Lucene search
K
RedosMost viewed

8110 matches found

Redos
Redos
•added 2026/05/24 12:0 a.m.•18 views

ROS-20260524-73-0041

Vulnerability in mariadb11.4 related to bugs in security settings. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.3CVSS7.1AI score0.00274EPSS
Exploits1
Redos
Redos
•added 2026/05/20 12:0 a.m.•18 views

ROS-20260520-73-0051

A vulnerability in the ANGLE component of the Google Chrome web browser is related to a flaw in the authorization procedure. Exploitation of the vulnerability could allow an attacker acting remotely to access sensitive data using a specially crafted HTML page...

6.5CVSS5.8AI score0.002EPSS
Exploits0
Redos
Redos
•added 2026/05/15 12:0 a.m.•18 views

ROS-20260515-73-0002

Vulnerability in firebird due to lack of service data protection. Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected information...

7.9CVSS5.8AI score0.00185EPSS
Exploits0
Redos
Redos
•added 2026/05/12 12:0 a.m.•18 views

ROS-20260512-73-0033

Vulnerability in ruby related to lack of protection of proprietary data. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information...

7.5CVSS5.8AI score0.0051EPSS
Exploits0
Redos
Redos
•added 2026/03/10 12:0 a.m.•18 views

ROS-20260310-73-0037

A vulnerability in the Background Fetch API of the Google Chrome browser is related to errors in the implementation of security checks for standard elements. Exploitation of the vulnerability allows an attacker acting remotely to disclose protected information using a specially crafted HTML page...

6.5CVSS5.7AI score0.00224EPSS
Exploits1
Redos
Redos
•added 2026/03/10 12:0 a.m.•18 views

ROS-20260310-73-0013

A vulnerability in the user interface UI of the Google Chrome browser is related to the lack of a user warning about unsafe actions. Exploitation of the vulnerability could allow an attacker acting remotely to bypass existing security restrictions...

9.8CVSS5.8AI score0.00315EPSS
Exploits0
Redos
Redos
•added 2026/01/19 12:0 a.m.•18 views

ROS-20260119-7391

A vulnerability in the rtlpciprobe driver function drivers/net/wireless/realtek/rtlwifi/pci.c of Linux kernel operating systems is related to the lack of memory release after an effective lifetime. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS7.8AI score0.00187EPSS
Exploits0
Redos
Redos
•added 2025/12/03 12:0 a.m.•18 views

ROS-20251203-10

Vulnerability of parse.ParseUnverified function of golang-jwt web token library of Go programming language is related to uncontrolled resource consumption. Go programming language is related to uncontrolled resource consumption. Exploitation of the vulnerability allows an attacker acting remotely...

9.1CVSS7.2AI score0.03092EPSS
Exploits4
Redos
Redos
•added 2025/05/13 12:0 a.m.•18 views

ROS-20250513-02

The RED OS kiosk mode vulnerability is due to improper constraints. Exploitation of the vulnerability could allow an attacker to execute arbitrary commands on the system outside of the imposed restrictions Information about the vulnerability was received from Alexander Starikov - researcher at...

8AI score
Exploits0
Redos
Redos
•added 2025/04/14 12:0 a.m.•18 views

ROS-20250414-01

A vulnerability in the ocfs2 component of the Linux operating system kernel is related to incorrect input validation in the ocfs2reflinkxattrinline function in fs/ocfs2/xattr.c, in ocfs2reflink function in fs/ocfs2/refcounttree.c. Exploitation of the vulnerability could allow an attacker to cause...

7.8CVSS7.4AI score0.00339EPSS
Exploits0
Redos
Redos
•added 2025/03/10 12:0 a.m.•18 views

ROS-20250310-01

Vulnerability of the dpaastartxmit function in the drivers/net/ethernet/freescale/dpaa/dpaaeth.c module of the Linux kernel of the Linux kernel is associated with a data leak. Exploitation of the vulnerability could allow an attacker to affect the confidentiality and availability of protected...

7.8CVSS6.2AI score0.00306EPSS
Exploits0
Redos
Redos
•added 2025/02/04 12:0 a.m.•18 views

ROS-20250204-01

A vulnerability in the udf component of the Linux operating system kernel is related to the use of an uninitialized resource in the udfrename function in fs/udf/namei.c. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the drm/vmwgfx...

8.8CVSS7.5AI score0.00793EPSS
Exploits2
Redos
Redos
•added 2025/02/03 12:0 a.m.•18 views

ROS-20250203-12

A vulnerability in the ldebug.c component of the Lua script interpreter involves an integer loss of significance. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

5.3CVSS7.3AI score0.03833EPSS
Exploits1
Redos
Redos
•added 2025/01/21 12:0 a.m.•18 views

ROS-20250121-04

A vulnerability in the RIB Revalidation component of a software tool that implements network routing on Unix-like FRRouting systems is related to the launch of RIB reanalysis for FRR routers. Unix-like FRRouting systems is related to triggering RIB reanalysis for FRR routers, using RTR, causing...

7.5CVSS6.8AI score0.00823EPSS
Exploits0
Redos
Redos
•added 2025/01/21 12:0 a.m.•18 views

ROS-20250121-10

Vulnerability of GLPI system of requests, incidents and inventory of computer equipment is related to Failure to take measures to protect the SQL query structure. Exploitation of the vulnerability could allow an intruder, acting remotely, to disclose protected information...

7.7CVSS7.1AI score0.59136EPSS
Exploits0
Redos
Redos
•added 2025/01/09 12:0 a.m.•18 views

ROS-20250109-08

The ungetbyte and ungetc methods of StringIO string handler for Ruby programming language are vulnerable to with an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker, acting remotely, to affect the confidentiality of protected information...

9.8CVSS6.9AI score0.02364EPSS
Exploits0
Redos
Redos
•added 2024/12/16 12:0 a.m.•18 views

ROS-20241216-10

The Jetty servlet container vulnerability is related to the lack of control over internal resource consumption within DoSFilter. Exploitation of the vulnerability could allow an attacker acting remotely to repeatedly send crafted requests multiple times, cause an OutofMemory error, and finally...

7.5CVSS6.8AI score0.00946EPSS
Exploits0
Redos
Redos
•added 2024/12/16 12:0 a.m.•18 views

ROS-20241216-03

A vulnerability in the Single sign-on SSO authentication mechanism of the Zabbix universal monitoring system is related to authentication bypass via spoofing. Exploitation of the vulnerability could allow an attacker acting remotely to bypass existing security restrictions and elevate their...

8.8CVSS7.4AI score0.00797EPSS
Exploits1
Redos
Redos
•added 2024/12/03 12:0 a.m.•18 views

ROS-20241203-23

The vulnerability in the Puppet Agent launcher app is due to the fact that the app silently ignores the settings of the Augeas before the first synchronization of the plugin. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service A vulnerability in...

9.8CVSS7.3AI score0.01328EPSS
Exploits0
Redos
Redos
•added 2024/11/21 12:0 a.m.•18 views

ROS-20241121-02

A vulnerability in the Access Rule Handler component of the Openstack cloud services platform involves manipulation of the of input data. Exploitation of the vulnerability could allow an attacker acting remotely to affect the integrity of the system. affect the integrity of the system...

5.5CVSS6.7AI score0.00493EPSS
Exploits0
Redos
Redos
•added 2024/11/14 12:0 a.m.•18 views

ROS-20241114-02

The vulnerability of the micrel component of the Linux operating system kernel is related to the NULL pointer dereferencing in lan8814txtstamp, lan8814getsigrx, lan8814matchrxts, lan8814ptpciadjfine functions, lan8814getsigtx, lan8814dequeuetxskb, and lan8814matchskb in drivers/net/phy/micrel.c...

7.8CVSS7AI score0.00632EPSS
Exploits0
Redos
Redos
•added 2024/11/13 12:0 a.m.•18 views

ROS-20241112-07

Eclipse Mosquitto message broker vulnerability is related to a heap buffer overflow when executing a onsubscribe callback. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to sensitive information The Eclipse Mosquitto message broker vulnerability is relate...

9.8CVSS7.9AI score0.579EPSS
Exploits2
Redos
Redos
•added 2024/10/29 12:0 a.m.•18 views

ROS-20241029-11

A vulnerability in the blockformat function of the Ruby interpreter with the Action Mailer Gem extension is related to the execution of the function for an unexpectedly large amount of time. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

8.7CVSS7.1AI score0.00944EPSS
Exploits0
Redos
Redos
•added 2024/10/18 12:0 a.m.•18 views

ROS-20241017-11

A vulnerability in the Hotspot component of Oracle GraalVM Enterprise Edition virtual machines, Oracle GraalVM for JDK and Oracle Java SE software platform is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to...

3.7CVSS7AI score0.01257EPSS
Exploits0
Redos
Redos
•added 2024/10/15 12:0 a.m.•18 views

ROS-20241015-04

A vulnerability in the Hotspot component of Oracle GraalVM Enterprise Edition virtual machines, Oracle GraalVM for JDK and Oracle Java SE software platform is related to incorrect resource clearing or release. Exploitation of the vulnerability could allow an attacker acting remotely to cause a...

3.7CVSS7.2AI score0.01361EPSS
Exploits0
Redos
Redos
•added 2024/10/08 12:0 a.m.•18 views

ROS-20241008-04

A vulnerability in the RSS function of the QEMU hardware emulator is related to setting too large a value, causing an index out-of-bounds problem. values, causing a problem with the index going out of bounds. Exploitation of the vulnerability could allow an attacker acting locally to cause a deni...

6.8CVSS6.8AI score0.0065EPSS
Exploits0
Redos
Redos
•added 2024/10/08 12:0 a.m.•18 views

ROS-20241008-08

Intel processor firmware vulnerability is related to information leakage from vector registers. registers. Exploitation of the vulnerability may allow an intruder to gain access to protected information...

6.5CVSS7.2AI score0.00546EPSS
Exploits0
Redos
Redos
•added 2024/10/04 12:0 a.m.•18 views

ROS-20241004-07

A vulnerability in the iouring component of the Linux operating system kernel is related to the reuse of previously released memory due to competitive access to a resource race condition in the scmfpcopy function in the net/core/scm.c module. Exploitation of the vulnerability could allow an...

7CVSS6.9AI score0.00224EPSS
Exploits0
Redos
Redos
•added 2024/10/04 12:0 a.m.•18 views

ROS-20241004-09

Vulnerability of the matchflags function of the Netfilter subsystem of the Linux kernel is related to the reading of data outside of buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to gain unauthorized access to protected information or cause a denial of...

8.2CVSS7.2AI score0.00516EPSS
Exploits1
Redos
Redos
•added 2024/10/02 12:0 a.m.•18 views

ROS-20241002-03

Vulnerability of btrfsgetrootref function in fs/btrfs/disk-io.c module of btrfs file system of Linux kernel is related to reuse of previously freed memory. of the Linux operating system is related to the reuse of previously freed memory. Exploitation of the vulnerability could allow an attacker t...

7.1CVSS7AI score0.00254EPSS
Exploits0
Redos
Redos
•added 2024/10/01 12:0 a.m.•18 views

ROS-20241001-04

Vulnerability of the bgpattrencap function in the bgpd/bgpattr.c file of the software tool for implementing network routing on Unix-like systems FRRouting is related to the lack of verification of actual remaining routing on Unix-like systems FRRouting is related to the lack of checking the actua...

9.8CVSS6.7AI score0.00641EPSS
Exploits0
Redos
Redos
•added 2024/10/01 12:0 a.m.•18 views

ROS-20241001-07

Vulnerability in DecodeConfig component of Golang programming language is related to incorrect normalization of HTTP Location header. HTTP Location header. Exploitation of the vulnerability could allow an attacker acting remotely, redirect the user to a malicious site...

6.1CVSS6.5AI score0.00497EPSS
Exploits1
Redos
Redos
•added 2024/09/23 12:0 a.m.•18 views

ROS-20240923-01

The vulnerability of WebKitGTK and WPE WebKit web page display modules is related to memory access after it is memory after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

8.8CVSS7AI score0.00844EPSS
Exploits0
Redos
Redos
•added 2024/09/23 12:0 a.m.•18 views

ROS-20240923-06

Vulnerability of net/http and net/http2 libraries of Go programming language in terms of implementation of the HTTP/2 protocol is related to uncontrolled resource consumption as a result of incorrect determination of the termination of HTTP/2 is related to uncontrolled resource consumption as a...

7.5CVSS7.1AI score0.91969EPSS
Exploits1
Redos
Redos
•added 2024/09/19 12:0 a.m.•18 views

ROS-20240918-10

The Jenkins Automation Server vulnerability is related to a lack of permission checking at the endpoint of the HTTP. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to sensitive information The Jenkins Automation Server Remoting library vulnerability is...

8.8CVSS7.6AI score0.28782EPSS
Exploits4
Redos
Redos
•added 2024/09/18 12:0 a.m.•18 views

ROS-20240918-01

A vulnerability in the CGI::Cookie.parse function of the Ruby programming language is related to incorrect processing of security prefixes in cookie names. security prefixes in cookie names. Exploitation of the vulnerability allows an attacker, acting remotely, to affect data integrity...

9.8CVSS8.1AI score0.04766EPSS
Exploits3
Redos
Redos
•added 2024/09/17 12:0 a.m.•18 views

ROS-20240917-07

Vulnerability in the PCI Device Handler component of the Xen cross-platform hypervisor is related to bugs in the program's code of the program. Exploitation of the vulnerability could allow an attacker to impact confidentiality, integrity and availability of the system A vulnerability in the x86...

7.5CVSS7.4AI score0.00235EPSS
Exploits0
Redos
Redos
•added 2024/09/17 12:0 a.m.•18 views

ROS-20240917-03

A vulnerability in the QEMU hardware emulator info command is related to uncontrolled consumption of resources. Exploitation of the vulnerability could allow an attacker to gain access to sensitive data, compromise their integrity, and cause a denial of service by using a specially crafted file...

7.8CVSS6.9AI score0.00333EPSS
Exploits0
Redos
Redos
•added 2024/09/16 12:0 a.m.•18 views

ROS-20240916-06

Vulnerability in the Device Handler component of the Xen cross-platform hypervisor of the Linux kernel is related to incorrect placement of a preprocessor directive in the source code. Exploiting the vulnerability could allow an attacker to escalate privileges...

4.1CVSS7.4AI score0.00264EPSS
Exploits0
Redos
Redos
•added 2024/09/11 12:0 a.m.•18 views

ROS-20240911-07

Vulnerability of utfcptr2len function of vim text editor is related to operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS7.7AI score0.00598EPSS
Exploits1
Redos
Redos
•added 2024/09/11 12:0 a.m.•18 views

ROS-20240911-06

A vulnerability in the stack protection feature of the GNU Compiler Collection GCC for different programming languages is due to a data protection mechanism violation. Collection GCC is related to a breach of the data protection mechanism. Exploitation of the vulnerability could allow an attacker...

4.8CVSS6.5AI score0.00666EPSS
Exploits1
Redos
Redos
•added 2024/09/09 12:0 a.m.•18 views

ROS-20240909-03

Vulnerability of the opteeregisterdevice function in the drivers/tee/optee/device.c module of the Trusted Execution Environment TEE module of the Linux kernel is related to incorrect processing of the return code. return code. Exploitation of the vulnerability could allow an attacker to cause a...

7.8CVSS7AI score0.01176EPSS
Exploits0
Redos
Redos
•added 2024/09/09 12:0 a.m.•18 views

ROS-20240909-04

Vulnerability in Mozilla Firefox, Mozilla Firefox ESR, Mozilla Thunderbird email client is related to NULL pointer dereferencing. with NULL pointer dereference. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service. remotely to cause a denial of...

7.5CVSS6.6AI score0.00656EPSS
Exploits0
Redos
Redos
•added 2024/09/05 12:0 a.m.•18 views

ROS-20240904-16

A vulnerability in the export.c file in the exporttga function of the libcaca graphics library for converting an image to ASCII ART is related to the operation exceeding memory buffer limits. image to ASCII ART is related to the operation exceeding the buffer boundaries in memory. Exploitation of...

7.8CVSS7.1AI score0.01353EPSS
Exploits2
Redos
Redos
•added 2024/09/02 12:0 a.m.•18 views

ROS-20240902-08

A vulnerability in the bus lockout regulator mechanism for some Intel processor models is associated with a a security mechanism failure. Exploitation of the vulnerability could allow an attacker to cause a denial of service A firmware vulnerability in Intel Xeon D processors involves an incorrec...

6.5CVSS7.2AI score0.0075EPSS
Exploits0
Redos
Redos
•added 2024/09/02 12:0 a.m.•18 views

ROS-20240902-03

Intel processor firmware vulnerability is related to errors in interpretation of redundant prefixes. of redundant prefixes. Exploitation of the vulnerability could allow an attacker to escalate privileges from third to zero ring of protection CPL0, gain access to sensitive information, or cause a...

8.8CVSS7.3AI score0.01728EPSS
Exploits0
Redos
Redos
•added 2024/09/02 12:0 a.m.•18 views

ROS-20240902-15

A vulnerability in the net/http module of the Go programming language is related to improper input validation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS6.9AI score0.01414EPSS
Exploits0
Redos
Redos
•added 2024/08/26 12:0 a.m.•18 views

ROS-20240826-18

Vulnerability in the .NET development platform of Microsoft's software development tool Visual Studio is related to the transmission of credentials in unencrypted form. Exploitation of the vulnerability could allow an attacker acting remotely to disclose protected information Vulnerability in the...

7.5CVSS6.7AI score0.02701EPSS
Exploits0
Redos
Redos
•added 2024/08/26 12:0 a.m.•18 views

ROS-20240826-10

Vulnerability of pygments/lexers/smithy.py file of SmithyLexer component of syntax highlighting program Pygments is related to the use of a regular expression with inefficient computational complexity. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS7AI score0.00503EPSS
Exploits1
Redos
Redos
•added 2024/08/16 12:0 a.m.•18 views

ROS-20240816-08

A vulnerability in the PHP programming language is related to the random number generator's use of a narrower range of values. Exploitation of the vulnerability could allow an attacker acting remotely to gain access sensitive data A vulnerability in the PHP interpreter phardirread function is...

9.8CVSS8.9AI score0.08003EPSS
Exploits4
Total number of security vulnerabilities5000