Lucene search
K

8110 matches found

Redos
Redos
•added 2024/08/20 12:0 a.m.•22 views

ROS-20240820-08

A vulnerability in the filtervar function of the PHP programming language interpreter is related to insufficient data authentication. data authentication. Exploitation of the vulnerability could allow an attacker acting remotely, spoof URLs with erroneous data...

5.3CVSS6.7AI score0.12117EPSS
Exploits1
Redos
Redos
•added 2024/08/20 12:0 a.m.•22 views

ROS-20240820-04

Vulnerability in XML parser library libexpat is related to uncontrolled consumption of resources. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of denial of service...

7.5CVSS7.4AI score0.01815EPSS
Exploits1
Redos
Redos
•added 2024/08/20 12:0 a.m.•24 views

ROS-20240820-02

Vulnerability of certstorestats and getcacerts functions of ssl module of programming language interpreter Python CPython is related to synchronization errors when using a shared resource. Exploitation The exploitation of the vulnerability may allow a remote intruder to gain unauthorized access t...

7.4CVSS6.9AI score0.00804EPSS
Exploits0
Redos
Redos
•added 2024/08/20 12:0 a.m.•24 views

ROS-20240820-03

Vulnerability in the zipfile module of the Python programming language interpreter CPython is related to uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker to cause a denial of service denial of service...

6.2CVSS6.8AI score0.00333EPSS
Exploits0
Redos
Redos
•added 2024/08/20 12:0 a.m.•9 views

ROS-20240820-11

The vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird email client is related to the use of memory after its release. memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute arbitrary code using a specially crafted w...

8.4CVSS8.1AI score0.00971EPSS
Exploits3
Redos
Redos
•added 2024/08/20 12:0 a.m.•36 views

ROS-20240820-01

The vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird email client is related to the use of memory after its release. memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute arbitrary code using a specially crafted w...

8.4CVSS8.1AI score0.00971EPSS
Exploits3
Redos
Redos
•added 2024/08/20 12:0 a.m.•9 views

ROS-20240820-12

A vulnerability in the JavaFX component of Oracle GraalVM Enterprise Edition virtual machine and Oracle Java SE software platform is related to insufficient input validation. Oracle Java SE platform is related to insufficient input data validation. Exploitation of the vulnerability could allow an...

3.1CVSS3.6AI score0.00601EPSS
Exploits0
Redos
Redos
•added 2024/08/20 12:0 a.m.•10 views

ROS-20240820-15

A vulnerability in the filtervar function of the PHP programming language interpreter is related to insufficient data authentication. data authentication. Exploitation of the vulnerability could allow an attacker acting remotely, spoof URLs with erroneous data...

5.3CVSS5.4AI score0.12117EPSS
Exploits1
Redos
Redos
•added 2024/08/20 12:0 a.m.•21 views

ROS-20240820-05

A vulnerability in the JavaFX component of Oracle GraalVM Enterprise Edition virtual machine and Oracle Java SE software platform is related to insufficient input validation. Oracle Java SE platform is related to insufficient input data validation. Exploitation of the vulnerability could allow an...

3.1CVSS6.5AI score0.00601EPSS
Exploits0
Redos
Redos
•added 2024/08/20 12:0 a.m.•15 views

ROS-20240820-13

A vulnerability in the JavaFX component of Oracle GraalVM Enterprise Edition virtual machine and Oracle Java SE software platform is related to insufficient input validation. Oracle Java SE platform is related to insufficient input data validation. Exploitation of the vulnerability could allow an...

3.1CVSS3.6AI score0.00601EPSS
Exploits0
Redos
Redos
•added 2024/08/20 12:0 a.m.•9 views

ROS-20240820-06

The aiohttp HTTP client vulnerability is related to flaws in HTTP request processing. Exploitation of the vulnerability could allow an attacker acting remotely to perform an "HTTP request smuggling" attack...

7.2AI score
Exploits0
Redos
Redos
•added 2024/08/20 12:0 a.m.•14 views

ROS-20240820-14

A vulnerability in the JavaFX component of Oracle GraalVM Enterprise Edition virtual machine and Oracle Java SE software platform is related to insufficient input validation. Oracle Java SE platform is related to insufficient input data validation. Exploitation of the vulnerability could allow an...

3.1CVSS3.6AI score0.00601EPSS
Exploits0
Redos
Redos
•added 2024/08/20 12:0 a.m.•14 views

ROS-20240820-07

Vulnerability of subselect component of MariaDB database management system is related to the operation exceeding the buffer boundaries in memory. Exploitation of the vulnerability could allow a remote intruder, affect confidentiality, integrity, availability of protected information Vulnerability...

7.5CVSS6.9AI score0.02082EPSS
Exploits2
Redos
Redos
•added 2024/08/20 12:0 a.m.•21 views

ROS-20240820-09

Vulnerability of mutexunlock function in spi component of Linux kernel is related to memory usage after mutex addlock is released. Exploitation of the vulnerability could allow an intruder to affect confidentiality, integrity and availability of protected information The vulnerability of the...

7.8CVSS6.9AI score0.00828EPSS
Exploits0
Redos
Redos
•added 2024/08/20 12:0 a.m.•36 views

ROS-20240820-10

Vulnerability of the brnflocalin function in the net/bridge/brnetfilterhooks.c module of the netfilter component of the netfilter kernel of the of the Linux operating system is related to incorrect packet processing. Exploitation of the vulnerability could allow an attacker to affect the...

7.8CVSS6.7AI score0.00754EPSS
Exploits0
Redos
Redos
•added 2024/08/19 12:0 a.m.•46 views

ROS-20240819-01

Vulnerability of rtl92epcidisconnect function in drivers/staging/rtl8192e/rtl8192e/rtlcore.c module of the RealTek RTL8192E wireless adapter driver of the Linux kernel is related to the reuse of previously freed memory. reuse of previously freed memory. Exploitation of the vulnerability could all...

7.8CVSS6.9AI score0.02701EPSS
Exploits1
Redos
Redos
•added 2024/08/19 12:0 a.m.•42 views

ROS-20240819-02

A vulnerability in the felixsetupmmiofiltering function in the felix component of the Linux kernel operating system is related to memory leaks if the CPU port is not defined. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the null-ptr-der...

7.8CVSS7AI score0.00496EPSS
Exploits0
Redos
Redos
•added 2024/08/16 12:0 a.m.•21 views

ROS-20240816-06

The vulnerability in OpenVPN software is related to the lack of resource release after the resource expires. the resource's expiration date. Exploitation of the vulnerability could allow an attacker to "save a session" even if the the server has been ordered to disconnect that client...

4.3CVSS6.7AI score0.00665EPSS
Exploits0
Redos
Redos
•added 2024/08/16 12:0 a.m.•9 views

ROS-20240816-15

A vulnerability in the PHP programming language interpreter is related to the erroneous handling of cookies due to the replacement of spaces, dots, and open square brackets with underscores. as a result of replacing spaces, periods and open square brackets with underscores. Exploitation...

6.5CVSS7AI score0.3786EPSS
Exploits0
Redos
Redos
•added 2024/08/16 12:0 a.m.•39 views

ROS-20240816-10

A vulnerability in the PHP programming language interpreter is related to the erroneous handling of cookies due to the replacement of spaces, dots, and open square brackets with underscores. as a result of replacing spaces, periods and open square brackets with underscores. Exploitation...

6.5CVSS7.3AI score0.3786EPSS
Exploits0
Redos
Redos
•added 2024/08/16 12:0 a.m.•20 views

ROS-20240816-09

Vulnerability in mbencodemimeheader function of PHP programming language interpreter is related to uncontrolled resource consumption. uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service. remotely to cause a deni...

7.5CVSS6.7AI score0.01924EPSS
Exploits1
Redos
Redos
•added 2024/08/16 12:0 a.m.•149 views

ROS-20240816-13

Vulnerability in the ASN1 Parser function GTime2str of the libcurl library is related to reading outside of memory boundaries memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause an octasis in the maintenance...

6.5CVSS6.6AI score0.16212EPSS
Exploits1
Redos
Redos
•added 2024/08/16 12:0 a.m.•19 views

ROS-20240816-01

A vulnerability in the Portainer container management platform is related to a difference in authentication user authentication response time. Exploitation of the vulnerability could allow an attacker acting remotely to determine whether a username is valid or invalid. remotely, whether the...

5.3CVSS7.1AI score0.01303EPSS
Exploits2
Redos
Redos
•added 2024/08/16 12:0 a.m.•328 views

ROS-20240816-02

Vulnerability in the ASN1 Parser function GTime2str of the libcurl library is related to reading outside of memory boundaries memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause an octasis in the maintenance...

6.5CVSS6.7AI score0.16212EPSS
Exploits1
Redos
Redos
•added 2024/08/16 12:0 a.m.•20 views

ROS-20240816-05

The vulnerability of truetype in ImageFont function of the Pillow image manipulation library is related to the unconstrained and unregulated resource allocation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS6.6AI score0.01038EPSS
Exploits0
Redos
Redos
•added 2024/08/16 12:0 a.m.•317 views

ROS-20240816-04

A vulnerability in the bermemallocx function of the OpenLDAP package is related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker acting remotely to perform a denial of denial of service...

7.5CVSS6.7AI score0.01947EPSS
Exploits0
Redos
Redos
•added 2024/08/16 12:0 a.m.•17 views

ROS-20240816-03

Vulnerability of HTTP Daemon is related to inconsistent interpreting of HTTP requests when processing 'Content-Length' string values. when processing 'Content-Length' string values. Exploitation of the vulnerability could allow an attacker, acting remotely, to escalate their privileges by sending...

7.3CVSS7.3AI score0.02108EPSS
Exploits1
Redos
Redos
•added 2024/08/16 12:0 a.m.•38 views

ROS-20240816-16

A vulnerability in the opensslprivatedecrypt function of the PKCS1 Padding Handler component of the PHP programming language interpreter is related to the use of a version of OpenSSL that incorporates changes from the request. PHP programming language interpreter is related to the use of a versio...

9.8CVSS8.2AI score0.99987EPSS
Exploits66
Redos
Redos
•added 2024/08/16 12:0 a.m.•348 views

ROS-20240816-12

Vulnerability of setupdscconfig function in drivers/gpu/drm/amd/display/dc/dsc/dcdsc.c module of driver amdgpu of the Linux operating system kernel is related to a lack of input validation. Exploitation the vulnerability could allow an attacker to cause a denial of service A vulnerability in the...

7.8CVSS7.2AI score0.00332EPSS
Exploits0
Redos
Redos
•added 2024/08/16 12:0 a.m.•64 views

ROS-20240816-11

A vulnerability in the procopen function of the PHP programming language interpreter exists due to a failure to take measures to neutralize special elements used by the operating system. to neutralize special elements used in the operating system command. Exploitation exploitation of the...

9.8CVSS8.1AI score0.99987EPSS
Exploits66
Redos
Redos
•added 2024/08/16 12:0 a.m.•25 views

ROS-20240816-07

A vulnerability in the Picture in Picture component of Google Chrome browser is related to the distortion of important information in the user interface. in the user interface. Exploitation of the vulnerability could allow an attacker acting remotely, Spoof the contents of a URL string using a...

9.6CVSS6.2AI score0.00415EPSS
Exploits3
Redos
Redos
•added 2024/08/16 12:0 a.m.•3 views

ROS-20240816-22

Vulnerability in the ASN1 Parser function GTime2str of the libcurl library is related to reading outside of memory boundaries memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause an octasis in the maintenance...

6.5CVSS7AI score0.16212EPSS
Exploits1
Redos
Redos
•added 2024/08/16 12:0 a.m.•8 views

ROS-20240816-14

A vulnerability in the phardirread function of the PHP interpreter is caused by a buffer overflow on the stack. Exploitation of the vulnerability could allow a remote attacker to execute arbitrary code Vulnerability in PHP programming language interpreter is related to incorrect restriction of XM...

9.8CVSS8.9AI score0.08003EPSS
Exploits4
Redos
Redos
•added 2024/08/16 12:0 a.m.•19 views

ROS-20240816-08

A vulnerability in the PHP programming language is related to the random number generator's use of a narrower range of values. Exploitation of the vulnerability could allow an attacker acting remotely to gain access sensitive data A vulnerability in the PHP interpreter phardirread function is...

9.8CVSS8.9AI score0.08003EPSS
Exploits4
Redos
Redos
•added 2024/08/15 12:0 a.m.•29 views

ROS-20240815-10

Vulnerability of the nsVacmAccessTable function in the OID Handler component of the Net-SNMP software suite of the Linux operating system is related to dereferencing of the NULL pointer. of Linux operating system is related to dereferencing of NULL pointer. Exploitation of the vulnerability could...

8.8CVSS8AI score0.01299EPSS
Exploits0
Redos
Redos
•added 2024/08/15 12:0 a.m.•20 views

ROS-20240815-09

Authentication and authorization module for Apache 2.x HTTP server Modauthopenidc has a vulnerability related to setting OIDCStripCookies and providing the created cookie, a dereferencing of a NULL pointer occurs, which will cause a segmentation error. NULL pointer, which will result in a...

7.5CVSS7.2AI score0.01327EPSS
Exploits0
Redos
Redos
•added 2024/08/15 12:0 a.m.•11 views

ROS-20240815-16

Vulnerability in authentication and authorization module for Apache 2.x HTTP server Modauthopenidc is related to an uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service. remotely to cause a denial of service...

7.5CVSS6.9AI score0.01261EPSS
Exploits1
Redos
Redos
•added 2024/08/15 12:0 a.m.•23 views

ROS-20240815-14

A vulnerability in the urllib.parse component of the Python programming language interpreter is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely, bypass URL blocking starting with empty characters...

7.5CVSS7AI score0.20459EPSS
Exploits3
Redos
Redos
•added 2024/08/15 12:0 a.m.•303 views

ROS-20240815-17

A vulnerability in the fwupd daemon for managing firmware update installation on Linux-based systems is related to saving an automatically generated password in /etc/fwupd/redfish.conf without proper restrictions. Exploitation of the vulnerability could allow an attacker acting remotely to gain...

6.5CVSS7.2AI score0.00602EPSS
Exploits0
Redos
Redos
•added 2024/08/15 12:0 a.m.•28 views

ROS-20240815-15

A vulnerability in the Apache Commons FileUpload library is related to unrestricted resource allocation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS6.9AI score0.46836EPSS
Exploits1
Redos
Redos
•added 2024/08/15 12:0 a.m.•18 views

ROS-20240815-11

Vulnerability of JDBC driver pgjdbc for connecting Java programs to PostgreSQL database is related to the creation of arbitrary files. Exploitation of the vulnerability could allow an attacker acting remotely to compromise the integrity and confidentiality of the system. remotely to affect the...

9.8CVSS7.3AI score0.02928EPSS
Exploits0
Redos
Redos
•added 2024/08/15 12:0 a.m.•21 views

ROS-20240815-12

The JSON aeson analysis and encoding library vulnerability is related to the creation of a hash collision in the unordered-containers base library by sending specially crafted JSON data. Exploitation of the of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.5CVSS6.7AI score0.0071EPSS
Exploits1
Redos
Redos
•added 2024/08/15 12:0 a.m.•20 views

ROS-20240815-06

Vulnerability in the HTTP/2 protocol implementation of Mozilla Firefox, Firefox ESR and the mail client Thunderbird is related to uncontrolled resource consumption as a result of incorrect limitation on the field block size when processing CONTINUATION frames. field block size when processing...

3.7CVSS6.8AI score0.00759EPSS
Exploits0
Redos
Redos
•added 2024/08/15 12:0 a.m.•334 views

ROS-20240815-07

A vulnerability in the GNU C Library's nscd nameserver caching daemon is related to the returning a pointer outside the expected range. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the GNU C Library nscd nameserver caching daemon is...

8.1CVSS7AI score0.0131EPSS
Exploits0
Redos
Redos
•added 2024/08/15 12:0 a.m.•25 views

ROS-20240815-08

Vulnerability in the ANGLE component of Google Chrome browser is related to out-of-bounds recording. Exploitation of the of the vulnerability could allow an attacker acting remotely to exploit the heap corruption with a a specially crafted HTML page V8 JavaScript script handler V8 vulnerability i...

8.8CVSS6.4AI score0.00783EPSS
Exploits0
Redos
Redos
•added 2024/08/15 12:0 a.m.•10 views

ROS-20240815-18

Vulnerability in the HTTP/2 protocol implementation of Mozilla Firefox, Firefox ESR and the mail client Thunderbird is related to uncontrolled resource consumption as a result of incorrect limitation on the field block size when processing CONTINUATION frames. field block size when processing...

3.7CVSS6.8AI score0.00759EPSS
Exploits0
Redos
Redos
•added 2024/08/15 12:0 a.m.•36 views

ROS-20240815-05

A vulnerability in the centralized service for maintaining configuration information, naming, providing Apache ZooKeeper's centralized service for maintaining configuration information and naming, providing distributed synchronization, and providing group services is related to the lack of ACL...

9.1CVSS8.1AI score0.73654EPSS
Exploits1
Redos
Redos
•added 2024/08/15 12:0 a.m.•25 views

ROS-20240815-01

A vulnerability in the glibc library of the Aurora operating system is related to reading beyond buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service A vulnerability in the iconv utility of the GNU C Library glibc syst...

7.1CVSS7.2AI score0.03538EPSS
Exploits1
Redos
Redos
•added 2024/08/15 12:0 a.m.•321 views

ROS-20240815-02

The vulnerability of the writestatustextandbuffer function of the cpr.c component of the program for information encryption and creation of electronic digital signatures GnuPG is related to insufficient neutralization of special elements in the request. Exploitation of the vulnerability allows a...

6.5CVSS7.3AI score0.02551EPSS
Exploits1
Redos
Redos
•added 2024/08/15 12:0 a.m.•17 views

ROS-20240815-13

A vulnerability in the configuration implementation of the HTML cleanup tool for Rails Rails Html Sanitizer applications is related to content injection if the application developer overrides the allowed tags "math" and "style" or "svg" and "style". Exploitation of the vulnerability could allow a...

7.5CVSS6.5AI score0.01454EPSS
Exploits2
Total number of security vulnerabilities8110