Lucene search
K
OsvMost viewed

909147 matches found

OSV
OSV
added 2023/10/31 3:3 p.m.44 views

CVE-2023-46240 CodeIgniter4 vulnerable to information disclosure when detailed error report is displayed in production environment

CodeIgniter is a PHP full-stack web framework. Prior to CodeIgniter4 version 4.4.3, if an error or exception occurs, a detailed error report is displayed even if in the production environment. As a result, confidential information may be leaked. Version 4.4.3 contains a patch. As a workaround,...

7.5CVSS7.3AI score0.00621EPSS
Exploits0References5
OSV
OSV
added 2023/10/24 6:36 p.m.44 views

RLSA-2023:5765 Important: nodejs security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: nodejs: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 A Rocky Enterprise Software...

7.5CVSS8.3AI score0.99999EPSS
Exploits19References2
OSV
OSV
added 2023/10/24 6:36 p.m.44 views

RLSA-2023:5850 Important: nodejs:16 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 For more details about the security...

7.5CVSS8.4AI score0.99999EPSS
Exploits19References2
OSV
OSV
added 2023/10/19 12:0 a.m.44 views

ALSA-2023:5928 Important: tomcat security update

Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 For more details about the security issues, including the impact, a CVSS...

7.5CVSS8.3AI score0.99999EPSS
Exploits19References4
OSV
OSV
added 2023/10/18 3:15 p.m.44 views

CVE-2023-5631

Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcubewashtml.php behavior. This could allow a remote attacker to load arbitrary JavaScript code...

5.4CVSS5.5AI score0.73445EPSS
Exploits2References16
OSV
OSV
added 2023/10/18 12:0 a.m.44 views

ALSA-2023:5867 Moderate: grafana security update

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fixes: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 golang: net/http, x/net/http2: rapid stream resets can cause...

7.5CVSS8.2AI score0.99999EPSS
Exploits19References6
OSV
OSV
added 2023/10/16 12:0 a.m.44 views

ALSA-2023:5711 Moderate: nginx security update

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. Security Fixes: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 For more details about the securi...

7.5CVSS8.3AI score0.99999EPSS
Exploits19References4
OSV
OSV
added 2023/10/14 12:0 a.m.44 views

DLA-3618-1 node-babel - security update

Bulletin has no description...

9.3CVSS8.9AI score0.0052EPSS
Exploits0
OSV
OSV
added 2023/10/06 10:19 p.m.44 views

RXSA-2023:5244 Important: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: ipvlan: out-of-bounds write caused by unclear skb-cb CVE-2023-3090 kernel: UAF in nftables when nftsetlookupglobal triggered after handling named and anonymous sets in batch requests...

7.8CVSS8.2AI score0.05794EPSS
Exploits7References9
OSV
OSV
added 2023/10/01 12:0 a.m.44 views

ASB-A-274058082

In androidviewInputDevicecreate of androidviewInputDevice.cpp, there is a possible way to execute arbitrary code due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS8AI score0.00208EPSS
Exploits0References2
OSV
OSV
added 2023/09/12 8:51 p.m.44 views

GHSA-3QF9-QXFJ-4WHC Microsoft Security Advisory CVE-2023-36792: .NET Remote Code Execution Vulnerability

Microsoft Security Advisory CVE-2023-36792: .NET Remote Code Execution Vulnerability Executive summary Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 7.0 and .NET 6.0. This advisory also provides guidance on what developers can do to update thei...

7.8CVSS8.5AI score0.01441EPSS
Exploits0References5
OSV
OSV
added 2023/09/11 12:59 p.m.44 views

GHSA-FWR2-64VR-XV9M Argo CD cluster secret might leak in cluster details page

Impact Argo CD Cluster secrets might be managed declaratively using Argo CD / kubectl apply. As a result, the full secret body is stored inkubectl.kubernetes.io/last-applied-configuration annotation. https://github.com/argoproj/argo-cd/pull/7139 introduced the ability to manage cluster labels and...

9.9CVSS9.2AI score0.00975EPSS
Exploits1References10
OSV
OSV
added 2023/08/23 8:36 p.m.44 views

GHSA-CR5Q-6Q9F-RQ6Q Active Support Possibly Discloses Locally Encrypted Files

There is a possible file disclosure of locally encrypted files in Active Support. This vulnerability has been assigned the CVE identifier CVE-2023-38037. Versions Affected: = 5.2.0 Not affected: 5.2.0 Fixed Versions: 7.0.7.1, 6.1.7.5 Impact ActiveSupport::EncryptedFile writes contents that will b...

5.5CVSS4.5AI score0.00258EPSS
Exploits0References7
OSV
OSV
added 2023/08/23 8:5 p.m.44 views

CVE-2023-40035 Craft CMS vulnerable to Remote Code Execution via validatePath bypass

Craft is a CMS for creating custom digital experiences on the web and beyond. Bypassing the validatePath function can lead to potential remote code execution. This vulnerability can lead to malicious control of vulnerable systems and data exfiltrations. Although the vulnerability is exploitable...

7.2CVSS7.3AI score0.01909EPSS
Exploits1References6
OSV
OSV
added 2023/08/20 12:0 a.m.44 views

DSA-5481-1 fastdds - security update

Bulletin has no description...

8.2CVSS7.5AI score0.00893EPSS
Exploits0
OSV
OSV
added 2023/08/17 12:0 a.m.44 views

DLA-3534-1 rar - security update

Bulletin has no description...

7.5CVSS7.7AI score0.98975EPSS
Exploits12
OSV
OSV
added 2023/08/14 6:15 p.m.44 views

CVE-2023-0872

The Horizon REST API includes a users endpoint in OpenMNS Horizon 31.0.8 and versions earlier than 32.0.2 on multiple platforms is vulnerable to elevation of privilege. The solution is to upgrade to Meridian 2023.1.6, 2022.1.19, 2021.1.30, 2020.1.38 or Horizon 32.0.2 or newer. Meridian and Horizo...

8CVSS7AI score
Exploits0References2
OSV
OSV
added 2023/08/09 12:56 p.m.44 views

GHSA-VMCH-3W2X-VHGQ .NET Denial of Service Vulnerability

Microsoft Security Advisory CVE-2023-38180: .NET Denial of Service Vulnerability Executive summary Microsoft is releasing this security advisory to provide information about a vulnerability in ASP.NET Core 2.1, .NET 6.0, and .NET 7.0. This advisory also provides guidance on what developers can do...

7.5CVSS7.8AI score0.15519EPSS
Exploits0References8
OSV
OSV
added 2023/08/08 4:15 p.m.44 views

PYSEC-2023-144

Cross Site Request Forgery CSRF vulnerability in wger Project wger Workout Manager 2.2.0a3 allows a remote attacker to gain privileges via the user-management feature in the gym/views/gym.py, templates/gym/resetuserpassword.html, templates/user/overview.html, core/views/user.py, and...

8.8CVSS7.3AI score0.00318EPSS
Exploits0References3
OSV
OSV
added 2023/08/01 12:0 a.m.44 views

ASB-A-264880895

In update of MmsProvider.java, there is a possible way to change directory permissions due to a path traversal error. This could lead to local denial of service of SIM recognition with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.4AI score0.00095EPSS
Exploits0References2
OSV
OSV
added 2023/08/01 12:0 a.m.44 views

ALSA-2023:4412 Important: openssh security update

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fixes: openssh: Remote code execution in ssh-agent PKCS11 support CVE-2023-38408 For more details...

9.8CVSS8.9AI score0.76768EPSS
Exploits10References4
OSV
OSV
added 2023/07/26 9:15 p.m.44 views

CVE-2023-30367

Multi-Remote Next Generation Connection Manager mRemoteNG is free software that enables users to store and manage multi-protocol connection configurations to remotely connect to systems. mRemoteNG configuration files can be stored in an encrypted state on disk. mRemoteNG version = v1.76.20 and =...

7.5CVSS7AI score0.00431EPSS
Exploits4References4
OSV
OSV
added 2023/07/25 8:45 p.m.44 views

CVE-2023-37920 Certifi's removal of e-Tugra root certificate

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi prior to version 2023.07.22 recognizes "e-Tugra" root certificates. e-Tugra's root certificates were subject to an investigation prompted ...

7.5CVSS7.7AI score0.00468EPSS
Exploits0References7
OSV
OSV
added 2023/07/08 2:54 a.m.44 views

RLSA-2023:3923 Critical: go-toolset and golang security update

Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. The golang packages provide the Go programming language compiler. Security Fixes: golang: cmd/go: go command may generate unexpected code at build time when using cgo CVE-2023-29402 golang:...

9.8CVSS9.3AI score0.01837EPSS
Exploits0References5
OSV
OSV
added 2023/07/01 12:0 a.m.44 views

ASB-A-274445194

In validateForCommonR1andR2 of PasspointConfiguration.java, there is a possible way to inflate the size of a config file with no limits due to a buffer overflow. This could lead to local denial of service with no additional execution privileges needed. User interaction is needed for exploitation...

5.5CVSS5.5AI score0.00108EPSS
Exploits0References2
OSV
OSV
added 2023/06/21 12:0 a.m.44 views

DLA-3462-1 wordpress - security update

Bulletin has no description...

6.1CVSS5.6AI score0.79527EPSS
Exploits7
OSV
OSV
added 2023/06/09 7:32 p.m.44 views

GHSA-Q36X-R5X4-H4Q6 Denial of service via HTTP/2 HEADERS frames padding

A program using swift-nio-http2 is vulnerable to a denial of service attack, caused by a network peer sending a specially crafted HTTP/2 frame. This attack affects all swift-nio-http2 versions from 1.0.0 to 1.19.2. It is fixed in 1.20.0 and later releases. This vulnerability is caused by a logica...

7.5CVSS7.3AI score0.01248EPSS
Exploits0References4
OSV
OSV
added 2023/05/26 9:15 p.m.44 views

CVE-2023-28321

An improper certificate validation vulnerability exists in curl v8.1.0 in the way it supports matching of wildcard patterns when listed as "Subject Alternative Name" in TLS server certificates. curl can be built to use its own name matching function for TLS rather than one provided by a TLS...

5.9CVSS6.8AI score0.0181EPSS
Exploits1References12
OSV
OSV
added 2023/05/22 8:36 p.m.44 views

GHSA-J8R2-6X86-Q33Q Unintended leak of Proxy-Authorization header in requests

Impact Since Requests v2.3.0, Requests has been vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization header to...

6.1CVSS6.7AI score0.02782EPSS
Exploits1References10
OSV
OSV
added 2023/05/07 2:15 a.m.44 views

CVE-2023-31047

In Django 3.2 before 3.2.19, 4.x before 4.1.9, and 4.2 before 4.2.1, it was possible to bypass validation when using one form field to upload multiple files. This multiple upload has never been supported by forms.FileField or forms.ImageField only the last uploaded file was validated. However,...

9.8CVSS7.2AI score
Exploits0References6
OSV
OSV
added 2023/04/26 3:28 p.m.44 views

RLSA-2023:1743 Important: nodejs:14 security, bug fix, and enhancement update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs 14.21.3. Security Fixes: decode-uri-component: improper input validation resulting i...

8.6CVSS8.1AI score0.24928EPSS
Exploits4References9
OSV
OSV
added 2023/04/05 12:0 a.m.44 views

DSA-5381-1 tomcat9 - security update

Bulletin has no description...

7.5CVSS6.5AI score0.02505EPSS
Exploits0
OSV
OSV
added 2023/04/04 12:0 a.m.44 views

ALSA-2023:1583 Moderate: nodejs:18 security, bug fix, and enhancement update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs 18.14.2. Security Fixes: glob-parent: Regular Expression Denial of Service...

7.5CVSS7.5AI score0.02023EPSS
Exploits3References14
OSV
OSV
added 2023/04/01 12:0 a.m.44 views

ASB-A-262892300

In buildPropFile of filesystem.go, there is a possible insecure hash due to an improperly used crypto. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

6.7CVSS6.7AI score0.0009EPSS
Exploits0References3
OSV
OSV
added 2023/03/23 8:0 p.m.44 views

GHSA-MFVG-QWCW-QVC8 baserCMS allows any file to be uploaded

There is a vulnerability that allows uploading any files to baserCMS. This is a vulnerability that needs to be addressed when the management system is used by an unspecified number of users. If you are eligible, please update to the new version as soon as possible. Target baserCMS 4.7.3 and earli...

9.8CVSS9.4AI score0.01089EPSS
Exploits0References6
OSV
OSV
added 2023/03/14 12:0 a.m.44 views

DSA-5373-1 node-sqlite3 - security update

Bulletin has no description...

9.8CVSS8.8AI score0.02356EPSS
Exploits1
OSV
OSV
added 2023/03/09 12:0 a.m.44 views

DSA-5371-1 chromium - security update

Bulletin has no description...

8.8CVSS7.2AI score0.01163EPSS
Exploits8
OSV
OSV
added 2023/03/08 7:30 p.m.44 views

GO-2023-1621 Incorrect calculation on P256 curves in crypto/internal/nistec

The ScalarMult and ScalarBaseMult methods of the P256 Curve may return an incorrect result if called with some specific unreduced scalars a scalar larger than the order of the curve. This does not impact usages of crypto/ecdsa or crypto/ecdh...

5.3CVSS7.4AI score0.00817EPSS
Exploits0References3
OSV
OSV
added 2023/03/02 12:34 a.m.44 views

GO-2023-1600 Arbitrary code execution in github.com/kitabisa/teler-waf

Improper handling of payload with special characters, such as CR/LF and horizontal tab, can lead to execution of arbitrary JavaScript code...

6.5CVSS6.3AI score0.00516EPSS
Exploits0References3
OSV
OSV
added 2023/02/24 6:48 p.m.44 views

GHSA-F598-MFPV-GMFX Sequelize - Default support for “raw attributes” when using parentheses

Impact Sequelize 6.28.2 and prior has a dangerous feature where using parentheses in the attribute option would make Sequelize use the string as-is in the SQL ts User.findAll attributes: 'countid', 'count' ; Produced sql SELECT countid AS "count" FROM "users" Patches This feature was deprecated i...

10CVSS9.3AI score0.00831EPSS
Exploits0References9
OSV
OSV
added 2023/02/22 1:8 a.m.44 views

RLSA-2023:0848 Moderate: php:8.0 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later upstream version: php 8.0. BZ2161666 Security Fixes: XKCP: buffer overflow in the SHA-3 reference implementation CVE-2022-37454 php: standard insecure cookie...

8.1CVSS8.8AI score0.49336EPSS
Exploits6References6
OSV
OSV
added 2023/02/10 8:15 a.m.44 views

CVE-2023-22832

The ExtractCCDAAttributes Processor in Apache NiFi 1.2.0 through 1.19.1 does not restrict XML External Entity references. Flow configurations that include the ExtractCCDAAttributes Processor are vulnerable to malicious XML documents that contain Document Type Declarations with XML External Entity...

7.5CVSS7.5AI score0.0141EPSS
Exploits0References2
OSV
OSV
added 2023/02/08 10:22 p.m.44 views

GHSA-V5W6-WCM8-JM4Q openssl-src contains Double free after calling `PEM_read_bio_ex`

The function PEMreadbioex reads a PEM file from a BIO and parses and decodes the "name" e.g. "CERTIFICATE", any header data and the payload data. If the function succeeds then the "nameout", "header" and "data" arguments are populated with pointers to buffers containing the relevant decoded data...

7.5CVSS7.8AI score0.20444EPSS
Exploits0References7
OSV
OSV
added 2023/02/08 10:21 p.m.44 views

GHSA-VRH7-X64V-7VXQ openssl-src contains `NULL` dereference during PKCS7 data verification

A NULL pointer can be dereferenced when signatures are being verified on PKCS7 signed or signedAndEnveloped data. In case the hash algorithm used for the signature is known to the OpenSSL library but the implementation of the hash algorithm is not available the digest initialization will fail...

7.5CVSS7.7AI score0.01846EPSS
Exploits0References7
OSV
OSV
added 2023/02/07 12:0 p.m.44 views

RUSTSEC-2023-0006 X.400 address type confusion in X.509 `GeneralName`

There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an ASN1STRING but the public structure definition for GENERALNAME incorrectly specified the type of the x400Address field as ASN1TYPE. This field is subsequentl...

7.4CVSS7.6AI score0.59501EPSS
Exploits0References3
OSV
OSV
added 2023/01/26 9:16 p.m.44 views

CVE-2022-3924

This issue can affect BIND 9 resolvers with stale-answer-enable yes; that also make use of the option stale-answer-client-timeout, configured with a value greater than zero. If the resolver receives many queries that require recursion, there will be a corresponding increase in the number of clien...

7.5CVSS7.4AI score0.15989EPSS
Exploits0References1
OSV
OSV
added 2023/01/26 12:0 a.m.44 views

ALSA-2023:0210 Moderate: java-1.8.0-openjdk security and bug fix update

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fixes: OpenJDK: improper restrictions in CORBA deserialization Serialization, 8285021 CVE-2023-21830 OpenJDK: soundbank URL remote loading Sound, 8293742...

5.3CVSS6AI score0.01357EPSS
Exploits0References6
OSV
OSV
added 2023/01/17 6:15 a.m.44 views

CVE-2022-23816

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...

6.9AI score
Exploits0
OSV
OSV
added 2023/01/03 6:30 p.m.44 views

GHSA-FPRR-RRM8-4534 Apache Dubbo vulnerable to remote code execution via Telnet Handler

Apache Dubbo is a Java based, open source RPC framework. Versions prior to 2.6.10 and 2.7.10 are vulnerable to pre-authorization remote code execution via arbitrary bean manipulation in the Telnet handler. The Dubbo main service port can be used to access a Telnet Handler which offers some basic...

9.8CVSS9.8AI score0.02909EPSS
Exploits1References3
OSV
OSV
added 2022/12/20 9:30 p.m.44 views

GHSA-9P8J-HRGF-JC2G Apache Zeppelin Cross-site Scripting vulnerability

An Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Apache Zeppelin allows logged-in users to execute arbitrary javascript in other users' browsers. This issue affects Apache Zeppelin before 0.8.2. Users are recommended to upgrade to a supported...

5.4CVSS5.8AI score0.01118EPSS
Exploits0References3
Total number of security vulnerabilities5000