Lucene search
K
OsvMost viewed

921352 matches found

OSV
OSV
•added 2023/11/22 3:30 a.m.•48 views

GHSA-5XQM-HC45-F2G2 APM Java Agent Local Privilege Escalation issue

A local privilege escalation issue was found with the APM Java agent, where a user on the system could attach a malicious plugin to an application running the APM Java agent. By using this vulnerability, an attacker could execute code at a potentially higher level of permissions than their user...

7CVSS7.7AI score0.00249EPSS
Exploits0References4
OSV
OSV
•added 2023/11/07 12:0 a.m.•48 views

ALSA-2023:6535 Important: webkit2gtk3 security and bug fix update

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: webkitgtk: arbitrary code execution CVE-2023-32393 webkitgtk: bypass Same Origin Policy CVE-2023-38572 webkitgtk: Processing web content may lead to arbitrary code execution CVE-2023-38592...

9.8CVSS8.7AI score0.01521EPSS
Exploits0References38
OSV
OSV
•added 2023/11/06 7:32 a.m.•48 views

BIT-2020-2814

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.6.47 and prior, 5.7.28 and prior and 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise...

4.9CVSS5.7AI score0.02805EPSS
Exploits0References10Affected Software1
OSV
OSV
•added 2023/11/06 7:32 a.m.•48 views

BIT-2021-2011

Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client...

7.1CVSS5.9AI score0.03028EPSS
Exploits0References5Affected Software1
OSV
OSV
•added 2023/10/30 3:40 p.m.•48 views

GHSA-FJHG-96CP-6FCW Kimai (Authenticated) SSTI to RCE by Uploading a Malicious Twig File

Description The laters version of Kimai is found to be vulnerable to a critical Server-Side Template Injection SSTI which can be escalated to Remote Code Execution RCE. The vulnerability arises when a malicious user uploads a specially crafted Twig file, exploiting the software's PDF and HTML...

7.2CVSS7.6AI score0.01466EPSS
Exploits1References4
OSV
OSV
•added 2023/10/26 5:36 p.m.•48 views

CVE-2023-31418 Elasticsearch uncontrolled resource consumption

An issue has been identified with how Elasticsearch handled incoming requests on the HTTP layer. An unauthenticated user could force an Elasticsearch node to exit with an OutOfMemory error by sending a moderate number of malformed HTTP requests. The issue was identified by Elastic Engineering and...

7.5CVSS7.1AI score0.01232EPSS
Exploits0References5
OSV
OSV
•added 2023/10/24 2:0 a.m.•48 views

GHSA-3PX7-JM2P-6H2C encoded_id-rails potential DOS vulnerability due to URIs with extremely long encoded IDs

Impact The length of URIs and the various parts eg path segments, query parameters is usually limited by the webserver processing the incoming request. In the case of Puma the defaults are : - path segment length: 8192 - Max URI length: 1024 12 - Max query length: 1024 10 See...

7.5CVSS7.3AI score0.01112EPSS
Exploits1References5
OSV
OSV
•added 2023/10/11 12:0 a.m.•48 views

DSA-5523-1 curl - security update

Bulletin has no description...

9.8CVSS7.9AI score0.78483EPSS
Exploits6
OSV
OSV
•added 2023/10/10 12:0 a.m.•48 views

DSA-5522-1 tomcat9 - security update

Bulletin has no description...

7.5CVSS8.2AI score0.99999EPSS
Exploits22
OSV
OSV
•added 2023/09/21 5:15 p.m.•48 views

GHSA-GX6R-QC2V-3P3V systeminformation SSID Command Injection Vulnerability

Impact SSID Command Injection Vulnerability Patches Problem was fixed with a parameter check. Please upgrade to version = 5.21.7, Version 4 was not affected Workarounds If you cannot upgrade, be sure to check or sanitize parameter strings that are passed to wifiConnections, wifiNetworks string on...

9.8CVSS9.7AI score0.01837EPSS
Exploits0References5
OSV
OSV
•added 2023/09/20 12:0 a.m.•48 views

ALSA-2023:5312 Important: open-vm-tools security update

The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhance performance and user experience of virtual machines. Security Fixes: open-vm-tools: SAML token signature bypass CVE-2023-20900 For...

7.5CVSS7.5AI score0.01193EPSS
Exploits0References4
OSV
OSV
•added 2023/09/06 8:13 p.m.•48 views

CVE-2023-29198 Context isolation bypass via nested unserializable return value in Electron

Electron is a framework which lets you write cross-platform desktop applications using JavaScript, HTML and CSS. Electron apps using contextIsolation and contextBridge are affected. This is a context isolation bypass, meaning that code running in the main world context in the renderer can reach...

6CVSS8.2AI score0.0049EPSS
Exploits0References4
OSV
OSV
•added 2023/09/01 12:0 a.m.•48 views

ASB-A-285903027

Bulletin has no description...

7.5CVSS7.2AI score0.003EPSS
Exploits0References2
OSV
OSV
•added 2023/08/09 4:9 p.m.•48 views

CVE-2023-39531 Sentry vulnerable to incorrect credential validation on OAuth token requests

Sentry is an error tracking and performance monitoring platform. Starting in version 10.0.0 and prior to version 23.7.2, an attacker with sufficient client-side exploits could retrieve a valid access token for another user during the OAuth token exchange due to incorrect credential validation. Th...

6.5CVSS6.4AI score0.00308EPSS
Exploits0References3
OSV
OSV
•added 2023/07/14 9:58 p.m.•48 views

GHSA-JQ43-Q8MX-R7MQ SwiftTerm Code Injection vulnerability

Impact Attacker could modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary commands. Credit These...

7.1CVSS7.7AI score0.0043EPSS
Exploits0References4
OSV
OSV
•added 2023/07/13 10:19 p.m.•48 views

GO-2023-1883 Denial of service via OOM in github.com/cometbft/cometbft

A bug in the CometBFT middleware causes the mempool's two data structures to fall out of sync. This can lead to duplicate transactions that cannot be removed, even after they are committed in a block. The only way to remove the transaction is to restart the node. This can be exploited by an...

8.2CVSS8AI score0.00901EPSS
Exploits1References3
OSV
OSV
•added 2023/07/11 3:15 p.m.•48 views

PYSEC-2023-116

xalpha v0.11.4 is vulnerable to Remote Command Execution RCE...

9.8CVSS9.2AI score0.01406EPSS
Exploits1References3
OSV
OSV
•added 2023/06/21 5:15 p.m.•48 views

CVE-2023-2828

Every named instance configured to run as a recursive resolver maintains a cache database holding the responses to the queries it has recently sent to authoritative servers. The size limit for that cache database can be configured using the max-cache-size statement in the configuration file; it...

7.5CVSS7.1AI score0.03776EPSS
Exploits0References7
OSV
OSV
•added 2023/06/09 10:41 p.m.•48 views

GHSA-4882-HXPR-HRVM @udecode/plate-link does not sanitize URLs to prevent use of the `javascript:` scheme

Impact Affected versions of the link plugin and link UI component do not sanitize URLs to prevent use of the javascript: scheme. As a result, links with JavaScript URLs can be inserted into the Plate editor through various means, including opening or pasting malicious content. Patches...

8.1CVSS6.9AI score0.00445EPSS
Exploits0References5
OSV
OSV
•added 2023/05/25 7:53 p.m.•48 views

RLSA-2023:2655 Moderate: nodejs and nodejs-nodemon security, bug fix, and enhancement update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs 16.19.1, nodejs-nodemon 2.0.20. Security Fixes: c-ares: buffer overflow in...

8.6CVSS8.3AI score0.02023EPSS
Exploits3References8
OSV
OSV
•added 2023/05/16 12:0 a.m.•48 views

ALSA-2023:3082 Moderate: pcs security and bug fix update

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: rubygem-rack: Denial of service in Multipart MIME parsing CVE-2023-27530 rubygem-rack: denial of service in header parsing CVE-2023-27539 For more details about the security...

7.5CVSS6.9AI score0.0183EPSS
Exploits0References6
OSV
OSV
•added 2023/05/15 8:58 p.m.•48 views

CVE-2023-31145 Reflected XSS vulnerability in CollaboraOnline

Collabora Online is a collaborative online office suite based on LibreOffice technology. This vulnerability report describes a reflected XSS vulnerability with full CSP bypass in Nextcloud installations using the recommended bundle. The vulnerability can be exploited to perform a trivial account...

4.3CVSS5.9AI score0.00398EPSS
Exploits0References3
OSV
OSV
•added 2023/05/09 12:0 a.m.•48 views

ALSA-2023:2458 Important: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: use-after-free in l2capconnect and l2capleconnectreq in net/bluetooth/l2capcore.c CVE-2022-42896 net/ulp: use-after-free in listening ULP sockets CVE-2023-0461 cpu: AMD CPUs may transiently execu...

8.8CVSS8.9AI score0.03763EPSS
Exploits13References82
OSV
OSV
•added 2023/04/26 3:28 p.m.•48 views

RLSA-2023:1879 Important: java-17-openjdk security and bug fix update

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fixes: OpenJDK: improper connection handling during TLS handshake 8294474 CVE-2023-21930 OpenJDK: Swing HTML parsing issue 8296832 CVE-2023-21939 OpenJDK:...

7.4CVSS6.8AI score0.02474EPSS
Exploits1References11
OSV
OSV
•added 2023/04/25 7:48 p.m.•48 views

GHSA-J4RF-7357-F4CG Unpatched extfs vulnerabilities are exploitable through suid-mode Apptainer

Impact There is an ext4 use-after-free flaw described in CVE-2022-1184 that is exploitable through versions of Apptainer 1.1.0 and installations that include apptainer-suid 1.1.8 on older operating systems where that CVE has not been patched. That includes Red Hat Enterprise Linux 7, Debian 10...

7CVSS7.7AI score0.00369EPSS
Exploits0References18
OSV
OSV
•added 2023/04/25 12:0 a.m.•48 views

ALSA-2023:1909 Important: java-1.8.0-openjdk security and bug fix update

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fixes: OpenJDK: improper connection handling during TLS handshake 8294474 CVE-2023-21930 OpenJDK: Swing HTML parsing issue 8296832 CVE-2023-21939 OpenJDK:...

7.4CVSS6.8AI score0.02474EPSS
Exploits1References16
OSV
OSV
•added 2023/04/20 10:1 p.m.•48 views

GHSA-M3C3-9QJ7-7XMX Exposure of Sensitive Information to an Unauthorized Actor in org.xwiki.platform:xwiki-platform-office-viewer

Impact The office document viewer macro was allowing anyone to see any file content from the hosting server, provided that the office server was connected and depending on the permissions of the user running the servlet engine e.g. tomcat running XWiki. The same vulnerability also allowed to...

7.5CVSS7.5AI score0.0101EPSS
Exploits1References6
OSV
OSV
•added 2023/04/11 12:0 a.m.•48 views

ALSA-2023:1703 Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: FUSE filesystem low-privileged user privileges escalation CVE-2023-0386 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

7.8CVSS7.9AI score0.0788EPSS
Exploits14References4
OSV
OSV
•added 2023/04/11 12:0 a.m.•48 views

ALSA-2023:1691 Important: kernel-rt security and bug fix update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: FUSE filesystem low-privileged user privileges escalation CVE-2023-0386 For more details about the security issues, including the...

7.8CVSS8.2AI score0.0788EPSS
Exploits14References4
OSV
OSV
•added 2023/03/03 10:46 p.m.•48 views

GHSA-VPX4-7RFP-H545 Unprivileged XWiki Platform users can make arbitrary select queries using DatabaseListProperty and suggest.vm

Impact Any user with edit right can execute arbitrary database select and access data stored in the database. To reproduce: In admin, rights, remove scripting rights for XWikiAllGroup. Create a new user without any special privileges. Create a page "Private.WebHome" with TOKEN42 as content. Go to...

6.5CVSS6.4AI score0.00637EPSS
Exploits1References4
OSV
OSV
•added 2023/02/21 9:0 p.m.•48 views

CVE-2023-25157 Unfiltered SQL Injection Vulnerabilities in Geoserver

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. GeoServer includes support for the OGC Filter expression language and the OGC Common Query Language CQL as part of the Web Feature Service WFS and Web Map Service WMS protocols. CQL is...

9.8CVSS8.2AI score0.85247EPSS
Exploits2References4
OSV
OSV
•added 2023/02/17 12:0 a.m.•48 views

DSA-5352-1 wpewebkit - security update

Bulletin has no description...

8.8CVSS9AI score0.09426EPSS
Exploits0
OSV
OSV
•added 2023/02/16 10:31 p.m.•48 views

GO-2023-1571 Denial of service via crafted HTTP/2 stream in net/http and golang.org/x/net

A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests...

7.5CVSS7.6AI score0.04561EPSS
Exploits0References4
OSV
OSV
•added 2023/02/09 12:0 a.m.•48 views

DLA-3314-1 libsdl2 - security update

Bulletin has no description...

8.8CVSS7.5AI score0.03299EPSS
Exploits12
OSV
OSV
•added 2023/02/06 11:27 p.m.•48 views

GHSA-8MJG-8C8G-6H85 Kubernetes Sensitive Information leak via Log File

In Kubernetes clusters using a logging level of at least 4, processing a malformed docker config file will result in the contents of the docker config file being leaked, which can include pull secrets or other registry credentials. This affects v1.19.3, v1.18.10, v1.17.13...

4.7CVSS5.4AI score0.00461EPSS
Exploits0References8
OSV
OSV
•added 2023/01/29 12:0 a.m.•48 views

DSA-5332-1 git - security update

Bulletin has no description...

9.8CVSS7.4AI score0.56334EPSS
Exploits1
OSV
OSV
•added 2023/01/12 12:0 p.m.•48 views

RUSTSEC-2023-0002 git2 Rust package suppresses ssh host key checking

By default, when accessing an ssh repository ie via an ssh: git repository url the git2 Rust package does not do any host key checking. Additionally, the provided API is not sufficient for a an application to do meaningful checking itself. Impact When connecting to an ssh repository, and when an...

5.9CVSS5.6AI score0.00649EPSS
Exploits0References4
OSV
OSV
•added 2023/01/12 12:0 a.m.•48 views

ALSA-2023:0110 Moderate: sqlite security update

SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL databas...

7.5CVSS7.4AI score0.19193EPSS
Exploits2References4
OSV
OSV
•added 2023/01/11 12:0 a.m.•48 views

DSA-5316-1 netty - security update

Bulletin has no description...

7.5CVSS6.8AI score0.0628EPSS
Exploits2
OSV
OSV
•added 2023/01/03 12:28 p.m.•48 views

GHSA-J94P-HV25-RM5G Apiman has potential permissions bypass

Impact Incorrect default permissions for certain read-only resources in the Apiman 1.5.7.Final through 2.2.3.Final in the Apiman Manager REST API allows a remote authenticated attacker to access information and resources in an Apiman Organizations they are not a member of and/or do not have...

7.1CVSS6AI score0.00604EPSS
Exploits0References6
OSV
OSV
•added 2022/12/16 11:15 p.m.•48 views

PYSEC-2022-42993

GuardDog is a CLI tool to identify malicious PyPI packages. Versions prior to v0.1.8 are vulnerable to arbitrary file write when scanning a specially-crafted remote PyPI package. Extracting files using shutil.unpackarchive from a potentially malicious tarball without validating that the destinati...

6.5CVSS6.9AI score0.00704EPSS
Exploits1References3
OSV
OSV
•added 2022/12/08 7:1 p.m.•48 views

GO-2022-1144 Excessive memory growth in net/http and golang.org/x/net/http2

An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests. HTTP/2 server connections contain a cache of HTTP header keys sent by the client. While the total number of entries in this cache is capped, an attacker sending very large keys can cause the server to allocate...

5.3CVSS6.7AI score0.05623EPSS
Exploits0References4
OSV
OSV
•added 2022/11/08 11:0 p.m.•48 views

GHSA-8G2P-5PQH-5JMC .NET Information Disclosure Vulnerability

Microsoft is releasing this security advisory to provide information about a vulnerability in .NET, .NET Core and .NET Framework's System.Data.SqlClient and Microsoft.Data.SqlClient NuGet Packages. A vulnerability exists in System.Data.SqlClient and Microsoft.Data.SqlClient libraries where a...

5.8CVSS6.1AI score0.00747EPSS
Exploits0References6
OSV
OSV
•added 2022/11/08 6:25 a.m.•48 views

RLSA-2022:7647 Moderate: httpd:2.4 security update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modsed: Read/write beyond bounds CVE-2022-23943 httpd: modlua: Use of uninitialized value of in r:parsebody CVE-2022-22719 httpd: core: Possible buffer overflow with very...

8.1CVSS8.8AI score0.90407EPSS
Exploits2References11
OSV
OSV
•added 2022/11/01 12:0 p.m.•48 views

RUSTSEC-2022-0064 X.509 Email Address 4-byte Buffer Overflow

A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue certificate...

7.5CVSS8.2AI score0.9077EPSS
Exploits6References3
OSV
OSV
•added 2022/11/01 12:0 a.m.•48 views

CVE-2022-3786 X.509 Email Address Variable Length Buffer Overflow

A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed a malicious certificate or for an application to continue certificate...

7.5CVSS7.6AI score0.92488EPSS
Exploits2References7
OSV
OSV
•added 2022/10/31 12:0 a.m.•48 views

DLA-3174-1 pysha3 - security update

Bulletin has no description...

9.8CVSS8.9AI score0.05193EPSS
Exploits1
OSV
OSV
•added 2022/10/19 7:0 p.m.•48 views

GHSA-27RF-8MJP-R363 Sandbox bypass vulnerabilities in Jenkins Script Security Plugin and in Pipeline: Groovy Plugin

Script Security Plugin provides a sandbox feature that allows low privileged users to define scripts, including Pipelines, that are generally safe to execute. Calls to code defined inside a sandboxed script are intercepted, and various allowlists are checked to determine whether the call is to be...

8.8CVSS9.9AI score0.01095EPSS
Exploits0References3
OSV
OSV
•added 2022/10/18 9:16 p.m.•48 views

GHSA-C27J-76XG-6X4F Kirby CMS vulnerable to user enumeration in the brute force protection

TL;DR This vulnerability affects all Kirby sites with user accounts unless Kirby's API and Panel are disabled in the config. It can only be exploited for targeted attacks because the attack does not scale to brute force. ---- Introduction User enumeration is a type of vulnerability that allows...

6.5CVSS5.7AI score0.00585EPSS
Exploits0References7
OSV
OSV
•added 2022/09/22 12:0 a.m.•48 views

GHSA-6CVR-RVPM-9WX4 Jenkins SCM HttpClient Plugin vulnerable to Cross-Site Request Forgery

SCM HttpClient Plugin 1.5 and earlier does not perform permission check in a method implementing form validation. This allows attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing...

4.2CVSS8.7AI score0.0039EPSS
Exploits0References4
Total number of security vulnerabilities5000