Lucene search
K
RedosMost viewed

8110 matches found

Redos
Redos
•added 2023/07/06 12:0 a.m.•17 views

ROS-2-1174

2.1174 Vulnerability in Git CVE-2020-11008, CVE-2020-5260 1. Vulnerability Description: Vulnerability in Git. The vulnerability affects the "credential.helper" handlers and is exploited when a specially crafted URL containing a newline character, an empty host, or an unspecified request scheme is...

7.5CVSS7.2AI score0.10047EPSS
Exploits2
Redos
Redos
•added 2023/07/06 12:0 a.m.•17 views

ROS-2-1465

2.1465 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 A vulnerability in the Exim message forwarding agent, is related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

9.8CVSS9.1AI score0.61061EPSS
Exploits6
Redos
Redos
•added 2023/07/06 12:0 a.m.•17 views

ROS-2-1436

2.1436 Multiple vulnerabilities in Mozilla Thunderbird CVE-2021-29957, CVE-2021-29956 1. Vulnerability Description: The vulnerability allows a remote attacker to bypass the security restrictions imposed.Identifier of the Information Security Threats Data Bank of the FSTEC of Russia :...

4.3CVSS7.3AI score0.0094EPSS
Exploits2
Redos
Redos
•added 2023/01/30 12:0 a.m.•17 views

ROS-20230130-02

Vulnerability of the opusfile stream decoder library is related to null pointer dereferencing in the opgetdata and opopen1 functions in opusfile.c in xiph. Exploitation of the vulnerability could allow an attacker, acting remotely, transfer specially crafted data to an application and perform a...

7.8CVSS7.2AI score0.00395EPSS
Exploits1
Redos
Redos
•added 2021/12/24 12:0 a.m.•17 views

ROS-2-1478

2.1478 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability coul...

8.8CVSS9.8AI score0.03582EPSS
Exploits1
Redos
Redos
•added 2021/12/24 12:0 a.m.•17 views

ROS-2-1401

2.1401 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS9.5AI score0.0262EPSS
Exploits0
Redos
Redos
•added 2021/12/24 12:0 a.m.•17 views

ROS-2-1475

2.1475 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS7.2AI score0.0262EPSS
Exploits0
Redos
Redos
•added 2021/12/24 12:0 a.m.•17 views

ROS-20211223-05

Asterisk computer telephony application vulnerability involves an input validation error. Exploitation The vulnerability could allow a remote attacker to send a packet containing an unsupported multimedia format and perform a denial of service DoS attack. unsupported media format and perform a...

7.5CVSS7.2AI score0.0911EPSS
Exploits1
Redos
Redos
•added 2021/12/24 12:0 a.m.•17 views

ROS-2-1239

2.1239 Multiple vulnerabilities in Mozilla Firefox CVE-2021-23994, CVE-2021-23995, CVE-2021-23996, CVE-2021-23997, CVE-2021-23998, CVE-2021-23999, CVE-2021-24000, CVE-2021-24001, CVE-2021-24002, CVE-2021-29945, CVE-2021-29947, CVE-2021-29946. 1. Vulnerability Description: Vulnerabilities allow a...

8.8CVSS7.6AI score0.01764EPSS
Exploits1
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1243

2.1243 Multiple vulnerabilities in Squid CVE-2021-28651, CVE-2021-28662, CVE-2021-28652, CVE-2021-31806, CVE-2021-31808 1. Vulnerability Description: The vulnerability allows a remote attacker to execute a denial-of-service DoS attack.Identifier of the Information Security Threats Data Bank of th...

7.8CVSS7.7AI score0.99295EPSS
Exploits86
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1195

2.1195 Multiple vulnerabilities in Squid CVE-2021-28651, CVE-2021-28662, CVE-2021-28652, CVE-2021-31806, CVE-2021-31808 1. Vulnerability Description: The vulnerability allows a remote attacker to execute a denial-of-service DoS attack.Identifier of the Information Security Threats Data Bank of th...

7.5CVSS7.7AI score0.95785EPSS
Exploits5
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-825

2.825 Multiple vulnerabilities in Squid CVE-2021-28651, CVE-2021-28662, CVE-2021-28652, CVE-2021-31806, CVE-2021-31808 1. Vulnerability Description: The vulnerability allows a remote attacker to execute a denial-of-service DoS attack.Identifier of the Information Security Threats Data Bank of the...

7.8CVSS7.7AI score0.99295EPSS
Exploits86
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1635

2.1635 Vulnerability in Mozilla Thunderbird email client CVE-2021-29964, CVE-2021-29967 1. Vulnerability description: CVE-2021-29964 A vulnerability in the Mozilla Thunderbird email client, is related to boundary conditions. Exploitation of the vulnerability could allow an attacker acting remotel...

8.8CVSS9.1AI score0.01368EPSS
Exploits0
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1394

2.1394 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS7.2AI score0.0262EPSS
Exploits0
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1200

2.1200 Nettle library vulnerabilityCVE-2021-20305 1. Vulnerability Description: A Nettle library vulnerability involving the use of a failed cryptographic algorithm and allowing an unauthenticated remote attacker to execute arbitrary code.FSTEC Russia Information Security Threats Data Bank...

8.8CVSS8.2AI score0.0199EPSS
Exploits0
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-538

2.538 Multiple vulnerabilities in libwebp 1. Vulnerability description: CVE-2020-36332 A vulnerability in the libwebp library for encoding and decoding WebP images, is related to improper control of internal resource consumption. Exploitation of the vulnerability could allow an attacker acting...

9.8CVSS8.4AI score0.02662EPSS
Exploits1
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1933

2.1933 Multiple vulnerabilities of libwebp 1. Vulnerability description: CVE-2020-36332 A vulnerability in the libwebp library for encoding and decoding WebP images, is related to improper control of internal resource consumption. Exploitation of the vulnerability could allow an attacker acting...

9.8CVSS8.6AI score0.02662EPSS
Exploits1
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1383

2.1383 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

9.8CVSS7.9AI score0.06132EPSS
Exploits1
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1441

2.1441 Denial of Service in Libxml2 CVE-2021-3541 1. Vulnerability Description: The vulnerability allows a remote attacker to perform a denial of service DoS attack. The vulnerability exists due to insufficient validation of user input. A remote attacker can pass specially crafted input data to a...

6.5CVSS7AI score0.01861EPSS
Exploits0
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1320

2.1320 Denial of Service in Libxml2 CVE-2021-3541 1. Vulnerability Description: The vulnerability allows a remote attacker to perform a denial of service DoS attack. The vulnerability exists due to insufficient validation of user input. A remote attacker can pass specially crafted input data to a...

7.8CVSS7.6AI score0.01861EPSS
Exploits1
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1181

2.1181 Multiple vulnerabilities in Apache Tomcat CVE-2021-25122, CVE-2021-25329 1. Vulnerability Description: CVE-2021-25122 CVE-2021-25322 CVE-2021-25329 The vulnerability allows a remote attacker to gain access to sensitive information. The vulnerability exists due to mismanagement of internal...

7.8CVSS7.7AI score0.18114EPSS
Exploits16
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1395

2.1395 Vulnerability in Mozilla Thunderbird email client CVE-2021-29964, CVE-2021-29967 1. Vulnerability description: CVE-2021-29964 A vulnerability in the Mozilla Thunderbird email client, is related to boundary conditions. Exploitation of the vulnerability could allow an attacker acting remotel...

8.8CVSS8AI score0.01368EPSS
Exploits0
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-835

2.835 Vulnerability in Mozilla Firefox browser CVE-2021-29967 1. Vulnerability description: A vulnerability in the Mozilla Firefox browser that allows an attacker to execute arbitrary code on the target system.Identifier of the Information Security Threats Data Bank of the FSTEC of Russia: 2...

8.8CVSS9.1AI score0.01609EPSS
Exploits1
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1196

2.1196 Multiple vulnerabilities in Mozilla Thunderbird CVE-2021-29957, CVE-2021-29956 1. Vulnerability Description: The vulnerability allows a remote attacker to bypass the security restrictions imposed.FSTEC Russia Information Security Threat Data Bank Identifier: BDU:2021-02725, BDU:2021-02726...

4.3CVSS7.3AI score0.0094EPSS
Exploits2
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1498

2.1498 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 A vulnerability in the Exim message forwarding agent, is related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

9.8CVSS9.1AI score0.61061EPSS
Exploits9
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1491

2.1491 Multiple vulnerabilities in PostgreSQL CVE-2021-32027, CVE-2021-32028, CVE-2021-32029 1. Vulnerability Description: CVE-2021-32027 The vulnerability allows a remote attacker to execute arbitrary code on the target system. CVE-2021-32028, CVE-2021-32029 Vulnerability allows a remote user to...

8.8CVSS8.5AI score0.0199EPSS
Exploits0
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1225

2.1225 Vulnerability in PPPD CVE-2020-8597 1. Vulnerability Description: The issue CVE-2020-8597 is a stack buffer overflow vulnerability resulting from a logic error in the EAP Extensible Authentication Protocol packet parser in PPPD eaprequest and eapresponse functions in eap.c. The...

9.8CVSS8.8AI score0.19431EPSS
Exploits10
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1700

2.1700 Vulnerability in Mozilla Thunderbird email client CVE-2021-29964, CVE-2021-29967 1. Vulnerability description: CVE-2021-29964 A vulnerability in the Mozilla Thunderbird email client, is related to boundary conditions. Exploitation of the vulnerability could allow an attacker acting remotel...

8.8CVSS8AI score0.04006EPSS
Exploits1
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1913

2.1913 Remote code execution in nginxCVE-2021-23017 1. Vulnerability Description: The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to a single error in the ngxresolvercopyfunction when processing DNS responses. A remote...

9.8CVSS8.5AI score0.52838EPSS
Exploits10
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1632

2.1632 Remote code execution in nginxCVE-2021-23017 1. Vulnerability Description: The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to a single error in the ngxresolvercopyfunction when processing DNS responses. A remote...

7.8CVSS8.5AI score0.52838EPSS
Exploits11
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1408

2.1408 Denial of Service in libX11CVE-2021-31535 1. Vulnerability Description: The vulnerability allows a local user to execute a denial of service DoS attack. The vulnerability exists due to insufficient validation of color names in the XLookupColor function. A local user can launch a specially...

9.8CVSS7.3AI score0.10634EPSS
Exploits2
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-849

2.849 Denial of Service in libX11CVE-2021-31535 1. Vulnerability Description: The vulnerability allows a local user to execute a denial of service DoS attack. The vulnerability exists due to insufficient validation of color names in the XLookupColor function. A local user can launch a specially...

9.8CVSS9.3AI score0.10634EPSS
Exploits2
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1182

2.1182 Follow link in chrony CVE-2020-14367 1. Vulnerability Description: CVE-2020-14367 Vulnerability allows a remote attacker to compromise a target system due to issues with a symbolic link to a service.FSTEC Russia Information Security Threats Data Bank Identifier: BDU:2021-01809 2. Possible...

7.8CVSS7.1AI score0.01922EPSS
Exploits0
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1390

2.1390 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability...

9.8CVSS7.9AI score0.05984EPSS
Exploits0
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-868

2.868 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability could...

8.8CVSS9.3AI score0.03582EPSS
Exploits1
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-664

2.664 Multiple vulnerabilities in Moodle CVE-2021-32472 - CVE-2021-32478 1. Vulnerability Description: CVE-2021-32478 A vulnerability exists due to insufficient cleansing of user-provided data at the LTI authorization endpoint. A remote attacker could trick a victim into clicking a specially...

7.5CVSS8.3AI score0.01157EPSS
Exploits0
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-1232

2.1232 Multiple vulnerabilities in ClamAV antivirus package CVE-2021-1252, CVE-2021-1404, CVE-2021-1405 1. Vulnerability Description: CVE-2021-1252 - looping when processing specially formatted Excel XLM files. CVE-2021-1404 - process crash when processing specially formatted PDF documents...

9.8CVSS7.2AI score0.23293EPSS
Exploits1
Redos
Redos
•added 2021/09/08 12:0 a.m.•17 views

ROS-2-587

2.587 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 A vulnerability in the Exim message forwarding agent, is related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

9.8CVSS8.5AI score0.61061EPSS
Exploits6
Redos
Redos
•added 1976/01/01 12:0 a.m.•17 views

ROS-2-1357

2.1357 Vulnerability in Mozilla Firefox browser CVE-2021-29967 1. Vulnerability description: Vulnerability in the Mozilla Firefox browser that allows an attacker to execute arbitrary code on the target system.Identifier of the Information Security Threats Data Bank of the FSTEC of Russia: 2...

8.8CVSS9.1AI score0.01368EPSS
Exploits0
Redos
Redos
•added 1976/01/01 12:0 a.m.•17 views

ROS-2-4506

2.4506 Notification on the update of the Red OS OPERATION SYSTEM MIS RED SOFT LLC notifies of the renewal of the previously obtained certificate of conformity of FSTEC of Russia 4060 until 12.01.2029 of the operating system "RED OS", decimal number RU.29926343.02.01-01. You can contact the...

5.8AI score
Exploits0
Redos
Redos
•added 2026/05/29 12:0 a.m.•16 views

ROS-20260529-73-0015

The vulnerability in openbao is related to improper session management. Exploiting this vulnerability can allow a remote attacker to intercept a user’s session...

9.6CVSS5.8AI score0.00411EPSS
Exploits0
Redos
Redos
•added 2026/05/29 12:0 a.m.•16 views

ROS-20260529-73-0010

The vulnerability of JavaScript script handlers in Mozilla Firefox, Firefox ESR, and the email client Thunderbird lies in the issue of writing beyond the buffer boundaries in memory during the processing of Promise objects. Exploiting this vulnerability allows a malicious actor to execute arbitra...

9.8CVSS6.3AI score0.08917EPSS
Exploits1
Redos
Redos
•added 2026/05/27 12:0 a.m.•16 views

ROS-20260527-73-0004

Vulnerability in openbao due to failure to take measures to protect sql query structure. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

4.9CVSS6.2AI score0.00235EPSS
Exploits0
Redos
Redos
•added 2026/05/26 12:0 a.m.•16 views

ROS-20260526-73-0003

A vulnerability in the libexpat XML file parsing library is related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

2.9CVSS6.8AI score0.0017EPSS
Exploits0
Redos
Redos
•added 2026/05/26 12:0 a.m.•16 views

ROS-20260526-73-0016

Vulnerability in the registry related to flaws in the authorization mechanism. Exploitation of the vulnerability may allow a remote intruder to gain unauthorized access to protected information...

6.5CVSS5.8AI score0.00294EPSS
Exploits1
Redos
Redos
•added 2026/05/26 12:0 a.m.•16 views

ROS-20260526-73-0012

Vulnerability in mongodb-org related to a flaw in the use of assert. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6CVSS5.8AI score0.00203EPSS
Exploits0
Redos
Redos
•added 2026/05/26 12:0 a.m.•16 views

ROS-20260526-73-0008

Vulnerability in python-relenv related to execution of a loop with an unreachable exit condition. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS7.2AI score0.00216EPSS
Exploits1
Redos
Redos
•added 2026/05/26 12:0 a.m.•16 views

ROS-20260526-73-0019

A vulnerability in the libpng library is related to the failure to check for sufficient input pixels when processing the last partial portion in the ARM/AArch64 Neon optimized palette expansion path. Exploitation of the vulnerability could allow a remote attacker to disclose protected information...

7.6CVSS6.3AI score0.00585EPSS
Exploits0
Redos
Redos
•added 2026/05/24 12:0 a.m.•16 views

ROS-20260524-73-0023

A vulnerability in the Security component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is related to insufficient protection of proprietary data. Exploitation of the vulnerability could allow an attacker to gain access to...

2.9CVSS7.2AI score0.00122EPSS
Exploits0
Redos
Redos
•added 2026/05/24 12:0 a.m.•16 views

ROS-20260524-73-0001

A vulnerability in the JSSE component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is associated with a breach of the data protection mechanism. Exploitation of the vulnerability could allow an attacker acting remotely to...

5.3CVSS7.2AI score0.00305EPSS
Exploits0
Total number of security vulnerabilities5000