although difficult for an attacker ...

7.5CVSS7.5AI score0.03026EPSS
Exploits3References7
OSV
OSV
•added 2021/05/06 12:0 a.m.•49 views

PSF-2021-2 ipaddress leading zeros in IPv4 address

In Python before 3,9,5, the ipaddress library mishandles leading zero characters in the octets of an IP address string. This in some situations allows attackers to bypass access control that is based on IP addresses...

9.8CVSS9.5AI score0.06827EPSS
Exploits1References1
OSV
OSV
•added 2021/04/29 9:51 p.m.•49 views

GHSA-867Q-77CC-98MV Creation of Temporary File in Directory with Insecure Permissions in the OpenAPI Generator Maven plugin

Impact Using File.createTempFile in JDK will result in creating and using insecure temporary files that can leave application and system data vulnerable to attacks. This vulnerability only impacts unix-like systems where the local system temporary directory is shared between all users. This...

4CVSS3.7AI score0.00296EPSS
Exploits0References4
OSV
OSV
•added 2021/04/27 12:0 a.m.•49 views

DSA-4906-1 chromium - security update

Bulletin has no description...

9.6CVSS7.8AI score0.57736EPSS
Exploits2
OSV
OSV
•added 2021/04/14 8:4 p.m.•49 views

GO-2020-0033 Path Traversal in aahframe.work

Due to improper sanitization of user input, HTTPEngine.Handle allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read...

7.5CVSS7.3AI score0.01143EPSS
Exploits0References3
OSV
OSV
•added 2021/04/01 12:0 a.m.•49 views

ASB-A-174737742

In blkdevget of blockdev.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.2CVSS7.5AI score0.00928EPSS
Exploits1References2
OSV
OSV
•added 2021/03/27 12:0 a.m.•49 views

DSA-4877-1 webkit2gtk - security update

Bulletin has no description...

9.8CVSS7.2AI score0.14542EPSS
Exploits1
OSV
OSV
•added 2021/03/25 12:0 a.m.•49 views

DSA-4876-1 thunderbird - security update

Bulletin has no description...

9.8CVSS7.8AI score0.01404EPSS
Exploits2
OSV
OSV
•added 2021/03/04 12:0 p.m.•49 views

RUSTSEC-2021-0035 `quinn` invalidly assumes the memory layout of std::net::SocketAddr

The quinn crate has assumed std::net::SocketAddrV4 and std::net::SocketAddrV6 have the same memory layout as the system C representation sockaddr. It has simply casted the pointers to convert the socket addresses to the system representation. The standard library does not say anything about the...

7.5CVSS7.4AI score0.0125EPSS
Exploits0References3
OSV
OSV
•added 2021/02/17 12:0 p.m.•49 views

RUSTSEC-2021-0043 PartialReader passes uninitialized memory to user-provided Read

Affected versions of this crate passed an uniniitalized buffer to a user-provided Read instance in PartialReader::read. This can result in safe Read implementations reading from the uninitialized buffer leading to undefined behavior. The flaw was fixed in commit 39d62c6 by zero-initializing the...

7.3CVSS7.1AI score0.009EPSS
Exploits1References3
OSV
OSV
•added 2021/01/03 12:0 p.m.•49 views

RUSTSEC-2021-0084 `Read` on uninitialized buffer can cause UB (impl of `ReadKVExt`)

Affected versions of this crate passes an uninitialized buffer to a user-provided Read implementation. Arbitrary Read implementations can read from the uninitialized buffer memory exposure and also can return incorrect number of bytes written to the buffer. Reading from uninitialized memory...

9.8CVSS9.4AI score0.01191EPSS
Exploits0References3
OSV
OSV
•added 2020/12/07 8:15 p.m.•49 views

CVE-2020-29600

In AWStats through 7.7, cgi-bin/awstats.pl?config= accepts an absolute pathname, even though it was intended to only read a file in the /etc/awstats/awstats.conf format. NOTE: this issue exists because of an incomplete fix for CVE-2017-1000501...

9.8CVSS6.5AI score
Exploits0References4
OSV
OSV
•added 2020/11/09 1:15 a.m.•49 views

CVE-2020-24400

Magento versions 2.4.0 and 2.3.5 and earlier are affected by an SQL Injection vulnerability that could lead to sensitive information disclosure. This vulnerability could be exploited by an authenticated user with permissions to the product listing page to read data from the database...

7.1CVSS6.7AI score
Exploits0References1
OSV
OSV
•added 2020/11/03 12:24 p.m.•49 views

RLSA-2020:4659 Moderate: gd security update

GD is an open source code library for the dynamic creation of images by programmers. GD creates PNG, JPEG, GIF, WebP, XPM, BMP images, among other formats. Security Fixes: gd: Heap-based buffer overflow in gdImageColorMatch in gdcolormatch.c CVE-2019-6977 gd: NULL pointer dereference in...

7.4CVSS8.7AI score0.65116EPSS
Exploits7References4
OSV
OSV
•added 2020/11/01 12:0 a.m.•49 views

ASB-A-161812320

In the AIBinderClass constructor of ibinder.cpp, there is a possible arbitrary code execution due to uninitialized data. This could lead to local escalation of privilege if a process were using libbinderndk in a vulnerable way with no additional execution privileges needed. User interaction is no...

7.8CVSS8AI score0.00164EPSS
Exploits0References2
OSV
OSV
•added 2020/09/21 12:0 a.m.•49 views

DLA-2376-1 qtbase-opensource-src - security update

Bulletin has no description...

5.5CVSS6AI score0.03915EPSS
Exploits1
OSV
OSV
•added 2020/09/08 8:38 a.m.•49 views

RLSA-2020:3662 Moderate: php:7.3 security, bug fix, and enhancement update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later upstream version: php 7.3.20. BZ1856655 Security Fixes: php: Out-of-bounds read due to integer overflow in iconvmimedecodeheaders CVE-2019-11039 php: Buffer...

8.8CVSS8.7AI score0.08888EPSS
Exploits19References23
OSV
OSV
•added 2020/08/24 12:0 a.m.•49 views

DLA-2342-1 libjackson-json-java - security update

Bulletin has no description...

9.8CVSS9AI score0.37925EPSS
Exploits7
OSV
OSV
•added 2020/08/07 4:15 p.m.•49 views

CVE-2020-11993

Apache HTTP Server versions 2.4.20 to 2.4.43 When trace/debug was enabled for the HTTP/2 module and on certain traffic edge patterns, logging statements were made on the wrong connection, causing concurrent use of memory pools. Configuring the LogLevel of modhttp2 above "info" will mitigate this...

7.5CVSS6.7AI score0.58716EPSS
Exploits2References26
OSV
OSV
•added 2020/06/19 12:0 a.m.•49 views

DSA-4707-1 mutt - security update

Bulletin has no description...

5.9CVSS6AI score0.02288EPSS
Exploits0
OSV
OSV
•added 2020/06/09 12:0 a.m.•49 views

DLA-2241-1 linux - security update

Bulletin has no description...

7.8CVSS7.9AI score0.10114EPSS
Exploits18
OSV
OSV
•added 2020/05/20 3:55 p.m.•49 views

GHSA-GG84-QGV9-W4PQ CRLF injection in httplib2

Impact Attacker controlling unescaped part of uri for httplib2.Http.request could change request headers and body, send additional hidden requests to same server. Impacts software that uses httplib2 with uri constructed by string concatenation, as opposed to proper urllib building with escaping...

6.8CVSS6.7AI score0.02593EPSS
Exploits0References14
OSV
OSV
•added 2020/03/20 12:0 a.m.•49 views

DSA-4643-1 python-bleach - security update

Bulletin has no description...

6.1CVSS6.3AI score0.01301EPSS
Exploits1
OSV
OSV
•added 2020/02/24 10:15 p.m.•49 views

CVE-2020-1935

In Apache Tomcat 9.0.0.M1 to 9.0.30, 8.5.0 to 8.5.50 and 7.0.0 to 7.0.99 the HTTP header parsing code used an approach to end-of-line parsing that allowed some invalid HTTP headers to be parsed as valid. This led to a possibility of HTTP Request Smuggling if Tomcat was located behind a reverse...

4.8CVSS6.2AI score
Exploits0References19
OSV
OSV
•added 2020/01/14 8:15 p.m.•49 views

PYSEC-2020-175

In PyInstaller before version 3.6, only on Windows, a local privilege escalation vulnerability is present in this particular case: If a software using PyInstaller in "onefile" mode is launched by a privileged user at least more than the current one which have his "TempPath" resolving to a world...

7.8CVSS1.7AI score0.00689EPSS
Exploits1References1
OSV
OSV
•added 2019/12/23 5:15 p.m.•49 views

CVE-2019-17563

When using FORM authentication with Apache Tomcat 9.0.0.M1 to 9.0.29, 8.5.0 to 8.5.49 and 7.0.0 to 7.0.98 there was a narrow window where an attacker could perform a session fixation attack. The window was considered too narrow for an exploit to be practical but, erring on the side of caution, th...

7.5CVSS8.1AI score
Exploits0References19
OSV
OSV
•added 2019/12/19 12:0 a.m.•49 views

DLA-2043-1 gdk-pixbuf - security update

Bulletin has no description...

8.8CVSS6.7AI score0.03855EPSS
Exploits6
OSV
OSV
•added 2019/11/13 12:0 a.m.•49 views

DSA-4565-1 intel-microcode - security update

Bulletin has no description...

6.5CVSS6.7AI score0.03133EPSS
Exploits0
OSV
OSV
•added 2019/11/12 12:0 a.m.•49 views

DSA-4563-1 webkit2gtk - security update

Bulletin has no description...

9.3CVSS8.3AI score0.02542EPSS
Exploits0
OSV
OSV
•added 2019/07/17 1:15 p.m.•49 views

CVE-2019-13272

In the Linux kernel before 5.1.17, ptracelink in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with a parent-child process relationship, where a...

7.8CVSS6.4AI score0.52199EPSS
Exploits21References30
OSV
OSV
•added 2019/05/06 12:0 a.m.•49 views

DLA-1777-1 jquery - security update

Bulletin has no description...

6.1CVSS6.5AI score0.87218EPSS
Exploits4
OSV
OSV
•added 2019/04/20 12:0 a.m.•49 views

DSA-4434-1 drupal7 - security update

Bulletin has no description...

6.1CVSS6.5AI score0.87218EPSS
Exploits4
Total number of security vulnerabilities5000