Lucene search
K
RedosMost viewed

8283 matches found

Redos
Redos
•added 2026/05/24 12:0 a.m.•27 views

ROS-20260524-73-0050

A vulnerability in the MultiPartParser function of the Django web application software platform is related to algorithmic complexity. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.5CVSS5.8AI score0.00689EPSS
Exploits1
Redos
Redos
•added 2026/05/20 12:0 a.m.•27 views

ROS-20260520-73-0051

A vulnerability in the ANGLE component of the Google Chrome web browser is related to a flaw in the authorization procedure. Exploitation of the vulnerability could allow an attacker acting remotely to access sensitive data using a specially crafted HTML page...

6.5CVSS5.8AI score0.002EPSS
Exploits0
Redos
Redos
•added 2025/05/21 12:0 a.m.•27 views

ROS-20250521-01

Vulnerability of drm/v3d components of Linux kernel is related to dereferencing of NULL pointer in the v3dirq and v3dhubirq functions in drivers/gpu/drm/v3d/v3dirq.c. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the video component of t...

7.8CVSS7.5AI score0.00571EPSS
Exploits1
Redos
Redos
•added 2025/05/13 12:0 a.m.•27 views

ROS-2-484

2.484 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability could...

8.8CVSS9.2AI score0.03582EPSS
Exploits1
Redos
Redos
•added 2025/03/26 12:0 a.m.•27 views

ROS-20250326-11

A vulnerability in the sqlghashsource component of the virtuoso-opensource web application development platform is related to the unconstrained and unregulated resource allocation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using special...

7.5CVSS7.7AI score0.0088EPSS
Exploits29
Redos
Redos
•added 2024/11/21 12:0 a.m.•27 views

ROS-20241121-01

Vulnerability in Moodle virtual learning environment related to excessive data output by application in Messaging error message. Messaging error message. Exploitation of the vulnerability could allow an attacker acting remotely to gain unauthorized access to confidential information. remotely, to...

7.5CVSS7.4AI score0.00403EPSS
Exploits0
Redos
Redos
•added 2024/10/22 12:0 a.m.•27 views

ROS-20241021-08

A vulnerability in the ad4130 component of the Linux operating system kernel is related to incorrect input validation in the ad4130setupintclk function in drivers/iio/adc/ad4130.c. Exploitation of the vulnerability could allow an an attacker to cause a denial of service Vulnerability of devlinkin...

7.8CVSS7.7AI score0.00828EPSS
Exploits0
Redos
Redos
•added 2024/09/11 12:0 a.m.•27 views

ROS-20240911-11

Vulnerability in the cross-platform Xen hypervisor of the Linux operating system kernel is related to disclosure of information. Exploitation of the vulnerability could allow an attacker acting remotely to gain Unauthorized access to protected information A vulnerability in the libfsimage compone...

8.8CVSS7.2AI score0.03764EPSS
Exploits0
Redos
Redos
•added 2024/08/28 12:0 a.m.•27 views

ROS-20240828-03

Vulnerability of Mozilla Firefox, Mozilla Firefox ESR, Mozilla Thunderbird email client is related to the incorrect handling of exceptional conditions with improper handling of exceptional conditions. Exploitation of the vulnerability could allow a remote attacker to use memory after it has been...

9.8CVSS7.4AI score0.00598EPSS
Exploits0
Redos
Redos
•added 2024/08/26 12:0 a.m.•27 views

ROS-20240826-16

A vulnerability in the Concurrency component of Oracle GraalVM Enterprise Edition virtual machines, Oracle GraalVM for JDK, and Oracle Java SE software platform is related to insufficient input validation. for JDK and Oracle Java SE software platform is related to insufficient input validation...

7.4CVSS7.1AI score0.01136EPSS
Exploits0
Redos
Redos
•added 2024/08/06 12:0 a.m.•27 views

ROS-20240806-01

A vulnerability in the Apache Commons Compress archiver is related to the execution of a loop without sufficiently limiting the the number of times it can be executed. Exploitation of the vulnerability could allow an attacker acting remotely, cause a denial of service by using specially crafted 7...

7.5CVSS7.3AI score0.13292EPSS
Exploits0
Redos
Redos
•added 2024/07/29 12:0 a.m.•27 views

ROS-20240729-03

A vulnerability in the GLPI reports plugin of the GLPI reports system is related to incorrect neutralization of input data during web page generation. neutralization of input data during web page generation. Exploitation of the vulnerability could allow a remote attacker to conduct XSS attacks...

6.1CVSS6.2AI score0.00361EPSS
Exploits0
Redos
Redos
•added 2024/07/26 12:0 a.m.•27 views

ROS-20240726-04

Vulnerability in Moodle virtual learning environment due to a risk in CSV import method XSS. Exploitation of the vulnerability could allow an attacker acting remotely to conduct a cross-site scripting XSS attack. cross-site scripting XSS...

6.1CVSS5.7AI score0.00506EPSS
Exploits0
Redos
Redos
•added 2024/07/26 12:0 a.m.•27 views

ROS-20240726-03

A vulnerability in the cjson and cmsgpack libraries of the Redis database management system DBMS is related to a buffer overflow in dynamic memory. buffer overflow in dynamic memory. Exploitation of the vulnerability could allow an attacker to execute arbitrary code using a specially crafted Lua...

8.8CVSS7.3AI score0.4292EPSS
Exploits1
Redos
Redos
•added 2024/07/24 12:0 a.m.•27 views

ROS-20240724-01

A vulnerability in the DevTools component of the Google Chrome browser is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely, allowing an intruder to execute arbitrary code through a specially crafted HTML page A vulnerability in th...

8.8CVSS7.6AI score0.00419EPSS
Exploits9
Redos
Redos
•added 2024/07/13 12:0 a.m.•27 views

ROS-20240712-01

Vulnerability in Multiline RFC 2231 component of Exim mail server is related to incorrect analysis of the the multiline RFC 2231 header file name. Exploitation of the vulnerability could allow an attacker, acting remotely, to deliver executable attachments to end-user mailboxes...

5.4CVSS6.8AI score0.41225EPSS
Exploits5
Redos
Redos
•added 2024/06/27 12:0 a.m.•27 views

ROS-20240627-03

A vulnerability in the QEMU hardware emulator is related to a memory re-release error. Exploitation of the vulnerability could allow an attacker to execute arbitrary code by performing a DMA re-entry...

8.2CVSS7.4AI score0.00278EPSS
Exploits0
Redos
Redos
•added 2024/06/07 12:0 a.m.•27 views

ROS-20240607-01

Vulnerability of bgpcapabilitymsgparse functions of a software tool for implementing network routing on Unix-like FRRouting systems is related to reading outside memory boundaries of the BGP FRRouting daemon. Unix-like systems FRRouting is related to read outside memory boundaries in the BGP...

9.1CVSS8.6AI score0.01932EPSS
Exploits2
Redos
Redos
•added 2024/06/03 12:0 a.m.•27 views

ROS-20240603-01

A vulnerability in the PSP file parser of the GIMP graphics editor is related to number processing errors. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS7AI score0.56404EPSS
Exploits0
Redos
Redos
•added 2024/04/25 12:0 a.m.•27 views

ROS-20240425-02

A vulnerability in the GNU Tar archiver is related to improper handling of extension attributes in the PAX archive. Exploitation of the vulnerability could allow an attacker acting remotely to transmit special data to the application and cause a denial of service. special data to the application...

6.2CVSS6.6AI score0.00283EPSS
Exploits0
Redos
Redos
•added 2024/04/22 12:0 a.m.•27 views

ROS-20240422-06

A vulnerability in the h.265 Libde265 video codec implementation is related to the size of allocated memory exceeding the the maximum supported size 0x100000000000000. Exploitation of the vulnerability could allow an attacker, acting remotely, to cause a denial of service...

3.3CVSS7.1AI score0.00232EPSS
Exploits0
Redos
Redos
•added 2024/04/10 12:0 a.m.•27 views

ROS-20240410-01

Apache Tomcat application server vulnerability is related to lack of service data protection. Exploitation exploitation of the vulnerability could allow an attacker acting remotely to gain access to confidential information...

7.5CVSS7.4AI score0.01116EPSS
Exploits0
Redos
Redos
•added 2024/04/08 12:0 a.m.•27 views

ROS-20240408-02

A vulnerability in the net/html library of the Go programming language exists due to a failure to take measures to protect the structure of a web page. the structure of the web page. Exploitation of the vulnerability could allow an attacker acting remotely, conduct cross-site scripting attacks...

6.1CVSS6.4AI score0.00843EPSS
Exploits0
Redos
Redos
•added 2024/04/08 12:0 a.m.•27 views

ROS-20240408-06

A vulnerability in the HID Profile Human Interface Device interface of the Bluetooth protocol stack for the Linux BlueZ operating system is related to an access control flaw. Exploitation of the vulnerability could allow an attacker, acting remotely, escalate their privileges and execute arbitrar...

6.3CVSS8.2AI score0.07879EPSS
Exploits8
Redos
Redos
•added 2024/04/08 12:0 a.m.•27 views

ROS-20240408-16

A vulnerability in SendMail SMTP Server software is related to insufficient data authentication data. Exploitation of the vulnerability could allow a remote attacker to bypass the security mechanism and inject e-mail messages with a spoofed MAIL FROM address. security mechanism and inject e-mail...

5.3CVSS6.9AI score0.01073EPSS
Exploits2
Redos
Redos
•added 2024/04/08 12:0 a.m.•27 views

ROS-20240408-13

A vulnerability in the SSH protocol implementation is related to the ability to adjust packet sequence numbers during the connection negotiation process and remove an arbitrary number of SSH service messages. during the connection negotiation process and cause an arbitrary number of SSH service...

5.9CVSS6.2AI score0.93305EPSS
Exploits4
Redos
Redos
•added 2024/04/05 12:0 a.m.•27 views

ROS-20240405-01

A vulnerability in the fs/ntfs.c component of the Grub2 operating system boot loader is related to a buffer overflow in the dynamic memory. Exploitation of the vulnerability could allow an attacker to execute arbitrary code A vulnerability in the Trace View panel of the Grafana web data...

7.8CVSS7.7AI score0.00536EPSS
Exploits2
Redos
Redos
•added 2024/04/01 12:0 a.m.•27 views

ROS-20240401-03

A vulnerability in the CRI-O container mechanism is related to adding arbitrary lines to /etc/passwd using a a specially crafted environment variable. Exploitation of the vulnerability could allow an attacker acting remotely to affect the confidentiality, integrity, and availability of the CRI-O...

7.8CVSS6.7AI score0.00266EPSS
Exploits0
Redos
Redos
•added 2024/03/29 12:0 a.m.•27 views

ROS-20240329-04

ASP.NET Core software platform vulnerability is due to security configuration errors. Exploitation The exploitation of the vulnerability may allow an intruder to disclose protected information...

6.2CVSS7AI score0.01085EPSS
Exploits0
Redos
Redos
•added 2024/03/28 12:0 a.m.•27 views

ROS-20240328-01

GLPI's asset management and data center management software vulnerability is related to the SQL code injection through administration of dashboards. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary SQL queries...

9.1CVSS8.5AI score0.00576EPSS
Exploits0
Redos
Redos
•added 2024/03/13 12:0 a.m.•27 views

ROS-2-933

2.933 Mozilla Firefox browser vulnerability CVE-2021-29970, CVE-2021-29976 1. Vulnerability description: CVE-2021-29970 A vulnerability in the Mozilla Firefox browser, is related to a release error in accessibility functions when processing HTML content. Exploitation of the vulnerability could...

8.8CVSS7.9AI score0.01428EPSS
Exploits1
Redos
Redos
•added 2024/03/13 12:0 a.m.•27 views

ROS-2-1206

2.1206 Vulnerability in Mozilla Thunderbird email client CVE-2021-29964, CVE-2021-29967 1. Vulnerability description: CVE-2021-29964 A vulnerability in the Mozilla Thunderbird email client, is related to boundary conditions. Exploitation of the vulnerability could allow an attacker acting remotel...

8.8CVSS7.7AI score0.01368EPSS
Exploits0
Redos
Redos
•added 2024/03/13 12:0 a.m.•27 views

ROS-2-450

2.450 Vulnerability in PPPD CVE-2020-8597 1. Vulnerability Description: The issue CVE-2020-8597 is a stack buffer overflow vulnerability resulting from a logic error in the EAP Extensible Authentication Protocol packet parser in PPPD eaprequest and eapresponse functions in eap.c. The vulnerabilit...

9.8CVSS8.5AI score0.19431EPSS
Exploits3
Redos
Redos
•added 2024/03/13 12:0 a.m.•27 views

ROS-2-1261

2.1261 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability...

9.8CVSS9.8AI score0.05984EPSS
Exploits0
Redos
Redos
•added 2024/03/13 12:0 a.m.•27 views

ROS-2-440

2.440 Vulnerability in X.Org Server and libX11 CVE-2020-14347, CVE-2020-14344 1. Vulnerability Description: CVE-2020-14347 - Failure to initialize memory when allocating buffers for pixel maps using the AllocatePixmap call could cause the X client to leak memory contents from the heap when the X...

6.7CVSS7.6AI score0.00465EPSS
Exploits0
Redos
Redos
•added 2023/11/22 12:0 a.m.•27 views

ROS-20231122-01

A vulnerability in the kubelet utility of the Kubernetes virtual machine cluster management software tool is related to insufficient verification of input data. Exploitation of the vulnerability could allow an attacker, acting remotely, escalate their privileges to administrator level...

8.8CVSS7.1AI score0.03578EPSS
Exploits0
Redos
Redos
•added 2023/10/19 12:0 a.m.•27 views

ROS-20231018-03

The vulnerability of the SetAll method of the D-Bus interprocess communication system of the Red Hat Enterprise Linux is related to a flaw in the authorization procedure. Exploitation of the vulnerability could allow an attacker to escalate his privileges...

7.8CVSS7AI score0.00253EPSS
Exploits0
Redos
Redos
•added 2023/09/08 12:0 a.m.•27 views

ROS-20230907-01

Ghostscript document processing toolkit vulnerability is related to a buffer overflow error in base / gdevdevn.c: 1973 in devnpcxwriterle. buffer overflow in base / gdevdevn.c: 1973 in devnpcxwriterle. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of...

5.5CVSS7.1AI score0.00447EPSS
Exploits0
Redos
Redos
•added 2023/07/06 12:0 a.m.•27 views

ROS-2-955

2.955 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability could...

8.8CVSS8.3AI score0.03582EPSS
Exploits1
Redos
Redos
•added 2023/07/06 12:0 a.m.•27 views

ROS-2-881

2.881 Denial of Service in libX11CVE-2021-31535 1. Vulnerability Description: The vulnerability allows a local user to execute a denial of service DoS attack. The vulnerability exists due to insufficient validation of color names in the XLookupColor function. A local user can launch a specially...

9.8CVSS7.2AI score0.10634EPSS
Exploits2
Redos
Redos
•added 2023/06/20 12:0 a.m.•27 views

ROS-20230620-07

A vulnerability in the Python library for Redis redis-py is related to a lack of service data protection. Exploitation of the vulnerability could allow an attacker acting remotely to gain unauthorized access to protected information...

6.5CVSS6AI score0.01034EPSS
Exploits0
Redos
Redos
•added 2023/06/15 12:0 a.m.•27 views

ROS-20230615-03

A vulnerability in the HEIF and AVIF libheif file format decoder is related to a floating point exception in the heif::Fraction::round function in box.cc Exploitation of the vulnerability could allow an attacker, remotely to perform a denial of service attack...

6.5CVSS6.2AI score0.00927EPSS
Exploits1
Redos
Redos
•added 2022/10/13 12:0 a.m.•27 views

ROS-20221013-03

A vulnerability in the PostgreSQL database management system is related to errors when using OR commands extensions. Exploitation of the vulnerability could allow an attacker acting remotely to escalate their privileges and replace arbitrary objects in the database...

8CVSS7.9AI score0.0152EPSS
Exploits0
Redos
Redos
•added 2022/02/26 12:0 a.m.•27 views

ROS-2-712

2.712 Mozilla Thunderbird email client vulnerability CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability could...

8.8CVSS9.2AI score0.03582EPSS
Exploits1
Redos
Redos
•added 2022/02/01 12:0 a.m.•27 views

ROS-20220125-18

A vulnerability in the Xen hypervisor is related to the incorrect configuration of a number of devices and the incorrect data structure release, including I/O page tables. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service and other issues,...

7.6CVSS7.7AI score0.00427EPSS
Exploits0
Redos
Redos
•added 2022/02/01 12:0 a.m.•27 views

ROS-20220125-12

Vulnerability in the executable environment for running containerd containers is due to incorrect default permissions for the container root directories and some plugins. default permissions for container root directories and some plugins. Exploitation of the vulnerability could allow an attacker...

7.8CVSS7.6AI score0.00482EPSS
Exploits0
Redos
Redos
•added 2022/01/12 12:0 a.m.•27 views

ROS-20220112-02

Vulnerability of wordexp function of the library that provides system calls and basic glibc functions is caused by an integer overflow. Exploitation of the vulnerability could allow an attacker to read arbitrary files...

9.1CVSS9.1AI score0.02678EPSS
Exploits0
Redos
Redos
•added 2021/12/24 12:0 a.m.•27 views

ROS-2-558

2.558 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability could...

9.2AI score0.03582EPSS
Exploits1
Redos
Redos
•added 2021/09/08 12:0 a.m.•27 views

ROS-2-898

2.898 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS8.7AI score0.0262EPSS
Exploits0
Redos
Redos
•added 2021/09/08 12:0 a.m.•27 views

ROS-2-926

2.926 Remote code execution in nginxCVE-2021-23017 1. Vulnerability Description: The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to a single error in the ngxresolvercopyfunction when processing DNS responses. A remote attacke...

9.8CVSS8.5AI score0.52838EPSS
Exploits10
Total number of security vulnerabilities5000