Lucene search
K
RedosMost viewed

8283 matches found

Redos
Redos
added 2024/03/13 12:0 a.m.22 views

ROS-2-466

2.466 VLC vulnerabilities with specially designed playlists 1. Vulnerability description: A remote user can create a specially crafted file that can cause various issues. It is possible to trigger remote code execution through a specially created playlist and trick the user into interacting with...

8.4AI score
Exploits0
Redos
Redos
added 2024/03/13 12:0 a.m.22 views

ROS-2-455

2.455 Follow link in chrony CVE-2020-14367 1. Vulnerability Description: CVE-2020-14367 Vulnerability allows a remote attacker to compromise a target system due to issues with a symbolic link to a service.FSTEC Russia Information Security Threats Data Bank Identifier: BDU:2021-01809 2. Possible...

6CVSS7.1AI score0.00485EPSS
Exploits0
Redos
Redos
added 2023/09/08 12:0 a.m.22 views

ROS-20230908-08

A vulnerability in the Thunderbird email client exists due to improper handling of the Unicode character to to override text direction in file names. Exploitation of the vulnerability could allow an attacker, acting remotely to conduct spoofing attacks...

7.5CVSS6.9AI score0.00556EPSS
Exploits0
Redos
Redos
added 2023/08/25 12:0 a.m.22 views

ROS-20230825-06

A vulnerability in the Yasm assembler is related to null pointer dereferencing in /libyasm/intnum.c and /elf/elf.c. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service through a crafted file...

5.5CVSS6.7AI score0.00338EPSS
Exploits1
Redos
Redos
added 2023/07/06 12:0 a.m.22 views

ROS-2-1297

2.1297 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability Description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

9.8CVSS7.9AI score0.06132EPSS
Exploits0
Redos
Redos
added 2023/07/06 12:0 a.m.22 views

ROS-2-607

2.607 Mozilla Firefox browser vulnerability CVE-2021-29970, CVE-2021-29976 1. Vulnerability description: CVE-2021-29970 A vulnerability in the Mozilla Firefox browser, is related to a release error in accessibility functions when processing HTML content. Exploitation of the vulnerability could...

8.8CVSS8AI score0.01428EPSS
Exploits1
Redos
Redos
added 2023/07/06 12:0 a.m.22 views

ROS-2-907

2.907 Vulnerability in Mozilla Thunderbird email client CVE-2021-29964, CVE-2021-29967 1. Vulnerability Description: CVE-2021-29964 A vulnerability in the Mozilla Thunderbird email client, is related to boundary conditions. Exploitation of the vulnerability could allow an attacker acting remotely...

8.8CVSS9AI score0.01368EPSS
Exploits0
Redos
Redos
added 2023/07/06 12:0 a.m.22 views

ROS-2-858

2.858 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability could...

8.8CVSS9.2AI score0.03582EPSS
Exploits1
Redos
Redos
added 2023/07/06 12:0 a.m.22 views

ROS-2-539

2.539 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user-entered data when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the...

9.8CVSS8.6AI score0.05984EPSS
Exploits0
Redos
Redos
added 2023/07/06 12:0 a.m.22 views

ROS-2-1167

2.1167 Vulnerability in X.Org Server and libX11 CVE-2020-14347, CVE-2020-14344 1. Vulnerability Description: CVE-2020-14347 - Failure to initialize memory when allocating buffers for pixmaps using the AllocatePixmap call could cause the X client to leak memory contents from the heap when the X...

6.7CVSS7.8AI score0.00465EPSS
Exploits0
Redos
Redos
added 2023/06/19 12:0 a.m.22 views

ROS-20230619-06

Vulnerability in protobuf-c data serialization protocol is related to integer overflow in the function parserequiredmember. Exploitation of the vulnerability could allow an attacker acting remotely, to cause a complete compromise of the vulnerable system...

5.5CVSS6.2AI score0.00369EPSS
Exploits0
Redos
Redos
added 2022/12/29 12:0 a.m.22 views

ROS-20221229-01

A vulnerability in the GdkPixbuf image processing library is related to a heap buffer overflow when composing or clearing frames in GIF files in the io-gif-animation.ccompositeframe file. Exploitation of the vulnerability could allow an attacker acting remotely to pass specially crafted data to a...

7.8CVSS8.4AI score0.00748EPSS
Exploits1
Redos
Redos
added 2022/09/26 12:0 a.m.22 views

ROS-20220926-02

Poppler PDF rendering library vulnerability is related to integer overflow in decoder JBIG2 in the JBIG2Stream::readTextRegionSeg function in JBIGStream.c. Exploitation of the vulnerability could allow an an attacker acting remotely to pass a specially crafted PDF file or image to an application...

7.8CVSS8AI score0.00574EPSS
Exploits1
Redos
Redos
added 2022/03/29 12:0 a.m.22 views

ROS-20220329-03

Vulnerability in the implementation of OpenVPN virtual private network technology due to a bug in the processing of authentication requests in external authentication plugins, when more than one of them uses delayed authentication responses. deferred authentication responses. Exploitation of the...

9.8CVSS9.2AI score0.03519EPSS
Exploits0
Redos
Redos
added 2022/02/01 12:0 a.m.22 views

ROS-20220125-07

A vulnerability in the GIMP bitmap graphics editor is related to improper input validation, where the path name in the constructed command line is not escaped or filtered. Exploitation of the vulnerability could allow an attacker acting remotely to send special data to the application and execute...

7.8CVSS7.7AI score0.01439EPSS
Exploits0
Redos
Redos
added 2021/12/24 12:0 a.m.22 views

ROS-2-437

2.437 Multiple Vulnerabilities in Moodle 1. Vulnerability description: The vulnerability discovered allows a remote attacker to perform cross-site scripting XSS attacks. The vulnerability allows a remote user to gain unauthorized access to other restricted features. Vulnerability allows a remote...

7.7AI score
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.22 views

ROS-2-503

2.503 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability could...

9.8CVSS8.3AI score0.03636EPSS
Exploits8
Redos
Redos
added 2021/09/08 12:0 a.m.22 views

ROS-2-1407

2.1407 Denial of Service in Libxml2 CVE-2021-3541 1. Vulnerability Description: The vulnerability allows a remote attacker to perform a denial of service DoS attack. The vulnerability exists due to insufficient validation of user input. A remote attacker can pass specially crafted input data to a...

6.5CVSS7.4AI score0.01905EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.22 views

ROS-2-495

2.495 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

7.8CVSS7.5AI score0.99295EPSS
Exploits81
Redos
Redos
added 2021/09/08 12:0 a.m.22 views

ROS-2-885

2.885 Vulnerability in Mozilla Thunderbird email client CVE-2021-29964, CVE-2021-29967 1. Vulnerability description: CVE-2021-29964 A vulnerability in the Mozilla Thunderbird email client, is related to boundary conditions. Exploitation of the vulnerability could allow an attacker acting remotely...

8.8CVSS9AI score0.01905EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.22 views

ROS-2-823

2.823 VLC vulnerabilities with specially designed playlists 1. Vulnerability description: A remote user can create a specially crafted file that can cause various issues. It is possible to trigger remote code execution through a specially created playlist and trick the user into interacting with...

9.8CVSS8.4AI score0.02377EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.22 views

ROS-2-493

2.493 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability could...

9.8CVSS8.3AI score0.03582EPSS
Exploits1
Redos
Redos
added 2021/09/08 12:0 a.m.22 views

ROS-2-1601

2.1601 Vulnerability in Mozilla Thunderbird email client CVE-2021-29964, CVE-2021-29967 1. Vulnerability description: CVE-2021-29964 A vulnerability in the Mozilla Thunderbird email client, is related to boundary conditions. Exploitation of the vulnerability could allow an attacker acting remotel...

8.8CVSS9.1AI score0.04006EPSS
Exploits1
Redos
Redos
added 2021/09/08 12:0 a.m.22 views

ROS-2-1306

2.1306 Vulnerability in Mozilla Thunderbird email client CVE-2021-29964, CVE-2021-29967 1. Vulnerability description: CVE-2021-29964 A vulnerability in the Mozilla Thunderbird email client, is related to boundary conditions. Exploitation of the vulnerability could allow an attacker acting remotel...

8.8CVSS9.1AI score0.01905EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.22 views

ROS-2-671

2.671 Vulnerability in Mozilla Firefox browser CVE-2021-29967 1. Vulnerability description: Vulnerability in the Mozilla Firefox browser that allows an attacker to execute arbitrary code on the target system.Identifier of the Information Security Threats Data Bank of the FSTEC of Russia: 2...

9.8CVSS8.1AI score0.03636EPSS
Exploits7
Redos
Redos
added 2021/09/08 12:0 a.m.22 views

ROS-2-1241

2.1241 VLC vulnerabilities with specially designed playlists 1. Vulnerability description: A remote user can create a specially crafted file that can cause various issues. It is possible to trigger remote code execution through a specially created playlist and trick the user into interacting with...

9.8CVSS8.4AI score0.02377EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.22 views

ROS-2-469

2.469 Multiple vulnerabilities in Mozilla Thunderbird CVE-2021-29957, CVE-2021-29956 1. Vulnerability Description: The vulnerability allows a remote attacker to bypass the security restrictions imposed.FSTEC Russia Information Security Threat Data Bank Identifier: BDU:2021-02725, BDU:2021-02726...

7.8CVSS7.3AI score0.02391EPSS
Exploits2
Redos
Redos
added 2021/09/08 12:0 a.m.22 views

ROS-2-1864

2.1864 Remote code execution in nginxCVE-2021-23017 1. Vulnerability Description: The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to a single error in the ngxresolvercopyfunction when processing DNS responses. A remote...

7.8CVSS8.2AI score0.52838EPSS
Exploits10
Redos
Redos
added 2021/09/08 12:0 a.m.22 views

ROS-2-679

2.679 Denial of Service in Libxml2 CVE-2021-3541 1. Vulnerability Description: The vulnerability allows a remote attacker to perform a denial of service DoS attack. The vulnerability exists due to insufficient validation of user input. A remote attacker can pass specially crafted input data to an...

6.5CVSS7.6AI score0.01861EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.22 views

ROS-2-888

2.888 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability coul...

9.8CVSS7.8AI score0.05984EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.22 views

ROS-2-723

2.723 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability coul...

10CVSS9.1AI score0.05984EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.22 views

ROS-2-572

2.572 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability coul...

10CVSS8AI score0.05984EPSS
Exploits1
Redos
Redos
added 2021/09/08 12:0 a.m.22 views

ROS-2-1257

2.1257 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability...

9.8CVSS7.9AI score0.05984EPSS
Exploits0
Redos
Redos
added 1976/01/01 12:0 a.m.22 views

ROS-2-1509

2.1509 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability coul...

8.8CVSS9.3AI score0.03582EPSS
Exploits1
Redos
Redos
added 1976/01/01 12:0 a.m.22 views

ROS-2-4692

2.4692 Notice of Update for SZI Operating System “RED OS” No. RU.29926343.02.01-01-23 Due to improvements in quality and correction of errors, a updated version of the SZI Operating System “RED OS” 7.3 has been released. For inquiries regarding updates and obtaining necessary materials, you may...

5.7AI score
Exploits0
Redos
Redos
added 2026/06/16 12:0 a.m.21 views

ROS-20260616-73-0027

The vulnerability in ImageMagick 7 is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.8CVSS6.3AI score0.00108EPSS
Exploits0
Redos
Redos
added 2026/05/26 12:0 a.m.21 views

ROS-20260526-73-0016

Vulnerability in the registry related to flaws in the authorization mechanism. Exploitation of the vulnerability may allow a remote intruder to gain unauthorized access to protected information...

6.5CVSS5.8AI score0.00294EPSS
Exploits1
Redos
Redos
added 2026/05/08 12:0 a.m.21 views

ROS-20260508-73-0015

A vulnerability in the ngxhttpmp4module module of the NGINX Plus and NGINX Open Source HTTP server is related to reading beyond buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service or execute arbitrary code...

8.5CVSS7.9AI score0.00918EPSS
Exploits0
Redos
Redos
added 2025/12/03 12:0 a.m.21 views

ROS-20251203-10

Vulnerability of parse.ParseUnverified function of golang-jwt web token library of Go programming language is related to uncontrolled resource consumption. Go programming language is related to uncontrolled resource consumption. Exploitation of the vulnerability allows an attacker acting remotely...

9.1CVSS7.2AI score0.03153EPSS
Exploits4
Redos
Redos
added 2025/05/15 12:0 a.m.21 views

ROS-20250515-11

A vulnerability in the RSS Block component of the Moodle virtual learning environment is associated with authorization bypassing through a user-controlled key. Exploitation of the vulnerability could allow an attacker, acting remotely, to gain unauthorized access to protected information A...

8.8CVSS7.1AI score0.00816EPSS
Exploits0
Redos
Redos
added 2025/05/13 12:0 a.m.21 views

ROS-2-522

2.522 Multiple vulnerabilities in PostgreSQL CVE-2021-32027, CVE-2021-32028, CVE-2021-32029 1. Vulnerability Description: CVE-2021-32027 The vulnerability allows a remote attacker to execute arbitrary code on the target system. CVE-2021-32028, CVE-2021-32029 Vulnerability allows a remote user to...

8.8CVSS9.4AI score0.0199EPSS
Exploits0
Redos
Redos
added 2025/05/13 12:0 a.m.21 views

ROS-2-631

2.631 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS7.3AI score0.0262EPSS
Exploits0
Redos
Redos
added 2025/05/06 12:0 a.m.21 views

ROS-20250505-04

The vulnerability of the Zabbix universal monitoring system is related to insufficient cleansing of user data passed via the "groupBy" parameter in include/classes/api/CApiService.php. Exploitation of the vulnerability could allow a remote attacker to execute arbitrary SQL queries in the database...

8.8CVSS7.6AI score0.2926EPSS
Exploits0
Redos
Redos
added 2025/03/03 12:0 a.m.21 views

ROS-20250303-04

Vulnerability of the iofilebitmapget function iouring/filetable.c of the Linux kernel is related to pointer dereferencing errors. pointer dereferencing errors. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service...

5.5CVSS6.6AI score0.00211EPSS
Exploits0
Redos
Redos
added 2025/01/09 12:0 a.m.21 views

ROS-20250109-03

Vulnerability of GLPI system of requests, incidents and inventory of computer equipment is related to Failure to take measures to protect the SQL query structure. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute arbitrary code Vulnerability of the GLPI system...

9.3CVSS7.5AI score0.36733EPSS
Exploits0
Redos
Redos
added 2024/11/27 12:0 a.m.21 views

ROS-20241127-02

A vulnerability in the virtio component of the Linux kernel is related to memory corruption in the functions virtioi2cpreparereqs, virtioi2ccompletereqs and virtioi2cxfer functions in drivers/i2c/busses/i2c-virtio.c. Exploitation of the vulnerability could allow an attacker to gain access to...

7.8CVSS8.6AI score0.00247EPSS
Exploits1
Redos
Redos
added 2024/11/27 12:0 a.m.21 views

ROS-20241127-03

A vulnerability in the net/smc components of the Linux operating system kernel is related to information disclosure in the function smcibfindroute in net/smc/smcib.c. Exploitation of the vulnerability could allow an attacker to gain access to confidential information A vulnerability in the e1000e...

9.1CVSS7.7AI score0.00923EPSS
Exploits0
Redos
Redos
added 2024/11/13 12:0 a.m.21 views

ROS-20241112-04

Vulnerability of http requests of CurlAsyncHTTPClient component of Tornado asynchronous network library is related to improper neutralization of CRLF sequences. Exploitation of the vulnerability could allow an attacker acting remotely to inject arbitrary headers into a request or cause an...

7.2AI score
Exploits0
Redos
Redos
added 2024/10/29 12:0 a.m.21 views

ROS-20241029-06

A vulnerability in the ImageOverlay::parse function of the libheif file format decoder and encoder is related to insufficient checking when decoding a HEIF file containing an overlaid image with spurious offsets. Exploitation of the vulnerability could allow an attacker acting remotely to gain...

8.1CVSS7.1AI score0.00825EPSS
Exploits1
Redos
Redos
added 2024/10/25 12:0 a.m.21 views

ROS-20241024-03

Vulnerability of idxd components of the Linux operating system kernel is related to resource management errors in the idxdcleanupinternals and idxdinitevl functions in drivers/dma/idxd/init.c. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability i...

5.5CVSS6.2AI score0.00272EPSS
Exploits0
Total number of security vulnerabilities5000