Lucene search
K
PrionMost viewed

213680 matches found

Prion
Prion
added 2011/07/21 11:55 p.m.44 views

Code injection

fwdbus.py in system-config-firewall 1.2.29 and earlier uses the pickle Python module unsafely during D-Bus communication between the GUI and the backend, which might allow local users to gain privileges via a crafted serialized object...

6CVSS6.8AI score0.00421EPSS
Exploits0References8Affected Software2
Prion
Prion
added 2010/01/04 9:30 p.m.44 views

Design/Logic Flaw

sendmail before 8.14.4 does not properly handle a '\0' character in a Common Name CN field of an X.509 certificate, which 1 allows man-in-the-middle attackers to spoof arbitrary SSL-based SMTP servers via a crafted server certificate issued by a legitimate Certification Authority, and 2 allows...

7.5CVSS9.1AI score0.05741EPSS
Exploits5References20Affected Software1
Prion
Prion
added 2009/08/21 5:30 p.m.44 views

Code injection

neon before 0.28.6, when expat is used, does not properly detect recursion during entity expansion, which allows context-dependent attackers to cause a denial of service memory and CPU consumption via a crafted XML document containing a large number of nested entity references, a similar issue to...

4.3CVSS7.2AI score0.08437EPSS
Exploits1References13Affected Software1
Prion
Prion
added 2008/04/04 12:44 a.m.44 views

Integer overflow

Integer overflow in pdftops filter in CUPS in Red Hat Enterprise Linux 3 and 4, when running on 64-bit platforms, allows remote attackers to execute arbitrary code via a crafted PDF file. NOTE: this issue is due to an incomplete fix for CVE-2004-0888...

6.8CVSS7.6AI score0.09334EPSS
Exploits0References8Affected Software1
Prion
Prion
added 2008/01/10 11:46 p.m.44 views

Buffer overflow

Multiple buffer overflows in yaSSL 1.7.5 and earlier, as used in MySQL and possibly other products, allow remote attackers to execute arbitrary code via 1 the ProcessOldClientHello function in handshake.cpp or 2 "inputbuffer& operator" in yasslimp.cpp...

7.5CVSS8AI score0.91602EPSS
Exploits13References21Affected Software5
Prion
Prion
added 2007/07/16 10:30 p.m.44 views

Integer overflow

Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 and earlier allows remote attackers to execute arbitrary code via crafted TLVs in a BGP packet, related to an unchecked return value...

6.8CVSS7.7AI score0.70386EPSS
Exploits1References35Affected Software7
Prion
Prion
added 2024/03/15 12:17 a.m.43 views

Authorization

A directory listing vulnerability in Best Student Result Management System v1.0 allows attackers to list directories and sensitive files within the application without requiring authorization...

7.2AI score0.00745EPSS
Exploits1References2
Prion
Prion
added 2024/03/14 11:51 p.m.43 views

Sql injection

SQL injection vulnerability in Vanderbilt REDCap before v.13.8.0 allows a remote attacker to obtain sensitive information via the password reset mechanism in MyCapMobileApp/update.php...

8.1AI score0.00952EPSS
Exploits1References2
Prion
Prion
added 2024/03/13 4:15 p.m.43 views

Sql injection

The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to SQL Injection via the 'sorting' parameter in versions 2.1.3 to 2.8.2 due to insufficient escaping on the user supplied parameter and lack of...

7.5CVSS8.1AI score0.89431EPSS
Exploits8References6
Prion
Prion
added 2024/03/11 7:15 p.m.43 views

Heap overflow

In sendHciCommand of bluetoothhci.cc, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...

6.3AI score0.00087EPSS
Exploits0References1
Prion
Prion
added 2024/03/06 5:15 p.m.43 views

Crlf injection

A vulnerability in the SAML authentication process of Cisco Secure Client could allow an unauthenticated, remote attacker to conduct a carriage return line feed CRLF injection attack against a user. This vulnerability is due to insufficient validation of user-supplied input. An attacker could...

5.8CVSS8.6AI score0.29906EPSS
Exploits0References1
Prion
Prion
added 2024/02/29 1:44 a.m.43 views

Double free

yyjson through 0.8.0 has a double free, leading to remote code execution in some cases, because the poolfree function lacks loop checks. poolfree is part of the pool series allocator, along with poolmalloc and poolrealloc...

8.3AI score0.01836EPSS
Exploits1References1
Prion
Prion
added 2024/02/26 4:27 p.m.43 views

Cross site request forgery (csrf)

The inclusion of the web scraper for AnythingLLM means that any user with the proper authorization level manager, admin, and when in single user could put in the URL http://169.254.169.254/latest/meta-data/identity-credentials/ec2/security-credentials/ec2-instance which is a special IP and URL th...

6.5CVSS7.3AI score0.00813EPSS
Exploits1References2
Prion
Prion
added 2024/01/31 1:15 p.m.43 views

Double free

A use-after-free vulnerability in the Linux kernel's netfilter: nftables component can be exploited to achieve local privilege escalation. The nftsetelemcatchalldeactivate function checks whether the catch-all set element is active in the current generation instead of the next generation before...

4.3CVSS6.6AI score0.00282EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/11/03 1:15 p.m.43 views

Design/Logic Flaw

Subrion 4.2.1 has a remote command execution vulnerability in the backend...

6.5CVSS8.8AI score0.01277EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/10/26 9:15 p.m.43 views

Design/Logic Flaw

Undisclosed requests may bypass configuration utility authentication, allowing an attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute arbitrary system commands. Note: Software versions which have reached End of Technical Support EoTS...

7.5CVSS9.5AI score0.96515EPSS
Exploits17References3Affected Software20
Prion
Prion
added 2023/10/23 7:15 a.m.43 views

Code injection

An attacker, opening a HTTP/2 connection with an initial window size of 0, was able to block handling of that connection indefinitely in Apache HTTP Server. This could be used to exhaust worker resources in the server, similar to the well known "slow loris" attack pattern. This has been fixed in...

5CVSS7.3AI score0.70595EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/09/15 7:15 p.m.44 views

Design/Logic Flaw

Eclipse Jetty Canonical Repository is the canonical repository for the Jetty project. Users of the CgiServlet with a very specific command structure may have the wrong command executed. If a user sends a request to a org.eclipse.jetty.servlets.CGI Servlet for a binary with a space in its name, th...

4CVSS4.7AI score0.01006EPSS
Exploits1References6Affected Software2
Prion
Prion
added 2023/09/12 5:15 p.m.43 views

Remote code execution

Microsoft Word Remote Code Execution Vulnerability...

4.4CVSS7.2AI score0.01017EPSS
Exploits0References1Affected Software4
Prion
Prion
added 2023/08/14 10:15 p.m.43 views

Out-of-bounds

In parseInputs of ShimPreparedModel.cpp, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

1.7CVSS5.1AI score0.00087EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/06/16 9:15 p.m.43 views

Design/Logic Flaw

An issue was discovered in flsetgeneveopt in net/sched/clsflower.c in the Linux kernel before 6.3.7. It allows an out-of-bounds write in the flower classifier code via TCAFLOWERKEYENCOPTSGENEVE packets. This may result in denial of service or privilege escalation...

4.3CVSS7.5AI score0.00532EPSS
Exploits1References10Affected Software3
Prion
Prion
added 2023/03/28 7:15 p.m.43 views

Design/Logic Flaw

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Netatalk. Authentication is not required to exploit this vulnerability. The specific flaw exists within the getfinderinfo method. The issue results from the lack of proper validation of...

7.5CVSS9.2AI score0.02837EPSS
Exploits0References5Affected Software2
Prion
Prion
added 2023/03/14 5:15 p.m.43 views

Remote code execution

Internet Control Message Protocol ICMP Remote Code Execution Vulnerability...

7.5CVSS9.5AI score0.03479EPSS
Exploits0References1Affected Software10
Prion
Prion
added 2023/03/06 11:15 p.m.43 views

Privilege escalation

Since the Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability was disclosed by Microsoft on Nov 8 2022 and per RFC8429 it is assumed that rc4-hmac is weak, Vulnerable Samba Active Directory DCs will issue rc4-hmac encrypted tickets despite the target server supporting better encryption...

7.5CVSS8.7AI score0.00454EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/12/01 11:15 a.m.43 views

Deserialization of untrusted data

SnakeYaml's Constructor class does not restrict types which can be instantiated during deserialization. Deserializing yaml content provided by an attacker can lead to remote code execution. We recommend using SnakeYaml's SafeConsturctor when parsing untrusted content to restrict deserialization. ...

7.5CVSS9.7AI score0.99615EPSS
Exploits7References8Affected Software1
Prion
Prion
added 2022/11/14 11:15 p.m.43 views

Design/Logic Flaw

The Diffie-Hellman Key Agreement Protocol allows use of long exponents that arguably make certain calculations unnecessarily expensive, because the 1996 van Oorschot and Wiener paper found that "appropriately short exponents" can be used when there are adequate subgroup constraints, and these sho...

5CVSS7.3AI score0.23061EPSS
Exploits1References11
Prion
Prion
added 2022/10/18 9:15 p.m.43 views

Code injection

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Privileges. Supported versions that are affected are 5.7.39 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromi...

4CVSS3.3AI score0.00911EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/10/06 6:17 p.m.43 views

Design/Logic Flaw

Those using java.sql.Statement or java.sql.PreparedStatement in hsqldb HyperSQL DataBase to process untrusted input may be vulnerable to a remote code execution attack. By default it is allowed to call any static method of any Java class in the classpath resulting in code execution. The issue can...

7.5CVSS9.6AI score0.03519EPSS
Exploits1References4Affected Software2
Prion
Prion
added 2022/09/16 9:15 p.m.43 views

Stack overflow

TensorFlow is an open source platform for machine learning. If FakeQuantWithMinMaxVars is given min or max tensors of a nonzero rank, it results in a CHECK fail that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit...

5CVSS7.5AI score0.00383EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/06/30 1:15 p.m.43 views

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2012-3414. Reason: This candidate is a duplicate of CVE-2012-3414. Notes: All CVE users should reference CVE-2012-3414 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

6.5AI score0.09088EPSS
Exploits11
Prion
Prion
added 2022/06/09 5:15 p.m.43 views

Buffer overflow

Apache HTTP Server 2.4.53 and earlier may return lengths to applications calling r:wsread that point past the end of the storage allocated for the buffer...

5CVSS8.4AI score0.04687EPSS
Exploits0References6Affected Software2
Prion
Prion
added 2022/04/19 9:15 p.m.43 views

Design/Logic Flaw

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 17.0.2 and 18; Oracle GraalVM Enterprise Edition: 21.3.1 and 22.0.0.2. Easily exploitable vulnerability allows...

5CVSS7AI score0.46677EPSS
Exploits6References18Affected Software5
Prion
Prion
added 2022/04/01 11:15 p.m.43 views

Race condition

n Spring Framework versions 5.3.0 - 5.3.16 and older unsupported versions, it is possible for a user to provide a specially crafted SpEL expression that may cause a denial of service condition...

4CVSS6.6AI score0.35834EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/03/25 10:15 p.m.43 views

Code injection

Deno is a runtime for JavaScript and TypeScript. The versions of Deno between release 1.18.0 and 1.20.2 inclusive are vulnerable to an attack where a malicious actor controlling the code executed in a Deno runtime could bypass all permission checks and execute arbitrary shell code. This...

7.5CVSS9.6AI score0.01103EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/03/25 9:15 a.m.43 views

Memory corruption

zlib before 1.2.12 allows memory corruption when deflating i.e., when compressing if the input has many distant matches...

5CVSS7.4AI score0.51733EPSS
Exploits1References29Affected Software16
Prion
Prion
added 2021/12/22 6:15 a.m.43 views

Deserialization of untrusted data

An issue was discovered in Quest KACE Desktop Authority before 11.2. This vulnerability allows attackers to execute remote code through a deserialization exploitation in the RadAsyncUpload function of ASP.NET AJAX. An attacker can leverage this vulnerability when the encryption keys are known due...

7.5CVSS9.6AI score0.83476EPSS
Exploits9References1Affected Software1
Prion
Prion
added 2021/11/29 4:15 a.m.43 views

Remote code execution

Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration...

7.5CVSS9.7AI score0.93514EPSS
Exploits6References5Affected Software3
Prion
Prion
added 2021/11/25 3:15 p.m.43 views

Directory traversal

WordPress before 5.8 lacks support for the Update URI plugin header. This makes it easier for remote attackers to execute arbitrary code via a supply-chain attack against WordPress installations that use any plugin for which the slug satisfies the naming constraints of the WordPress.org Plugin...

7.5CVSS9.6AI score0.28983EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2021/10/25 2:15 p.m.43 views

Cross site scripting

The WordPress Contact Forms by Cimatti WordPress plugin before 1.4.12 does not sanitise and escape the Form Title before outputting it in some admin pages. which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml is disallowed...

3.5CVSS4.8AI score0.00598EPSS
Exploits2References1Affected Software1
Prion
Prion
added 2021/10/05 9:15 a.m.43 views

Null pointer dereference

While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected during HTTP/2 request processing, allowing an external source to DoS the server. This requires a specially crafted request. The vulnerability was recently introduced in version 2.4.49. No exploit is known to the project...

5CVSS7.3AI score0.24982EPSS
Exploits0References8Affected Software3
Prion
Prion
added 2021/09/07 5:15 p.m.43 views

Authentication flaw

Zoho ManageEngine ADSelfService Plus version 6113 and prior is vulnerable to REST API authentication bypass with resultant remote code execution...

7.5CVSS9.9AI score0.9896EPSS
Exploits8References3Affected Software1
Prion
Prion
added 2021/08/12 5:15 p.m.43 views

Design/Logic Flaw

ckeditor is an open source WYSIWYG HTML editor with rich content support. A potential vulnerability has been discovered in CKEditor 4 Clipboard package. The vulnerability allowed to abuse paste functionality using malformed HTML, which could result in injecting arbitrary HTML into the editor. It...

3.5CVSS5.8AI score0.01188EPSS
Exploits0References6Affected Software10
Prion
Prion
added 2021/07/09 2:15 p.m.43 views

Sql injection

The API call /InstallTab/exportFldr.asp is vulnerable to a semi-authenticated boolean-based blind SQL injection in the parameter fldrId. Detailed description --- Given the following request: GET /InstallTab/exportFldr.asp?fldrId=1’ HTTP/1.1 Host: 192.168.1.194 User-Agent: Mozilla/5.0 Macintosh;...

6.5CVSS9.6AI score0.85619EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2021/06/11 4:15 p.m.43 views

Design/Logic Flaw

curl 7.75.0 through 7.76.1 suffers from a use-after-free vulnerability resulting in already freed memory being used when a TLS 1.3 session ticket arrives over a connection. A malicious server can use this in rare unfortunate circumstances to potentially reach remote code execution in the client...

6.8CVSS8.1AI score0.60122EPSS
Exploits1References10Affected Software9
Prion
Prion
added 2021/05/06 1:15 p.m.43 views

Command injection

Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters. An authenticated remote SMTP client can insert newline characters into a spool file which indirectly leads to remote code execution as root via AUTH= in a MAIL FROM command...

9CVSS9.3AI score0.0406EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2021/04/27 6:15 a.m.43 views

Integer overflow

DISPUTED Unbound before 1.9.5 allows an integer overflow in a size calculation in dnscrypt/dnscrypt.c. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited...

7.5CVSS9.4AI score0.02037EPSS
Exploits0References3Affected Software2
Prion
Prion
added 2021/04/23 6:15 p.m.43 views

Design/Logic Flaw

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files that were passed to a file parser which resulted in a remote command execution...

7.5CVSS9.5AI score0.99731EPSS
Exploits30References5Affected Software1
Prion
Prion
added 2021/04/02 5:15 a.m.43 views

Memory corruption

An issue was discovered in the Linux kernel before 5.11.3 when a webcam device exists. videousercopy in drivers/media/v4l2-core/v4l2-ioctl.c has a memory leak for large arguments, aka CID-fb18802a338b...

2.1CVSS6.1AI score0.00369EPSS
Exploits0References4Affected Software2
Prion
Prion
added 2021/02/24 5:15 p.m.43 views

Remote code execution

The vSphere Client HTML5 contains a remote code execution vulnerability in a vCenter Server plugin. A malicious actor with network access to port 443 may exploit this issue to execute commands with unrestricted privileges on the underlying operating system that hosts vCenter Server. This affects...

10CVSS9.8AI score0.9957EPSS
Exploits47References4Affected Software2
Prion
Prion
added 2021/01/20 3:15 p.m.43 views

Code injection

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Stored Procedure. Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

6.8CVSS4.9AI score0.0183EPSS
Exploits0References3Affected Software1
Total number of security vulnerabilities5000