Lucene search
K
OsvMost viewed

907635 matches found

OSV
OSV
•added 2019/03/02 12:0 a.m.•47 views

DSA-4387-2 openssh - security update

Bulletin has no description...

5.9CVSS6.2AI score0.58204EPSS
Exploits9
OSV
OSV
•added 2019/02/28 12:0 a.m.•47 views

DLA-1694-1 qemu - security update

Bulletin has no description...

7.8CVSS6.8AI score0.25348EPSS
Exploits5
OSV
OSV
•added 2018/11/20 9:29 p.m.•47 views

CVE-2018-19396

ext/standard/varunserializer.c in PHP 5.x through 7.1.24 allows attackers to cause a denial of service application crash via an unserialize call for the com, dotnet, or variant class...

7.5CVSS6.7AI score
Exploits0References3
OSV
OSV
•added 2018/11/12 12:0 a.m.•47 views

DLA-1577-1 xen - security update

Bulletin has no description...

8.8CVSS6.6AI score0.18404EPSS
Exploits9
OSV
OSV
•added 2018/11/02 12:0 a.m.•47 views

DSA-4330-1 chromium-browser - security update

Bulletin has no description...

9.6CVSS7.4AI score0.83898EPSS
Exploits7
OSV
OSV
•added 2018/10/31 12:0 a.m.•47 views

DLA-1562-1 poppler - security update

Bulletin has no description...

6.5CVSS6.5AI score0.0315EPSS
Exploits4
OSV
OSV
•added 2018/10/17 5:23 p.m.•47 views

GHSA-4FQ3-MR56-CG6R Spring Data Commons remote code injection vulnerability

Spring Data Commons, versions prior to 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain a property binder vulnerability caused by improper neutralization of special elements. An unauthenticated remote malicious user or attacker can supply specially crafted request parameters...

9.8CVSS9.7AI score0.95649EPSS
Exploits9References9
OSV
OSV
•added 2018/10/16 12:0 a.m.•47 views

DSA-4321-1 graphicsmagick - security update

Bulletin has no description...

9.8CVSS7.1AI score0.2831EPSS
Exploits16
OSV
OSV
•added 2018/09/27 12:0 a.m.•47 views

DLA-1524-1 libxml2 - security update

Bulletin has no description...

7.5CVSS6.3AI score0.043EPSS
Exploits0
OSV
OSV
•added 2018/08/21 12:0 a.m.•47 views

DLA-1474-1 openssh - security update

Bulletin has no description...

5.9CVSS6AI score0.98631EPSS
Exploits23
OSV
OSV
•added 2018/08/13 12:0 a.m.•47 views

DLA-1466-1 linux-4.9 - security update

Bulletin has no description...

7.8CVSS7AI score0.7354EPSS
Exploits2
OSV
OSV
•added 2018/07/25 12:0 a.m.•48 views

DLA-1443-1 evolution-data-server - security update

Bulletin has no description...

9.8CVSS9.4AI score0.02889EPSS
Exploits1
OSV
OSV
•added 2018/07/16 1:29 p.m.•47 views

CVE-2017-7468

In curl and libcurl 7.52.0 to and including 7.53.1, libcurl would attempt to resume a TLS session even if the client certificate had changed. That is unacceptable since a server by specification is allowed to skip the client certificate check on resume, and may instead use the old identity which...

7.5CVSS6.8AI score0.01862EPSS
Exploits0References5
OSV
OSV
•added 2018/06/04 7:29 p.m.•47 views

CVE-2017-16006

Remarkable is a markdown parser. In versions 1.6.2 and lower, remarkable allows the use of data: URIs in links and can therefore execute javascript...

6.1CVSS6.6AI score
Exploits0References2
OSV
OSV
•added 2018/04/03 12:0 a.m.•47 views

DLA-1339-1 openjdk-7 - security update

Bulletin has no description...

8.3CVSS6.8AI score0.06905EPSS
Exploits0
OSV
OSV
•added 2018/03/29 12:0 a.m.•47 views

DSA-4158-1 openssl1.0 - security update

Bulletin has no description...

6.5CVSS6.8AI score0.19295EPSS
Exploits0
OSV
OSV
•added 2018/03/06 12:0 a.m.•47 views

DLA-1301-1 tomcat7 - security update

Bulletin has no description...

6.5CVSS6.5AI score0.17716EPSS
Exploits2
OSV
OSV
•added 2017/10/24 6:33 p.m.•47 views

GHSA-X457-CW4H-HQ5F JSON gem has Improper Input Validation vulnerability

The JSON gem before 1.5.5, 1.6.x before 1.6.8, and 1.7.x before 1.7.7 for Ruby allows remote attackers to cause a denial of service resource consumption or bypass the mass assignment protection mechanism via a crafted JSON document that triggers the creation of arbitrary Ruby symbols or certain...

7.5CVSS7.1AI score0.13911EPSS
Exploits0References22
OSV
OSV
•added 2017/09/20 12:0 a.m.•47 views

DSA-3981-1 linux - security update

Bulletin has no description...

8.8CVSS8.1AI score0.20797EPSS
Exploits44
OSV
OSV
•added 2017/09/15 7:29 p.m.•47 views

CVE-2017-9805

The REST Plugin in Apache Struts 2.1.1 through 2.3.x before 2.3.34 and 2.5.x before 2.5.13 uses an XStreamHandler with an instance of XStream for deserialization without any type filtering, which can lead to Remote Code Execution when deserializing XML payloads...

8.1CVSS7.6AI score0.99461EPSS
Exploits23References13
OSV
OSV
•added 2017/09/15 12:0 a.m.•47 views

DLA-1097-1 tcpdump - security update

Bulletin has no description...

9.8CVSS7.3AI score0.04639EPSS
Exploits0
OSV
OSV
•added 2017/09/05 12:0 a.m.•47 views

DSA-3966-1 ruby2.3 - security update

Bulletin has no description...

9.8CVSS8.1AI score0.29442EPSS
Exploits8
OSV
OSV
•added 2017/07/21 12:0 a.m.•47 views

DLA-1034-1 php5 - security update

Bulletin has no description...

9.1CVSS7AI score0.06846EPSS
Exploits1
OSV
OSV
•added 2017/07/17 12:0 a.m.•47 views

DLA-1028-1 apache2 - security update

Bulletin has no description...

9.1CVSS8.7AI score0.5677EPSS
Exploits0
OSV
OSV
•added 2017/06/30 12:0 a.m.•47 views

DLA-1007-1 icedove - security update

Bulletin has no description...

9.8CVSS7.8AI score0.05216EPSS
Exploits11
OSV
OSV
•added 2017/06/20 12:0 a.m.•47 views

DLA-993-1 linux - security update

Bulletin has no description...

10CVSS6.8AI score0.1081EPSS
Exploits8
OSV
OSV
•added 2017/05/28 12:0 a.m.•47 views

DLA-958-1 libonig - security update

Bulletin has no description...

9.8CVSS7.9AI score0.07511EPSS
Exploits5
OSV
OSV
•added 2017/05/03 12:0 a.m.•47 views

DSA-3842-1 tomcat7 - security update

Bulletin has no description...

9.1CVSS8.6AI score0.1684EPSS
Exploits0
OSV
OSV
•added 2017/04/21 12:0 a.m.•47 views

DLA-906-1 firefox-esr - security update

Bulletin has no description...

9.8CVSS7.8AI score0.18756EPSS
Exploits19
OSV
OSV
•added 2017/04/20 12:0 a.m.•47 views

DSA-3832-1 icedove - security update

Bulletin has no description...

10CVSS7.8AI score0.33434EPSS
Exploits23
OSV
OSV
•added 2016/12/01 12:0 a.m.•47 views

DLA-730-1 firefox-esr - security update

Bulletin has no description...

9.8CVSS6.9AI score0.87598EPSS
Exploits17
OSV
OSV
•added 2016/09/26 7:59 p.m.•47 views

CVE-2016-6304

Multiple memory leaks in t1lib.c in OpenSSL before 1.0.1u, 1.0.2 before 1.0.2i, and 1.1.0 before 1.1.0a allow remote attackers to cause a denial of service memory consumption via large OCSP Status Request extensions...

7.5CVSS5.9AI score
Exploits0References62
OSV
OSV
•added 2016/07/29 12:0 a.m.•47 views

DLA-567-1 mysql-5.5 - security update

Bulletin has no description...

8.1CVSS6.6AI score0.05826EPSS
Exploits0
OSV
OSV
•added 2016/06/26 12:0 a.m.•47 views

DLA-529-1 tomcat7 - security update

Bulletin has no description...

7.8CVSS7.9AI score0.35927EPSS
Exploits0
OSV
OSV
•added 2016/06/16 6:59 p.m.•47 views

CVE-2016-5300

The XML parser in Expat does not use sufficient entropy for hash initialization, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted identifiers in an XML document. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-0876...

7.5CVSS6.6AI score
Exploits0References13
OSV
OSV
•added 2016/05/21 12:0 a.m.•47 views

DLA-484-1 graphicsmagick - security update

Bulletin has no description...

10CVSS6.8AI score0.97485EPSS
Exploits13
OSV
OSV
•added 2016/05/05 1:59 a.m.•47 views

CVE-2016-2105

Integer overflow in the EVPEncodeUpdate function in crypto/evp/encode.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service heap memory corruption via a large amount of binary data...

7.5CVSS5.5AI score
Exploits0References61
OSV
OSV
•added 2016/04/14 12:0 a.m.•47 views

DSA-3548-2 samba - regression update

Bulletin has no description...

6.8AI score
Exploits0
OSV
OSV
•added 2016/02/27 12:0 a.m.•47 views

DLA-435-1 tomcat6 - security update

Bulletin has no description...

8.8CVSS6.9AI score0.1838EPSS
Exploits0
OSV
OSV
•added 2016/02/25 12:0 a.m.•47 views

DLA-432-1 postgresql-8.4 - security update

Bulletin has no description...

7.5CVSS7.7AI score0.06948EPSS
Exploits0
OSV
OSV
•added 2016/02/16 12:0 a.m.•47 views

DSA-3480-1 eglibc - security update

Bulletin has no description...

9.8CVSS7.8AI score0.89557EPSS
Exploits19
OSV
OSV
•added 2016/02/08 12:0 a.m.•47 views

DSA-3469-1 qemu - security update

Bulletin has no description...

9CVSS7.5AI score0.0773EPSS
Exploits1
OSV
OSV
•added 2015/12/03 12:0 a.m.•47 views

DLA-358-1 openssl - security update

Bulletin has no description...

5.3CVSS6.7AI score0.38709EPSS
Exploits1
OSV
OSV
•added 2015/11/29 12:0 a.m.•47 views

DLA-355-1 libxml2 - security update

Bulletin has no description...

6.4CVSS6.7AI score0.05907EPSS
Exploits1
OSV
OSV
•added 2015/09/03 12:0 a.m.•47 views

DSA-3351-1 chromium-browser - security update

Bulletin has no description...

7.5CVSS9.2AI score0.0224EPSS
Exploits2
OSV
OSV
•added 2015/07/28 12:0 a.m.•47 views

DLA-284-1 apache2 - security update

Bulletin has no description...

5CVSS6.1AI score0.73327EPSS
Exploits0
OSV
OSV
•added 2015/07/03 12:0 a.m.•47 views

DLA-266-1 libxml2 - security update

Bulletin has no description...

9.8CVSS7.2AI score0.0634EPSS
Exploits0
OSV
OSV
•added 2015/06/30 12:0 a.m.•47 views

DLA-263-1 ruby1.9.1 - security update

Bulletin has no description...

7.5CVSS6.8AI score0.13911EPSS
Exploits0
OSV
OSV
•added 2015/06/17 12:0 a.m.•47 views

DLA-246-2 linux-2.6 - security update

Bulletin has no description...

6.7AI score
Exploits0
OSV
OSV
•added 2015/04/08 12:0 a.m.•47 views

DLA-189-1 libgd2 - security update

Bulletin has no description...

5CVSS7.6AI score0.22319EPSS
Exploits4
Total number of security vulnerabilities5000