Lucene search
K
OsvMost viewed

906175 matches found

OSV
OSV
•added 2022/07/05 1:15 p.m.•42 views

CVE-2022-33740

Linux disk/nic frontends data leaks This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend CVE-2022-26365,...

7.1CVSS1.8AI score
Exploits0References7
OSV
OSV
•added 2022/07/05 12:0 a.m.•42 views

GHSA-FX4W-V43J-VC45 SQL injection in typeORM

The findOne function in TypeORM before 0.3.0 can either be supplied with a string or a FindOneOptions object. When input to the function is a user-controlled parsed JSON object, supplying a crafted FindOneOptions instead of an id string leads to SQL injection. NOTE: the vendor's position is that...

9.8CVSS9.6AI score0.20299EPSS
Exploits6References5
OSV
OSV
•added 2022/07/01 8:10 p.m.•42 views

GO-2022-0400 Race condition in github.com/ntbosscher/gobase

A race condition can cause incorrect HTTP request routing...

3.7CVSS4AI score0.00348EPSS
Exploits0References1
OSV
OSV
•added 2022/06/28 12:0 a.m.•42 views

ALSA-2022:5344 Important: kernel-rt security and bug fix update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: buffer overflow in IPsec ESP transformation code CVE-2022-27666 kernel: out-of-bounds read in fbcongetfont function CVE-2020-28915...

7.8CVSS7.6AI score0.05524EPSS
Exploits2References6
OSV
OSV
•added 2022/05/24 5:43 p.m.•42 views

GHSA-RXG9-XRHP-64GJ .NET Core Remote Code Execution Vulnerability

A remote code execution vulnerability exists when parsing certain types of graphics files. This vulnerability only exists on systems running on MacOS or Linux. This CVE ID is unique from CVE-2021-26701...

9.8CVSS8.6AI score0.0327EPSS
Exploits0References3
OSV
OSV
•added 2022/05/24 5:5 p.m.•42 views

GHSA-CF8F-W2C5-P5JR keycloak vulnerable to unauthorized login via mail server setup

A flaw was found in keycloack before version 8.0.0. The owner of 'placeholder.org' domain can setup mail server on this domain and knowing only name of a client can reset password and then log in. For example, for client name 'test' the email address will be '[email protected]'...

9.1CVSS9.1AI score0.01718EPSS
Exploits1References5
OSV
OSV
•added 2022/05/17 3:18 a.m.•42 views

GHSA-V6FH-VG22-R6CM phpMyAdmin ReCaptcha bypass

libraries/plugins/auth/AuthenticationCookie.class.php in phpMyAdmin 4.3.x before 4.3.13.2 and 4.4.x before 4.4.14.1 allows remote attackers to bypass a multiple-reCaptcha protection mechanism against brute-force credential guessing by providing a correct response to a single reCaptcha...

5CVSS6.3AI score0.0979EPSS
Exploits2References10
OSV
OSV
•added 2022/05/17 2:16 a.m.•42 views

GHSA-WV88-PF73-X22P Improper Neutralization of Directives in Dynamically Evaluated Code in Spring Framework

VMware SpringSource Spring Framework before 2.5.6.SEC03, 2.5.7.SR023, and 3.x before 3.0.6, when a container supports Expression Language EL, evaluates EL expressions in tags twice, which allows remote attackers to obtain sensitive information via a 1 name attribute in a a spring:hasBindErrors ta...

7.5CVSS5.5AI score0.11779EPSS
Exploits1References17
OSV
OSV
•added 2022/05/14 3:47 a.m.•42 views

GHSA-3WCJ-RG8Q-9CQV Open redirect in ASP.NET Core

ASP.NET Core 2.0 allows an attacker to steal log-in session information such as cookies or authentication tokens via a specially crafted URL aka "ASP.NET Core Elevation Of Privilege Vulnerability"...

8.8CVSS8.5AI score0.09398EPSS
Exploits0References4
OSV
OSV
•added 2022/05/14 3:5 a.m.•42 views

GHSA-8864-PWHG-3MP2 Arbitrary file write vulnerability in Jenkins Fortify CloudScan Plugin

A arbitrary file write vulnerability exists in Jenkins Fortify CloudScan Plugin 1.5.1 and earlier in ArchiveUtil.java that allows attackers able to control rulepack zip file contents to overwrite any file on the Jenkins master file system, only limited by the permissions of the user the Jenkins...

6.5CVSS6.4AI score0.00852EPSS
Exploits0References2
OSV
OSV
•added 2022/05/14 12:54 a.m.•42 views

GHSA-3C5C-XRQ4-QHR8 ClassLoader manipulation in Apache Struts

CookieInterceptor in Apache Struts before 2.3.20, when a wildcard cookiesName value is used, does not properly restrict access to the getClass method, which allows remote attackers to "manipulate" the ClassLoader and execute arbitrary code via a crafted request. NOTE: this vulnerability exists...

7.5CVSS7.6AI score0.78306EPSS
Exploits0References4
OSV
OSV
•added 2022/05/13 1:36 a.m.•42 views

GHSA-RJ76-H87P-R3WF Undertow vulnerable to Request Smuggling

In Undertow 2.x before 2.0.0.Alpha2, 1.4.x before 1.4.17.Final, and 1.3.x before 1.3.31.Final, it was found that the fix for CVE-2017-2666 was incomplete and invalid characters are still allowed in the query string and path parameters. This could be exploited, in conjunction with a proxy that als...

6.1CVSS6.2AI score0.01655EPSS
Exploits0References4
OSV
OSV
•added 2022/05/13 1:12 a.m.•42 views

GHSA-PRFW-3QX6-G9XR Improper Limitation of a Pathname to a Restricted Directory in Jboss EAP Undertow

It was found that the AJP connector in undertow, as shipped in Jboss EAP 7.1.0.GA, does not use the ALLOWENCODEDSLASH option and thus allow the the slash / anti-slash characters encoded in the url which may lead to path traversal and result in the information disclosure of arbitrary local files...

7.5CVSS7.2AI score0.01601EPSS
Exploits0References6
OSV
OSV
•added 2022/05/02 7:26 p.m.•42 views

GHSA-HX8W-GHH8-R4XF Write access to the catalog for any user when restricted-admin role is enabled in Rancher

Impact This vulnerability only affects customers using the restricted-admin role in Rancher. For this role to be active, Rancher must be bootstrapped with the environment variable CATTLERESTRICTEDDEFAULTADMIN=true or the configuration flag restrictedAdmin=true. A flaw was discovered in Rancher...

8.1CVSS5.3AI score0.00566EPSS
Exploits0References5
OSV
OSV
•added 2022/04/15 5:15 a.m.•42 views

CVE-2022-26498

An issue was discovered in Asterisk through 19.x. When using STIR/SHAKEN, it is possible to download files that are not certificates. These files could be much larger than what one would expect to download, leading to Resource Exhaustion. This is fixed in 16.25.2, 18.11.2, and 19.3.2...

7.5CVSS1.9AI score
Exploits0References6
OSV
OSV
•added 2022/03/30 9:48 p.m.•42 views

GHSA-H99W-9Q5R-GJQ9 Puma vulnerable to HTTP Request Smuggling

When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The following...

9.1CVSS8.5AI score0.0214EPSS
Exploits0References12
OSV
OSV
•added 2022/03/25 9:15 p.m.•42 views

CVE-2022-24783 Sandbox bypass leading to arbitrary code execution in Deno

Deno is a runtime for JavaScript and TypeScript. The versions of Deno between release 1.18.0 and 1.20.2 inclusive are vulnerable to an attack where a malicious actor controlling the code executed in a Deno runtime could bypass all permission checks and execute arbitrary shell code. This...

10CVSS8.6AI score0.01103EPSS
Exploits0References3
OSV
OSV
•added 2022/03/16 12:0 a.m.•42 views

GHSA-M8GQ-83GH-V42V XML External Entities Vulnerability in CVRF-CSAF-Converter

CVRF-CSAF-Converter before 1.0.0-rc2 resolves XML External Entities XXE. This leads to the inclusion of arbitrary local file content into the generated output document. An attacker can exploit this to disclose information from the system running the converter...

6.1CVSS5.7AI score0.00663EPSS
Exploits0References3
OSV
OSV
•added 2022/03/15 9:10 a.m.•42 views

ALSA-2022:0891 Moderate: httpd:2.4 security update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: NULL pointer dereference via malformed requests CVE-2021-34798 httpd: Out-of-bounds write in apescapequotes via malicious input CVE-2021-39275 For more details about the...

9.8CVSS8.5AI score0.64509EPSS
Exploits0References3
OSV
OSV
•added 2022/03/10 12:0 a.m.•42 views

DLA-2942-1 firefox-esr - security update

Bulletin has no description...

9.6CVSS7.2AI score0.00931EPSS
Exploits4
OSV
OSV
•added 2022/03/09 10:25 p.m.•42 views

CVE-2022-24747 HTTP caching is marking private HTTP headers as public

Shopware is an open commerce platform based on the Symfony php Framework and the Vue javascript framework. Affected versions of shopware do no properly set sensitive HTTP headers to be non-cacheable. If there is an HTTP cache between the server and client then headers may be exposed via HTTP...

6.3CVSS5.9AI score0.01055EPSS
Exploits0References5
OSV
OSV
•added 2022/03/06 12:0 a.m.•42 views

OSV-2022-217 Stack-buffer-overflow in msgpack_sbuffer_write

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=45208 Crash type: Stack-buffer-overflow READ Crash state: msgpacksbufferwrite flbpackmsgpacktojsonformat flbjsonfuzzer.c...

7.2AI score
Exploits0References1
OSV
OSV
•added 2022/02/22 3:38 p.m.•42 views

GHSA-FGV8-VJ5C-2PPQ Incorrect Authorization in runc

runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfslinux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory...

7.5CVSS6.7AI score0.04409EPSS
Exploits1References22
OSV
OSV
•added 2022/02/20 12:0 a.m.•42 views

CVE-2022-0685 Use of Out-of-range Pointer Offset in vim/vim

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4418...

8.4CVSS8.1AI score0.01723EPSS
Exploits1References11
OSV
OSV
•added 2022/02/19 12:1 a.m.•42 views

GHSA-3WWJ-WH2W-G4XP CRLF Injection in microweber

CRLF Injection leads to Stack Trace Exposure due to lack of filtering at https://demo.microweber.org/ in Packagist microweber/microweber prior to 1.2.11...

7.6CVSS7.5AI score0.44259EPSS
Exploits1References4
OSV
OSV
•added 2022/02/18 12:0 a.m.•42 views

DSA-5082-1 php7.4 - security update

Bulletin has no description...

9.8CVSS7.6AI score0.25951EPSS
Exploits2
OSV
OSV
•added 2022/02/16 7:15 p.m.•42 views

CVE-2021-3773

A flaw in netfilter could allow a network-connected attacker to infer openvpn connection endpoint information for further use in traditional network attacks...

9.8CVSS6.2AI score0.05322EPSS
Exploits1References4
OSV
OSV
•added 2022/02/10 12:0 a.m.•42 views

DSA-5070-1 cryptsetup - security update

Bulletin has no description...

4.3CVSS5.1AI score0.0028EPSS
Exploits0
OSV
OSV
•added 2022/02/08 12:0 a.m.•42 views

GHSA-5545-2Q6W-2GH6 NumPy NULL Pointer Dereference

Null Pointer Dereference vulnerability exists in numpy.sort in NumPy &lt and 1.19 in the PyArrayDescrNew function due to missing return-value validation, which allows attackers to conduct DoS attacks by repetitively creating sort arrays...

7.5CVSS5.5AI score0.01154EPSS
Exploits1References6
OSV
OSV
•added 2022/02/03 12:0 a.m.•42 views

DSA-5066-1 ruby2.5 - security update

Bulletin has no description...

7.5CVSS7.1AI score0.05061EPSS
Exploits4
OSV
OSV
•added 2022/02/02 12:0 a.m.•42 views

CVE-2022-0443 Use After Free in vim/vim

Use After Free in GitHub repository vim/vim prior to 8.2...

8.4CVSS8.1AI score0.01395EPSS
Exploits1References9
OSV
OSV
•added 2022/01/27 1:47 p.m.•42 views

RLSA-2022:0307 Moderate: java-1.8.0-openjdk security and bug fix update

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fixes: OpenJDK: Incomplete deserialization class filtering in ObjectInputStream Serialization, 8264934 CVE-2022-21248 OpenJDK: Insufficient URI checks in the XS...

5.3CVSS6.1AI score0.08346EPSS
Exploits0References14
OSV
OSV
•added 2022/01/25 12:0 a.m.•42 views

DSA-5061-1 wpewebkit - security update

Bulletin has no description...

9.3CVSS8AI score0.07617EPSS
Exploits1
OSV
OSV
•added 2022/01/24 7:55 p.m.•42 views

CVE-2022-21715 Cross-site Scripting Vulnerability in CodeIgniter4

CodeIgniter4 is the 4.x branch of CodeIgniter, a PHP full-stack web framework. A cross-site scripting XSS vulnerability was found in API\ResponseTrait in Codeigniter4 prior to version 4.1.8. Attackers can do XSS attacks if a potential victim is using API\ResponseTrait. Version 4.1.8 contains a...

5.4CVSS5.6AI score0.01002EPSS
Exploits0References5
OSV
OSV
•added 2022/01/18 12:0 a.m.•42 views

DLA-2887-1 lighttpd - security update

Bulletin has no description...

7.5CVSS7.3AI score0.1408EPSS
Exploits1
OSV
OSV
•added 2022/01/10 2:12 p.m.•42 views

CVE-2022-22823

buildmodel in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...

9.8CVSS3.7AI score
Exploits0References6
OSV
OSV
•added 2022/01/10 2:10 p.m.•42 views

CVE-2021-22569

An issue in protobuf-java allowed the interleaving of com.google.protobuf.UnknownFieldSet fields in such a way that would be processed out of order. A small malicious payload can occupy the parser for several minutes by creating large numbers of short-lived objects that cause frequent, repeated...

5.5CVSS5.5AI score
Exploits0References6
OSV
OSV
•added 2022/01/06 10:50 p.m.•42 views

CVE-2022-21661 SQL injection in WordPress

WordPress is a free and open-source content management system written in PHP and paired with a MariaDB database. Due to improper sanitization in WPQuery, there can be cases where SQL injection is possible through plugins or themes that use it in a certain way. This has been patched in WordPress...

8CVSS8AI score0.97795EPSS
Exploits14References13
OSV
OSV
•added 2021/12/20 5:53 p.m.•42 views

GHSA-M9HP-7R99-94H5 Critical security issues in XML encoding in github.com/dexidp/dex

Impact The following vulnerabilities have been disclosed, which impact users leveraging the SAML connector: Signature Validation Bypass CVE-2020-15216: https://github.com/russellhaering/goxmldsig/security/advisories/GHSA-q547-gmf8-8jr7 encoding/xml instabilities: - Element namespace prefix...

9.3CVSS8.1AI score0.01718EPSS
Exploits0References11
OSV
OSV
•added 2021/12/20 12:15 p.m.•42 views

CVE-2021-44224

A crafted URI sent to httpd configured as a forward proxy ProxyRequests on can cause a crash NULL pointer dereference or, for configurations mixing forward and reverse proxy declarations, can allow for requests to be directed to a declared Unix Domain Socket endpoint Server Side Request Forgery...

8.2CVSS1.4AI score
Exploits0References19
OSV
OSV
•added 2021/11/23 5:56 p.m.•42 views

GHSA-5993-WWPG-M92C Apache Ozone user impersonation due to non-validation of Ozone S3 tokens

In Apache Ozone before 1.2.0, Authenticated users with valid Ozone S3 credentials can create specific OM requests, impersonating any other user...

8.8CVSS8.7AI score0.02483EPSS
Exploits1References8
OSV
OSV
•added 2021/11/10 12:0 a.m.•42 views

DSA-5004-1 libxstream-java - security update

Bulletin has no description...

8.8CVSS7.6AI score0.9851EPSS
Exploits16
OSV
OSV
•added 2021/11/09 9:43 a.m.•42 views

ALSA-2021:4526 Important: mingw-glib2 security, bug fix, and enhancement update

GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. The following packages have been upgraded to...

7.5CVSS7.5AI score0.04193EPSS
Exploits1References2
OSV
OSV
•added 2021/11/09 8:42 a.m.•42 views

RLSA-2021:4213 Moderate: php:7.4 security, bug fix, and enhancement update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later upstream version: php 7.4.19. BZ1944110 Security Fixes: php: Wrong ciphertext/tag in AES-CCM encryption for a 12 bytes IV CVE-2020-7069 php: FILTERVALIDATEURL...

7.5CVSS6.9AI score0.05029EPSS
Exploits3References6
OSV
OSV
•added 2021/11/08 3:15 p.m.•42 views

PYSEC-2021-385

EnroCrypt is a Python module for encryption and hashing. Prior to version 1.1.4, EnroCrypt used the MD5 hashing algorithm in the hashing file. Beginners who are unfamiliar with hashes can face problems as MD5 is considered an insecure hashing algorithm. The vulnerability is patched in v1.1.4 of t...

7.5CVSS3.1AI score0.00544EPSS
Exploits1References2
OSV
OSV
•added 2021/11/03 6:15 p.m.•42 views

CVE-2021-23509

This affects the package json-ptr before 3.0.0. A type confusion vulnerability can lead to a bypass of CVE-2020-7766 when the user-provided keys used in the pointer parameter are arrays...

9.8CVSS6.6AI score0.01769EPSS
Exploits1References5
OSV
OSV
•added 2021/10/19 1:14 p.m.•42 views

RLSA-2021:3918 Important: redis:5 security update

Redis is an advanced key-value store. It is often referred to as a data-structure server since keys can contain strings, hashes, lists, sets, and sorted sets. For performance, Redis works with an in-memory data set. You can persist it either by dumping the data set to disk every once in a while, ...

7.5CVSS8.7AI score0.1578EPSS
Exploits0References7
OSV
OSV
•added 2021/10/12 10:2 p.m.•42 views

GHSA-RQXG-XVCQ-3V2F Out-of-bounds Write in OpenCV

OpenCV Open Source Computer Vision Library through 3.3 corresponding to OpenCV-Python and OpenCV-Contrib-Python 3.3.0.9 has an out-of-bounds write error in the FillColorRow8 function in utils.cpp when reading an image file by using cv::imread...

8.8CVSS8.6AI score0.0197EPSS
Exploits0References8
OSV
OSV
•added 2021/10/12 7:15 p.m.•42 views

CVE-2021-39184

Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. A vulnerability in versions prior to 11.5.0, 12.1.0, and 13.3.0 allows a sandboxed renderer to request a "thumbnail" image of an arbitrary file on the user's system. The thumbnail can potential...

8.6CVSS8.5AI score
Exploits0References2
OSV
OSV
•added 2021/10/11 5:15 p.m.•42 views

CVE-2021-32028

A flaw was found in postgresql. Using an INSERT ... ON CONFLICT ... DO UPDATE command on a purpose-crafted table, an authenticated database user could read arbitrary bytes of server memory. The highest threat from this vulnerability is to data confidentiality...

6.5CVSS2.6AI score0.01449EPSS
Exploits0References4
Total number of security vulnerabilities5000