Lucene search
K

8110 matches found

Redos
Redos
•added 2024/08/15 12:0 a.m.•18 views

ROS-20240815-03

Vulnerability in the handleipDefaultTTL function of the Net-SNMP software suite of the operating system Linux is related to a NULL Pointer Exception error, which can be exploited to crash an instance with a specially crafted UDP packet. Exploitation of the vulnerability could allow an attacker...

6.5CVSS7AI score0.5346EPSS
Exploits2
Redos
Redos
•added 2024/08/15 12:0 a.m.•16 views

ROS-20240815-04

A vulnerability in the ieeewritefile component of the Netwide Assembler NASM is related to a segmentation violation in the ieeewritefile component in /output/outieee.c segmentation in the ieeewritefile component in /output/outieee.c. Exploitation of the vulnerability could allow an attacker to...

7.8CVSS7.5AI score0.00357EPSS
Exploits2
Redos
Redos
•added 2024/08/14 12:0 a.m.•48 views

ROS-20240814-04

A vulnerability in the ofxudmadevget function in the dmaengine component of the Linux operating system kernel is related to a a leakage bug in ofxudmadevget. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service A vulnerability in the scmidomainreset...

8.1CVSS6.8AI score0.00737EPSS
Exploits1
Redos
Redos
•added 2024/08/14 12:0 a.m.•40 views

ROS-20240814-02

Vulnerability of the Linux kernel NCI protocol implementation is related to the null pointer dereferencing. pointer. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the dbgfstargetidswrite function in the dbgfs component of the Linux...

7.8CVSS9.3AI score0.00258EPSS
Exploits0
Redos
Redos
•added 2024/08/14 12:0 a.m.•29 views

ROS-20240814-05

A vulnerability in the "Save As" function of Mozilla Firefox, Firefox ESR and Thunderbird email client on Windows operating systems is related to insufficient input data validation. Thunderbird email client of Windows operating systems is related to insufficient input data validation. Exploitatio...

8.1CVSS8.6AI score0.0107EPSS
Exploits3
Redos
Redos
•added 2024/08/14 12:0 a.m.•8 views

ROS-20240814-06

The vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird email client is related to the use of hidden side channels. exploitation of hidden side channels. Exploitation of the vulnerability could allow an attacker, acting remotely, to gain unauthorized access to protected information...

8.1CVSS8.6AI score0.0107EPSS
Exploits3
Redos
Redos
•added 2024/08/14 12:0 a.m.•49 views

ROS-20240814-03

A vulnerability in the i40e component of the Linux operating system kernel is related to the incorrect release of a client instance, and subsequent removal of the i40e module. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the RDMA/srp...

7.8CVSS9.1AI score0.0025EPSS
Exploits0
Redos
Redos
•added 2024/08/14 12:0 a.m.•24 views

ROS-20240814-01

Vulnerability of the nftablesnewtable function of Linux kernel operating systems is related to the operation exceeding the buffer boundaries in memory. Exploitation of the vulnerability may allow an intruder to gain unauthorized access to protected information...

7.8CVSS7.1AI score0.00312EPSS
Exploits0
Redos
Redos
•added 2024/08/13 12:0 a.m.•37 views

ROS-20240813-02

Vulnerability of nvmettcpbuildpduiovec function in drivers/nvme/target/tcp.c module of NVMe driver of Linux kernel is related to null pointer dereference. of Linux operating system is related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denia...

7.8CVSS8.2AI score0.78388EPSS
Exploits0
Redos
Redos
•added 2024/08/13 12:0 a.m.•33 views

ROS-20240813-01

The vulnerability of the nftsetrbtree function net/netfilter/nftsetrbtree.c of the Netfilter component of the Linux operating system is related to the operation exceeding the memory buffer boundaries. component of the Netfilter component of the Linux operating system is related to an operation...

8CVSS8.3AI score0.36685EPSS
Exploits2
Redos
Redos
•added 2024/08/13 12:0 a.m.•56 views

ROS-20240813-03

Vulnerability of the usersdmatxadd function of the Infiniband driver of the Linux kernel is related to a pointer dereferencing error. pointer dereferencing error. Exploitation of the vulnerability could allow an attacker acting remotely, execute arbitrary code Vulnerability of the i2cputadapter...

7.8CVSS7.1AI score0.00378EPSS
Exploits0
Redos
Redos
•added 2024/08/13 12:0 a.m.•35 views

ROS-20240813-04

Vulnerability of the phy-pendingskb function in the st21nfca component of the Linux kernel is related to memory leak during device check and remote memory allocation by phy-pendingskb function during device check. device check. Exploitation of the vulnerability could allow an attacker to cause a...

5.5CVSS6.8AI score0.00248EPSS
Exploits0
Redos
Redos
•added 2024/08/12 12:0 a.m.•4 views

ROS-20240812-34

A vulnerability in the utf8asn1str function of the ASN1 parser of the cURL command line utility is related to the release of previously unallocated memory when processing the ASN1 UTF-8 string. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS7AI score0.04296EPSS
Exploits1
Redos
Redos
•added 2024/08/12 12:0 a.m.•21 views

ROS-20240812-07

Squid proxy server vulnerability is related to uncontrolled resource consumption as a result of filtering and data reduction to an unsafe value when processing HTTP header length. Exploitation The vulnerability could allow an attacker acting remotely to cause a denial of service by...

7.5CVSS6.7AI score0.88864EPSS
Exploits0
Redos
Redos
•added 2024/08/12 12:0 a.m.•32 views

ROS-20240812-11

The GLPI Agent universal control agent vulnerability involves modifying GLPI-Agent code or allows a DLL to be used to modify the agent's logic. Exploitation of the vulnerability could allow an attacker to privilege escalation...

7.8CVSS7.1AI score0.00217EPSS
Exploits0
Redos
Redos
•added 2024/08/12 12:0 a.m.•24 views

ROS-20240812-03

The vulnerability in GLPI's asset and data center management software is related to the the injection of commands into a specific workflow that an agent would run with the privileges it uses privileges. Exploitation of the vulnerability could allow an attacker acting remotely to escalate its...

7.6CVSS7.5AI score0.00799EPSS
Exploits0
Redos
Redos
•added 2024/08/12 12:0 a.m.•29 views

ROS-20240812-04

A vulnerability in the Collapsed Forwarding Handler component of the Squid proxy server is related to memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely, cause a denial of service A vulnerability in the Squid proxy server component is...

8.6CVSS7AI score0.88818EPSS
Exploits0
Redos
Redos
•added 2024/08/12 12:0 a.m.•27 views

ROS-20240812-05

Squid proxy server followxforwardedfor function vulnerability is related to uncontrolled recursion when processing X-Forwarded-For HTTP request headers. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

8.6CVSS6.7AI score0.57627EPSS
Exploits0
Redos
Redos
•added 2024/08/12 12:0 a.m.•27 views

ROS-20240812-09

A vulnerability in the HttpStateData function of the Chunked decoder of the Squid proxy server is related to a buffer overflow on the stack as a result of uncontrolled recursion while processing HTTP messages. Exploitation of the vulnerability could allow an attacker acting remotely to cause a...

8.6CVSS6.9AI score0.65254EPSS
Exploits0
Redos
Redos
•added 2024/08/12 12:0 a.m.•312 views

ROS-20240812-14

Vulnerability of the utf8asn1str function of the ASN1 parser of the cURL command line utility is related to the release of previously unallocated memory when processing the ASN1 UTF-8 string. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS6.8AI score0.04296EPSS
Exploits1
Redos
Redos
•added 2024/08/12 12:0 a.m.•18 views

ROS-20240812-08

Node.js software platform vulnerability is related to mismanagement of code generation. Exploitation The vulnerability could allow a remote attacker to activate arbitrary code with elevated privileges when handling CAPNETBINDSERVICE exceptions. elevated privileges when handling CAPNETBINDSERVICE...

7.8CVSS7.4AI score0.00562EPSS
Exploits0
Redos
Redos
•added 2024/08/12 12:0 a.m.•16 views

ROS-20240812-13

A vulnerability in GLPI's asset and data center management software involves server-side request forgery. Exploitation of the vulnerability could allow an attacker acting remotely to perform an SSRF-based attack using the creation of an arbitrary object. remotely to execute an SSRF-based attack...

9.6CVSS7.5AI score0.58818EPSS
Exploits2
Redos
Redos
•added 2024/08/12 12:0 a.m.•17 views

ROS-20240812-12

Vulnerability of GLPI system of requests, incidents and inventory of computer equipment is related to Failure to take measures to protect the SQL query structure. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute arbitrary SQL queries...

8.1CVSS8AI score0.6296EPSS
Exploits0
Redos
Redos
•added 2024/08/12 12:0 a.m.•20 views

ROS-20240812-10

Golang programming language's gfdashsetupperiod function vulnerability is related to resource release bugs resources. Exploitation of the vulnerability may allow an attacker to cause a denial of service...

9.8CVSS6.8AI score0.01101EPSS
Exploits1
Redos
Redos
•added 2024/08/12 12:0 a.m.•23 views

ROS-20240812-02

A vulnerability in the GLPI plugin that allows the creation of custom Formcreator forms is related to the the use of FULLFORM for rendering. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute arbitrary javascript code...

6.1CVSS7.7AI score0.00551EPSS
Exploits1
Redos
Redos
•added 2024/08/12 12:0 a.m.•16 views

ROS-20240812-01

The vulnerability in the Kerberos 5 Heimdal implementation is due to bugs in the Heimdal PKI certificate checks, affecting KDC via PKINIT and kinit via PKINIT, as well as any third-party applications, that utilize libhx509 Heimdal. Exploitation of the vulnerability could allow an attacker acting...

7.5CVSS6.8AI score0.00891EPSS
Exploits0
Redos
Redos
•added 2024/08/12 12:0 a.m.•16 views

ROS-20240812-06

A vulnerability in GLPI's asset management and data center software is related to the The introduction of a malicious link by an unauthenticated user. Exploitation of the vulnerability could allow an attacker acting remotely to conduct an XSS attack Vulnerability in GLPI's request, incident and...

9.8CVSS7.3AI score0.49425EPSS
Exploits1
Redos
Redos
•added 2024/08/12 12:0 a.m.•36 views

ROS-20240812-16

Vulnerability of the dovccioctl function in the net/atm/ioctl.c module of the ATM Asynchronous Transfer Mode network protocol implementation of the Linux kernel is related to the reuse of a previously exploited ATM protocol. Asynchronous Transfer Mode kernel of the Linux operating system is relat...

8.8CVSS8.3AI score0.09141EPSS
Exploits4
Redos
Redos
•added 2024/08/12 12:0 a.m.•46 views

ROS-20240812-15

Apache HTTP Server kernel vulnerability is related to ignoring outdated configuration of the of handlers by the "AddType" function. Exploitation of the vulnerability could allow an attacker acting remotely to disclose protected information. remotely to disclose protected information Vulnerability...

7.5CVSS6.8AI score0.35447EPSS
Exploits3
Redos
Redos
•added 2024/08/08 12:0 a.m.•18 views

ROS-20240808-02

Vulnerability in Kerberos 5 Heimdal implementation is related to null pointer dereferencing. Exploitation exploitation of the vulnerability could allow a remote attacker to cause a denial of service...

7.5CVSS6.8AI score0.00885EPSS
Exploits0
Redos
Redos
•added 2024/08/08 12:0 a.m.•21 views

ROS-20240808-01

A vulnerability in the gfm2tsprocesssdt function of the GPAC multimedia platform is related to a buffer overflow in the heap. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the gffwrite component of the GPAC Multimedia Platform is...

8.8CVSS7.2AI score0.01153EPSS
Exploits6
Redos
Redos
•added 2024/08/08 12:0 a.m.•13 views

ROS-20240808-04

A vulnerability in the phpCAS::setUrl function of the phpCAS authentication library is related to the use of HTTP headers to determine the URL of a service used to validate tickets. HTTP to determine the URL of the service used to validate tickets, allowing the control of the host header and use ...

8CVSS7.2AI score0.01064EPSS
Exploits0
Redos
Redos
•added 2024/08/08 12:0 a.m.•17 views

ROS-20240808-03

A vulnerability in the HTTP server of the Node.js software platform is related to uncontrolled resource consumption as a result of reading an unlimited number of bytes from a single connection while processing HTTP requests. as a result of reading an unlimited number of bytes from a single...

7.5CVSS6.9AI score0.03168EPSS
Exploits0
Redos
Redos
•added 2024/08/07 12:0 a.m.•22 views

ROS-20240807-09

A vulnerability in the V8 JavaScript script handler of the Google Chrome browser is related to an improperly implemented security checks for the standard. Exploitation of the vulnerability could allow an attacker, acting remotely, to perform a sandbox exit using a specially crafted HTML page A...

9.6CVSS8.9AI score0.00865EPSS
Exploits11
Redos
Redos
•added 2024/08/07 12:0 a.m.•20 views

ROS-20240725-11

A vulnerability in the NVIDIA GPU Display Driver software driver for Linux is related to privilege management errors. Exploitation of the vulnerability could allow an attacker to disclose protected information and cause a denial of service A vulnerability in the NVIDIA GPU Display Driver for Linu...

7.8CVSS8.1AI score0.00275EPSS
Exploits0
Redos
Redos
•added 2024/08/07 12:0 a.m.•19 views

ROS-20240725-13

A vulnerability in the NVIDIA GPU Display Driver software driver for Linux is related to privilege management errors. Exploitation of the vulnerability could allow an attacker to disclose protected information and cause a denial of service A vulnerability in the NVIDIA GPU Display Driver for Linu...

7.8CVSS8.1AI score0.00275EPSS
Exploits0
Redos
Redos
•added 2024/08/07 12:0 a.m.•11 views

ROS-20240807-01

Vulnerability in the implementation of ColladaParser::ExtractDataObjectFromChannel function of the Open Asset Import Library Assimp 3D models Open Asset Import Library Assimp is related to memory usage after release. Exploitation of the vulnerability could allow an attacker acting remotely to gai...

8.8CVSS8.4AI score0.00723EPSS
Exploits1
Redos
Redos
•added 2024/08/07 12:0 a.m.•13 views

ROS-20240807-02

Vulnerability of CountVowelPosition function of Espeak compact free software speech synthesizer is related to stack buffer overflow. with a stack buffer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service SetUpPhonemeTable compact free software speech...

5.5CVSS7.2AI score0.00405EPSS
Exploits5
Redos
Redos
•added 2024/08/07 12:0 a.m.•27 views

ROS-20240725-09

A vulnerability in the NVIDIA GPU Display Driver software driver for Linux is related to privilege management errors. Exploitation of the vulnerability could allow an attacker to disclose protected information and cause a denial of service A vulnerability in the NVIDIA GPU Display Driver for Linu...

7.8CVSS8.1AI score0.00275EPSS
Exploits0
Redos
Redos
•added 2024/08/07 12:0 a.m.•12 views

ROS-20240725-10

A vulnerability in the NVIDIA GPU Display Driver software driver for Linux is related to privilege management errors. Exploitation of the vulnerability could allow an attacker to disclose protected information and cause a denial of service A vulnerability in the NVIDIA GPU Display Driver for Linu...

7.8CVSS8.1AI score0.00275EPSS
Exploits0
Redos
Redos
•added 2024/08/07 12:0 a.m.•38 views

ROS-20240725-08

A vulnerability in the NVIDIA GPU Display Driver software driver for Linux is related to writing outside of memory boundaries. Exploitation of the vulnerability could allow an attacker to elevate privileges, disclose sensitive information, or spoof data A vulnerability in the NVIDIA GPU Display...

7.8CVSS8.1AI score0.00275EPSS
Exploits0
Redos
Redos
•added 2024/08/07 12:0 a.m.•19 views

ROS-20240807-03

The vulnerability of PJSIPHEADER function of Asterisk and Certified Asterisk IP telephony management systems is related to with operation exceeding the buffer boundaries in memory when processing the update argument. Exploitation of the vulnerability could allow an attacker acting remotely to cau...

8.2CVSS7.6AI score0.4557EPSS
Exploits5
Redos
Redos
•added 2024/08/07 12:0 a.m.•29 views

ROS-20240807-05

A vulnerability in the PostPolicyBucket component of the MinIO object storage server is related to errors in privilege management. privilege management errors. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code by sending specially crafted HTTP...

8.8CVSS7.1AI score0.83957EPSS
Exploits14
Redos
Redos
•added 2024/08/07 12:0 a.m.•21 views

ROS-20240807-06

Vulnerability in the gfavcchangevui function of the GPAC multimedia platform, related to the failure to take measures to to protect the structure of the web page. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service Vulnerability in the av1uvlc function...

9.8CVSS6.5AI score0.01043EPSS
Exploits4
Redos
Redos
•added 2024/08/07 12:0 a.m.•23 views

ROS-20240807-10

BIND DNS server vulnerability is related to uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service by sending multiple DNS messages over TCP The BIND DNS server vulnerability involves sending a large number of clie...

7.5CVSS6.6AI score0.0468EPSS
Exploits0
Redos
Redos
•added 2024/08/07 12:0 a.m.•18 views

ROS-20240725-12

A vulnerability in the NVIDIA GPU Display Driver software driver for Linux is related to privilege management errors. Exploitation of the vulnerability could allow an attacker to disclose protected information and cause a denial of service A vulnerability in the NVIDIA GPU Display Driver for Linu...

7.8CVSS8.1AI score0.00275EPSS
Exploits0
Redos
Redos
•added 2024/08/07 12:0 a.m.•16 views

ROS-20240807-04

MuPDF PDF viewer's fznewpixmapfromfloatdata function vulnerability is related to the division by zero. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service Vulnerability in bmpdecompressrle4 function of MuPDF PDF viewer is related to division by...

7.5CVSS6.6AI score0.00914EPSS
Exploits3
Redos
Redos
•added 2024/08/07 12:0 a.m.•21 views

ROS-20240807-07

Vulnerability in implementation of PreparedStatement.setText or PreparedStatement.setBytea methods of JDBC driver PgJDBC methods for connecting Java programs to a PostgreSQL database is related to unsafe temporary files. Exploitation of the vulnerability could allow an attacker to disclose...

10CVSS8.1AI score0.0481EPSS
Exploits1
Redos
Redos
•added 2024/08/06 12:0 a.m.•20 views

ROS-20240806-11

A vulnerability in the client software for interacting with the RabbitMQ Java message broker client is associated with uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker, acting remotely, to cause a denial of service...

7.5CVSS6.7AI score0.01061EPSS
Exploits1
Redos
Redos
•added 2024/08/06 12:0 a.m.•22 views

ROS-20240806-07

A vulnerability in the Fake Authentication Result Handler component of OpenDKIM DKIM filter software is related to the lack of sequence number verification when deleting fake fields. Exploitation of the vulnerability could allow an attacker acting remotely to impact the confidentiality, integrity...

5.3CVSS6.8AI score0.00575EPSS
Exploits0
Total number of security vulnerabilities8110