Lucene search
K
OsvMost viewed

907947 matches found

OSV
OSV
•added 2014/11/21 12:0 a.m.•46 views

DLA-88-1 ruby1.8 - security update

Bulletin has no description...

7.8CVSS6.1AI score0.056EPSS
Exploits5
OSV
OSV
•added 2014/03/11 12:0 a.m.•46 views

DSA-2873-1 file - several

Bulletin has no description...

5CVSS6.8AI score0.04318EPSS
Exploits2
OSV
OSV
•added 2013/05/12 12:0 a.m.•46 views

DSA-2666-1 xen - several

Bulletin has no description...

6.9CVSS5.7AI score0.00421EPSS
Exploits0
OSV
OSV
•added 2013/01/18 11:48 a.m.•46 views

UBUNTU-CVE-2012-5875

Firefly Media Server 1.0.0.1359 allows remote attackers to cause a denial of service NULL pointer dereference via a 1 crafted Connection HTTP header; a return carriage control character in the 2 Accept Language header, 3 User-agent header, 4 Host header, or 5 protocol version; or a 6 crafted HTTP...

5CVSS5.8AI score0.10814EPSS
Exploits6References6
OSV
OSV
•added 2012/01/23 12:0 a.m.•46 views

DSA-2301-2 rails - several

Bulletin has no description...

9.7AI score
Exploits0
OSV
OSV
•added 2011/11/07 12:0 a.m.•46 views

DSA-2338-1 moodle - several

Bulletin has no description...

6.8CVSS6AI score0.02102EPSS
Exploits0
OSV
OSV
•added 2010/10/12 12:0 a.m.•46 views

DSA-2120-1 postgresql-8.3 - privilege escalation

Bulletin has no description...

6CVSS8.8AI score0.03331EPSS
Exploits0
OSV
OSV
•added 2009/12/23 12:0 a.m.•46 views

DSA-1962-1 kvm - several vulnerabilities

Bulletin has no description...

7.8CVSS7.2AI score0.03112EPSS
Exploits3
OSV
OSV
•added 2008/10/13 12:0 a.m.•46 views

DSA-1653-1 fai-kernels linux-2.6 user-mode-linux - several vulnerabilities

Bulletin has no description...

7.2CVSS6AI score0.03209EPSS
Exploits7
OSV
OSV
•added 2008/02/11 12:0 a.m.•46 views

DSA-1494-1 linux-2.6 - privilege escalation

Bulletin has no description...

7.2CVSS6AI score0.0354EPSS
Exploits3
OSV
OSV
•added 2006/12/10 12:0 a.m.•46 views

DSA-1233 kernel-source-2.6.8 - several

Bulletin has no description...

7.5CVSS6.5AI score0.04601EPSS
Exploits1
OSV
OSV
•added 2006/11/27 12:0 a.m.•46 views

DSA-1219 texinfo

Bulletin has no description...

4.6CVSS7.4AI score0.00526EPSS
Exploits2
OSV
OSV
•added 2006/10/06 12:0 a.m.•46 views

DSA-1192-1 mozilla

Bulletin has no description...

10CVSS5.9AI score0.05706EPSS
Exploits1
OSV
OSV
•added 2005/12/12 12:0 a.m.•46 views

DSA-919-2 curl - buffer overflow

Bulletin has no description...

7.5CVSS9.3AI score0.05188EPSS
Exploits0
OSV
OSV
•added 2005/02/04 12:0 a.m.•46 views

DSA-668-1 postgresql - privilege escalation

Bulletin has no description...

4.3CVSS6AI score0.00499EPSS
Exploits0
OSV
OSV
•added 2004/04/14 12:0 a.m.•46 views

DSA-480 linux-kernel-2.4.17+2.4.18-hppa - several vulnerabilities

Bulletin has no description...

7.2CVSS6.2AI score0.02603EPSS
Exploits0
OSV
OSV
•added 2003/04/30 12:0 a.m.•46 views

DSA-295 pptpd - buffer overflow

Bulletin has no description...

7.5CVSS6AI score0.71026EPSS
Exploits7
OSV
OSV
•added 2026/06/19 3:12 p.m.•45 views

MAL-2026-6210 Malicious code in @apexcraft/nano-key (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c46938b3634fb4de89ddf44b765e1c766c871a40fb31c54609c1b3526074e65c @apexcraft/nano-key advertises itself as a 12-byte sortable ID generator README and repository metadata are copied from yiwen-ai/xid-ts, an unrelated...

6.7AI score
Exploits0References9
OSV
OSV
•added 2026/06/05 12:2 a.m.•45 views

OSV-2026-850 Heap-buffer-overflow in opus_repacketizer_out_range_impl

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=519646826 Crash type: Heap-buffer-overflow WRITE Crash state: opusrepacketizeroutrangeimpl opusrepacketizeroutrange codecparse...

5.4AI score
Exploits0References1
OSV
OSV
•added 2025/09/08 2:13 p.m.•45 views

GO-2025-3930 Soft Serve vulnerable to arbitrary file writing through SSH API in github.com/charmbracelet/soft-serve

Soft Serve vulnerable to arbitrary file writing through SSH API in github.com/charmbracelet/soft-serve...

7.7CVSS6.8AI score0.00315EPSS
Exploits0References2
OSV
OSV
•added 2025/09/03 1:15 p.m.•45 views

AZL-67061 CVE-2025-9901 affecting package libsoup 3.0.4-12

A flaw was found in libsoup’s caching mechanism, SoupCache, where the HTTP Vary header is ignored when evaluating cached responses. This header ensures that responses vary appropriately based on request headers such as language or authentication. Without this check, cached content can be...

5.9CVSS5.7AI score0.0043EPSS
Exploits0References1
OSV
OSV
•added 2025/04/14 11:35 a.m.•45 views

BIT-PYTHON-2025-0938 URL parser allowed square brackets in domain names

The Python standard library functions urllib.parse.urlsplit and urlparse accepted domain names that included square brackets which isn't valid according to RFC 3986. Square brackets are only meant to be used as delimiters for specifying IPv6 and IPvFuture hosts in URLs. This could result in...

6.3CVSS5.8AI score0.01499EPSS
Exploits0References12
OSV
OSV
•added 2025/03/10 7:1 p.m.•45 views

GO-2025-3505 Fleet has SAML authentication vulnerability due to improper SAML response validation in github.com/fleetdm/fleet

Fleet has SAML authentication vulnerability due to improper SAML response validation in github.com/fleetdm/fleet. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports...

9.3CVSS6.5AI score0.00623EPSS
Exploits0References4
OSV
OSV
•added 2024/11/13 10:13 a.m.•45 views

SUSE-SU-2024:3984-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-36244: net/sched: taprio: extend minimum interval restriction to entire cycle too bsc1226797. - CVE-2024-41031: mm/filemap: skip to create PMD-sized...

9.1CVSS7.8AI score0.01367EPSS
Exploits4References624
OSV
OSV
•added 2024/11/11 9:29 a.m.•45 views

SUSE-RU-2024:3971-1 Recommended update for mojo-parent

This update for mojo-parent fixes the following issues: xalan-j2 was updated from version 2.7.2 to 2.7.3: - Security issues fixed: CVE-2022-34169: Fixed integer truncation issue when processing malicious XSLT stylesheets bsc1201684 - Changes and Bugs fixed: Java 8 is now the minimum requirement...

7.5CVSS8.4AI score0.17673EPSS
Exploits2References2
OSV
OSV
•added 2024/11/02 4:56 p.m.•45 views

MGASA-2024-0344 Updated kernel-linus packages fix security vulnerabilities

Vanilla upstream kernel version 6.6.58 fixes bugs and vulnerabilities. For information about the vulnerabilities see the links...

9.1CVSS6.9AI score0.01367EPSS
Exploits2References8
OSV
OSV
•added 2024/10/21 8:6 p.m.•45 views

CVE-2022-49021 net: phy: fix null-ptr-deref while probe() failed

In the Linux kernel, the following vulnerability has been resolved: net: phy: fix null-ptr-deref while probe failed I got a null-ptr-deref report as following when doing fault injection test: BUG: kernel NULL pointer dereference, address: 0000000000000058 Oops: 0000 1 PREEMPT SMP KASAN PTI CPU: 1...

5.5CVSS5.8AI score0.0028EPSS
Exploits0References11
OSV
OSV
•added 2024/10/07 7:51 p.m.•45 views

CVE-2024-31227 Denial-of-service due to malformed ACL selectors in Redis

Redis is an open source, in-memory database that persists on disk. An authenticated with sufficient privileges may create a malformed ACL selector which, when accessed, triggers a server panic and subsequent denial of service. The problem exists in Redis 7 prior to versions 7.2.6 and 7.4.1. Users...

4.4CVSS4.1AI score0.00397EPSS
Exploits0References4
OSV
OSV
•added 2024/10/03 12:0 a.m.•45 views

DLA-3909-1 zabbix - security update

Bulletin has no description...

9.9CVSS6.2AI score0.01606EPSS
Exploits3
OSV
OSV
•added 2024/10/02 11:28 a.m.•45 views

RHSA-2023:6171 Red Hat Security Advisory: Red Hat Product OCP Tools 4.11 Openshift Jenkins security update

Bulletin has no description...

9.8CVSS8.2AI score0.99999EPSS
Exploits67References53
OSV
OSV
•added 2024/10/02 5:7 a.m.•45 views

RHSA-2024:7000 Red Hat Security Advisory: kernel security update

Bulletin has no description...

7.8CVSS7.7AI score0.01028EPSS
Exploits2References763
OSV
OSV
•added 2024/10/02 5:6 a.m.•45 views

RHSA-2024:4831 Red Hat Security Advisory: kernel-rt security update

Bulletin has no description...

7.8CVSS7.8AI score0.02224EPSS
Exploits1References231
OSV
OSV
•added 2024/09/27 3:16 p.m.•45 views

RHSA-2023:3884 Red Hat Security Advisory: Red Hat Single Sign-On 7.6.4 security update on RHEL 8

Bulletin has no description...

8.1CVSS6.5AI score0.01771EPSS
Exploits0References26
OSV
OSV
•added 2024/09/26 10:15 p.m.•45 views

CVE-2024-47177

Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-47076, CVE-2024-47175, CVE-2024-47176. Reason: This candidate is a duplicate of CVE-2024-47076, CVE-2024-47175, and CVE-2024-47176. Notes: All CVE users should reference CVE-2024-47076, CVE-2024-47175, and/or...

7AI score
Exploits6References1
OSV
OSV
•added 2024/09/20 1:54 p.m.•45 views

RHSA-2019:2955 Red Hat Security Advisory: rh-nodejs8-nodejs security update

Bulletin has no description...

7.5CVSS7.2AI score0.87806EPSS
Exploits1References44
OSV
OSV
•added 2024/09/18 3:52 p.m.•45 views

GHSA-RRR8-F88R-H8Q6 find-my-way has a ReDoS vulnerability in multiparametric routes

Impact A bad regular expression is generated any time you have two parameters within a single segment, when adding a - at the end, like /:a-:b-. Patches Update to find-my-way v8.2.2 or v9.0.1. or subsequent versions. Workarounds No known workarounds. References - CVE-2024-45296 - Detailed blog po...

8.7CVSS6.4AI score0.00674EPSS
Exploits0References8
OSV
OSV
•added 2024/09/16 12:34 p.m.•45 views

RHSA-2023:4413 Red Hat Security Advisory: openssh security update

Bulletin has no description...

9.8CVSS8.9AI score0.76768EPSS
Exploits10References8
OSV
OSV
•added 2024/09/16 7:52 a.m.•45 views

RHSA-2022:1445 Red Hat Security Advisory: java-17-openjdk security and bug fix update

Bulletin has no description...

7.5CVSS6.8AI score0.46677EPSS
Exploits6References30
OSV
OSV
•added 2024/09/16 2:33 a.m.•45 views

RHSA-2020:0912 Red Hat Security Advisory: tomcat6 security update

Bulletin has no description...

7.6CVSS9.3AI score0.9927EPSS
Exploits45References14
OSV
OSV
•added 2024/09/15 9:24 p.m.•45 views

RHSA-2014:0215 Red Hat Security Advisory: cfme security, bug fix, and enhancement update

Bulletin has no description...

7.5CVSS5.6AI score0.34968EPSS
Exploits3References24
OSV
OSV
•added 2024/09/14 12:3 a.m.•45 views

RHSA-2023:3354 Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 SP2 security update

Bulletin has no description...

9.8CVSS7.9AI score0.8377EPSS
Exploits11References69
OSV
OSV
•added 2024/09/13 11:19 p.m.•45 views

RHSA-2022:5826 Red Hat Security Advisory: mariadb:10.5 security, bug fix, and enhancement update

Bulletin has no description...

7.8CVSS6.8AI score0.02458EPSS
Exploits34References177
OSV
OSV
•added 2024/09/13 10:3 p.m.•45 views

RHSA-2020:1624 Red Hat Security Advisory: php:7.2 security, bug fix, and enhancement update

Bulletin has no description...

7.5CVSS8AI score0.10059EPSS
Exploits14References72
OSV
OSV
•added 2024/09/13 4:50 p.m.•45 views

RHSA-2018:0271 Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.19 security update

Bulletin has no description...

8.1CVSS6.9AI score0.99988EPSS
Exploits28References21
OSV
OSV
•added 2024/09/13 2:43 p.m.•45 views

RHSA-2018:0583 Red Hat Security Advisory: rh-ruby22-ruby security, bug fix, and enhancement update

Bulletin has no description...

8.1CVSS7.8AI score0.73927EPSS
Exploits14References62
OSV
OSV
•added 2024/08/21 4:4 p.m.•45 views

GO-2022-1261 usememos/memos Improper Access Control vulnerability in github.com/usememos/memos

usememos/memos Improper Access Control vulnerability in github.com/usememos/memos...

8.2CVSS5.1AI score0.00756EPSS
Exploits1References4
OSV
OSV
•added 2024/08/21 4:3 p.m.•45 views

GO-2022-1217 usememos/memos makes Incorrect Use of Privileged APIs in github.com/usememos/memos

usememos/memos makes Incorrect Use of Privileged APIs in github.com/usememos/memos...

8.1CVSS8.1AI score0.00633EPSS
Exploits1References4
OSV
OSV
•added 2024/08/21 4:3 p.m.•45 views

GO-2022-1189 usememos/memos vulnerable to stored cross-site scripting (XSS) in github.com/usememos/memos

usememos/memos vulnerable to stored cross-site scripting XSS in github.com/usememos/memos...

7.1CVSS5.1AI score0.00601EPSS
Exploits1References7
OSV
OSV
•added 2024/08/19 5:26 p.m.•45 views

GO-2024-3075 CVE-2024-7646 in github.com/kubernetes/ingress-nginx

CVE-2024-7646 in github.com/kubernetes/ingress-nginx. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from vulnerability scanners, please suggest an edit to the...

8.8CVSS8.6AI score0.27018EPSS
Exploits0References5
OSV
OSV
•added 2024/08/12 12:0 a.m.•45 views

ALSA-2024:5193 Important: httpd:2.4 security update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Security issues via?backend applications whose response headers are malicious or exploitable CVE-2024-38476 For more details about the security issues, including the impact,...

9.8CVSS8.9AI score0.41611EPSS
Exploits0References4
Total number of security vulnerabilities5000