Lucene search
K

8181 matches found

Redos
Redos
•added 2024/04/08 12:0 a.m.•32 views

ROS-20240408-11

A vulnerability in the HTTP Requests library of the Python Requests programming language is related to insufficient protection of service data. inadequate protection of proprietary data. Exploitation of the vulnerability could allow an attacker acting remotely, gain unauthorized access to protect...

6.1CVSS6.8AI score0.02782EPSS
Exploits1
Redos
Redos
•added 2024/04/08 12:0 a.m.•25 views

ROS-20240408-04

Vulnerability of cttsboxread function of Golang programming language is related to resource release errors. resources. Exploitation of the vulnerability may allow an attacker to cause a denial of service A vulnerability in the file src/mediatools/avilib.c of the GPAC multimedia platform, is relat...

9.8CVSS7.8AI score0.01121EPSS
Exploits1
Redos
Redos
•added 2024/04/08 12:0 a.m.•22 views

ROS-20240408-18

A vulnerability in the makeftpcmd component of the ProFTPD FTP server is related to a single-byte read outside the of the allowed range. Exploitation of the vulnerability could allow an attacker acting remotely, cause a denial of service...

7.5CVSS6.7AI score0.04249EPSS
Exploits1
Redos
Redos
•added 2024/04/08 12:0 a.m.•11 views

ROS-20240408-23

A vulnerability in the SSH protocol implementation is related to the ability to adjust packet sequence numbers during the connection negotiation process and remove an arbitrary number of SSH service messages. during the connection negotiation process and cause an arbitrary number of SSH service...

5.9CVSS6.2AI score0.9378EPSS
Exploits4
Redos
Redos
•added 2024/04/08 12:0 a.m.•6 views

ROS-20250117-02

Vulnerability of xorg-server package is related to created requests to RRChangeProviderProperty or RRChangeOutputProperty causing integer overflow. RRChangeOutputProperty causing an integer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to disclose sensitive...

7.8CVSS7.4AI score0.01631EPSS
Exploits0
Redos
Redos
•added 2024/04/08 12:0 a.m.•21 views

ROS-20240408-07

A vulnerability in the Gstreamer module of the LibreOffice office suite exists due to failure to take measures to neutralize special elements. to neutralize special elements. Exploitation of the vulnerability could allow an attacker, acting remotely. remotely to run arbitrary Gstreamer plug-ins...

8.8CVSS8AI score0.01017EPSS
Exploits0
Redos
Redos
•added 2024/04/08 12:0 a.m.•26 views

ROS-20240408-06

A vulnerability in the HID Profile Human Interface Device interface of the Bluetooth protocol stack for the Linux BlueZ operating system is related to an access control flaw. Exploitation of the vulnerability could allow an attacker, acting remotely, escalate their privileges and execute arbitrar...

6.3CVSS8.2AI score0.07879EPSS
Exploits8
Redos
Redos
•added 2024/04/08 12:0 a.m.•27 views

ROS-20240408-02

A vulnerability in the net/html library of the Go programming language exists due to a failure to take measures to protect the structure of a web page. the structure of the web page. Exploitation of the vulnerability could allow an attacker acting remotely, conduct cross-site scripting attacks...

6.1CVSS6.4AI score0.00843EPSS
Exploits0
Redos
Redos
•added 2024/04/08 12:0 a.m.•11 views

ROS-20240408-24

A vulnerability in the SSH protocol implementation is related to the ability to adjust packet sequence numbers during the connection negotiation process and remove an arbitrary number of SSH service messages. during the connection negotiation process and cause an arbitrary number of SSH service...

5.9CVSS6.2AI score0.9378EPSS
Exploits4
Redos
Redos
•added 2024/04/08 12:0 a.m.•30 views

ROS-20240408-03

Vulnerability of derivatespatiallumavectorprediction function of h.265 Libde265 video codec implementation is related to with the ability to write beyond buffer boundaries in memory. Exploiting the vulnerability could allow an attacker, acting remotely, to affect the confidentiality, integrity an...

8.8CVSS7.6AI score0.00874EPSS
Exploits3
Redos
Redos
•added 2024/04/08 12:0 a.m.•30 views

ROS-20240408-19

A vulnerability in the file include/logging/RightsLogFormatter.php of a software tool for implementing the MediaWiki hypertext environment is related to incorrect input neutralization during the creation of a web page. web page. Exploitation of the vulnerability could allow an attacker acting...

6.1CVSS6.1AI score0.00681EPSS
Exploits1
Redos
Redos
•added 2024/04/08 12:0 a.m.•27 views

ROS-20240408-13

A vulnerability in the SSH protocol implementation is related to the ability to adjust packet sequence numbers during the connection negotiation process and remove an arbitrary number of SSH service messages. during the connection negotiation process and cause an arbitrary number of SSH service...

5.9CVSS6.2AI score0.9378EPSS
Exploits4
Redos
Redos
•added 2024/04/08 12:0 a.m.•30 views

ROS-20240408-10

GNU FriBidi library vulnerability is caused by a buffer overflow on the stack. Exploiting the vulnerability could allow an attacker acting remotely to execute arbitrary code Vulnerability in the fribidicaprtltounicode function of the GNU FriBidi library is caused by a buffer overflow in dynamic...

7.8CVSS8.5AI score0.00508EPSS
Exploits3
Redos
Redos
•added 2024/04/08 12:0 a.m.•26 views

ROS-20240408-05

RFC3164 analyzer vulnerability of Syslog-ng log processing utility is related to integer overflow. overflow. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service denial of service...

7.5CVSS7AI score0.02383EPSS
Exploits0
Redos
Redos
•added 2024/04/05 12:0 a.m.•210 views

ROS-20240505-13

A vulnerability in the Wikibase extension of the MediaWiki hypertext environment implementation software tool is related to the lack of restrictions on the speed of merging elements no. Exploitation of the vulnerability could allow an attacker acting remotely to affect the integrity and...

7.5CVSS6.6AI score0.22699EPSS
Exploits4
Redos
Redos
•added 2024/04/05 12:0 a.m.•36 views

ROS-20240405-11

Vulnerability of the flushrefsamples function of the GPAC multimedia platform is related to incorrect use of dynamic memory during program operation. use of dynamic memory during program operation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of...

7.8CVSS6.6AI score0.00684EPSS
Exploits5
Redos
Redos
•added 2024/04/05 12:0 a.m.•25 views

ROS-20240405-04

A vulnerability in the lib/kadm5/kadmrpcxdr.c file of the Kerberos network protocol implementation is related to the release of an an uninitialized pointer. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.5CVSS9.1AI score0.02107EPSS
Exploits0
Redos
Redos
•added 2024/04/05 12:0 a.m.•27 views

ROS-20240405-01

A vulnerability in the fs/ntfs.c component of the Grub2 operating system boot loader is related to a buffer overflow in the dynamic memory. Exploitation of the vulnerability could allow an attacker to execute arbitrary code A vulnerability in the Trace View panel of the Grafana web data...

7.8CVSS7.7AI score0.00536EPSS
Exploits2
Redos
Redos
•added 2024/04/05 12:0 a.m.•29 views

ROS-20240405-09

A vulnerability in the gdevprnopenprinterseekable function of the gdevprnopenprinterseekable interpreter of the Ghostscript suite of software for Ghostscript document processing, conversion and generation software set interpreter is related to memory usage after its release. Exploitation of the...

7.5CVSS7.5AI score0.0153EPSS
Exploits0
Redos
Redos
•added 2024/04/05 12:0 a.m.•186 views

ROS-20240505-03

A vulnerability in the cross-platform BitTorrent client qBittorrent is related to the use of default credentials when the web user interface is enabled. default credentials when the web user interface is enabled. Exploitation of the vulnerability could allow an attacker, acting remotely, to...

9.8CVSS7.7AI score0.00908EPSS
Exploits0
Redos
Redos
•added 2024/04/05 12:0 a.m.•44 views

ROS-20240405-10

A vulnerability in the Perl programming language is related to a buffer overflow in dynamic memory. Exploitation of the vulnerability could allow a remote attacker to cause a denial of service or execute arbitrary code...

7.8CVSS9.8AI score0.00832EPSS
Exploits0
Redos
Redos
•added 2024/04/05 12:0 a.m.•25 views

ROS-20240405-08

A vulnerability in the SSH dissector of the computer network traffic analyzer Wireshark is related to insufficient cleaning of special elements in the output data used by the input component. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service by...

6.5CVSS7.4AI score0.00746EPSS
Exploits0
Redos
Redos
•added 2024/04/05 12:0 a.m.•32 views

ROS-20240405-12

A vulnerability in the Commons FileUpload component of Apache Tomcat application server exists due to incomplete cleanup of temporary or auxiliary resources. clearing of temporary or auxiliary resources. Exploitation of the vulnerability could allow an attacker , acting remotely, to cause a denia...

7.5CVSS6.5AI score0.05848EPSS
Exploits2
Redos
Redos
•added 2024/04/05 12:0 a.m.•23 views

ROS-20240405-07

Vulnerability in slicesegmentheader function of Libde265 video codec implementation is related to copying the buffer without checking the input size. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service. remotely to cause a denial of service...

6.5CVSS6.6AI score0.00766EPSS
Exploits0
Redos
Redos
•added 2024/04/05 12:0 a.m.•31 views

ROS-20240405-06

A vulnerability in the GnuTLS transport layer security library is related to information disclosure via a inconsistency. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to sensitive data...

5.9CVSS7.4AI score0.01257EPSS
Exploits0
Redos
Redos
•added 2024/04/05 12:0 a.m.•37 views

ROS-20240403-14

A vulnerability in the Google Sheets data source of the Grafana monitoring and surveillance platform is related to the failure to handling error messages properly, potentially exposing the Google Sheet API key. Exploitation of the vulnerability could allow an attacker acting remotely to gain acce...

8.8CVSS7.6AI score0.09216EPSS
Exploits1
Redos
Redos
•added 2024/04/05 12:0 a.m.•29 views

ROS-20240405-05

A vulnerability in the D-Bus interprocessor communication system is related to the ability of unprivileged users to crash the dbus-daemon. users to crash the dbus-daemon. Exploitation of the vulnerability could allow an intruder, acting remotely, to cause a denial of service...

6.5CVSS8.3AI score0.01417EPSS
Exploits1
Redos
Redos
•added 2024/04/05 12:0 a.m.•24 views

ROS-20240405-02

Vulnerability in the urllib3 module of the Python programming language interpreter is related to the lack of protection of the of service data. Exploitation of the vulnerability could allow an attacker acting remotely to reveal protected information...

8.1CVSS7.9AI score0.01207EPSS
Exploits0
Redos
Redos
•added 2024/04/04 12:0 a.m.•31 views

ROS-20240404-17

Vulnerability in the SMTP protocol implementation of Exim mail server is related to operation out of buffer boundaries in memory during request processing. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code. remotely to execute arbitrary code...

9.8CVSS8.3AI score0.51474EPSS
Exploits5
Redos
Redos
•added 2024/04/04 12:0 a.m.•21 views

ROS-20240404-16

Vulnerability of builtin.c component of Gawk template reformatting component is related to operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could allow an intruder to gain unauthorized access to protected information or cause denial of service...

7.1CVSS6.9AI score0.00428EPSS
Exploits1
Redos
Redos
•added 2024/04/04 12:0 a.m.•19 views

ROS-20240404-19

A vulnerability in the PNG optimization software tool OptiPNG is related to a buffer overflow via the 'buffer' variable in gifread.c. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service...

7.8CVSS7.2AI score0.00518EPSS
Exploits1
Redos
Redos
•added 2024/04/04 12:0 a.m.•27 views

ROS-20240404-12

A vulnerability in the MediaWiki hypertext implementation software tool is related to the ability to to exploit XSS in partial block functions. Exploitation of the vulnerability could allow an attacker, acting remotely, to perform cross-site scripted attacks...

6.1CVSS5.9AI score0.00829EPSS
Exploits1
Redos
Redos
•added 2024/04/04 12:0 a.m.•34 views

ROS-20240404-14

The vulnerability of the library for controlling input/output to the terminal ncurses is related to the possibility of writing beyond the buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to impact the confidentiality, integrity, and availability of protected...

7.8CVSS6.9AI score0.00923EPSS
Exploits1
Redos
Redos
•added 2024/04/04 12:0 a.m.•39 views

ROS-20240404-02

Vulnerability of aresinetnetpton function of C-ares asynchronous DNS query library is related to violation of the initial buffer boundary. the initial buffer boundary. Exploitation of the vulnerability could allow an attacker to gain access to confidential data, violate its integrity, and cause a...

6.4CVSS7.2AI score0.00936EPSS
Exploits0
Redos
Redos
•added 2024/04/04 12:0 a.m.•22 views

ROS-20240403-04

Vulnerability of onstreamio and dnsstreamcomplete functions of the subsystem of initialization and management of services Systemd is related to not incrementing the reference count for the DnsStream object. Exploitation of the vulnerability could allow a remote intruder to violate the integrity a...

9.8CVSS6.8AI score0.01052EPSS
Exploits0
Redos
Redos
•added 2024/04/04 12:0 a.m.•29 views

ROS-20240404-18

Vulnerability in the OpenVAS database management system's OpenVAS scanning and vulnerability management tool MariaDB is associated with uncontrolled resource consumption when connecting to ports 3306 and 4567. Exploitation exploitation of the vulnerability could allow a remote attacker to cause a...

7.5CVSS6.8AI score0.02021EPSS
Exploits0
Redos
Redos
•added 2024/04/04 12:0 a.m.•36 views

ROS-20240404-01

A vulnerability in the Grafana web-based data submission tool is related to authentication bypass via spoofing. Exploitation of the vulnerability could allow an attacker acting remotely to gain full access to a user's account A vulnerability in the Grafana monitoring and surveillance platform is...

9.8CVSS7.6AI score0.09216EPSS
Exploits2
Redos
Redos
•added 2024/04/04 12:0 a.m.•23 views

ROS-20240403-03

A vulnerability in the libtirpc package is related to the exhaustion of process file descriptors. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS6.7AI score0.02088EPSS
Exploits0
Redos
Redos
•added 2024/04/04 12:0 a.m.•20 views

ROS-20240404-07

A vulnerability in the ProFTPD FTP server is related to a memory freeing error. Exploitation of the vulnerability could allow an attacker acting remotely to gain unauthorized access to protected information. information...

7.5CVSS7AI score0.01129EPSS
Exploits1
Redos
Redos
•added 2024/04/04 12:0 a.m.•25 views

ROS-20240404-10

A vulnerability in the Rack module of the Ruby programming language interpreter is associated with uncontrolled consumption of resources. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of denial of service...

7.5CVSS6.6AI score0.0183EPSS
Exploits0
Redos
Redos
•added 2024/04/04 12:0 a.m.•31 views

ROS-20240404-08

Vulnerability of GnuTLS transport layer cryptographic library is related to difference of response time when processing RSA ciphertext in ClientKeyExchange message with correct and incorrect addition of PKCS1. PKCS1 padding. Exploitation of the vulnerability could allow an attacker acting remotel...

7.4CVSS6.8AI score0.01403EPSS
Exploits1
Redos
Redos
•added 2024/04/04 12:0 a.m.•22 views

ROS-20240403-06

A vulnerability in the adodbaddslashes function of the adodb library is related to improper authentication. Exploitation of the vulnerability could allow an attacker acting remotely to bypass authentication...

9.1CVSS7AI score0.0217EPSS
Exploits1
Redos
Redos
•added 2024/04/04 12:0 a.m.•31 views

ROS-20240404-13

A vulnerability in the 7z file analyzer component of the 7-Zip archiver is related to integer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

7.8CVSS7.7AI score0.7104EPSS
Exploits0
Redos
Redos
•added 2024/04/04 12:0 a.m.•24 views

ROS-20240404-11

A vulnerability in the libcapstrdup function of the Libcap package is related to an overflow if the input string is close to 4 GB. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

7.8CVSS7AI score0.00574EPSS
Exploits1
Redos
Redos
•added 2024/04/04 12:0 a.m.•22 views

ROS-20240404-20

A vulnerability in the Vorbis-tools package is related to the conversion of wav files to ogg files. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

7.8CVSS6.7AI score0.00448EPSS
Exploits1
Redos
Redos
•added 2024/04/04 12:0 a.m.•28 views

ROS-20240403-05

Vulnerability of grubfontconstructglyph function of Grub2 operating systems loader is related to the output of the operation outside the memory buffer when processing specially designed fonts in pf2 format. Exploitation of the vulnerability may allow an attacker to execute arbitrary code Grub2...

8.6CVSS7.8AI score0.00872EPSS
Exploits0
Redos
Redos
•added 2024/04/04 12:0 a.m.•29 views

ROS-20240404-09

A vulnerability in Avahi's local network service discovery system is related to uncontrolled consumption of resources. Exploitation of the vulnerability allows an attacker to cause a denial of service...

5.5CVSS6.4AI score0.00392EPSS
Exploits1
Redos
Redos
•added 2024/04/04 12:0 a.m.•23 views

ROS-20240404-15

A vulnerability in the libwebp library is related to writing beyond buffer boundaries. Exploitation of the vulnerability could allow an attacker acting remotely to write data outside of the buffer boundaries through a crafted HTML page. HTML page...

7AI score
Exploits5
Redos
Redos
•added 2024/04/03 12:0 a.m.•10 views

ROS-20240402-18

A vulnerability in the multiprotocol messaging and streaming broker RabbitMQ is related to a HTTP API's lack of restriction on HTTP request body size, which made it vulnerable to very large messages. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of...

4.9CVSS6.7AI score0.01077EPSS
Exploits0
Redos
Redos
•added 2024/04/03 12:0 a.m.•44 views

ROS-20240403-02

Vulnerability of ntfsnamesfullcollate function of NTFS file system for NTFS-3G FUSE module is related to buffer overflow in dynamic memory. Exploitation of the vulnerability could allow an attacker to execute arbitrary code with elevated privileges using a specially crafted NTFS image file The NT...

7.8CVSS8.3AI score0.00504EPSS
Exploits1
Total number of security vulnerabilities8181