Lucene search
K
OsvMost viewed

905908 matches found

OSV
OSV
•added 2022/10/13 12:0 a.m.•42 views

CVE-2022-39229 Grafana users with email as a username can block other users from signing in

Grafana is an open source data visualization platform for metrics, logs, and traces. Versions prior to 9.1.8 and 8.5.14 allow one user to block another user's login attempt by registering someone else'e email address as a username. A Grafana user’s username and email address are unique fields, th...

4.3CVSS7.1AI score0.0082EPSS
Exploits0References5
OSV
OSV
•added 2022/09/29 12:0 a.m.•42 views

DLA-3124-1 webkit2gtk - security update

Bulletin has no description...

8.8CVSS7.8AI score0.01413EPSS
Exploits0
OSV
OSV
•added 2022/09/27 12:0 a.m.•42 views

DLA-3122-1 dovecot - security update

Bulletin has no description...

8.8CVSS6.6AI score0.02837EPSS
Exploits1
OSV
OSV
•added 2022/09/23 12:0 a.m.•42 views

DSA-5237-1 firefox-esr - security update

Bulletin has no description...

8.8CVSS7.2AI score0.01342EPSS
Exploits0
OSV
OSV
•added 2022/09/13 9:15 p.m.•42 views

PYSEC-2022-277

LIEF commit 365a16a was discovered to contain a segmentation violation via the component CoreFile.tcc:69...

5.5CVSS3AI score0.00287EPSS
Exploits1References2
OSV
OSV
•added 2022/09/13 7:37 a.m.•42 views

RLSA-2022:6460 Moderate: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: Incomplete cleanup of multi-core shared buffers aka SBDR CVE-2022-21123 Incomplete cleanup of microarchitectural fill buffers aka SBDS CVE-2022-21125 Incomplete cleanup in specific special regist...

6.1CVSS7.4AI score0.06451EPSS
Exploits0References4
OSV
OSV
•added 2022/09/01 12:0 a.m.•42 views

DSA-5223-1 chromium - security update

Bulletin has no description...

8.8CVSS7.3AI score0.24738EPSS
Exploits3
OSV
OSV
•added 2022/08/29 12:0 a.m.•42 views

CVE-2022-36033 jsoup may not sanitize Cross-Site Scripting (XSS) attempts if SafeList.preserveRelativeLinks is enabled

jsoup is a Java HTML parser, built for HTML editing, cleaning, scraping, and cross-site scripting XSS safety. jsoup may incorrectly sanitize HTML including javascript: URL expressions, which could allow XSS attacks when a reader subsequently clicks that link. If the non-default...

6.1CVSS6.3AI score0.01208EPSS
Exploits1References6
OSV
OSV
•added 2022/08/28 12:0 a.m.•42 views

DLA-3083-1 puma - security update

Bulletin has no description...

9.1CVSS6.9AI score0.0214EPSS
Exploits0
OSV
OSV
•added 2022/08/23 8:15 p.m.•42 views

CVE-2021-3995

A logic error was found in the libmount library of util-linux in the function that allows an unprivileged user to unmount a FUSE filesystem. This flaw allows an unprivileged local attacker to unmount FUSE filesystems that belong to certain other users who have a UID that is a prefix of the UID of...

5.5CVSS5.3AI score0.0063EPSS
Exploits3References9
OSV
OSV
•added 2022/08/20 12:0 a.m.•42 views

DLA-3078-1 kicad - security update

Bulletin has no description...

7.8CVSS7.5AI score0.01736EPSS
Exploits3
OSV
OSV
•added 2022/08/10 12:0 a.m.•42 views

GHSA-2M65-M22P-9WJW Duplicate Advisory: .NET Information Disclosure Vulnerability

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-vh55-786g-wjwj. This link is maintained to preserve external references. Original Description Microsoft is releasing this security advisory to provide information about a vulnerability in .NET Core 3.1 and .NET...

5.9CVSS5.7AI score0.0192EPSS
Exploits0References6
OSV
OSV
•added 2022/08/01 10:21 p.m.•42 views

GO-2022-0535 Certificate validation bypass on Windows in crypto/x509

A Windows vulnerability allows attackers to spoof valid certificate chains when the system root store is in use. A workaround is present in Go 1.12.6+ and Go 1.13.7+, but affected users should additionally install the Windows security update to protect their system. See...

8.1CVSS8AI score0.89436EPSS
Exploits14References4
OSV
OSV
•added 2022/07/31 1:40 p.m.•42 views

GSD-2022-1004097 perf/x86/intel/lbr: Fix unchecked MSR access error on HSW

perf/x86/intel/lbr: Fix unchecked MSR access error on HSW This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.15 by commit...

7.2AI score
Exploits0
OSV
OSV
•added 2022/07/26 12:1 a.m.•42 views

GHSA-42M6-G935-5VMQ @ianwalter/merge Prototype Pollution via `merge` function

All versions of package @ianwalter/merge are vulnerable to Prototype Pollution via the main merge function. @ianwalter/merge is deprecated and the maintainer suggests using @generates/merger instead...

5.6CVSS9.5AI score0.00687EPSS
Exploits1References3
OSV
OSV
•added 2022/07/15 11:29 p.m.•42 views

GO-2022-0322 Uncontrolled resource consumption in github.com/prometheus/client_golang

The Prometheus clientgolang HTTP server is vulnerable to a denial of service attack when handling requests with non-standard HTTP methods. In order to be affected, an instrumented software must use any of the promhttp.InstrumentHandler middleware except RequestsInFlight; not filter any specific...

7.5CVSS9.4AI score0.05994EPSS
Exploits1References1
OSV
OSV
•added 2022/07/14 3:15 p.m.•42 views

CVE-2022-32215

The llhttp parser v14.20.1, v16.17.1 and v18.9.1 in the http module in Node.js does not correctly handle multi-line Transfer-Encoding headers. This can lead to HTTP Request Smuggling HRS...

6.5CVSS1.1AI score
Exploits0References7
OSV
OSV
•added 2022/07/05 1:15 p.m.•42 views

CVE-2022-33740

Linux disk/nic frontends data leaks This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend CVE-2022-26365,...

7.1CVSS1.8AI score
Exploits0References7
OSV
OSV
•added 2022/07/05 12:0 a.m.•42 views

GHSA-FX4W-V43J-VC45 SQL injection in typeORM

The findOne function in TypeORM before 0.3.0 can either be supplied with a string or a FindOneOptions object. When input to the function is a user-controlled parsed JSON object, supplying a crafted FindOneOptions instead of an id string leads to SQL injection. NOTE: the vendor's position is that...

9.8CVSS9.6AI score0.20299EPSS
Exploits6References5
OSV
OSV
•added 2022/06/28 12:0 a.m.•42 views

ALSA-2022:5344 Important: kernel-rt security and bug fix update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: buffer overflow in IPsec ESP transformation code CVE-2022-27666 kernel: out-of-bounds read in fbcongetfont function CVE-2020-28915...

7.8CVSS7.6AI score0.05524EPSS
Exploits2References6
OSV
OSV
•added 2022/06/21 12:0 a.m.•42 views

DLA-3055-1 ntfs-3g - security update

Bulletin has no description...

7.8CVSS6.8AI score0.00504EPSS
Exploits1
OSV
OSV
•added 2022/06/02 2:15 p.m.•42 views

CVE-2022-27774

An insufficiently protected credentials vulnerability exists in curl 4.9 to and include curl 7.82.0 are affected that could allow an attacker to extract credentials when follows HTTPS redirects is used with authentication could leak credentials to other services that exist on different protocols ...

5.7CVSS3.6AI score0.01595EPSS
Exploits1References5
OSV
OSV
•added 2022/06/01 12:0 a.m.•42 views

ASB-A-151095871

Bulletin has no description...

7.1AI score
Exploits0
OSV
OSV
•added 2022/06/01 12:0 a.m.•42 views

ASB-A-112551163

In ipcheckmcrcu of igmp.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege when opening and closing inet sockets with no additional execution privileges needed. User interaction is not needed for exploitation...

7CVSS7.7AI score0.00141EPSS
Exploits0References2
OSV
OSV
•added 2022/05/24 8:47 p.m.•42 views

GHSA-R642-GV9P-2WJJ Argo CD will blindly trust JWT claims if anonymous access is enabled

Impact A critical vulnerability has been discovered in Argo CD which would allow unauthenticated users to impersonate as any Argo CD user or role, including the admin user, by sending a specifically crafted JSON Web Token JWT along with the request. In order for this vulnerability to be exploited...

10CVSS9.7AI score0.01857EPSS
Exploits0References6
OSV
OSV
•added 2022/05/24 5:43 p.m.•42 views

GHSA-RXG9-XRHP-64GJ .NET Core Remote Code Execution Vulnerability

A remote code execution vulnerability exists when parsing certain types of graphics files. This vulnerability only exists on systems running on MacOS or Linux. This CVE ID is unique from CVE-2021-26701...

9.8CVSS8.6AI score0.0327EPSS
Exploits0References3
OSV
OSV
•added 2022/05/24 5:5 p.m.•42 views

GHSA-CF8F-W2C5-P5JR keycloak vulnerable to unauthorized login via mail server setup

A flaw was found in keycloack before version 8.0.0. The owner of 'placeholder.org' domain can setup mail server on this domain and knowing only name of a client can reset password and then log in. For example, for client name 'test' the email address will be '[email protected]'...

9.1CVSS9.1AI score0.01718EPSS
Exploits1References5
OSV
OSV
•added 2022/05/17 3:18 a.m.•42 views

GHSA-V6FH-VG22-R6CM phpMyAdmin ReCaptcha bypass

libraries/plugins/auth/AuthenticationCookie.class.php in phpMyAdmin 4.3.x before 4.3.13.2 and 4.4.x before 4.4.14.1 allows remote attackers to bypass a multiple-reCaptcha protection mechanism against brute-force credential guessing by providing a correct response to a single reCaptcha...

5CVSS6.3AI score0.0979EPSS
Exploits2References10
OSV
OSV
•added 2022/05/17 2:16 a.m.•42 views

GHSA-WV88-PF73-X22P Improper Neutralization of Directives in Dynamically Evaluated Code in Spring Framework

VMware SpringSource Spring Framework before 2.5.6.SEC03, 2.5.7.SR023, and 3.x before 3.0.6, when a container supports Expression Language EL, evaluates EL expressions in tags twice, which allows remote attackers to obtain sensitive information via a 1 name attribute in a a spring:hasBindErrors ta...

7.5CVSS5.5AI score0.11779EPSS
Exploits1References17
OSV
OSV
•added 2022/05/14 3:47 a.m.•42 views

GHSA-3WCJ-RG8Q-9CQV Open redirect in ASP.NET Core

ASP.NET Core 2.0 allows an attacker to steal log-in session information such as cookies or authentication tokens via a specially crafted URL aka "ASP.NET Core Elevation Of Privilege Vulnerability"...

8.8CVSS8.5AI score0.09398EPSS
Exploits0References4
OSV
OSV
•added 2022/05/14 12:54 a.m.•42 views

GHSA-3C5C-XRQ4-QHR8 ClassLoader manipulation in Apache Struts

CookieInterceptor in Apache Struts before 2.3.20, when a wildcard cookiesName value is used, does not properly restrict access to the getClass method, which allows remote attackers to "manipulate" the ClassLoader and execute arbitrary code via a crafted request. NOTE: this vulnerability exists...

7.5CVSS7.6AI score0.78306EPSS
Exploits0References4
OSV
OSV
•added 2022/05/13 1:36 a.m.•42 views

GHSA-RJ76-H87P-R3WF Undertow vulnerable to Request Smuggling

In Undertow 2.x before 2.0.0.Alpha2, 1.4.x before 1.4.17.Final, and 1.3.x before 1.3.31.Final, it was found that the fix for CVE-2017-2666 was incomplete and invalid characters are still allowed in the query string and path parameters. This could be exploited, in conjunction with a proxy that als...

6.1CVSS6.2AI score0.01655EPSS
Exploits0References4
OSV
OSV
•added 2022/05/13 1:12 a.m.•42 views

GHSA-PRFW-3QX6-G9XR Improper Limitation of a Pathname to a Restricted Directory in Jboss EAP Undertow

It was found that the AJP connector in undertow, as shipped in Jboss EAP 7.1.0.GA, does not use the ALLOWENCODEDSLASH option and thus allow the the slash / anti-slash characters encoded in the url which may lead to path traversal and result in the information disclosure of arbitrary local files...

7.5CVSS7.2AI score0.01601EPSS
Exploits0References6
OSV
OSV
•added 2022/05/10 8:14 a.m.•42 views

RLSA-2022:2031 Low: libssh security, bug fix, and enhancement update

libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. The following packages have been upgraded to a later upstream version: libssh 0.9.6. BZ1896651 Security Fixes: libssh: possible heap-based buffer overflow when rekeying CVE-2021-3634...

3.5CVSS6.8AI score0.04683EPSS
Exploits0References4
OSV
OSV
•added 2022/05/10 6:39 a.m.•42 views

ALSA-2022:1930 Moderate: keepalived security and bug fix update

The keepalived utility provides simple and robust facilities for load balancing and high availability. The load balancing framework relies on the well-known and widely used IP Virtual Server IPVS kernel module providing layer-4 transport layer load balancing. Keepalived implements a set of checke...

5.5CVSS5.8AI score0.01159EPSS
Exploits0References2
OSV
OSV
•added 2022/05/02 7:26 p.m.•42 views

GHSA-HX8W-GHH8-R4XF Write access to the catalog for any user when restricted-admin role is enabled in Rancher

Impact This vulnerability only affects customers using the restricted-admin role in Rancher. For this role to be active, Rancher must be bootstrapped with the environment variable CATTLERESTRICTEDDEFAULTADMIN=true or the configuration flag restrictedAdmin=true. A flaw was discovered in Rancher...

8.1CVSS5.3AI score0.00566EPSS
Exploits0References5
OSV
OSV
•added 2022/04/15 7:15 p.m.•42 views

CVE-2022-26788

PowerShell Elevation of Privilege Vulnerability...

7.8CVSS6.7AI score0.00614EPSS
Exploits0References1
OSV
OSV
•added 2022/04/15 5:15 a.m.•42 views

CVE-2022-26498

An issue was discovered in Asterisk through 19.x. When using STIR/SHAKEN, it is possible to download files that are not certificates. These files could be much larger than what one would expect to download, leading to Resource Exhaustion. This is fixed in 16.25.2, 18.11.2, and 19.3.2...

7.5CVSS1.9AI score
Exploits0References6
OSV
OSV
•added 2022/04/03 12:0 a.m.•42 views

DSA-5112-1 chromium - security update

Bulletin has no description...

8.8CVSS7.6AI score0.01589EPSS
Exploits17
OSV
OSV
•added 2022/04/01 11:15 p.m.•42 views

CVE-2022-22963

In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources...

9.8CVSS9.6AI score0.99939EPSS
Exploits36References7
OSV
OSV
•added 2022/03/30 9:48 p.m.•42 views

GHSA-H99W-9Q5R-GJQ9 Puma vulnerable to HTTP Request Smuggling

When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The following...

9.1CVSS8.5AI score0.0214EPSS
Exploits0References12
OSV
OSV
•added 2022/03/25 9:15 a.m.•42 views

CVE-2018-25032

zlib before 1.2.12 allows memory corruption when deflating i.e., when compressing if the input has many distant matches...

7.5CVSS3.2AI score
Exploits0References29
OSV
OSV
•added 2022/03/23 6:15 a.m.•42 views

CVE-2022-27666

A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat...

7.8CVSS7.4AI score
Exploits0References5
OSV
OSV
•added 2022/03/16 12:0 a.m.•42 views

GHSA-M8GQ-83GH-V42V XML External Entities Vulnerability in CVRF-CSAF-Converter

CVRF-CSAF-Converter before 1.0.0-rc2 resolves XML External Entities XXE. This leads to the inclusion of arbitrary local file content into the generated output document. An attacker can exploit this to disclose information from the system running the converter...

6.1CVSS5.7AI score0.00663EPSS
Exploits0References3
OSV
OSV
•added 2022/03/15 9:10 a.m.•42 views

ALSA-2022:0891 Moderate: httpd:2.4 security update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: NULL pointer dereference via malformed requests CVE-2021-34798 httpd: Out-of-bounds write in apescapequotes via malicious input CVE-2021-39275 For more details about the...

9.8CVSS8.5AI score0.64509EPSS
Exploits0References3
OSV
OSV
•added 2022/03/14 6:15 p.m.•42 views

PYSEC-2022-163

The package libvcs before 0.11.1 are vulnerable to Command Injection via argument injection. When calling the updaterepo function when using hg, the url parameter is passed to the hg clone command. By injecting some hg options it was possible to get arbitrary command execution...

9.8CVSS3.8AI score0.03652EPSS
Exploits0References3
OSV
OSV
•added 2022/03/09 10:25 p.m.•42 views

CVE-2022-24747 HTTP caching is marking private HTTP headers as public

Shopware is an open commerce platform based on the Symfony php Framework and the Vue javascript framework. Affected versions of shopware do no properly set sensitive HTTP headers to be non-cacheable. If there is an HTTP cache between the server and client then headers may be exposed via HTTP...

6.3CVSS5.9AI score0.01055EPSS
Exploits0References5
OSV
OSV
•added 2022/03/06 12:0 a.m.•42 views

OSV-2022-217 Stack-buffer-overflow in msgpack_sbuffer_write

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=45208 Crash type: Stack-buffer-overflow READ Crash state: msgpacksbufferwrite flbpackmsgpacktojsonformat flbjsonfuzzer.c...

7.2AI score
Exploits0References1
OSV
OSV
•added 2022/03/04 12:0 a.m.•42 views

DSA-5089-1 chromium - security update

Bulletin has no description...

9.6CVSS6.8AI score0.01677EPSS
Exploits5
OSV
OSV
•added 2022/02/22 3:38 p.m.•42 views

GHSA-FGV8-VJ5C-2PPQ Incorrect Authorization in runc

runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfslinux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory...

7.5CVSS6.7AI score0.04409EPSS
Exploits1References22
Total number of security vulnerabilities5000