Lucene search
K
RedosMost viewed

8110 matches found

Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-923

2.923 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

7.8CVSS7.3AI score0.0262EPSS
Exploits1
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-660

2.660 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability Description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

10CVSS8.2AI score0.06132EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-1817

2.1817 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

9.8CVSS8.1AI score0.06132EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-1194

2.1194 Multiple vulnerabilities in Redis CVE-2021-29477,CVE-2021-29478 1. Vulnerability Description: A vulnerability exists due to an integer overflow in the STRALGO LCS command. A remote attacker can pass specially crafted data to an application, cause an integer overflow, and execute arbitrary...

8.8CVSS8.3AI score0.04028EPSS
Exploits1
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-1430

2.1430 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability Description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

9.8CVSS7.9AI score0.06132EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-875

2.875 Multiple vulnerabilities in Mozilla Thunderbird CVE-2021-29957, CVE-2021-29956 1. Vulnerability Description: The vulnerability allows a remote attacker to bypass security restrictions imposed.FSTEC Russia Information Security Threat Data Bank Identifier: BDU:2021-02725, BDU:2021-02726 2...

6.1CVSS7.3AI score0.01905EPSS
Exploits2
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-704

2.704 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability Description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

10CVSS10AI score0.06132EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-1216

2.1216 Vulnerabilities in Squid Proxy Server 1. Vulnerability description: Problems are present in the code processing the "@" block at the beginning of a URL "user@host" and allow bypassing access restriction rules, poisoning cache contents and performing a cross-site scripting attack.Identifier...

6.9AI score
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-1254

2.1254 Vulnerability in Mozilla Thunderbird email client CVE-2021-29964, CVE-2021-29967 1. Vulnerability description: CVE-2021-29964 A vulnerability in the Mozilla Thunderbird email client, is related to boundary conditions. Exploitation of the vulnerability could allow an attacker acting remotel...

8.8CVSS7.7AI score0.01368EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-1340

2.1340 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability Description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

9.8CVSS9.9AI score0.06132EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-984

2.984 Nettle library vulnerabilityCVE-2021-20305 1. Vulnerability Description: A Nettle library vulnerability involving the use of a failed cryptographic algorithm and allowing an unauthenticated remote attacker to execute arbitrary code.FSTEC Russia Information Security Threats Data Bank...

8.1CVSS8.1AI score0.01607EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-593

2.593 Mozilla Firefox browser vulnerability CVE-2021-29970, CVE-2021-29976 1. Vulnerability description: CVE-2021-29970 A vulnerability in the Mozilla Firefox browser, is related to a release error in accessibility functions when processing HTML content. Exploitation of the vulnerability could...

8.8CVSS8.2AI score0.01428EPSS
Exploits1
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-1878

2.1878 Denial of Service in Libxml2 CVE-2021-3541 1. Vulnerability Description: The vulnerability allows a remote attacker to perform a denial of service DoS attack. The vulnerability exists due to insufficient validation of user input. A remote attacker can pass specially crafted input data to a...

6.5CVSS6.8AI score0.01861EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-1610

2.1610 Denial of Service in Libxml2 CVE-2021-3541 1. Vulnerability Description: The vulnerability allows a remote attacker to perform a denial of service DoS attack. The vulnerability exists due to insufficient validation of user input. A remote attacker can pass specially crafted input data to a...

6.5CVSS7.4AI score0.01861EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-1569

2.1569 Denial of Service in Libxml2 CVE-2021-3541 1. Vulnerability Description: The vulnerability allows a remote attacker to perform a denial of service DoS attack. The vulnerability exists due to insufficient validation of user input. A remote attacker can pass specially crafted input data to a...

9.3CVSS6.8AI score0.10047EPSS
Exploits2
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-1495

2.1495 Denial of Service in Libxml2 CVE-2021-3541 1. Vulnerability Description: The vulnerability allows a remote attacker to perform a denial of service DoS attack. The vulnerability exists due to insufficient validation of user input. A remote attacker can pass specially crafted input data to a...

7.5CVSS7.5AI score0.10047EPSS
Exploits2
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-1296

2.1296 Vulnerability in Mozilla Thunderbird email client CVE-2021-29964, CVE-2021-29967 1. Vulnerability description: CVE-2021-29964 A vulnerability in the Mozilla Thunderbird email client, is related to boundary conditions. Exploitation of the vulnerability could allow an attacker acting remotel...

9.8CVSS9AI score0.02377EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-546

2.546 Multiple vulnerabilities in ISC BIND CVE-2021-25216, CVE-2021-25215, CVE-2021-25214 1. Vulnerability Description: CVE-2021-25216 A vulnerability exists due to a boundary error in the GSS-TSIG extension. A remote attacker can send specially crafted requests to the server, trigger a buffer...

9.8CVSS8.6AI score0.83406EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-942

2.942 Multiple vulnerabilities in libwebp 1. Vulnerability description: CVE-2020-36332 A vulnerability in the libwebp library for encoding and decoding WebP images, is related to improper control of internal resource consumption. Exploitation of the vulnerability could allow an attacker acting...

9.8CVSS10AI score0.02662EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-1412

2.1412 Vulnerability in Mozilla Thunderbird email client CVE-2021-29964, CVE-2021-29967 1. Vulnerability description: CVE-2021-29964 A vulnerability in the Mozilla Thunderbird email client, is related to boundary conditions. Exploitation of the vulnerability could allow an attacker acting remotel...

8.8CVSS9AI score0.01368EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-1898

2.1898 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability...

9.8CVSS7.9AI score0.05984EPSS
Exploits1
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-1398

2.1398 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability...

9.8CVSS9.9AI score0.05984EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.15 views

ROS-2-606

2.606 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability coul...

10CVSS7.7AI score0.95785EPSS
Exploits5
Redos
Redos
added 1976/01/01 12:0 a.m.15 views

ROS-2-1367

2.1367 Denial of Service in Libxml2 CVE-2021-3541 1. Vulnerability Description: The vulnerability allows a remote attacker to perform a denial of service DoS attack. The vulnerability exists due to insufficient validation of user input. A remote attacker can pass specially crafted input data to a...

6.5CVSS7.9AI score0.01861EPSS
Exploits0
Redos
Redos
added 1976/01/01 12:0 a.m.15 views

ROS-2-2380

2.2380 Notice of Update for RED OS Operating System RU.29926343.02.01-25 REDO SOFT LLC announces that the testing process for RED OS 8 has been completed, and the certified distribution version of RED OS 8 is now available. If you have questions regarding the purchase of a new installation kit...

5.8AI score
Exploits0
Redos
Redos
added 1976/01/01 12:0 a.m.15 views

ROS-2-3142

2.3142 Notice of Update for RED OS Operating System “RED SOFT” RU.29926343.02.01-24 OOO “RED SOFT” informs you that the testing and release of the updated distribution of RED OS 7.3 have been completed. To update your copy of RED OS to the latest version, you need to perform a system update using...

5.8AI score
Exploits0
Redos
Redos
added 1976/01/01 12:0 a.m.15 views

ROS-2-1330

2.1330 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability coul...

8.8CVSS8.3AI score0.03582EPSS
Exploits1
Redos
Redos
added 2026/06/18 12:0 a.m.14 views

ROS-20260618-73-0003

The vulnerability of the BilateralBlurImage method in the AcquireBilateralTLS function of the ImageMagick console graphics editor is related to the release of an incorrect pointer. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

9.8CVSS5.5AI score0.00336EPSS
Exploits0
Redos
Redos
added 2026/05/29 12:0 a.m.14 views

ROS-20260529-73-0004

The vulnerability of the GNOME Remote Desktop remote desktop service is related to pointer assignment errors. Exploiting this vulnerability can allow a malicious actor to compromise data integrity and cause service failures through a specially created RDP packet...

6.5CVSS5.8AI score0.00416EPSS
Exploits0
Redos
Redos
added 2026/05/29 12:0 a.m.14 views

ROS-20260529-73-0020

The vulnerability of the cURL command-line utility lies in the use of an uninitialized resource. Exploiting this vulnerability allows a remote attacker to gain access to confidential data...

5.3CVSS5.8AI score0.04929EPSS
Exploits1
Redos
Redos
added 2026/05/29 12:0 a.m.14 views

ROS-20260529-73-0021

The vulnerability in opensearch relates to the use of a name with an incorrect link. Exploiting this vulnerability could allow a perpetrator to cause a service failure...

5.8AI score
Exploits0
Redos
Redos
added 2026/05/29 12:0 a.m.14 views

ROS-20260529-73-0011

The vulnerability in the vault is related to insufficient validation of incoming requests. Exploiting this vulnerability allows a malicious actor to execute a SSRF attack remotely...

8.6CVSS5.9AI score0.00332EPSS
Exploits0
Redos
Redos
added 2026/05/29 12:0 a.m.14 views

ROS-20260529-73-0013

The vulnerability of HashiCorp’s Vault Community Edition and Vault Enterprise storage platforms relates to the disclosure of information during data transmission. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

8.8CVSS5.8AI score0.00406EPSS
Exploits0
Redos
Redos
added 2026/05/29 12:0 a.m.14 views

ROS-20260529-73-0001

The vulnerability in opensearch is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to enhance their privileges...

5.8AI score
Exploits0
Redos
Redos
added 2026/05/27 12:0 a.m.14 views

ROS-20260527-73-0003

Vulnerability in openbao related to errors in certificate authentication procedure. The vulnerability can be exploited remotely...

3.1CVSS5.8AI score0.00101EPSS
Exploits0
Redos
Redos
added 2026/05/27 12:0 a.m.14 views

ROS-20260527-73-0001

A vulnerability in the hi311x component of the Linux kernel is related to buffer copying without input validation. Exploitation of the vulnerability could allow a remote attacker to gain access to sensitive data, compromise its integrity, and cause a denial of service via a malicious package...

7.4AI score0.0022EPSS
Exploits0
Redos
Redos
added 2026/05/26 12:0 a.m.14 views

ROS-20260526-73-0013

Vulnerability in golang-x-image related to unrestricted resource allocation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.1CVSS5.8AI score0.00112EPSS
Exploits0
Redos
Redos
added 2026/05/26 12:0 a.m.14 views

ROS-20260526-73-0007

A vulnerability in the lzmaindexappend function of the XZ Utils data compression package is related to a buffer overflow in dynamic memory. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

6.3CVSS6.5AI score0.00351EPSS
Exploits0
Redos
Redos
added 2026/05/26 12:0 a.m.14 views

ROS-20260526-73-0005

Vulnerability in python-relenv related to integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

6.9CVSS5.9AI score0.00322EPSS
Exploits0
Redos
Redos
added 2026/05/26 12:0 a.m.14 views

ROS-20260526-73-0002

A vulnerability in the libexpat XML file parsing library is related to integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

7.8CVSS6.9AI score0.00193EPSS
Exploits0
Redos
Redos
added 2026/05/26 12:0 a.m.14 views

ROS-20260526-73-0001

A vulnerability in the email interpreter module of the Python programming language is related to improper code generation control. Exploitation of the vulnerability could allow a remote attacker to gain access to sensitive data, compromise its integrity, and cause a denial of service...

5.5CVSS6.9AI score0.00737EPSS
Exploits0
Redos
Redos
added 2026/05/24 12:0 a.m.14 views

ROS-20260524-73-0005

A vulnerability in the JSSE component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is associated with a breach of the data protection mechanism. Exploitation of the vulnerability could allow an attacker acting remotely to...

5.3CVSS7.2AI score0.00305EPSS
Exploits0
Redos
Redos
added 2026/05/24 12:0 a.m.14 views

ROS-20260524-73-0027

Vulnerability in docker-ce related to bypassing the authentication procedure by using an alternate path or channel. Exploitation of the vulnerability could allow an attacker acting remotely to bypass existing security restrictions...

8.8CVSS7.3AI score0.08123EPSS
Exploits1
Redos
Redos
added 2026/05/24 12:0 a.m.14 views

ROS-20260524-73-0025

A vulnerability in the Security component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is related to insufficient protection of proprietary data. Exploitation of the vulnerability could allow an attacker to gain access to...

2.9CVSS7.2AI score0.00122EPSS
Exploits0
Redos
Redos
added 2026/05/24 12:0 a.m.14 views

ROS-20260524-73-0043

Vulnerability in mariadb related to security configuration errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.3CVSS7.1AI score0.00274EPSS
Exploits1
Redos
Redos
added 2026/05/20 12:0 a.m.14 views

ROS-20260520-73-0041

A vulnerability in the Dawn component of Google Chrome browser is related to a buffer overflow in dynamic memory. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code using a specially crafted HTML page...

8.8CVSS6.5AI score0.0045EPSS
Exploits0
Redos
Redos
added 2026/05/20 12:0 a.m.14 views

ROS-20260520-73-0015

A vulnerability in the Blink rendering engine of Google Chrome and Microsoft Edge browsers is related to the ability to use memory after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...

8.8CVSS5.7AI score0.00253EPSS
Exploits0
Redos
Redos
added 2026/05/20 12:0 a.m.14 views

ROS-20260520-73-0033

A vulnerability in the WebAudio component of Google Chrome browser is related to writing outside of buffer boundaries. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...

8.8CVSS7.6AI score0.00504EPSS
Exploits0
Redos
Redos
added 2026/05/20 12:0 a.m.14 views

ROS-20260520-73-0005

A vulnerability in the WebGL component of the Google Chrome browser is related to reading outside of the allowed range in memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...

8.8CVSS6AI score0.00341EPSS
Exploits0
Redos
Redos
added 2026/05/15 12:0 a.m.14 views

ROS-20260515-73-0048

A vulnerability in the Skia graphics library of Google Chrome browser is associated with a buffer overflow in dynamic memory. Exploitation of the vulnerability could allow a remote attacker to affect the confidentiality, integrity and availability of protected information...

8.8CVSS6.1AI score0.0025EPSS
Exploits0
Total number of security vulnerabilities5000