Lucene search
K
OsvMost viewed

910903 matches found

OSV
OSV
added 2024/02/28 3:34 p.m.48 views

CVE-2024-27083 Flask-AppBuilder's OAuth login page subject to Cross Site Scripting (XSS)

Flask-AppBuilder is an application development framework, built on top of Flask. A Cross-Site Scripting XSS vulnerability has been discovered on the OAuth login page. An attacker could trick a user to follow a specially crafted URL to the OAuth login page. This URL could inject and execute...

4.3CVSS5.2AI score0.00567EPSS
Exploits0References4
OSV
OSV
added 2024/01/30 12:0 a.m.48 views

DSA-5611-1 glibc - security update

Bulletin has no description...

8.4CVSS6.5AI score0.04794EPSS
Exploits9
OSV
OSV
added 2024/01/22 12:0 a.m.48 views

ALSA-2024:0310 Moderate: openssl security update

OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength general-purpose cryptography library. Security Fixes: openssl: Incorrect cipher key and IV length processing CVE-2023-5363 For more details about the security...

7.5CVSS7.7AI score0.03332EPSS
Exploits0References4
OSV
OSV
added 2024/01/05 5:15 p.m.48 views

CVE-2023-34327

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. AMD CPUs since 2014 have extensions to normal x86 debugging functionality. Xen supports guests using these extensions. Unfortunately there are errors in Xen's handling of...

5.5CVSS6.8AI score
Exploits0References2
OSV
OSV
added 2024/01/03 5:15 p.m.48 views

CVE-2023-6004

A flaw was found in libssh. By utilizing the ProxyCommand or ProxyJump feature, users can exploit unchecked hostname syntax on the client. This issue may allow an attacker to inject malicious code into the command of the features mentioned through the hostname parameter...

4.8CVSS5.8AI score0.00449EPSS
Exploits0References8
OSV
OSV
added 2023/12/22 9:3 p.m.48 views

CVE-2023-51651 Potential URI resolution path traversal in the AWS SDK for PHP

AWS SDK for PHP is the Amazon Web Services software development kit for PHP. Within the scope of requests to S3 object keys and/or prefixes containing a Unix double-dot, a URI path traversal is possible. The issue exists in the buildEndpoint method in the RestSerializer component of the AWS SDK f...

6CVSS5.4AI score0.00881EPSS
Exploits1References5
OSV
OSV
added 2023/12/06 11:2 p.m.48 views

MAL-2023-8670 Malicious code in react-hook-form-latest (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f0cf2d07005ec432f85b35387c34d03f3229f9aaeeff947232ac2f58f6015853 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSV
added 2023/12/02 11:15 p.m.48 views

CVE-2023-47100

Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-47038. Reason: This record is a duplicate of CVE-2023-47038. Notes: All CVE users should reference CVE-2023-47038 instead of this record. All references and descriptions in this record have been removed to prevent accidental usage...

6.4AI score
Exploits0
OSV
OSV
added 2023/11/14 6:48 p.m.48 views

GHSA-RW82-MHMX-GRMJ Guest Entries Remote code execution via file uploads

Impact When using the file uploads feature, it was possible to upload PHP files. Patches The vulnerability is fixed in v3.1.2...

8.8CVSS8.6AI score0.01022EPSS
Exploits0References4
OSV
OSV
added 2023/11/14 12:0 a.m.48 views

ALSA-2023:7177 Moderate: bind security update

The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server is operating correctly. Security Fixes:...

7.5CVSS7.4AI score0.13108EPSS
Exploits0References4
OSV
OSV
added 2023/11/07 12:0 a.m.48 views

ALSA-2023:6535 Important: webkit2gtk3 security and bug fix update

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: webkitgtk: arbitrary code execution CVE-2023-32393 webkitgtk: bypass Same Origin Policy CVE-2023-38572 webkitgtk: Processing web content may lead to arbitrary code execution CVE-2023-38592...

9.8CVSS8.7AI score0.01521EPSS
Exploits0References38
OSV
OSV
added 2023/10/30 3:40 p.m.48 views

GHSA-FJHG-96CP-6FCW Kimai (Authenticated) SSTI to RCE by Uploading a Malicious Twig File

Description The laters version of Kimai is found to be vulnerable to a critical Server-Side Template Injection SSTI which can be escalated to Remote Code Execution RCE. The vulnerability arises when a malicious user uploads a specially crafted Twig file, exploiting the software's PDF and HTML...

7.2CVSS7.6AI score0.01466EPSS
Exploits1References4
OSV
OSV
added 2023/10/29 12:0 a.m.48 views

DLA-3636-1 openjdk-11 - security update

Bulletin has no description...

5.3CVSS6.2AI score0.014EPSS
Exploits0
OSV
OSV
added 2023/10/28 6:19 a.m.48 views

BIT-2023-36478

Eclipse Jetty provides a web server and servlet container. In versions 11.0.0 through 11.0.15, 10.0.0 through 10.0.15, and 9.0.0 through 9.4.52, an integer overflow in MetaDataBuilder.checkSize allows for HTTP/2 HPACK header values toexceed their size limit. MetaDataBuilder.java determines if a...

7.5CVSS7.1AI score0.03754EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2023/10/26 6:15 p.m.48 views

CVE-2023-31418

An issue has been identified with how Elasticsearch handled incoming requests on the HTTP layer. An unauthenticated user could force an Elasticsearch node to exit with an OutOfMemory error by sending a moderate number of malformed HTTP requests. The issue was identified by Elastic Engineering and...

7.5CVSS7AI score
Exploits0References3
OSV
OSV
added 2023/10/11 12:0 a.m.48 views

DSA-5523-1 curl - security update

Bulletin has no description...

9.8CVSS7.9AI score0.78483EPSS
Exploits6
OSV
OSV
added 2023/10/10 12:0 a.m.48 views

DSA-5522-1 tomcat9 - security update

Bulletin has no description...

7.5CVSS8.2AI score0.99999EPSS
Exploits22
OSV
OSV
added 2023/09/21 5:15 p.m.48 views

GHSA-GX6R-QC2V-3P3V systeminformation SSID Command Injection Vulnerability

Impact SSID Command Injection Vulnerability Patches Problem was fixed with a parameter check. Please upgrade to version = 5.21.7, Version 4 was not affected Workarounds If you cannot upgrade, be sure to check or sanitize parameter strings that are passed to wifiConnections, wifiNetworks string on...

9.8CVSS9.7AI score0.01837EPSS
Exploits0References5
OSV
OSV
added 2023/09/20 12:0 a.m.48 views

ALSA-2023:5312 Important: open-vm-tools security update

The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhance performance and user experience of virtual machines. Security Fixes: open-vm-tools: SAML token signature bypass CVE-2023-20900 For...

7.5CVSS7.5AI score0.01193EPSS
Exploits0References4
OSV
OSV
added 2023/09/12 12:0 a.m.49 views

ALSA-2023:5069 Important: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. The following packages have been upgraded to a later upstream version: kernel 5.14.0. Security Fixes: kernel: UAF in nftables when nftsetlookupglobal triggered after handling named and anonymous sets in batch...

7.8CVSS7.9AI score0.05794EPSS
Exploits5References22
OSV
OSV
added 2023/09/06 8:13 p.m.48 views

CVE-2023-29198 Context isolation bypass via nested unserializable return value in Electron

Electron is a framework which lets you write cross-platform desktop applications using JavaScript, HTML and CSS. Electron apps using contextIsolation and contextBridge are affected. This is a context isolation bypass, meaning that code running in the main world context in the renderer can reach...

6CVSS8.2AI score0.0049EPSS
Exploits0References4
OSV
OSV
added 2023/09/01 12:0 a.m.48 views

ASB-A-285903027

Bulletin has no description...

7.5CVSS7.2AI score0.003EPSS
Exploits0References2
OSV
OSV
added 2023/08/09 4:9 p.m.48 views

CVE-2023-39531 Sentry vulnerable to incorrect credential validation on OAuth token requests

Sentry is an error tracking and performance monitoring platform. Starting in version 10.0.0 and prior to version 23.7.2, an attacker with sufficient client-side exploits could retrieve a valid access token for another user during the OAuth token exchange due to incorrect credential validation. Th...

6.5CVSS6.4AI score0.00308EPSS
Exploits0References3
OSV
OSV
added 2023/07/14 9:58 p.m.48 views

GHSA-JQ43-Q8MX-R7MQ SwiftTerm Code Injection vulnerability

Impact Attacker could modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary commands. Credit These...

7.1CVSS7.7AI score0.0043EPSS
Exploits0References4
OSV
OSV
added 2023/07/13 10:19 p.m.48 views

GO-2023-1883 Denial of service via OOM in github.com/cometbft/cometbft

A bug in the CometBFT middleware causes the mempool's two data structures to fall out of sync. This can lead to duplicate transactions that cannot be removed, even after they are committed in a block. The only way to remove the transaction is to restart the node. This can be exploited by an...

8.2CVSS8AI score0.00901EPSS
Exploits1References3
OSV
OSV
added 2023/07/11 3:15 p.m.48 views

PYSEC-2023-116

xalpha v0.11.4 is vulnerable to Remote Command Execution RCE...

9.8CVSS9.2AI score0.01406EPSS
Exploits1References3
OSV
OSV
added 2023/06/22 7:59 p.m.48 views

GHSA-PHWM-87RG-27QQ XWiki Platform vulnerable to reflected cross-site scripting via delattachment action

Impact It's possible to perform an XSS by forging a request to a delete attachment action with a specific attachment name. Now this XSS can be exploited only if the attacker knows the CSRF token of the user, or if the user ignores the warning about the missing CSRF token. Patches The vulnerabilit...

8.4CVSS6.3AI score0.00633EPSS
Exploits0References5
OSV
OSV
added 2023/06/21 5:15 p.m.48 views

CVE-2023-2828

Every named instance configured to run as a recursive resolver maintains a cache database holding the responses to the queries it has recently sent to authoritative servers. The size limit for that cache database can be configured using the max-cache-size statement in the configuration file; it...

7.5CVSS7.1AI score0.03776EPSS
Exploits0References7
OSV
OSV
added 2023/06/12 4:15 p.m.48 views

CVE-2023-34468

The DBCPConnectionPool and HikariCPConnectionPool Controller Services in Apache NiFi 0.0.2 through 1.21.0 allow an authenticated and authorized user to configure a Database URL with the H2 driver that enables custom code execution. The resolution validates the Database URL and rejects H2 JDBC...

8.8CVSS8.5AI score0.63633EPSS
Exploits9References5
OSV
OSV
added 2023/05/25 7:53 p.m.48 views

RLSA-2023:2655 Moderate: nodejs and nodejs-nodemon security, bug fix, and enhancement update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs 16.19.1, nodejs-nodemon 2.0.20. Security Fixes: c-ares: buffer overflow in...

8.6CVSS8.3AI score0.02023EPSS
Exploits3References8
OSV
OSV
added 2023/05/16 12:0 a.m.48 views

ALSA-2023:3082 Moderate: pcs security and bug fix update

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: rubygem-rack: Denial of service in Multipart MIME parsing CVE-2023-27530 rubygem-rack: denial of service in header parsing CVE-2023-27539 For more details about the security...

7.5CVSS6.9AI score0.0183EPSS
Exploits0References6
OSV
OSV
added 2023/05/01 12:0 a.m.48 views

ASB-A-256202273

In verifyReplacingVersionCode of InstallPackageHelper.java, there is a possible way to downgrade system apps below system image version due to a logic error in the code. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for...

6.7CVSS6.6AI score0.00091EPSS
Exploits0References3
OSV
OSV
added 2023/04/26 3:28 p.m.48 views

RLSA-2023:1879 Important: java-17-openjdk security and bug fix update

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fixes: OpenJDK: improper connection handling during TLS handshake 8294474 CVE-2023-21930 OpenJDK: Swing HTML parsing issue 8296832 CVE-2023-21939 OpenJDK:...

7.4CVSS6.8AI score0.02474EPSS
Exploits1References11
OSV
OSV
added 2023/04/25 7:48 p.m.48 views

GHSA-J4RF-7357-F4CG Unpatched extfs vulnerabilities are exploitable through suid-mode Apptainer

Impact There is an ext4 use-after-free flaw described in CVE-2022-1184 that is exploitable through versions of Apptainer 1.1.0 and installations that include apptainer-suid 1.1.8 on older operating systems where that CVE has not been patched. That includes Red Hat Enterprise Linux 7, Debian 10...

7CVSS7.7AI score0.00369EPSS
Exploits0References18
OSV
OSV
added 2023/04/25 12:0 a.m.48 views

ALSA-2023:1909 Important: java-1.8.0-openjdk security and bug fix update

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fixes: OpenJDK: improper connection handling during TLS handshake 8294474 CVE-2023-21930 OpenJDK: Swing HTML parsing issue 8296832 CVE-2023-21939 OpenJDK:...

7.4CVSS6.8AI score0.02474EPSS
Exploits1References16
OSV
OSV
added 2023/04/11 12:0 a.m.48 views

ALSA-2023:1691 Important: kernel-rt security and bug fix update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: FUSE filesystem low-privileged user privileges escalation CVE-2023-0386 For more details about the security issues, including the...

7.8CVSS8.2AI score0.0788EPSS
Exploits14References4
OSV
OSV
added 2023/04/11 12:0 a.m.48 views

ALSA-2023:1703 Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: FUSE filesystem low-privileged user privileges escalation CVE-2023-0386 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

7.8CVSS7.9AI score0.0788EPSS
Exploits14References4
OSV
OSV
added 2023/02/21 9:0 p.m.48 views

CVE-2023-25157 Unfiltered SQL Injection Vulnerabilities in Geoserver

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. GeoServer includes support for the OGC Filter expression language and the OGC Common Query Language CQL as part of the Web Feature Service WFS and Web Map Service WMS protocols. CQL is...

9.8CVSS8.2AI score0.85247EPSS
Exploits2References4
OSV
OSV
added 2023/02/17 9:30 p.m.48 views

GHSA-GRMJ-GPWM-98WW Moodle Cross-site Scripting vulnerability

The vulnerability was found Moodle which exists due to insufficient sanitization of user-supplied data in blog search. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website. This flaw...

6.1CVSS5.9AI score0.00854EPSS
Exploits0References5
OSV
OSV
added 2023/02/17 12:0 a.m.48 views

DSA-5352-1 wpewebkit - security update

Bulletin has no description...

8.8CVSS9AI score0.09426EPSS
Exploits0
OSV
OSV
added 2023/02/16 10:31 p.m.48 views

GO-2023-1571 Denial of service via crafted HTTP/2 stream in net/http and golang.org/x/net

A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests...

7.5CVSS7.6AI score0.04561EPSS
Exploits0References4
OSV
OSV
added 2023/02/09 12:0 a.m.48 views

DLA-3314-1 libsdl2 - security update

Bulletin has no description...

8.8CVSS7.5AI score0.03299EPSS
Exploits12
OSV
OSV
added 2023/01/24 8:47 p.m.48 views

GHSA-864V-6QJ7-62QJ Issue with whitespace in JWT roles in OpenSearch

Advisory title: Issue with whitespace in JWT roles Affected versions: OpenSearch 1.0.0-1.3.7 and 2.0.0-2.4.1 Patched versions: OpenSearch 1.3.8 and 2.5.0 Impact: OpenSearch uses JWTs to store role claims obtained from the Identity Provider IdP when the authentication backend is SAML or OpenID...

4.7CVSS6.3AI score0.00796EPSS
Exploits0References4
OSV
OSV
added 2023/01/12 12:0 p.m.48 views

RUSTSEC-2023-0002 git2 Rust package suppresses ssh host key checking

By default, when accessing an ssh repository ie via an ssh: git repository url the git2 Rust package does not do any host key checking. Additionally, the provided API is not sufficient for a an application to do meaningful checking itself. Impact When connecting to an ssh repository, and when an...

5.9CVSS5.6AI score0.00649EPSS
Exploits0References4
OSV
OSV
added 2023/01/12 12:0 a.m.48 views

ALSA-2023:0110 Moderate: sqlite security update

SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL databas...

7.5CVSS7.4AI score0.19193EPSS
Exploits2References4
OSV
OSV
added 2023/01/03 12:28 p.m.48 views

GHSA-J94P-HV25-RM5G Apiman has potential permissions bypass

Impact Incorrect default permissions for certain read-only resources in the Apiman 1.5.7.Final through 2.2.3.Final in the Apiman Manager REST API allows a remote authenticated attacker to access information and resources in an Apiman Organizations they are not a member of and/or do not have...

7.1CVSS6AI score0.00604EPSS
Exploits0References6
OSV
OSV
added 2022/12/16 11:15 p.m.48 views

PYSEC-2022-42993

GuardDog is a CLI tool to identify malicious PyPI packages. Versions prior to v0.1.8 are vulnerable to arbitrary file write when scanning a specially-crafted remote PyPI package. Extracting files using shutil.unpackarchive from a potentially malicious tarball without validating that the destinati...

6.5CVSS6.9AI score0.00704EPSS
Exploits1References3
OSV
OSV
added 2022/12/12 9:19 p.m.48 views

GHSA-MJMJ-J48Q-9WG2 SnakeYaml Constructor Deserialization Remote Code Execution

Summary SnakeYaml's Constructor class, which inherits from SafeConstructor, allows any type be deserialized given the following line: new Yamlnew ConstructorTestDataClass.class.loadyamlContent; Types do not have to match the types of properties in the target class. A ConstructorException is throw...

8.3CVSS9AI score0.99615EPSS
Exploits7References19
OSV
OSV
added 2022/12/08 7:1 p.m.48 views

GO-2022-1144 Excessive memory growth in net/http and golang.org/x/net/http2

An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests. HTTP/2 server connections contain a cache of HTTP header keys sent by the client. While the total number of entries in this cache is capped, an attacker sending very large keys can cause the server to allocate...

5.3CVSS6.7AI score0.05623EPSS
Exploits0References4
OSV
OSV
added 2022/11/08 11:0 p.m.48 views

GHSA-8G2P-5PQH-5JMC .NET Information Disclosure Vulnerability

Microsoft is releasing this security advisory to provide information about a vulnerability in .NET, .NET Core and .NET Framework's System.Data.SqlClient and Microsoft.Data.SqlClient NuGet Packages. A vulnerability exists in System.Data.SqlClient and Microsoft.Data.SqlClient libraries where a...

5.8CVSS6.1AI score0.00747EPSS
Exploits0References6
Total number of security vulnerabilities5000