Lucene search
K
OsvMost viewed

908419 matches found

OSV
OSV
added 2023/11/07 12:0 a.m.46 views

ALSA-2023:6365 Moderate: mod_auth_openidc security and bug fix update

The modauthopenidc is an OpenID Connect authentication module for Apache HTTP Server. It enables an Apache HTTP Server to operate as an OpenID Connect Relying Party and/or OAuth 2.0 Resource Server. Security Fixes: modauthopenidc: Open Redirect in oidcvalidateredirecturl using tab character...

7.5CVSS6.4AI score0.01327EPSS
Exploits0References6
OSV
OSV
added 2023/11/06 7:33 a.m.46 views

BIT-2020-14765

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: FTS. Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to...

6.8CVSS6.2AI score0.03012EPSS
Exploits0References10Affected Software1
OSV
OSV
added 2023/11/06 7:32 a.m.46 views

BIT-2020-2814

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.6.47 and prior, 5.7.28 and prior and 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise...

4.9CVSS5.7AI score0.02805EPSS
Exploits0References10Affected Software1
OSV
OSV
added 2023/11/06 7:32 a.m.46 views

BIT-2020-28912

With MariaDB running on Windows, when local clients connect to the server over named pipes, it's possible for an unprivileged user with an ability to run code on the server machine to intercept the named pipe connection and act as a man-in-the-middle, gaining access to all the data passed between...

7CVSS7.5AI score0.02487EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/11/06 7:32 a.m.46 views

BIT-2021-2011

Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client...

7.1CVSS5.9AI score0.03028EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2023/11/06 7:32 a.m.46 views

BIT-2021-2022

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.6.50 and prior, 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromis...

6.3CVSS5.3AI score0.01897EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2023/10/26 6:23 a.m.46 views

BIT-2023-39331

A previously disclosed vulnerability CVE-2023-30584 was patched insufficiently in commit 205f1e6. The new path traversal vulnerability arises because the implementation does not protect itself against the application overwriting built-in utility functions with user-defined implementations.Please...

7.7CVSS8.8AI score0.01325EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/10/25 9:15 p.m.46 views

GHSA-XWCQ-PM8M-C4VF crypto-js PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard

Impact Summary Crypto-js PBKDF2 is 1,000 times weaker than originally specified in 1993, and at least 1,300,000 times weaker than current industry standardOWASP PBKDF2 Cheatsheet. This is because it both 1 defaults to SHA1SHA1 wiki, a cryptographic hash algorithm considered insecure since at leas...

9.1CVSS9.2AI score0.00635EPSS
Exploits0References5
OSV
OSV
added 2023/10/24 7:25 p.m.46 views

GHSA-R2HW-74XV-4GQP Nautobot vulnerable to exposure of hashed user passwords via REST API

Impact In Nautobot 2.0.x, certain REST API endpoints, in combination with the ?depth= query parameter, can expose hashed user passwords as stored in the database to any authenticated user with access to these endpoints. The passwords are not exposed in plaintext. Nautobot 1.x is not affected by...

8.3CVSS6.3AI score0.00529EPSS
Exploits1References6
OSV
OSV
added 2023/10/23 12:0 a.m.46 views

ALSA-2023:5998 Important: python39:3.9 and python39-devel:3.9 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

5.3CVSS6.4AI score0.0079EPSS
Exploits0References4
OSV
OSV
added 2023/10/19 6:29 a.m.46 views

BIT-2023-44981

Authorization Bypass Through User-Controlled Key vulnerability in Apache ZooKeeper. If SASL Quorum Peer authentication is enabled in ZooKeeper quorum.auth.enableSasl=true, the authorization is done by verifying that the instance part in SASL authentication ID is listed in zoo.cfg server list. The...

9.1CVSS7AI score0.01713EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/10/17 10:15 p.m.46 views

CVE-2023-22028

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 5.7.43 and prior and 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL...

4.9CVSS6AI score
Exploits0References2
OSV
OSV
added 2023/10/17 12:0 a.m.46 views

ALSA-2023:5763 Important: curl security update

The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Security Fixes: curl: a heap-based buffer overflow in the SOCKS5 proxy handshake CVE-2023-38545 curl: cookie injection with none file...

9.8CVSS8.8AI score0.78483EPSS
Exploits6References6
OSV
OSV
added 2023/10/12 12:0 a.m.46 views

ALSA-2023:5683 Important: mariadb:10.5 security update

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. The following packages have been upgraded to a later upstream version: galera 26.4.14, mariadb 10.5.22. Security Fixes: mariadb: node crashes with Transport endpoint is not connected mysqld got signa...

7.5CVSS7.6AI score0.02082EPSS
Exploits5References18
OSV
OSV
added 2023/10/10 6:15 p.m.46 views

CVE-2023-42795

Incomplete Cleanup vulnerability in Apache Tomcat.When recycling various internal objects in Apache Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1 through 10.1.13, from 9.0.0-M1 through 9.0.80 and from 8.5.0 through 8.5.93, an error could cause Tomcat to skip some parts of the recycling...

5.3CVSS7.5AI score
Exploits0References6
OSV
OSV
added 2023/10/10 12:0 a.m.46 views

DSA-5522-1 tomcat9 - security update

Bulletin has no description...

7.5CVSS8.2AI score0.99999EPSS
Exploits22
OSV
OSV
added 2023/10/02 5:45 a.m.46 views

MAL-2023-8277 Malicious code in playwright-internal (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c44aadbfa206dce3a9b475d92ce277e6db2e0b0e1d8a3781be36355ea3ad4cfa Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSV
added 2023/09/15 7:37 p.m.46 views

CVE-2023-40167 Jetty accepts "+" prefixed value in Content-Length

Jetty is a Java based web server and servlet engine. Prior to versions 9.4.52, 10.0.16, 11.0.16, and 12.0.1, Jetty accepts the + character proceeding the content-length value in a HTTP/1 header field. This is more permissive than allowed by the RFC and other servers routinely reject such requests...

5.3CVSS6.5AI score0.01069EPSS
Exploits0References6
OSV
OSV
added 2023/09/12 8:5 p.m.46 views

GHSA-H7JM-G87P-5935 Microsoft Security Advisory CVE-2023-36796: .NET Remote Code Execution Vulnerability

Microsoft Security Advisory CVE-2023-36796: .NET Remote Code Execution Vulnerability Executive summary Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 7.0 and .NET 6.0. This advisory also provides guidance on what developers can do to update thei...

7.8CVSS8.5AI score0.01441EPSS
Exploits0References4
OSV
OSV
added 2023/08/31 4:54 p.m.46 views

RLSA-2023:4035 Important: nodejs:18 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: c-ares: 0-byte UDP payload Denial of Service CVE-2023-32067 c-ares: buffer overflow in configsortlist due to missing string length check...

8.6CVSS7.4AI score0.01577EPSS
Exploits1References6
OSV
OSV
added 2023/08/15 12:0 a.m.46 views

DLA-3530-1 openssl - security update

Bulletin has no description...

5.3CVSS6.2AI score0.05533EPSS
Exploits0
OSV
OSV
added 2023/08/11 7:15 a.m.46 views

CVE-2023-40267

GitPython before 3.1.32 does not block insecure non-multi options in clone and clonefrom. NOTE: this issue exists because of an incomplete fix for CVE-2022-24439...

9.8CVSS7.3AI score
Exploits0References5
OSV
OSV
added 2023/08/10 12:0 a.m.46 views

DLA-3524-1 linux - security update

Bulletin has no description...

6.5CVSS7.7AI score0.03882EPSS
Exploits1
OSV
OSV
added 2023/07/31 12:0 a.m.46 views

DLA-3512-1 linux-5.10 - security update

Bulletin has no description...

7.8CVSS7.2AI score0.06127EPSS
Exploits3
OSV
OSV
added 2023/07/06 12:0 a.m.46 views

DLA-3481-1 libusrsctp - security update

Bulletin has no description...

6.5CVSS8.2AI score0.03155EPSS
Exploits1
OSV
OSV
added 2023/06/29 12:0 a.m.46 views

ALSA-2023:3922 Critical: go-toolset:rhel8 security update

Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Security Fixes: golang: cmd/go: go command may generate unexpected code at build time when using cgo CVE-2023-29402 golang: cmd/go: go command may execute arbitrary code at build time when...

9.8CVSS9.3AI score0.01837EPSS
Exploits0References10
OSV
OSV
added 2023/06/06 8:15 p.m.46 views

CVE-2023-2603

A vulnerability was found in libcap. This issue occurs in the libcapstrdup function and can lead to an integer overflow if the input string is close to 4GiB...

7.8CVSS7.1AI score
Exploits0References4
OSV
OSV
added 2023/06/01 12:0 a.m.46 views

ASB-A-242704576

In canStartSystemGesture of RecentsAnimationDeviceState.java, there is a possible partial lockscreen bypass due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

4.7CVSS4.8AI score0.00064EPSS
Exploits0References2
OSV
OSV
added 2023/05/31 12:0 a.m.46 views

DSA-5417-1 openssl - security update

Bulletin has no description...

7.5CVSS6.9AI score0.73461EPSS
Exploits0
OSV
OSV
added 2023/05/25 7:53 p.m.46 views

RLSA-2023:2652 Important: pcs security and bug fix update

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: pcs: webpack: Regression of CVE-2023-28154 fixes in the Rocky Linux CVE-2023-2319 rubygem-rack: Denial of service in Multipart MIME parsing CVE-2023-27530 rubygem-rack: denial of...

9.8CVSS7AI score0.0183EPSS
Exploits0References6
OSV
OSV
added 2023/05/23 7:54 p.m.46 views

GHSA-GW42-F939-FHVM Administration Console authentication bypass in openfire xmppserver

An important security issue affects a range of versions of Openfire, the cross-platform real-time collaboration server based on the XMPP protocol that is created by the Ignite Realtime community. Impact Openfire's administrative console the Admin Console, a web-based application, was found to be...

8.6CVSS7.9AI score0.99999EPSS
Exploits15References11
OSV
OSV
added 2023/05/22 7:49 p.m.46 views

GHSA-M6M8-6GQ8-C9FJ Remote Code Execution Vulnerability in Validation Placeholders in CodeIgniter4

Impact This vulnerability allows attackers to execute arbitrary code when you use Validation Placeholders. The vulnerability exists in the Validation library, and validation methods in the controller and in-model validation are also vulnerable because they use the Validation library internally...

9.8CVSS9.7AI score0.01116EPSS
Exploits0References6
OSV
OSV
added 2023/05/15 8:58 p.m.47 views

CVE-2023-31145 Reflected XSS vulnerability in CollaboraOnline

Collabora Online is a collaborative online office suite based on LibreOffice technology. This vulnerability report describes a reflected XSS vulnerability with full CSP bypass in Nextcloud installations using the recommended bundle. The vulnerability can be exploited to perform a trivial account...

4.3CVSS5.9AI score0.00398EPSS
Exploits0References3
OSV
OSV
added 2023/05/15 7:45 p.m.46 views

CVE-2023-32313 Inspect method manipulation in vm2

vm2 is a sandbox that can run untrusted code with Node's built-in modules. In versions 3.9.17 and lower of vm2 it was possible to get a read-write reference to the node inspect method and edit options for console.log. As a result a threat actor can edit options for the console.log command. This...

5.3CVSS5.8AI score0.0079EPSS
Exploits0References6
OSV
OSV
added 2023/05/10 3:30 p.m.46 views

GHSA-P58X-7733-VP9M n8n Directory Traversal vulnerability

The n8n package prior to version 0.216.1 for Node.js allows Directory Traversal...

6.5CVSS6.4AI score0.02316EPSS
Exploits1References9
OSV
OSV
added 2023/05/03 12:0 a.m.46 views

DSA-5397-1 wpewebkit - security update

Bulletin has no description...

8.8CVSS7.6AI score0.27076EPSS
Exploits1
OSV
OSV
added 2023/05/01 12:0 a.m.46 views

ASB-A-256202273

In verifyReplacingVersionCode of InstallPackageHelper.java, there is a possible way to downgrade system apps below system image version due to a logic error in the code. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for...

6.7CVSS6.6AI score0.00091EPSS
Exploits0References3
OSV
OSV
added 2023/04/14 12:0 a.m.46 views

DSA-5389-1 rails - security update

Bulletin has no description...

6.3CVSS5.7AI score0.00907EPSS
Exploits0
OSV
OSV
added 2023/04/12 12:0 a.m.46 views

ALSA-2023:1743 Important: nodejs:14 security, bug fix, and enhancement update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs 14.21.3. Security Fixes: decode-uri-component: improper input validation resulting i...

8.6CVSS8.1AI score0.24928EPSS
Exploits4References16
OSV
OSV
added 2023/04/11 12:0 a.m.46 views

ALSA-2023:1691 Important: kernel-rt security and bug fix update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: FUSE filesystem low-privileged user privileges escalation CVE-2023-0386 For more details about the security issues, including the...

7.8CVSS8.2AI score0.0788EPSS
Exploits14References4
OSV
OSV
added 2023/04/05 9:4 p.m.46 views

GO-2023-1704 Excessive memory allocation in net/http and net/textproto

HTTP and MIME header parsing can allocate large amounts of memory, even when parsing small inputs, potentially leading to a denial of service. Certain unusual patterns of input data can cause the common function used to parse HTTP and MIME headers to allocate substantially more memory than requir...

7.5CVSS8.5AI score0.01888EPSS
Exploits0References3
OSV
OSV
added 2023/04/04 9:11 p.m.46 views

GHSA-6WRF-MXFJ-PF5P Docker Swarm encrypted overlay network with a single endpoint is unauthenticated

Moby is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component dockerd, which is developed as moby/moby is commonly referred to as Docker. Swarm Mode, which is...

6.8CVSS7.8AI score0.02733EPSS
Exploits2References7
OSV
OSV
added 2023/04/04 12:0 a.m.46 views

ALSA-2023:1584 Important: kernel-rt security and bug fix update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: stack overflow in doprocdointvec and procskipspaces CVE-2022-4378 ALSA: pcm: Move rwsem lock inside sndctlelemread to prevent UAF...

7.9CVSS7.6AI score0.0788EPSS
Exploits14References10
OSV
OSV
added 2023/03/31 8:15 p.m.46 views

CVE-2023-27163

request-baskets up to v1.2.1 was discovered to contain a Server-Side Request Forgery SSRF via the component /api/baskets/name. This vulnerability allows attackers to access network resources and sensitive information via a crafted API request...

6.5CVSS6.5AI score
Exploits0References6
OSV
OSV
added 2023/03/29 4:47 p.m.46 views

RLSA-2023:0946 Important: openssl security and bug fix update

OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength general-purpose cryptography library. Security Fixes: openssl: X.400 address type confusion in X.509 GeneralName CVE-2023-0286 openssl: read buffer overflow in...

7.5CVSS7.6AI score0.59501EPSS
Exploits0References20
OSV
OSV
added 2023/03/27 12:0 a.m.46 views

ALSA-2023:1469 Important: kernel-rt security and bug fix update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: tun: avoid double free in tunfreenetdev CVE-2022-4744 ALSA: pcm: Move rwsem lock inside sndctlelemread to prevent UAF CVE-2023-026...

7.9CVSS7.5AI score0.03702EPSS
Exploits0References8
OSV
OSV
added 2023/03/23 9:30 p.m.46 views

GHSA-72W2-J52C-7682 Moodle SQL Injection vulnerability

Insufficient validation of profile field availability condition resulted in an SQL injection risk by default only available to teachers and managers...

8.8CVSS8.9AI score0.01195EPSS
Exploits0References8
OSV
OSV
added 2023/03/17 2:43 p.m.46 views

GHSA-9C6G-QPGJ-RVXW Streamlit publishes previously-patched Cross-site Scripting vulnerability

Synopsis: Streamlit open source publicizes a prior security fix implemented in 2021. The vulnerability affected Streamlit versions between 0.63.0 and 0.80.0 inclusive and was patched on April 21, 2021. If you are using Streamlit with version before 0.63.0 or after 0.80.0, no action is required. 1...

6CVSS6AI score0.00407EPSS
Exploits0References5
OSV
OSV
added 2023/03/10 9:15 p.m.46 views

CVE-2023-27901

Jenkins 2.393 and earlier, LTS 2.375.3 and earlier uses the Apache Commons FileUpload library without specifying limits for the number of request parts introduced in version 1.5 for CVE-2023-24998 in org.kohsuke.stapler.RequestImpl, allowing attackers to trigger a denial of service...

7.5CVSS7.7AI score
Exploits0References1
OSV
OSV
added 2023/02/28 10:21 p.m.46 views

CVE-2023-25575 Secured properties in API Platform Core may be accessible within collections

API Platform Core is the server component of API Platform: hypermedia and GraphQL APIs. Resource properties secured with the security option of the ApiPlatform\Metadata\ApiProperty attribute can be disclosed to unauthorized users. The problem affects most serialization formats, including raw JSON...

7.7CVSS6.5AI score0.00604EPSS
Exploits0References4
Total number of security vulnerabilities5000