Lucene search
K
OsvMost viewed

907866 matches found

OSV
OSV
•added 2019/07/20 12:0 a.m.•47 views

DLA-1857-1 nss - security update

Bulletin has no description...

7.5CVSS7.4AI score0.02794EPSS
Exploits0
OSV
OSV
•added 2019/06/20 12:0 a.m.•47 views

DLA-1789-2 intel-microcode - security update

Bulletin has no description...

5.9CVSS6.7AI score0.01553EPSS
Exploits0
OSV
OSV
•added 2019/05/29 10:29 p.m.•47 views

CVE-2019-9670

mailboxd component in Synacor Zimbra Collaboration Suite 8.7.x before 8.7.11p10 has an XML External Entity injection XXE vulnerability, as demonstrated by Autodiscover/Autodiscover.xml...

9.8CVSS7.2AI score0.99986EPSS
Exploits4References7
OSV
OSV
•added 2019/04/13 12:0 a.m.•47 views

DSA-4431-1 libssh2 - security update

Bulletin has no description...

9.3CVSS7.5AI score0.09219EPSS
Exploits0
OSV
OSV
•added 2019/04/01 12:0 a.m.•47 views

DLA-1743-1 thunderbird - security update

Bulletin has no description...

9.8CVSS7.9AI score0.19762EPSS
Exploits11
OSV
OSV
•added 2019/02/28 12:0 a.m.•47 views

DLA-1694-1 qemu - security update

Bulletin has no description...

7.8CVSS6.8AI score0.25348EPSS
Exploits5
OSV
OSV
•added 2018/12/22 12:0 a.m.•47 views

DLA-1613-1 sqlite3 - security update

Bulletin has no description...

8.1CVSS6.3AI score0.09683EPSS
Exploits1
OSV
OSV
•added 2018/11/20 9:29 p.m.•47 views

CVE-2018-19396

ext/standard/varunserializer.c in PHP 5.x through 7.1.24 allows attackers to cause a denial of service application crash via an unserialize call for the com, dotnet, or variant class...

7.5CVSS6.7AI score
Exploits0References3
OSV
OSV
•added 2018/11/12 12:0 a.m.•47 views

DLA-1577-1 xen - security update

Bulletin has no description...

8.8CVSS6.6AI score0.18404EPSS
Exploits9
OSV
OSV
•added 2018/10/31 12:0 a.m.•47 views

DLA-1562-1 poppler - security update

Bulletin has no description...

6.5CVSS6.5AI score0.0315EPSS
Exploits4
OSV
OSV
•added 2018/10/17 5:23 p.m.•47 views

GHSA-4FQ3-MR56-CG6R Spring Data Commons remote code injection vulnerability

Spring Data Commons, versions prior to 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain a property binder vulnerability caused by improper neutralization of special elements. An unauthenticated remote malicious user or attacker can supply specially crafted request parameters...

9.8CVSS9.7AI score0.95649EPSS
Exploits9References9
OSV
OSV
•added 2018/10/16 12:0 a.m.•47 views

DSA-4321-1 graphicsmagick - security update

Bulletin has no description...

9.8CVSS7.1AI score0.2831EPSS
Exploits16
OSV
OSV
•added 2018/07/25 12:0 a.m.•48 views

DLA-1443-1 evolution-data-server - security update

Bulletin has no description...

9.8CVSS9.4AI score0.02889EPSS
Exploits1
OSV
OSV
•added 2018/06/04 7:29 p.m.•47 views

CVE-2017-16006

Remarkable is a markdown parser. In versions 1.6.2 and lower, remarkable allows the use of data: URIs in links and can therefore execute javascript...

6.1CVSS6.6AI score
Exploits0References2
OSV
OSV
•added 2018/03/29 12:0 a.m.•47 views

DSA-4158-1 openssl1.0 - security update

Bulletin has no description...

6.5CVSS6.8AI score0.19295EPSS
Exploits0
OSV
OSV
•added 2018/03/06 12:0 a.m.•47 views

DLA-1301-1 tomcat7 - security update

Bulletin has no description...

6.5CVSS6.5AI score0.17716EPSS
Exploits2
OSV
OSV
•added 2017/10/24 6:33 p.m.•47 views

GHSA-X457-CW4H-HQ5F JSON gem has Improper Input Validation vulnerability

The JSON gem before 1.5.5, 1.6.x before 1.6.8, and 1.7.x before 1.7.7 for Ruby allows remote attackers to cause a denial of service resource consumption or bypass the mass assignment protection mechanism via a crafted JSON document that triggers the creation of arbitrary Ruby symbols or certain...

7.5CVSS7.1AI score0.13911EPSS
Exploits0References22
OSV
OSV
•added 2017/09/15 7:29 p.m.•47 views

CVE-2017-9805

The REST Plugin in Apache Struts 2.1.1 through 2.3.x before 2.3.34 and 2.5.x before 2.5.13 uses an XStreamHandler with an instance of XStream for deserialization without any type filtering, which can lead to Remote Code Execution when deserializing XML payloads...

8.1CVSS7.6AI score0.99461EPSS
Exploits23References13
OSV
OSV
•added 2017/09/15 12:0 a.m.•47 views

DLA-1097-1 tcpdump - security update

Bulletin has no description...

9.8CVSS7.3AI score0.04639EPSS
Exploits0
OSV
OSV
•added 2017/09/05 12:0 a.m.•47 views

DSA-3966-1 ruby2.3 - security update

Bulletin has no description...

9.8CVSS8.1AI score0.29442EPSS
Exploits8
OSV
OSV
•added 2017/07/21 12:0 a.m.•47 views

DLA-1034-1 php5 - security update

Bulletin has no description...

9.1CVSS7AI score0.06846EPSS
Exploits1
OSV
OSV
•added 2017/07/17 12:0 a.m.•47 views

DLA-1028-1 apache2 - security update

Bulletin has no description...

9.1CVSS8.7AI score0.5677EPSS
Exploits0
OSV
OSV
•added 2017/06/30 12:0 a.m.•47 views

DLA-1007-1 icedove - security update

Bulletin has no description...

9.8CVSS7.8AI score0.05216EPSS
Exploits11
OSV
OSV
•added 2017/06/20 12:0 a.m.•47 views

DLA-993-1 linux - security update

Bulletin has no description...

10CVSS6.8AI score0.1081EPSS
Exploits8
OSV
OSV
•added 2017/05/28 12:0 a.m.•47 views

DLA-958-1 libonig - security update

Bulletin has no description...

9.8CVSS7.9AI score0.07511EPSS
Exploits5
OSV
OSV
•added 2017/05/03 12:0 a.m.•47 views

DSA-3842-1 tomcat7 - security update

Bulletin has no description...

9.1CVSS8.6AI score0.1684EPSS
Exploits0
OSV
OSV
•added 2017/04/21 12:0 a.m.•47 views

DLA-906-1 firefox-esr - security update

Bulletin has no description...

9.8CVSS7.8AI score0.18756EPSS
Exploits19
OSV
OSV
•added 2016/07/29 12:0 a.m.•47 views

DLA-567-1 mysql-5.5 - security update

Bulletin has no description...

8.1CVSS6.6AI score0.05826EPSS
Exploits0
OSV
OSV
•added 2016/06/16 6:59 p.m.•47 views

CVE-2016-5300

The XML parser in Expat does not use sufficient entropy for hash initialization, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted identifiers in an XML document. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-0876...

7.5CVSS6.6AI score
Exploits0References13
OSV
OSV
•added 2016/05/21 12:0 a.m.•47 views

DLA-484-1 graphicsmagick - security update

Bulletin has no description...

10CVSS6.8AI score0.97485EPSS
Exploits13
OSV
OSV
•added 2016/05/05 1:59 a.m.•47 views

CVE-2016-2105

Integer overflow in the EVPEncodeUpdate function in crypto/evp/encode.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service heap memory corruption via a large amount of binary data...

7.5CVSS5.5AI score
Exploits0References61
OSV
OSV
•added 2016/04/14 12:0 a.m.•47 views

DSA-3548-2 samba - regression update

Bulletin has no description...

6.8AI score
Exploits0
OSV
OSV
•added 2016/02/27 12:0 a.m.•47 views

DLA-435-1 tomcat6 - security update

Bulletin has no description...

8.8CVSS6.9AI score0.1838EPSS
Exploits0
OSV
OSV
•added 2016/02/08 12:0 a.m.•47 views

DSA-3469-1 qemu - security update

Bulletin has no description...

9CVSS7.5AI score0.0773EPSS
Exploits1
OSV
OSV
•added 2015/12/03 12:0 a.m.•47 views

DLA-358-1 openssl - security update

Bulletin has no description...

5.3CVSS6.7AI score0.38709EPSS
Exploits1
OSV
OSV
•added 2015/11/29 12:0 a.m.•47 views

DLA-355-1 libxml2 - security update

Bulletin has no description...

6.4CVSS6.7AI score0.05907EPSS
Exploits1
OSV
OSV
•added 2015/09/03 12:0 a.m.•47 views

DSA-3351-1 chromium-browser - security update

Bulletin has no description...

7.5CVSS9.2AI score0.0224EPSS
Exploits2
OSV
OSV
•added 2015/07/28 12:0 a.m.•47 views

DLA-284-1 apache2 - security update

Bulletin has no description...

5CVSS6.1AI score0.73327EPSS
Exploits0
OSV
OSV
•added 2015/07/03 12:0 a.m.•47 views

DLA-266-1 libxml2 - security update

Bulletin has no description...

9.8CVSS7.2AI score0.0634EPSS
Exploits0
OSV
OSV
•added 2015/06/30 12:0 a.m.•47 views

DLA-263-1 ruby1.9.1 - security update

Bulletin has no description...

7.5CVSS6.8AI score0.13911EPSS
Exploits0
OSV
OSV
•added 2015/06/17 12:0 a.m.•47 views

DLA-246-2 linux-2.6 - security update

Bulletin has no description...

6.7AI score
Exploits0
OSV
OSV
•added 2015/04/08 12:0 a.m.•47 views

DLA-189-1 libgd2 - security update

Bulletin has no description...

5CVSS7.6AI score0.22319EPSS
Exploits4
OSV
OSV
•added 2015/02/23 12:0 a.m.•47 views

DLA-156-1 samba - security update

Bulletin has no description...

10CVSS7.4AI score0.87636EPSS
Exploits7
OSV
OSV
•added 2014/12/17 12:0 a.m.•47 views

DLA-114-1 heirloom-mailx - security update

Bulletin has no description...

7.8CVSS7.7AI score0.06858EPSS
Exploits1
OSV
OSV
•added 2014/11/01 12:0 a.m.•47 views

DLA-81-1 openssl - security update

Bulletin has no description...

7.1CVSS5AI score0.23598EPSS
Exploits0
OSV
OSV
•added 2014/08/05 12:0 a.m.•47 views

DLA-25-2 python2.6 - regression update

Bulletin has no description...

7.9AI score
Exploits0
OSV
OSV
•added 2014/07/31 12:0 a.m.•47 views

DLA-25-1 python2.6 - security update

Bulletin has no description...

7.5CVSS8.1AI score0.28319EPSS
Exploits16
OSV
OSV
•added 2014/07/31 12:0 a.m.•47 views

DSA-2994-1 nss - security update

Bulletin has no description...

7.5CVSS7.5AI score0.04664EPSS
Exploits3
OSV
OSV
•added 2014/04/07 12:0 a.m.•47 views

DSA-2896-1 openssl - security update

Bulletin has no description...

7.5CVSS8AI score0.99999EPSS
Exploits87
OSV
OSV
•added 2012/11/30 12:0 a.m.•47 views

DSA-2579-1 apache2 - several

Bulletin has no description...

5CVSS6AI score0.1747EPSS
Exploits3
Total number of security vulnerabilities5000