Lucene search
K
RedosMost viewed

8217 matches found

Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1817

2.1817 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

9.8CVSS8.1AI score0.06132EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-875

2.875 Multiple vulnerabilities in Mozilla Thunderbird CVE-2021-29957, CVE-2021-29956 1. Vulnerability Description: The vulnerability allows a remote attacker to bypass security restrictions imposed.FSTEC Russia Information Security Threat Data Bank Identifier: BDU:2021-02725, BDU:2021-02726 2...

6.1CVSS7.3AI score0.01905EPSS
Exploits2
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-984

2.984 Nettle library vulnerabilityCVE-2021-20305 1. Vulnerability Description: A Nettle library vulnerability involving the use of a failed cryptographic algorithm and allowing an unauthenticated remote attacker to execute arbitrary code.FSTEC Russia Information Security Threats Data Bank...

8.1CVSS8.1AI score0.01607EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1175

2.1175 Vulnerability in OpenVPN CVE-2020-11810 1. Vulnerability description: A corrective release of the OpenVPN 2.4.9 virtual private networking package has been generated. The new version addresses a vulnerability CVE-2020-11810 that allows a client session to be transferred to a new IP address...

3.7CVSS6.9AI score0.01609EPSS
Exploits1
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-606

2.606 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability coul...

10CVSS7.7AI score0.95785EPSS
Exploits5
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1591

2.1591 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability...

10CVSS8.1AI score0.05984EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1551

2.1551 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user-entered data when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the...

10CVSS9.8AI score0.05984EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-948

2.948 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability coul...

9.8CVSS9.9AI score0.05984EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1829

2.1829 Remote code execution in nginxCVE-2021-23017 1. Vulnerability Description: The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to a single error in the ngxresolvercopyfunction when processing DNS responses. A remote...

7.8CVSS8.3AI score0.52838EPSS
Exploits11
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1296

2.1296 Vulnerability in Mozilla Thunderbird email client CVE-2021-29964, CVE-2021-29967 1. Vulnerability description: CVE-2021-29964 A vulnerability in the Mozilla Thunderbird email client, is related to boundary conditions. Exploitation of the vulnerability could allow an attacker acting remotel...

9.8CVSS9AI score0.02377EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1268

2.1268 Multiple vulnerabilities in Mozilla Thunderbird CVE-2021-23994, CVE-2021-23995, CVE-2021-23998, CVE-2021-23961, CVE-2021-23999, CVE-2021-24002, CVE-2021-29945, CVE-2021-29946, CVE-2021-29948, CVE-2021-29950. 1. Vulnerability Description: Vulnerabilities allow a remote attacker to compromis...

8.8CVSS7.7AI score0.01764EPSS
Exploits4
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1231

2.1231 Multiple vulnerabilities in Mozilla Thunderbird Mozilla Firefox CVE-2021-23953-CVE-2021-23965, CVE-2021-23991-CVE-2021-23993 1. Vulnerability Description: The vulnerability allows a remote attacker to gain access to potentially sensitive information. Vulnerability allows a remote attacker...

8.8CVSS7.5AI score0.01922EPSS
Exploits2
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1179

2.1179 Multiple Vulnerabilities in LibTIFF 1. Vulnerability description: CVE-2020-35524 CVE-2020-35523 CVE-2020-35522 CVE-2020-35522 CVE-2020-35521 The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to a boundary error in TIFF...

8.1CVSS8.3AI score0.06305EPSS
Exploits1
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-810

2.810 Buffer Overflow in Python3 CVE-2021-3177 1. Vulnerability Description: CVE-2021-3177 The vulnerability is capable of causing code execution when processing unchecked floating point numbers in handlers that call C functions using the ctypes mechanism. 2. Possible measures to eliminate the...

9.8CVSS8AI score0.23293EPSS
Exploits1
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-660

2.660 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability Description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

10CVSS8.2AI score0.06132EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-546

2.546 Multiple vulnerabilities in ISC BIND CVE-2021-25216, CVE-2021-25215, CVE-2021-25214 1. Vulnerability Description: CVE-2021-25216 A vulnerability exists due to a boundary error in the GSS-TSIG extension. A remote attacker can send specially crafted requests to the server, trigger a buffer...

9.8CVSS8.6AI score0.83406EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-510

2.510 Mozilla Firefox browser vulnerability CVE-2021-29970, CVE-2021-29976 1. Vulnerability description: CVE-2021-29970 A vulnerability in the Mozilla Firefox browser, is related to a release error in accessibility functions when processing HTML content. Exploitation of the vulnerability could...

9.8CVSS8.8AI score0.02377EPSS
Exploits1
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-864

2.864 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability could...

9.8CVSS8.3AI score0.03582EPSS
Exploits1
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-665

2.665 Multiple vulnerabilities in ISC BIND CVE-2021-25216, CVE-2021-25215, CVE-2021-25214 1. Vulnerability Description: CVE-2021-25216 A vulnerability exists due to a boundary error in the GSS-TSIG extension. A remote attacker can send specially crafted requests to the server, trigger a buffer...

9.8CVSS8.7AI score0.83406EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-497

2.497 Multiple vulnerabilities in PostgreSQL CVE-2021-32027, CVE-2021-32028, CVE-2021-32029 1. Vulnerability Description: CVE-2021-32027 The vulnerability allows a remote attacker to execute arbitrary code on the target system. CVE-2021-32028, CVE-2021-32029 Vulnerability allows a remote user to...

8.8CVSS8.4AI score0.0199EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-930

2.930 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability Description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

9.8CVSS9.9AI score0.06132EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-845

2.845 Multiple vulnerabilities in Moodle CVE-2021-32472 - CVE-2021-32478 1. Vulnerability Description: CVE-2021-32478 A vulnerability exists due to insufficient cleansing of user-provided data at the LTI authorization endpoint. A remote attacker could trick a victim into clicking a specially...

7.5CVSS8.4AI score0.04006EPSS
Exploits1
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1722

2.1722 Multiple vulnerabilities in PostgreSQL CVE-2021-32027, CVE-2021-32028, CVE-2021-32029 1. Vulnerability Description: CVE-2021-32027 The vulnerability allows a remote attacker to execute arbitrary code on the target system. CVE-2021-32028, CVE-2021-32029 Vulnerability allows a remote user to...

8.8CVSS8.5AI score0.0199EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-670

2.670 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 A vulnerability in the Exim message forwarding agent, is related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

9.8CVSS9.1AI score0.61061EPSS
Exploits13
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1411

2.1411 Vulnerability in Mozilla Firefox browser CVE-2021-29967 1. Vulnerability description: Vulnerability in the Mozilla Firefox browser that allows an attacker to execute arbitrary code on the target system.Identifier of the Information Security Threats Data Bank of the FSTEC of Russia : 2...

8.8CVSS9.1AI score0.04006EPSS
Exploits1
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1892

2.1892 Remote code execution in nginxCVE-2021-23017 1. Vulnerability Description: The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to a single error in the ngxresolvercopyfunction when processing DNS responses. A remote...

7.7CVSS8.4AI score0.52838EPSS
Exploits10
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1650

2.1650 Multiple vulnerabilities in libwebp 1. Vulnerability description: CVE-2020-36332 A vulnerability in the libwebp library for encoding and decoding WebP images, is related to improper control of internal resource consumption. Exploitation of the vulnerability could allow an attacker acting...

9.8CVSS8.7AI score0.02662EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1412

2.1412 Vulnerability in Mozilla Thunderbird email client CVE-2021-29964, CVE-2021-29967 1. Vulnerability description: CVE-2021-29964 A vulnerability in the Mozilla Thunderbird email client, is related to boundary conditions. Exploitation of the vulnerability could allow an attacker acting remotel...

8.8CVSS9AI score0.01368EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1340

2.1340 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability Description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

9.8CVSS9.9AI score0.06132EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1676

2.1676 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS9.3AI score0.0262EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1526

2.1526 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

7.2AI score0.0262EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1907

2.1907 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

9.8CVSS8.7AI score0.19431EPSS
Exploits3
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1687

2.1687 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

6.1CVSS7.2AI score0.0262EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1670

2.1670 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS7.3AI score0.0262EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-1379

2.1379 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS7.2AI score0.0262EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-863

2.863 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

6.1CVSS9.3AI score0.0262EPSS
Exploits0
Redos
Redos
added 1976/01/01 12:0 a.m.16 views

ROS-2-595

2.595 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS7.3AI score0.0262EPSS
Exploits0
Redos
Redos
added 1976/01/01 12:0 a.m.16 views

ROS-2-1696

2.1696 Denial of Service in libX11CVE-2021-31535 1. Vulnerability Description: The vulnerability allows a local user to execute a denial of service DoS attack. The vulnerability exists due to insufficient validation of color names in the XLookupColor function. A local user can launch a specially...

9.8CVSS7.4AI score0.10634EPSS
Exploits2
Redos
Redos
added 2026/06/18 12:0 a.m.15 views

ROS-20260618-73-0003

The vulnerability of the BilateralBlurImage method in the AcquireBilateralTLS function of the ImageMagick console graphics editor is related to the release of an incorrect pointer. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

9.8CVSS5.5AI score0.00336EPSS
Exploits0
Redos
Redos
added 2026/06/17 12:0 a.m.15 views

ROS-20260617-73-0020

The vulnerability in ImageMagick is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to enhance their privileges...

7.8CVSS7.6AI score0.00135EPSS
Exploits0
Redos
Redos
added 2026/05/29 12:0 a.m.15 views

ROS-20260529-73-0001

The vulnerability in opensearch is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to enhance their privileges...

5.8AI score
Exploits0
Redos
Redos
added 2026/05/29 12:0 a.m.15 views

ROS-20260529-73-0020

The vulnerability of the cURL command-line utility lies in the use of an uninitialized resource. Exploiting this vulnerability allows a remote attacker to gain access to confidential data...

5.3CVSS5.8AI score0.04929EPSS
Exploits1
Redos
Redos
added 2026/05/29 12:0 a.m.15 views

ROS-20260529-73-0013

The vulnerability of HashiCorp’s Vault Community Edition and Vault Enterprise storage platforms relates to the disclosure of information during data transmission. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

8.8CVSS5.8AI score0.00406EPSS
Exploits0
Redos
Redos
added 2026/05/28 12:0 a.m.15 views

ROS-20260528-73-0001

The vulnerability of the getdumpable function in the Linux operating system’s kernel is related to insecure management of privileges. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS5.8AI score0.0138EPSS
Exploits6
Redos
Redos
added 2026/05/27 12:0 a.m.15 views

ROS-20260527-73-0005

Vulnerability in openbao related to security token assignment restriction errors. Exploitation of the vulnerability could allow an attacker to escalate their privileges...

2.7CVSS5.8AI score0.00301EPSS
Exploits0
Redos
Redos
added 2026/05/26 12:0 a.m.15 views

ROS-20260526-73-0009

Vulnerability in python-relenv related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS7.1AI score0.00144EPSS
Exploits0
Redos
Redos
added 2026/05/26 12:0 a.m.15 views

ROS-20260526-73-0011

Vulnerability in vault related to unrestricted resource allocation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS5.8AI score0.00718EPSS
Exploits0
Redos
Redos
added 2026/05/26 12:0 a.m.15 views

ROS-20260526-73-0006

Vulnerability in python-relenv related to improper dynamic memory cleanup. Exploitation of the vulnerability allows a remote attacker to bypass security restrictions and cause a denial of service by sending specially crafted smb2 packets...

7.5CVSS5.8AI score0.00301EPSS
Exploits1
Redos
Redos
added 2026/05/26 12:0 a.m.15 views

ROS-20260526-73-0014

Vulnerability in registry related to insufficient validation of incoming requests. Exploitation of the vulnerability could allow a remote attacker to launch an ssrf attack...

7.5CVSS5.8AI score0.00274EPSS
Exploits1
Redos
Redos
added 2026/05/24 12:0 a.m.15 views

ROS-20260524-73-0017

A vulnerability in the Security component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is related to insufficient protection of proprietary data. Exploitation of the vulnerability could allow an attacker to gain access to...

2.9CVSS7.2AI score0.00124EPSS
Exploits0
Total number of security vulnerabilities5000