Lucene search
K
OsvMost viewed

907645 matches found

OSV
OSV
•added 2024/03/06 11:5 a.m.•47 views

BIT-PYTHON-2022-0391

A flaw was found in Python, specifically within the urllib.parse module. This module helps break Uniform Resource Locator URL strings into components. The issue involves how the urlparse method does not sanitize input and allows characters like '\r' and '\n' in the URL path. This flaw allows an...

7.5CVSS6.7AI score0.08325EPSS
Exploits1References10
OSV
OSV
•added 2024/03/06 11:3 a.m.•47 views

BIT-MARIADB-2022-0778 Infinite loop in BN_mod_sqrt() reachable when parsing certificates

The BNmodsqrt function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a...

7.5CVSS7.7AI score0.70561EPSS
Exploits2References35
OSV
OSV
•added 2024/03/06 10:58 a.m.•47 views

BIT-NGINX-2022-41742 NGINX ngx_http_mp4_module vulnerability CVE-2022-41742

NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngxhttpmp4module that might allow a local attacker to cause a worker process crash, or might...

7.1CVSS7.1AI score0.01069EPSS
Exploits2References8
OSV
OSV
•added 2024/01/30 4:15 p.m.•47 views

PYSEC-2024-32

The vantage6 technology enables to manage and deploy privacy enhancing technologies like Federated Learning FL and Multi-Party Computation MPC. There are no checks on whether the input is encrypted if a task is created in an encrypted collaboration. Therefore, a user may accidentally create a tas...

4.3CVSS6.6AI score0.00257EPSS
Exploits0References2
OSV
OSV
•added 2024/01/30 12:0 a.m.•47 views

DSA-5611-1 glibc - security update

Bulletin has no description...

8.4CVSS6.5AI score0.04794EPSS
Exploits9
OSV
OSV
•added 2024/01/25 12:0 a.m.•47 views

ALSA-2024:0465 Moderate: sqlite security update

SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL databas...

7.3CVSS7.1AI score0.01249EPSS
Exploits1References4
OSV
OSV
•added 2024/01/08 3:18 p.m.•47 views

CVE-2024-21650 XWiki Remote Code Execution vulnerability via user registration

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. XWiki is vulnerable to a remote code execution RCE attack through its user registration feature. This issue allows an attacker to execute arbitrary code by crafting malicious payloads in the...

10CVSS9.5AI score0.9348EPSS
Exploits1References5
OSV
OSV
•added 2024/01/02 6:32 p.m.•47 views

GO-2023-2394 Spoofed source IP address in github.com/shift72/caddy-geo-ip

The caddy-geo-ip aka GeoIP middleware for Caddy 2 allows attackers to spoof their source IP address via an X-Forwarded-For header, which may bypass a protection mechanism trustedproxy directive in reverseproxy or IP address range restrictions...

6.5CVSS6.3AI score0.00655EPSS
Exploits0References2
OSV
OSV
•added 2023/11/09 2:42 p.m.•47 views

GHSA-F475-X83M-RX5M Label Studio has Hardcoded Django `SECRET_KEY` that can be Abused to Forge Session Tokens

Introduction This write-up describes a vulnerability found in Label Studio, a popular open source data labeling tool. The vulnerability was found to affect versions before 1.8.2, where a patch was introduced. Overview In Label Studio version 1.8.1, a hard coded Django SECRETKEY was set in the...

9.8CVSS9.7AI score0.01241EPSS
Exploits3References7
OSV
OSV
•added 2023/11/07 12:0 a.m.•47 views

ALSA-2023:6535 Important: webkit2gtk3 security and bug fix update

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: webkitgtk: arbitrary code execution CVE-2023-32393 webkitgtk: bypass Same Origin Policy CVE-2023-38572 webkitgtk: Processing web content may lead to arbitrary code execution CVE-2023-38592...

9.8CVSS8.7AI score0.01521EPSS
Exploits0References38
OSV
OSV
•added 2023/11/07 12:0 a.m.•47 views

ALSA-2023:6679 Moderate: curl security update

The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Security Fixes: curl: GSS delegation too eager connection re-use CVE-2023-27536 curl: TELNET option IAC injection CVE-2023-27533 curl: SFTP...

9.8CVSS7.6AI score0.02195EPSS
Exploits4References10
OSV
OSV
•added 2023/10/29 12:0 a.m.•47 views

DLA-3636-1 openjdk-11 - security update

Bulletin has no description...

5.3CVSS6.2AI score0.014EPSS
Exploits0
OSV
OSV
•added 2023/10/28 6:19 a.m.•47 views

BIT-2023-36478

Eclipse Jetty provides a web server and servlet container. In versions 11.0.0 through 11.0.15, 10.0.0 through 10.0.15, and 9.0.0 through 9.4.52, an integer overflow in MetaDataBuilder.checkSize allows for HTTP/2 HPACK header values toexceed their size limit. MetaDataBuilder.java determines if a...

7.5CVSS7.1AI score0.03754EPSS
Exploits1References6Affected Software1
OSV
OSV
•added 2023/10/25 6:17 p.m.•47 views

PYSEC-2023-220

Nautobot is a Network Automation Platform built as a web application atop the Django Python framework with a PostgreSQL or MySQL database. In Nautobot 2.0.x, certain REST API endpoints, in combination with the ?depth= query parameter, can expose hashed user passwords as stored in the database to...

6.5CVSS6.6AI score0.00529EPSS
Exploits1References3
OSV
OSV
•added 2023/10/25 6:20 a.m.•47 views

BIT-2023-44309

Multiple stored cross-site scripting XSS vulnerabilities in the fragment components in Liferay Portal 7.4.2 through 7.4.3.53, and Liferay DXP 7.4 before update 54 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into any non-HTML field of a linked sourc...

9CVSS5.7AI score0.00462EPSS
Exploits0References1Affected Software1
OSV
OSV
•added 2023/10/18 12:0 a.m.•47 views

ALSA-2023:5869 Important: nodejs:18 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 A AlmaLinux Security Bulletin which...

7.5CVSS8.5AI score0.99999EPSS
Exploits19References10
OSV
OSV
•added 2023/10/17 2:24 p.m.•47 views

GHSA-8WX3-324G-W4QQ OpenSearch uncontrolled resource consumption

Impact An issue has been identified with how OpenSearch handled incoming requests on the HTTP layer. An unauthenticated user could force an OpenSearch node to exit with an OutOfMemory error by sending a moderate number of malformed HTTP requests. The issue was identified by Elastic Engineering an...

7.5CVSS7.6AI score
Exploits0References2
OSV
OSV
•added 2023/10/16 12:0 a.m.•47 views

ALSA-2023:5712 Moderate: nginx:1.20 security update

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. Security Fixes: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 For more details about the securi...

7.5CVSS8.3AI score0.99999EPSS
Exploits19References4
OSV
OSV
•added 2023/10/11 12:0 a.m.•47 views

DSA-5523-1 curl - security update

Bulletin has no description...

9.8CVSS7.9AI score0.78483EPSS
Exploits6
OSV
OSV
•added 2023/09/30 12:0 a.m.•47 views

DLA-3592-1 jetty9 - security update

Bulletin has no description...

5.3CVSS5.5AI score0.0326EPSS
Exploits1
OSV
OSV
•added 2023/09/20 3:30 a.m.•47 views

GHSA-G8H7-MCP6-PF47 File Upload vulnerability in Dolibarr ERP CRM

File Upload vulnerability in Dolibarr ERP CRM v.17.0.1 and before allows a remote attacker to execute arbitrary code and obtain sensitive information via the extension filtering and renaming functions...

8.8CVSS8.8AI score0.01343EPSS
Exploits1References4
OSV
OSV
•added 2023/09/12 9:15 p.m.•47 views

PYSEC-2023-173

Piccolo is an ORM and query builder which supports asyncio. In versions 0.120.0 and prior, the implementation of BaseUser.login leaks enough information to a malicious user such that they would be able to successfully generate a list of valid users on the platform. As Piccolo on its own does not...

5.3CVSS7AI score0.00459EPSS
Exploits0References2
OSV
OSV
•added 2023/08/24 10:3 p.m.•47 views

CVE-2023-32079 Netmaker Privilige Escalation Vulnerability

Netmaker makes networks with WireGuard. A Mass assignment vulnerability was found in versions prior to 0.17.1 and 0.18.6 that allows a non-admin user to escalate privileges to those of an admin user. The issue is patched in 0.17.1 and fixed in 0.18.6. If Users are using 0.17.1, they should run...

8.8CVSS8.4AI score0.00711EPSS
Exploits0References3
OSV
OSV
•added 2023/08/23 8:41 p.m.•47 views

GHSA-8XHR-X3V8-RGHJ XWiki Platform's Groovy jobs check the wrong author, allowing remote code execution

Impact XWiki supports scheduled jobs that contain Groovy scripts. Currently, the job checks the content author of the job for programming right. However, modifying or adding a job script to a document doesn't modify the content author. Together with a CSRF vulnerability in the job scheduler, this...

9CVSS9.2AI score0.00997EPSS
Exploits1References5
OSV
OSV
•added 2023/08/08 12:0 a.m.•47 views

ALSA-2023:4536 Moderate: nodejs:18 security, bug fix, and enhancement update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The package has been upgraded to a later upstream version: nodejs 18.16.1. BZ2223630, BZ2223631, BZ2223632, BZ2223633, BZ2223635, BZ2223642 Security Fixes: nodejs...

7.5CVSS7.1AI score0.03906EPSS
Exploits1References10
OSV
OSV
•added 2023/07/27 12:0 a.m.•47 views

DLA-3508-1 linux - security update

Bulletin has no description...

7.8CVSS8AI score0.16642EPSS
Exploits15
OSV
OSV
•added 2023/07/14 9:58 p.m.•47 views

GHSA-JQ43-Q8MX-R7MQ SwiftTerm Code Injection vulnerability

Impact Attacker could modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary commands. Credit These...

7.1CVSS7.7AI score0.0043EPSS
Exploits0References4
OSV
OSV
•added 2023/07/05 10:15 p.m.•47 views

PYSEC-2023-107

Fides is an open-source privacy engineering platform for managing the fulfillment of data privacy requests in a runtime environment, and the enforcement of privacy regulations in code. A path traversal directory traversal vulnerability affects fides versions lower than version 2.15.1, allowing...

7.5CVSS7AI score0.0109EPSS
Exploits0References3
OSV
OSV
•added 2023/06/21 5:15 p.m.•47 views

CVE-2023-2828

Every named instance configured to run as a recursive resolver maintains a cache database holding the responses to the queries it has recently sent to authoritative servers. The size limit for that cache database can be configured using the max-cache-size statement in the configuration file; it...

7.5CVSS7.1AI score0.03776EPSS
Exploits0References7
OSV
OSV
•added 2023/06/14 2:54 p.m.•47 views

GHSA-JQXR-VJVV-899M @keystone-6/auth Open Redirect vulnerability

Summary There is an open redirect in the @keystone-6/auth package, where the redirect leading / filter can be bypassed. Impact Users may be redirected to domains other than the relative host, thereby it might be used by attackers to re-direct users to an unexpected location. Mitigations - Don't u...

6.1CVSS5AI score0.00407EPSS
Exploits0References4
OSV
OSV
•added 2023/06/12 6:37 p.m.•47 views

GHSA-5FP6-4XW3-XQQ3 @keystone-6/core's bundled cuid package known to be insecure

Summary The cuid package used by @keystone-6/ and upstream dependencies is deprecated and marked as insecure by the author. As reported by the author Cuid and other k-sortable and non-cryptographic ids Ulid, ObjectId, KSUID, all UUIDs are all insecure. Use @paralleldrive/cuid2 instead. What are...

7.1AI score
Exploits0References4
OSV
OSV
•added 2023/06/12 6:30 p.m.•47 views

GHSA-65WH-G8X8-GM2H Apache NiFi vulnerable to Deserialization of Untrusted Data

The JndiJmsConnectionFactoryProvider Controller Service, along with the ConsumeJMS and PublishJMS Processors, in Apache NiFi 1.8.0 through 1.21.0 allow an authenticated and authorized user to configure URL and library properties that enable deserialization of untrusted data from a remote location...

6.5CVSS6.6AI score0.02351EPSS
Exploits1References8
OSV
OSV
•added 2023/05/31 2:15 p.m.•47 views

CVE-2023-26842

A stored Cross-site scripting XSS vulnerability in ChurchCRM 4.5.3 allows remote attackers to inject arbitrary web script or HTML via the OptionManager.php...

5.4CVSS5.8AI score0.01409EPSS
Exploits1References1
OSV
OSV
•added 2023/05/25 7:53 p.m.•47 views

RLSA-2023:2655 Moderate: nodejs and nodejs-nodemon security, bug fix, and enhancement update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs 16.19.1, nodejs-nodemon 2.0.20. Security Fixes: c-ares: buffer overflow in...

8.6CVSS8.3AI score0.02023EPSS
Exploits3References8
OSV
OSV
•added 2023/05/16 12:0 a.m.•47 views

ALSA-2023:3082 Moderate: pcs security and bug fix update

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: rubygem-rack: Denial of service in Multipart MIME parsing CVE-2023-27530 rubygem-rack: denial of service in header parsing CVE-2023-27539 For more details about the security...

7.5CVSS6.9AI score0.0183EPSS
Exploits0References6
OSV
OSV
•added 2023/04/11 12:0 a.m.•47 views

ALSA-2023:1703 Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: FUSE filesystem low-privileged user privileges escalation CVE-2023-0386 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

7.8CVSS7.9AI score0.0788EPSS
Exploits14References4
OSV
OSV
•added 2023/04/06 3:54 p.m.•47 views

RXSA-2023:0951 Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use-after-free caused by l2capreassemblesdu in net/bluetooth/l2capcore.c CVE-2022-3564 kernel: stack overflow in doprocdointvec and procskipspaces CVE-2022-4378 kernel: use-after-free in...

7.8CVSS7.4AI score0.06346EPSS
Exploits5References6
OSV
OSV
•added 2023/03/30 8:20 p.m.•47 views

GHSA-G2J6-57V7-GM8C runc AppArmor bypass with symlinked /proc

Impact It was found that AppArmor, and potentially SELinux, can be bypassed when /proc inside the container is symlinked with a specific mount configuration. Patches Fixed in runc v1.1.5, by prohibiting symlinked /proc: https://github.com/opencontainers/runc/pull/3785 This PR fixes CVE-2023-27561...

6.1CVSS6.9AI score0.00343EPSS
Exploits0References5
OSV
OSV
•added 2023/03/01 6:30 p.m.•47 views

GHSA-XW5P-HW8J-XG4Q Grafana vulnerable to Cross-site Scripting

Grafana is an open-source platform for monitoring and observability. Starting with the 7.0 branch, Grafana had a stored XSS vulnerability in the trace view visualization. The stored XSS vulnerability was possible due the value of a span's attributes/resources were not properly sanitized and this...

5.4CVSS6.3AI score0.09216EPSS
Exploits0References3
OSV
OSV
•added 2023/02/21 9:0 p.m.•47 views

CVE-2023-25157 Unfiltered SQL Injection Vulnerabilities in Geoserver

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. GeoServer includes support for the OGC Filter expression language and the OGC Common Query Language CQL as part of the Web Feature Service WFS and Web Map Service WMS protocols. CQL is...

9.8CVSS8.2AI score0.85247EPSS
Exploits2References4
OSV
OSV
•added 2023/02/17 12:0 a.m.•47 views

DSA-5352-1 wpewebkit - security update

Bulletin has no description...

8.8CVSS9AI score0.09426EPSS
Exploits0
OSV
OSV
•added 2023/02/09 5:15 p.m.•47 views

CVE-2023-0575

External Control of Critical State Data, Improper Control of Generation of Code 'Code Injection' vulnerability in YugaByte, Inc. Yugabyte DB on Windows, Linux, MacOS, iOS DevopsBase.Java:execCommand, TableManager.Java:runCommand modules allows API Manipulation, Privilege Abuse. This vulnerability...

9.8CVSS6.8AI score
Exploits0References1
OSV
OSV
•added 2023/02/09 12:0 a.m.•47 views

DLA-3314-1 libsdl2 - security update

Bulletin has no description...

8.8CVSS7.5AI score0.03299EPSS
Exploits12
OSV
OSV
•added 2023/02/08 10:28 p.m.•47 views

GHSA-R7JW-WP68-3XCH openssl-src vulnerable to Use-after-free following `BIO_new_NDEF`

The public API function BIOnewNDEF is a helper function used for streaming ASN.1 data via a BIO. It is primarily used internally to OpenSSL to support the SMIME, CMS and PKCS7 streaming capabilities, but may also be called directly by end user applications. The function receives a BIO from the...

7.5CVSS7.8AI score0.04494EPSS
Exploits0References11
OSV
OSV
•added 2023/02/07 8:54 p.m.•47 views

CVE-2023-23931 Cipher.update_into can corrupt memory in pyca cryptography

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. In affected versions Cipher.updateinto would accept Python objects which implement the buffer protocol, but provide only immutable buffers. This would allow immutable objects such as bytes to b...

4.8CVSS6.7AI score0.01301EPSS
Exploits1References6
OSV
OSV
•added 2023/02/06 11:27 p.m.•47 views

GHSA-8CFG-VX93-JVXW Kubernetes client-go vulnerable to Sensitive Information Leak via Log File

In Kubernetes, if the logging level is set to at least 9, authorization and bearer tokens will be written to log files. This can occur both in API server logs and client tool output like kubectl. This affects = v1.19.5, = v1.18.13, = v1.17.15, v1.20.0-alpha2...

4.7CVSS5.8AI score0.00512EPSS
Exploits0References11
OSV
OSV
•added 2023/02/06 11:27 p.m.•47 views

GHSA-8MJG-8C8G-6H85 Kubernetes Sensitive Information leak via Log File

In Kubernetes clusters using a logging level of at least 4, processing a malformed docker config file will result in the contents of the docker config file being leaked, which can include pull secrets or other registry credentials. This affects v1.19.3, v1.18.10, v1.17.13...

4.7CVSS5.4AI score0.00461EPSS
Exploits0References8
OSV
OSV
•added 2023/01/26 9:15 p.m.•47 views

CVE-2022-3094

Sending a flood of dynamic DNS updates may cause named to allocate large amounts of memory. This, in turn, may cause named to exit due to a lack of free memory. We are not aware of any cases where this has been exploited. Memory is allocated prior to the checking of access permissions ACLs and is...

7.5CVSS7.5AI score0.13108EPSS
Exploits0References1
OSV
OSV
•added 2023/01/25 7:36 p.m.•47 views

GHSA-G25R-GVQ3-WRQ7 Authenticated user can gain unauthorized shell pod and kubectl access in the local cluster

Impact An issue was discovered in Rancher where an authorization logic flaw allows an authenticated user on any downstream cluster to 1 open a shell pod in the Rancher local cluster and 2 have limited kubectl access to it. The expected behavior is that a user does not have such access in the...

7.4CVSS8AI score0.0047EPSS
Exploits0References4
OSV
OSV
•added 2023/01/11 12:0 a.m.•47 views

DSA-5316-1 netty - security update

Bulletin has no description...

7.5CVSS6.8AI score0.0628EPSS
Exploits2
Total number of security vulnerabilities5000