Lucene search
K
OsvMost viewed

907335 matches found

OSV
OSV
added 2023/11/06 7:32 a.m.44 views

BIT-2020-2760

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

5.5CVSS6AI score0.03014EPSS
Exploits0References11Affected Software1
OSV
OSV
added 2023/10/31 3:3 p.m.44 views

CVE-2023-46240 CodeIgniter4 vulnerable to information disclosure when detailed error report is displayed in production environment

CodeIgniter is a PHP full-stack web framework. Prior to CodeIgniter4 version 4.4.3, if an error or exception occurs, a detailed error report is displayed even if in the production environment. As a result, confidential information may be leaked. Version 4.4.3 contains a patch. As a workaround,...

7.5CVSS7.3AI score0.00621EPSS
Exploits0References5
OSV
OSV
added 2023/10/30 12:0 a.m.44 views

ALSA-2023:6194 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 115.4.1. Security Fixes: Mozilla: Queued up rendering could have allowed websites to clickjack CVE-2023-5721 Mozilla: Memory safety bugs fixed in Firefox 119, Firefox ESR 115.4, and...

9.8CVSS9.1AI score0.01936EPSS
Exploits0References16
OSV
OSV
added 2023/10/25 6:20 a.m.44 views

BIT-2023-42627

Multiple stored cross-site scripting XSS vulnerabilities in the Commerce module in Liferay Portal 7.3.5 through 7.4.3.91, and Liferay DXP 7.3 update 33 and earlier, and 7.4 before update 92 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a 1...

9.6CVSS5.7AI score0.02261EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2023/10/25 6:20 a.m.44 views

BIT-2023-44309

Multiple stored cross-site scripting XSS vulnerabilities in the fragment components in Liferay Portal 7.4.2 through 7.4.3.53, and Liferay DXP 7.4 before update 54 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into any non-HTML field of a linked sourc...

9CVSS5.7AI score0.00462EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/10/24 6:36 p.m.44 views

RLSA-2023:5765 Important: nodejs security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: nodejs: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 A Rocky Enterprise Software...

7.5CVSS8.3AI score0.99999EPSS
Exploits19References2
OSV
OSV
added 2023/10/24 6:36 p.m.44 views

RLSA-2023:5850 Important: nodejs:16 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 For more details about the security...

7.5CVSS8.4AI score0.99999EPSS
Exploits19References2
OSV
OSV
added 2023/10/24 6:35 p.m.44 views

RLSA-2023:5927 Important: php:8.0 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: XML loading external entity without being enabled CVE-2023-3823 php: phar Buffer mismanagement CVE-2023-3824 php: 1-byte array overrun in common path resolve code CVE-2023-0568 php: DoS...

9.8CVSS7.9AI score0.08003EPSS
Exploits6References7
OSV
OSV
added 2023/10/24 6:19 p.m.44 views

BIT-2023-42497

Reflected cross-site scripting XSS vulnerability on the Export for Translation page in Liferay Portal 7.4.3.4 through 7.4.3.85, and Liferay DXP 7.4 before update 86 allows remote attackers to inject arbitrary web script or HTML via the...

9.6CVSS5.7AI score0.0046EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/10/19 6:29 a.m.44 views

BIT-2023-44981

Authorization Bypass Through User-Controlled Key vulnerability in Apache ZooKeeper. If SASL Quorum Peer authentication is enabled in ZooKeeper quorum.auth.enableSasl=true, the authorization is done by verifying that the instance part in SASL authentication ID is listed in zoo.cfg server list. The...

9.1CVSS7AI score0.01713EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/10/19 12:0 a.m.44 views

ALSA-2023:5928 Important: tomcat security update

Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 For more details about the security issues, including the impact, a CVSS...

7.5CVSS8.3AI score0.99999EPSS
Exploits19References4
OSV
OSV
added 2023/10/18 12:0 a.m.44 views

ALSA-2023:5867 Moderate: grafana security update

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fixes: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 golang: net/http, x/net/http2: rapid stream resets can cause...

7.5CVSS8.2AI score0.99999EPSS
Exploits19References6
OSV
OSV
added 2023/10/17 10:15 p.m.44 views

CVE-2023-22102

Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/J. Supported versions that are affected are 8.1.0 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Connectors. Successful...

8.3CVSS7AI score0.00872EPSS
Exploits0References2
OSV
OSV
added 2023/10/16 12:0 a.m.44 views

ALSA-2023:5711 Moderate: nginx security update

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. Security Fixes: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 For more details about the securi...

7.5CVSS8.3AI score0.99999EPSS
Exploits19References4
OSV
OSV
added 2023/09/12 8:51 p.m.44 views

GHSA-3QF9-QXFJ-4WHC Microsoft Security Advisory CVE-2023-36792: .NET Remote Code Execution Vulnerability

Microsoft Security Advisory CVE-2023-36792: .NET Remote Code Execution Vulnerability Executive summary Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 7.0 and .NET 6.0. This advisory also provides guidance on what developers can do to update thei...

7.8CVSS8.5AI score0.01441EPSS
Exploits0References5
OSV
OSV
added 2023/09/12 12:0 a.m.44 views

ALSA-2023:5061 Moderate: dmidecode security update

The dmidecode packages provide utilities for extracting Intel 64 and Intel Itanium hardware information from the system BIOS or Extensible Firmware Interface EFI, depending on the SMBIOS/DMI standard. This information typically includes system manufacturer, model name, serial number, BIOS version...

7.1CVSS7.1AI score0.00523EPSS
Exploits1References4
OSV
OSV
added 2023/08/31 4:54 p.m.44 views

RLSA-2023:3847 Moderate: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: tls: race condition in dotlsgetsockopt may lead to use-after-free or NULL pointer dereference CVE-2023-28466 For more details about the security issues, including the impact, a CVSS score...

7CVSS7.5AI score0.0027EPSS
Exploits0References2
OSV
OSV
added 2023/08/23 8:5 p.m.44 views

CVE-2023-40035 Craft CMS vulnerable to Remote Code Execution via validatePath bypass

Craft is a CMS for creating custom digital experiences on the web and beyond. Bypassing the validatePath function can lead to potential remote code execution. This vulnerability can lead to malicious control of vulnerable systems and data exfiltrations. Although the vulnerability is exploitable...

7.2CVSS7.3AI score0.01909EPSS
Exploits1References6
OSV
OSV
added 2023/08/22 7:16 p.m.44 views

CVE-2022-48565

An XML External Entity XXE issue was discovered in Python through 3.9.1. The plistlib module no longer accepts entity declarations in XML plist files to avoid XML vulnerabilities...

9.8CVSS7.1AI score
Exploits0References7
OSV
OSV
added 2023/08/17 12:0 a.m.44 views

DLA-3534-1 rar - security update

Bulletin has no description...

7.5CVSS7.7AI score0.98975EPSS
Exploits12
OSV
OSV
added 2023/08/15 6:31 p.m.44 views

GHSA-PRGP-W7VF-CH62 LangChain vulnerable to arbitrary code execution

An issue in langchain langchain-ai before version 0.0.325 allows a remote attacker to execute arbitrary code via a crafted script to the PythonAstREPLTool.run component...

9.8CVSS9.5AI score0.01267EPSS
Exploits1References8
OSV
OSV
added 2023/08/14 6:15 p.m.44 views

CVE-2023-0872

The Horizon REST API includes a users endpoint in OpenMNS Horizon 31.0.8 and versions earlier than 32.0.2 on multiple platforms is vulnerable to elevation of privilege. The solution is to upgrade to Meridian 2023.1.6, 2022.1.19, 2021.1.30, 2020.1.38 or Horizon 32.0.2 or newer. Meridian and Horizo...

8CVSS7AI score
Exploits0References2
OSV
OSV
added 2023/08/09 12:56 p.m.44 views

GHSA-VMCH-3W2X-VHGQ .NET Denial of Service Vulnerability

Microsoft Security Advisory CVE-2023-38180: .NET Denial of Service Vulnerability Executive summary Microsoft is releasing this security advisory to provide information about a vulnerability in ASP.NET Core 2.1, .NET 6.0, and .NET 7.0. This advisory also provides guidance on what developers can do...

7.5CVSS7.8AI score0.15519EPSS
Exploits0References8
OSV
OSV
added 2023/08/08 4:15 p.m.44 views

PYSEC-2023-144

Cross Site Request Forgery CSRF vulnerability in wger Project wger Workout Manager 2.2.0a3 allows a remote attacker to gain privileges via the user-management feature in the gym/views/gym.py, templates/gym/resetuserpassword.html, templates/user/overview.html, core/views/user.py, and...

8.8CVSS7.3AI score0.00318EPSS
Exploits0References3
OSV
OSV
added 2023/08/01 12:0 a.m.44 views

ALSA-2023:4412 Important: openssh security update

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fixes: openssh: Remote code execution in ssh-agent PKCS11 support CVE-2023-38408 For more details...

9.8CVSS8.9AI score0.76768EPSS
Exploits10References4
OSV
OSV
added 2023/08/01 12:0 a.m.44 views

ASB-A-264880895

In update of MmsProvider.java, there is a possible way to change directory permissions due to a path traversal error. This could lead to local denial of service of SIM recognition with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.4AI score0.00095EPSS
Exploits0References2
OSV
OSV
added 2023/08/01 12:0 a.m.44 views

ASB-A-253043490

In onCreate of ManagePermissionsActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. This could lead to local escalation of privilege with physical access to a device that's been factory reset with no additional execution privileges needed...

6.8CVSS6.7AI score0.00125EPSS
Exploits0References2
OSV
OSV
added 2023/07/25 8:45 p.m.44 views

CVE-2023-37920 Certifi's removal of e-Tugra root certificate

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi prior to version 2023.07.22 recognizes "e-Tugra" root certificates. e-Tugra's root certificates were subject to an investigation prompted ...

7.5CVSS7.7AI score0.00468EPSS
Exploits0References7
OSV
OSV
added 2023/07/20 3:15 p.m.44 views

CVE-2023-34967

A Type Confusion vulnerability was found in Samba's mdssvc RPC service for Spotlight. When parsing Spotlight mdssvc RPC packets, one encoded data structure is a key-value style dictionary where the keys are character strings, and the values can be any of the supported types in the mdssvc protocol...

5.3CVSS7AI score0.62606EPSS
Exploits0References11
OSV
OSV
added 2023/07/19 12:0 a.m.44 views

DLA-3500-1 python-django - security update

Bulletin has no description...

7.5CVSS7.6AI score0.02669EPSS
Exploits0
OSV
OSV
added 2023/07/16 12:0 a.m.44 views

DSA-5453-1 linux - security update

Bulletin has no description...

7.8CVSS8AI score0.06127EPSS
Exploits2
OSV
OSV
added 2023/07/01 12:0 a.m.44 views

ASB-A-274445194

In validateForCommonR1andR2 of PasspointConfiguration.java, there is a possible way to inflate the size of a config file with no limits due to a buffer overflow. This could lead to local denial of service with no additional execution privileges needed. User interaction is needed for exploitation...

5.5CVSS5.5AI score0.00098EPSS
Exploits0References2
OSV
OSV
added 2023/06/22 10:39 p.m.44 views

CVE-2023-34241 CUPS vulnerable to use-after-free in cupsdAcceptClient()

OpenPrinting CUPS is a standards-based, open source printing system for Linux and other Unix-like operating systems. Starting in version 2.0.0 and prior to version 2.4.6, CUPS logs data of free memory to the logging service AFTER the connection has been closed, when it should have logged the data...

5.3CVSS6.6AI score0.01395EPSS
Exploits1References13
OSV
OSV
added 2023/06/21 12:0 a.m.44 views

DLA-3462-1 wordpress - security update

Bulletin has no description...

6.1CVSS5.6AI score0.79527EPSS
Exploits7
OSV
OSV
added 2023/06/12 4:15 p.m.44 views

CVE-2023-34468

The DBCPConnectionPool and HikariCPConnectionPool Controller Services in Apache NiFi 0.0.2 through 1.21.0 allow an authenticated and authorized user to configure a Database URL with the H2 driver that enables custom code execution. The resolution validates the Database URL and rejects H2 JDBC...

8.8CVSS8.5AI score0.63383EPSS
Exploits9References5
OSV
OSV
added 2023/06/09 7:32 p.m.44 views

GHSA-Q36X-R5X4-H4Q6 Denial of service via HTTP/2 HEADERS frames padding

A program using swift-nio-http2 is vulnerable to a denial of service attack, caused by a network peer sending a specially crafted HTTP/2 frame. This attack affects all swift-nio-http2 versions from 1.0.0 to 1.19.2. It is fixed in 1.20.0 and later releases. This vulnerability is caused by a logica...

7.5CVSS7.3AI score0.01248EPSS
Exploits0References4
OSV
OSV
added 2023/05/26 9:15 p.m.44 views

CVE-2023-28321

An improper certificate validation vulnerability exists in curl v8.1.0 in the way it supports matching of wildcard patterns when listed as "Subject Alternative Name" in TLS server certificates. curl can be built to use its own name matching function for TLS rather than one provided by a TLS...

5.9CVSS6.8AI score0.0181EPSS
Exploits1References12
OSV
OSV
added 2023/05/22 8:36 p.m.44 views

GHSA-J8R2-6X86-Q33Q Unintended leak of Proxy-Authorization header in requests

Impact Since Requests v2.3.0, Requests has been vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization header to...

6.1CVSS6.7AI score0.02782EPSS
Exploits1References10
OSV
OSV
added 2023/05/07 2:15 a.m.44 views

CVE-2023-31047

In Django 3.2 before 3.2.19, 4.x before 4.1.9, and 4.2 before 4.2.1, it was possible to bypass validation when using one form field to upload multiple files. This multiple upload has never been supported by forms.FileField or forms.ImageField only the last uploaded file was validated. However,...

9.8CVSS7.2AI score
Exploits0References6
OSV
OSV
added 2023/05/03 12:0 a.m.44 views

DSA-5397-1 wpewebkit - security update

Bulletin has no description...

8.8CVSS7.6AI score0.27076EPSS
Exploits1
OSV
OSV
added 2023/04/26 3:28 p.m.44 views

RLSA-2023:1743 Important: nodejs:14 security, bug fix, and enhancement update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs 14.21.3. Security Fixes: decode-uri-component: improper input validation resulting i...

8.6CVSS8.1AI score0.24928EPSS
Exploits4References9
OSV
OSV
added 2023/04/25 7:48 p.m.44 views

GHSA-J4RF-7357-F4CG Unpatched extfs vulnerabilities are exploitable through suid-mode Apptainer

Impact There is an ext4 use-after-free flaw described in CVE-2022-1184 that is exploitable through versions of Apptainer 1.1.0 and installations that include apptainer-suid 1.1.8 on older operating systems where that CVE has not been patched. That includes Red Hat Enterprise Linux 7, Debian 10...

7CVSS7.7AI score0.00369EPSS
Exploits0References18
OSV
OSV
added 2023/04/01 12:0 a.m.44 views

ASB-A-252762941

In onNullBinding of CallScreeningServiceHelper.java, there is a possible way to record audio without showing a privacy indicator due to a permissions bypass. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.7AI score0.00092EPSS
Exploits0References2
OSV
OSV
added 2023/03/24 9:30 p.m.44 views

GHSA-948F-J464-RFJ2 Moodle may allow students to bypass sequential navigation during a quiz attempt

In Moodle, insufficient limitations in some quiz web services made it possible for students to bypass sequential navigation during a quiz attempt...

4.3CVSS4.7AI score0.00563EPSS
Exploits0References5
OSV
OSV
added 2023/02/24 6:48 p.m.44 views

GHSA-F598-MFPV-GMFX Sequelize - Default support for “raw attributes” when using parentheses

Impact Sequelize 6.28.2 and prior has a dangerous feature where using parentheses in the attribute option would make Sequelize use the string as-is in the SQL ts User.findAll attributes: 'countid', 'count' ; Produced sql SELECT countid AS "count" FROM "users" Patches This feature was deprecated i...

10CVSS9.3AI score0.00831EPSS
Exploits0References9
OSV
OSV
added 2023/02/23 8:15 p.m.44 views

CVE-2023-23918

A privilege escalation vulnerability exists in Node.js 19.6.1, 18.14.1, 16.19.1 and 14.21.3 that made it possible to bypass the experimental Permissions https://nodejs.org/api/permissions.html feature in Node.js and access non authorized modules by using process.mainModule.require. This only...

7.5CVSS2.8AI score
Exploits0References2
OSV
OSV
added 2023/02/21 12:0 a.m.44 views

ALSA-2023:0848 Moderate: php:8.0 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later upstream version: php 8.0. BZ2161666 Security Fixes: XKCP: buffer overflow in the SHA-3 reference implementation CVE-2022-37454 php: standard insecure cookie...

9.8CVSS8.8AI score0.49336EPSS
Exploits6References12
OSV
OSV
added 2023/02/21 12:0 a.m.44 views

ALSA-2023:0838 Important: samba security update

Samba is an open-source implementation of the Server Message Block SMB protocol and the related Common Internet File System CIFS protocol, which allow PC-compatible machines to share files, printers, and various information. Security Fixes: samba: RC4/HMAC-MD5 NetLogon Secure Channel is weak and...

8.1CVSS7.2AI score0.02559EPSS
Exploits0References4
OSV
OSV
added 2023/02/21 12:0 a.m.44 views

ALSA-2023:0852 Moderate: httpd:2.4 security and bug fix update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: moddav: out-of-bounds read/write of zero byte CVE-2006-20001 httpd: modproxyajp: Possible request smuggling CVE-2022-36760 httpd: modproxy: HTTP response splitting...

9CVSS7.8AI score0.57941EPSS
Exploits0References8
OSV
OSV
added 2023/02/16 9:56 p.m.44 views

GO-2023-1549 Improper input validation in github.com/openshift/apiserver-library-go

Low-privileged users can set the seccomp profile for pods they control to "unconfined." By default, the seccomp profile used in the restricted-v2 Security Context Constraint SCC is "runtime/default," allowing users to disable seccomp for pods they can create and modify...

6.3CVSS6.3AI score0.00647EPSS
Exploits0References3
Total number of security vulnerabilities5000