Lucene search
K
RedosMost viewed

8110 matches found

Redos
Redos
added 2024/04/04 12:0 a.m.20 views

ROS-20240404-07

A vulnerability in the ProFTPD FTP server is related to a memory freeing error. Exploitation of the vulnerability could allow an attacker acting remotely to gain unauthorized access to protected information. information...

7.5CVSS7AI score0.01129EPSS
Exploits1
Redos
Redos
added 2024/04/03 12:0 a.m.20 views

ROS-20230403-14

The ZeroMQ asynchronous messaging library vulnerability is related to causing a stack buffer overflow on the server by sending specially crafted topic subscription requests and then unsubscribing. Exploitation of the of the vulnerability could allow an attacker acting remotely to cause a denial o...

9.8CVSS6.8AI score0.01602EPSS
Exploits0
Redos
Redos
added 2024/04/02 12:0 a.m.20 views

ROS-20240402-15

A vulnerability in the virtuoso-opensource web application development platform is related to the invocation of a denial of Denial of Service DoS using specially crafted SQL statements. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service A...

8.8CVSS7.2AI score0.00894EPSS
Exploits5
Redos
Redos
added 2024/03/28 12:0 a.m.20 views

ROS-20240328-10

A vulnerability in the HAProxyI software is related to the acceptance of as part of the URI component. Exploitation of the vulnerability could allow an attacker acting remotely to obtain sensitive information...

8.2CVSS7AI score0.01526EPSS
Exploits0
Redos
Redos
added 2024/03/28 12:0 a.m.20 views

ROS-20240328-02

A vulnerability in the gagrowinner function of the vim text editor, protocol for software Unix is caused by an by an integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service...

5.5CVSS6.7AI score0.00366EPSS
Exploits1
Redos
Redos
added 2024/03/13 12:0 a.m.20 views

ROS-2-1337

2.1337 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 A vulnerability in the Exim message forwarding agent, is related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

9.8CVSS10AI score0.61061EPSS
Exploits6
Redos
Redos
added 2024/03/13 12:0 a.m.20 views

ROS-2-1233

2.1233 Directory traversal in Apache Commons IO CVE-2021-29425 1. Vulnerability Description: The vulnerability allows a remote attacker to perform directory traversal attacks. The vulnerability exists due to an input validation error in the FileNameUtils.normalize method when processing directory...

4.8CVSS7.4AI score0.10608EPSS
Exploits1
Redos
Redos
added 2024/03/13 12:0 a.m.20 views

ROS-2-970

2.970 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability Description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

9.8CVSS7.8AI score0.06132EPSS
Exploits0
Redos
Redos
added 2024/03/13 12:0 a.m.20 views

ROS-2-1252

2.1252 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 A vulnerability in the Exim message forwarding agent, is related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

9.8CVSS9.2AI score0.61061EPSS
Exploits6
Redos
Redos
added 2024/03/13 12:0 a.m.20 views

ROS-2-918

2.918 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability Description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

9.8CVSS8.2AI score0.06132EPSS
Exploits0
Redos
Redos
added 2023/09/18 12:0 a.m.20 views

ROS-20230914-06

Vulnerability of Iperf3 network bandwidth measurement tool is related to integer overflow when processing field lengths. Exploitation of the vulnerability could allow an intruder, acting remotely to cause a denial of service...

7.5CVSS7AI score0.01703EPSS
Exploits0
Redos
Redos
added 2023/09/05 12:0 a.m.20 views

ROS-20230905-02

Vulnerability in the ksmbd module of Linux kernel operating systems is related to synchronization errors when using a shared resource. synchronization errors when using a shared resource. Exploitation of the vulnerability could allow an attacker acting remotely, execute arbitrary code using the...

9.8CVSS9AI score0.0406EPSS
Exploits3
Redos
Redos
added 2023/08/07 12:0 a.m.20 views

ROS-20230807-01

A vulnerability in the OpenLDAP protocol implementation is related to the failure to take measures to protect the SQL query structure. Exploitation of the vulnerability may allow a remote attacker to affect confidentiality, integrity, and availability of protected information by using a specially...

9.8CVSS7.2AI score0.69899EPSS
Exploits1
Redos
Redos
added 2023/07/06 12:0 a.m.20 views

ROS-2-1444

2.1444 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 A vulnerability in the Exim message forwarding agent, is related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

9.8CVSS10AI score0.61061EPSS
Exploits6
Redos
Redos
added 2023/07/06 12:0 a.m.20 views

ROS-2-1484

2.1484 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability coul...

8.8CVSS8.3AI score0.03582EPSS
Exploits1
Redos
Redos
added 2023/07/06 12:0 a.m.20 views

ROS-2-1333

2.1333 Nettle library vulnerabilityCVE-2021-20305 1. Vulnerability Description: A Nettle library vulnerability involving the use of a failed cryptographic algorithm and allowing an unauthenticated remote attacker to execute arbitrary code.FSTEC Russia Information Security Threats Data Bank...

8.1CVSS8.2AI score0.01607EPSS
Exploits0
Redos
Redos
added 2023/07/06 12:0 a.m.20 views

ROS-2-999

2.999 Multiple vulnerabilities in PostgreSQL CVE-2021-32027, CVE-2021-32028, CVE-2021-32029 1. Vulnerability Description: CVE-2021-32027 The vulnerability allows a remote attacker to execute arbitrary code on the target system. CVE-2021-32028, CVE-2021-32029 Vulnerability allows a remote user to...

8.8CVSS9.4AI score0.0199EPSS
Exploits0
Redos
Redos
added 2023/07/06 12:0 a.m.20 views

ROS-2-1445

2.1445 Vulnerability in Mozilla Firefox browser CVE-2021-29967 1. Vulnerability description: Vulnerability in the Mozilla Firefox browser that allows an attacker to execute arbitrary code on the target system.Identifier of the Information Security Threats Data Bank of the FSTEC of Russia : 2...

8.8CVSS9.2AI score0.01368EPSS
Exploits0
Redos
Redos
added 2023/07/06 12:0 a.m.20 views

ROS-2-1880

2.1880 Remote code execution in nginxCVE-2021-23017 1. Vulnerability Description: The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to a single error in the ngxresolvercopyfunction when processing DNS responses. A remote...

7.7CVSS8.4AI score0.52838EPSS
Exploits10
Redos
Redos
added 2022/11/18 12:0 a.m.20 views

ROS-20221118-02

A vulnerability in the MPEG-4 GPAC system standard implementation is related to the svgparsepreserveaspectratio in the scenegraph/svgattributes.c file of the SVG Parser component. Exploitation of the vulnerability could allow an attacker acting remotely to cause a memory leak. an attacker acting...

6.5CVSS6.6AI score0.00937EPSS
Exploits0
Redos
Redos
added 2022/02/01 12:0 a.m.20 views

ROS-20220125-15

A vulnerability in the Libgcrypt cryptographic library is related to the use of a weak cryptographic algorithm in the ElGamal implementation. Exploitation of the vulnerability could allow an attacker acting remotely to gain unauthorized access to sensitive information on the system. remotely, to...

5.9CVSS7.6AI score0.01423EPSS
Exploits1
Redos
Redos
added 2021/12/24 12:0 a.m.20 views

ROS-2-963

2.963 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability could...

8.8CVSS9.3AI score0.03582EPSS
Exploits1
Redos
Redos
added 2021/12/24 12:0 a.m.20 views

ROS-2-1163

2.1163 VLC vulnerability CVE-2021-3185 1. Vulnerability description: Vulnerability in the implementation of the h264parse module developed by the GStreamer project included in the gstreamer-plugins-bad set. The issue is caused by a buffer overflow in the gsth264sliceparsedecrefpicmarking function...

9.8CVSS8.4AI score0.02377EPSS
Exploits0
Redos
Redos
added 2021/12/24 12:0 a.m.20 views

ROS-2-1548

2.1548 Vulnerability in Mozilla Thunderbird email client CVE-2021-29964, CVE-2021-29967 1. Vulnerability description: CVE-2021-29964 A vulnerability in the Mozilla Thunderbird email client, is related to boundary conditions. Exploitation of the vulnerability could allow an attacker acting remotel...

8.8CVSS9.2AI score0.01368EPSS
Exploits0
Redos
Redos
added 2021/12/24 12:0 a.m.20 views

ROS-2-1463

2.1463 Denial of Service in libX11CVE-2021-31535 1. Vulnerability Description: The vulnerability allows a local user to execute a denial of service DoS attack. The vulnerability exists due to insufficient validation of color names in the XLookupColor function. A local user can launch a specially...

9.8CVSS7.3AI score0.10634EPSS
Exploits2
Redos
Redos
added 2021/12/24 12:0 a.m.20 views

ROS-2-814

2.814 Multiple vulnerabilities in ClamAV antivirus package CVE-2021-1252, CVE-2021-1404, CVE-2021-1405 1. Vulnerability Description: CVE-2021-1252 - looping when processing specially formatted Excel XLM files. CVE-2021-1404 - process crash when processing specially formatted PDF documents...

7.5CVSS7.6AI score0.03155EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-844

2.844 Multiple vulnerabilities in PostgreSQL CVE-2021-32027, CVE-2021-32028, CVE-2021-32029 1. Vulnerability Description: CVE-2021-32027 The vulnerability allows a remote attacker to execute arbitrary code on the target system. CVE-2021-32028, CVE-2021-32029 Vulnerability allows a remote user to...

8.8CVSS10AI score0.99295EPSS
Exploits81
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-878

2.878 Multiple vulnerabilities in ISC BIND CVE-2021-25216, CVE-2021-25215, CVE-2021-25214 1. Vulnerability Description: CVE-2021-25216 A vulnerability exists due to a boundary error in the GSS-TSIG extension. A remote attacker can send specially crafted requests to the server, trigger a buffer...

9.8CVSS8.6AI score0.99295EPSS
Exploits81
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-512

2.512 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

7.8CVSS6.9AI score0.99295EPSS
Exploits81
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-1393

2.1393 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability coul...

8.8CVSS8.2AI score0.03582EPSS
Exploits1
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-1272

2.1272 Multiple vulnerabilities in Redis CVE-2021-29477,CVE-2021-29478 1. Vulnerability Description: A vulnerability exists due to an integer overflow in the STRALGO LCS command. A remote attacker can pass specially crafted data to an application, cause an integer overflow, and execute arbitrary...

8.8CVSS8.3AI score0.04028EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-944

2.944 Mozilla Firefox browser vulnerability CVE-2021-29970, CVE-2021-29976 1. Vulnerability description: CVE-2021-29970 A vulnerability in the Mozilla Firefox browser, is related to a release error in accessibility functions when processing HTML content. Exploitation of the vulnerability could...

8.8CVSS9.2AI score0.18114EPSS
Exploits16
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-793

2.793 VLC vulnerability CVE-2021-3185 1. Vulnerability description: Vulnerability in the implementation of the h264parse module developed by the GStreamer project included in the gstreamer-plugins-bad set. The issue is caused by a buffer overflow in the gsth264sliceparsedecrefpicmarking function...

9.8CVSS8.4AI score0.02377EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-493

2.493 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability could...

9.8CVSS8.3AI score0.03582EPSS
Exploits1
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-1466

2.1466 Vulnerability in Mozilla Firefox browser CVE-2021-29967 1. Vulnerability description: Vulnerability in the Mozilla Firefox browser that allows an attacker to execute arbitrary code on the target system.Identifier of the Information Security Threats Data Bank of the FSTEC of Russia : 2...

8.8CVSS9.1AI score0.01905EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-1006

2.1006 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 A vulnerability in the Exim message forwarding agent, is related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

9.8CVSS9.1AI score0.61061EPSS
Exploits6
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-1304

2.1304 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 A vulnerability in the Exim message forwarding agent, is related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

9.8CVSS10AI score0.61061EPSS
Exploits6
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-1534

2.1534 VLC vulnerabilities with specially designed playlists 1. Vulnerability description: A remote user can create a specially crafted file that can cause various issues. It is possible to trigger remote code execution through a specially created playlist and trick the user into interacting with...

8.4AI score0.01905EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-1351

2.1351 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability Description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

9.8CVSS7.9AI score0.06132EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-703

2.703 Vulnerability in Mozilla Thunderbird email client CVE-2021-29964, CVE-2021-29967 1. Vulnerability Description: CVE-2021-29964 A vulnerability in the Mozilla Thunderbird email client, is related to boundary conditions. Exploitation of the vulnerability could allow an attacker acting remotely...

8.8CVSS7.9AI score0.0199EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-822

2.822 Remote code execution in Mozilla Firefox CVE-2021-29952 1. Vulnerability Description: The vulnerability is caused by a race condition in the Web Render components and could potentially be exploited for malicious code execution.Identifier of the Information Security Threats Data Bank of the...

7.5CVSS7.5AI score0.01905EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-843

2.843 Multiple vulnerabilities in Mozilla Thunderbird CVE-2021-29957, CVE-2021-29956 1. Vulnerability Description: The vulnerability allows a remote attacker to bypass the security restrictions imposed.FSTEC Russia Information Security Threat Data Bank Identifier: BDU:2021-02725, BDU:2021-02726...

4.3CVSS8AI score0.0094EPSS
Exploits2
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-1665

2.1665 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability Description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

9.8CVSS8.1AI score0.06132EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-998

2.998 Multiple vulnerabilities in Mozilla Thunderbird CVE-2021-29957, CVE-2021-29956 1. Vulnerability Description: The vulnerability allows a remote attacker to bypass security restrictions imposed.FSTEC Russia Information Security Threat Data Bank Identifier: BDU:2021-02725, BDU:2021-02726 2...

4.3CVSS7.9AI score0.0094EPSS
Exploits2
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-1234

2.1234 OpenVPN Authentication Bypass CVE-2020-15078 1. Vulnerability Description: The vulnerability allows a remote attacker to bypass authentication and access restrictions to leak VPN configuration data. The issue only occurs on servers that are configured to use deferredauth. Under certain...

7.5CVSS7.7AI score0.05107EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-1170

2.1170 Vulnerabilities in Squid Proxy Server 1. Vulnerability description: Issues are present in the code processing the "@" block at the beginning of a URL "user@host" and allow bypassing access restriction rules, poisoning cache contents and performing a cross-site scripting attack.Identifier o...

6.7CVSS6.9AI score0.00465EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-467

2.467 Multiple vulnerabilities in Redis CVE-2021-29477,CVE-2021-29478 1. Vulnerability Description: A vulnerability exists due to an integer overflow in the STRALGO LCS command. A remote attacker can pass specially crafted data to an application, cause an integer overflow, and execute arbitrary...

8.8CVSS8.3AI score0.04028EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-1673

2.1673 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

6.7CVSS7.2AI score0.0262EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-983

2.983 Multiple vulnerabilities in ISC BIND CVE-2021-25216, CVE-2021-25215, CVE-2021-25214 1. Vulnerability Description: CVE-2021-25216 A vulnerability exists due to a boundary error in the GSS-TSIG extension. A remote attacker can send specially crafted requests to the server, trigger a buffer...

9.8CVSS8.6AI score0.83406EPSS
Exploits15
Redos
Redos
added 2021/09/08 12:0 a.m.20 views

ROS-2-902

2.902 Denial of Service in Libxml2 CVE-2021-3541 1. Vulnerability Description: The vulnerability allows a remote attacker to perform a denial of service DoS attack. The vulnerability exists due to insufficient validation of user input. A remote attacker can pass specially crafted input data to an...

9.8CVSS7.5AI score0.02377EPSS
Exploits0
Total number of security vulnerabilities5000