Lucene search
K

8181 matches found

Redos
Redos
added 2024/03/29 12:0 a.m.33 views

ROS-20240329-24

Vulnerability in Google Chrome browser's JavaScript script handler V8 is related to type mixing errors data types. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

8.8CVSS7AI score0.01738EPSS
Exploits0
Redos
Redos
added 2024/03/29 12:0 a.m.169 views

ROS-20240329-25

Vulnerability of Zabbix universal monitoring system agent is related to incorrect control of code generation. code generation. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code Vulnerability of the Zabbix Universal Monitoring System agent is relat...

9.8CVSS7.7AI score0.0075EPSS
Exploits0
Redos
Redos
added 2024/03/29 12:0 a.m.30 views

ROS-20240329-22

Vulnerability in the Heerces C++ library of the BigFix Platform IT hardware co-management platform is caused by an integer overflow. Exploitation of the vulnerability could allow an attacker acting remotely, to execute arbitrary code by sending a specially crafted HTTP request...

8.8CVSS8AI score0.01381EPSS
Exploits0
Redos
Redos
added 2024/03/29 12:0 a.m.29 views

ROS-20240329-23

The vulnerability in the interface of Zabbix universal monitoring system is related to insufficient input data validation when processing the URL field of Maps element. data when processing the URL field of the Maps element. Exploitation of the vulnerability could allow an attacker, acting...

9.8CVSS8.2AI score0.0075EPSS
Exploits0
Redos
Redos
added 2024/03/29 12:0 a.m.40 views

ROS-20240329-14

Vulnerability of PostgreSQL database management system is related to the possibility of sending signals to superuser processes using the pgsignalbackend role. to superuser processes using the pgsignalbackend role. Exploitation of the vulnerability could allow a remote attacker to cause a denial o...

8.8CVSS9.2AI score0.04322EPSS
Exploits0
Redos
Redos
added 2024/03/29 12:0 a.m.20 views

ROS-20240329-03

Vulnerability in InstalledVersions.php and install.php scripts of dependency manager for PHP Composer is related to the inclusion of functions from an invalid controlled scope. with the inclusion of functions from an invalid controlled scope. Exploitation of the vulnerability could allow an...

8.8CVSS8AI score0.00273EPSS
Exploits0
Redos
Redos
added 2024/03/29 12:0 a.m.32 views

ROS-20240329-12

Vulnerability of PostgreSQL database management system is related to the possibility of sending signals to superuser processes using the pgsignalbackend role. to superuser processes using the pgsignalbackend role. Exploitation of the vulnerability could allow a remote attacker to cause a denial o...

8.8CVSS9.5AI score0.04322EPSS
Exploits0
Redos
Redos
added 2024/03/29 12:0 a.m.34 views

ROS-20240329-09

A vulnerability in the Privates Handler component of the X Window System X.Org Server implementation is related to an operation exceeding the buffer boundaries. operation beyond the buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...

9.8CVSS8.2AI score0.02106EPSS
Exploits0
Redos
Redos
added 2024/03/29 12:0 a.m.29 views

ROS-20240329-16

Vulnerability in vim text editor is related to memory usage after it is freed. Exploitation exploitation of the vulnerability could allow an attacker to execute arbitrary code Vim text editor truncstring vulnerability is related to buffer overflow. Exploitation exploitation of this vulnerability...

7.8CVSS8.7AI score0.0119EPSS
Exploits7
Redos
Redos
added 2024/03/29 12:0 a.m.31 views

ROS-20240329-18

The vulnerability of the pkiverifydatasignature function of the LibSSH client authentication library is related to the flaws in the authentication procedure. Exploitation of the vulnerability could allow an attacker acting remotely bypass security restrictions and gain unauthorized access to...

6.5CVSS7.7AI score0.01314EPSS
Exploits2
Redos
Redos
added 2024/03/29 12:0 a.m.31 views

ROS-20240329-19

A vulnerability in the hb-ot-layout-gsubgpos.hh component of the Harfbuzz text conversion library is related to the unrestricted resource allocation, Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS7AI score0.01812EPSS
Exploits0
Redos
Redos
added 2024/03/28 12:0 a.m.27 views

ROS-20240328-01

GLPI's asset management and data center management software vulnerability is related to the SQL code injection through administration of dashboards. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary SQL queries...

9.1CVSS8.5AI score0.00576EPSS
Exploits0
Redos
Redos
added 2024/03/28 12:0 a.m.36 views

ROS-20240328-05

Vulnerability of icmpping function of Zabbix universal monitoring system is related to errors in input data processing. of input data. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code Vulnerability of the smart.disk.get edent of the Zabbix...

9.8CVSS7.7AI score0.00873EPSS
Exploits0
Redos
Redos
added 2024/03/28 12:0 a.m.21 views

ROS-20240328-02

A vulnerability in the gagrowinner function of the vim text editor, protocol for software Unix is caused by an by an integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service...

5.5CVSS6.7AI score0.00366EPSS
Exploits1
Redos
Redos
added 2024/03/28 12:0 a.m.26 views

ROS-20240328-15

A vulnerability in the Web Browser UI of Google Chrome and Microsoft Edge browsers is related to incorrectly implemented security checks for standard elements. implemented security checks for standard elements. Exploitation of the vulnerability could allow an attacker acting remotely to conduct...

8.8CVSS7.2AI score0.01286EPSS
Exploits0
Redos
Redos
added 2024/03/28 12:0 a.m.36 views

ROS-20240328-14

A vulnerability in the TIFFOpen API function of the LibTIFF library is associated with uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.5CVSS7AI score0.01825EPSS
Exploits1
Redos
Redos
added 2024/03/28 12:0 a.m.33 views

ROS-20240328-07

The vulnerability in the RDMA component of the QEMU hardware emulator is related to the allocation and initialization of a large number of page tables to be used as a ring of descriptors for CQ and asynchronous events. Exploitation of the vulnerability could allow an attacker to cause a denial of...

6.3CVSS6.5AI score0.00309EPSS
Exploits0
Redos
Redos
added 2024/03/28 12:0 a.m.43 views

ROS-20240328-06

A vulnerability in the libssh library is related to NULL pointer dereferencing. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service A vulnerability in the ProxyCommand/ProxyJump component of the libssh library is related to improper control of co...

5.3CVSS6AI score0.01421EPSS
Exploits0
Redos
Redos
added 2024/03/28 12:0 a.m.41 views

ROS-20240328-04

Vulnerability of Sudo-rs system administration programs is related to insufficient verification of command arguments entered by the user. of command arguments entered by the user. Exploitation of the vulnerability could allow an attacker acting remotely, escalate their privileges by creating a...

8.1CVSS7.1AI score0.00571EPSS
Exploits1
Redos
Redos
added 2024/03/28 12:0 a.m.25 views

ROS-20240328-09

A vulnerability in the Linux Relax-and-Recover ReaR disaster recovery tool is related to the information disclosure. Exploitation of the vulnerability allows an attacker to gain access to sensitive data. data...

5.5CVSS6.8AI score0.00291EPSS
Exploits1
Redos
Redos
added 2024/03/28 12:0 a.m.20 views

ROS-20240328-10

A vulnerability in the HAProxyI software is related to the acceptance of as part of the URI component. Exploitation of the vulnerability could allow an attacker acting remotely to obtain sensitive information...

8.2CVSS7AI score0.01526EPSS
Exploits0
Redos
Redos
added 2024/03/28 12:0 a.m.35 views

ROS-20240328-08

A vulnerability in the WebRTC technology of Google Chrome browser is related to the use of memory after its freeing. Exploitation of the vulnerability could allow a remote attacker to execute arbitrary code or cause a denial of service using specially crafted malware. arbitrary code or cause a...

9.6CVSS9.3AI score0.43238EPSS
Exploits4
Redos
Redos
added 2024/03/28 12:0 a.m.37 views

ROS-20240328-11

The vulnerability in Curl is related to the installation of "supercookie files" in Curl, which are then passed back to a to more sources. Exploitation of the vulnerability could allow an attacker acting remotely to impact the confidentiality of protected information...

6.5CVSS6.9AI score0.01685EPSS
Exploits1
Redos
Redos
added 2024/03/28 12:0 a.m.26 views

ROS-20240328-13

A vulnerability in the mzpathresolve function in zlib-ng minizip-ng is related to a buffer overflow via the created file of the mzpathhasslash function in the mzos.c file. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code A vulnerability in the...

8.8CVSS8.5AI score0.0126EPSS
Exploits2
Redos
Redos
added 2024/03/28 12:0 a.m.31 views

ROS-20240328-16

Vulnerability in vim text editor is related to memory usage after it is freed. Exploitation exploitation of the vulnerability could allow an attacker to execute arbitrary code...

4.7CVSS7.6AI score0.00441EPSS
Exploits1
Redos
Redos
added 2024/03/28 12:0 a.m.31 views

ROS-20240328-17

The vulnerability in the Sudo system administration program is related to a flaw in the mechanism for encoding or or shielding of output data. Exploitation of the vulnerability allows an attacker acting remotely gain access to sensitive data...

5.3CVSS6.5AI score0.00961EPSS
Exploits0
Redos
Redos
added 2024/03/28 12:0 a.m.4 views

ROS-20240328-31

The vulnerability in Curl is related to the installation of "supercookie files" in Curl, which are then passed back to a to more sources. Exploitation of the vulnerability could allow an attacker acting remotely to impact the confidentiality of protected information...

6.5CVSS6.8AI score0.01685EPSS
Exploits1
Redos
Redos
added 2024/03/28 12:0 a.m.38 views

ROS-20240328-03

Vulnerability of avc420ensurebuffer and avc444ensurebuffer functions of FreeRDP RDP client is related to memory usage after its release. memory usage after memory is freed. Exploitation of the vulnerability could allow an attacker, acting remotely, to cause a denial of service or other impact A...

9.8CVSS7AI score0.01064EPSS
Exploits3
Redos
Redos
added 2024/03/28 12:0 a.m.38 views

ROS-20240328-12

The vulnerability of the Sparseunipropstring function of the regcomp.c file of the Perl programming language interpreter is related to the operation exceeding the memory buffer boundaries. is related to an operation exceeding the buffer boundaries in memory. Exploitation of the vulnerability coul...

7.1AI score
Exploits0
Redos
Redos
added 2024/03/27 12:0 a.m.34 views

ROS-20240327-01

The golang package vulnerability is related to the ability to correlate consecutive connections by comparing the ticket ages during session resumption. Exploitation of the vulnerability could allow an intruder, acting remotely, an intruder could gain unauthorized access to session identifiers The...

5.3CVSS7.2AI score0.05623EPSS
Exploits1
Redos
Redos
added 2024/03/22 12:0 a.m.8 views

ROS-20240322-02

Vulnerability of REFRESH MATERIALIZED VIEW CONCURRENTLY function of PostgreSQL database management system is related to privilege management errors in processing and checking command line parameters. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary SQ...

8CVSS8.2AI score0.01465EPSS
Exploits0
Redos
Redos
added 2024/03/22 12:0 a.m.7 views

ROS-20240322-03

Vulnerability of REFRESH MATERIALIZED VIEW CONCURRENTLY function of PostgreSQL database management system is related to privilege management errors in processing and checking command line parameters. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary SQ...

8CVSS8.2AI score0.01465EPSS
Exploits0
Redos
Redos
added 2024/03/22 12:0 a.m.31 views

ROS-20240322-01

Vulnerability of REFRESH MATERIALIZED VIEW CONCURRENTLY function of PostgreSQL database management system is related to privilege management errors in processing and checking command line parameters. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary SQ...

8CVSS8.2AI score0.01465EPSS
Exploits0
Redos
Redos
added 2024/03/22 12:0 a.m.10 views

ROS-20240322-05

Vulnerability of REFRESH MATERIALIZED VIEW CONCURRENTLY function of PostgreSQL database management system is related to privilege management errors in processing and checking command line parameters. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary SQ...

8CVSS8.2AI score0.01465EPSS
Exploits0
Redos
Redos
added 2024/03/22 12:0 a.m.10 views

ROS-20240322-04

Vulnerability of REFRESH MATERIALIZED VIEW CONCURRENTLY function of PostgreSQL database management system is related to privilege management errors in processing and checking command line parameters. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary SQ...

8CVSS8.2AI score0.01465EPSS
Exploits0
Redos
Redos
added 2024/03/19 12:0 a.m.42 views

ROS-20240319-01

A vulnerability in the SSH protocol implementation is related to the ability to adjust packet sequence numbers during the connection negotiation process and remove an arbitrary number of SSH service messages. during the connection negotiation process and cause an arbitrary number of SSH service...

6.5CVSS7.8AI score0.9378EPSS
Exploits12
Redos
Redos
added 2024/03/18 12:0 a.m.38 views

ROS-20240318-01

Aiohttp HTTP client vulnerability exists due to insufficient input validation. Exploitation vulnerability could allow an attacker acting remotely to modify an HTTP request or create a new HTTP request The aiohttp HTTP client vulnerability is related to code analyzer errors when the header is...

7.5CVSS5.8AI score0.01422EPSS
Exploits5
Redos
Redos
added 2024/03/13 12:0 a.m.22 views

ROS-2-805

2.805 Vulnerability in OpenVPN CVE-2020-11810 1. Vulnerability description: A corrective release of the OpenVPN Virtual Private Networking Package 2.4.9 has been generated. The new version addresses a vulnerability CVE-2020-11810 that allows a client session to be transferred to a new IP address...

3.7CVSS7.2AI score0.01609EPSS
Exploits1
Redos
Redos
added 2024/03/13 12:0 a.m.5 views

ROS-2-1996

2.1996 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 Vulnerability in the Exim message forwarding agent, related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

9.8CVSS9.8AI score0.61061EPSS
Exploits6
Redos
Redos
added 2024/03/13 12:0 a.m.12 views

ROS-2-1613

2.1613 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 A vulnerability in the Exim message forwarding agent, is related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

9.8CVSS9.1AI score0.61061EPSS
Exploits6
Redos
Redos
added 2024/03/13 12:0 a.m.13 views

ROS-2-1095

2.1095 Notification on update of the Red OS OPERATION SYSTEM No RU.29926343.02.01-01-23 Due to quality improvement and bug fixing, an updated version of the operating system "RED OS" 7.3 has been released. You can contact the technical support service within the framework of your existing technic...

7.3AI score
Exploits0
Redos
Redos
added 2024/03/13 12:0 a.m.8 views

ROS-2-1044

2.1044 Notification on the update of MIS OPERATION SYSTEM "RED OS" No RU.29926343.02.01-01-23 Due to quality improvement and bug fixing, an updated version of MIS Operating System "RED OS" 7.3 has been released. You can contact the technical support service within the framework of your existing...

7.3AI score
Exploits0
Redos
Redos
added 2024/03/13 12:0 a.m.5 views

ROS-2-729

2.729 Notification on the update of the Red OS OPERATIONAL SYSTEM MIS RED SOFT LLC notifies of the renewal of the previously obtained certificate of conformity of FSTEC of Russia №4060 until 12.01.2029 of the operating system "RED OS", decimal number RU.29926343.02.01-01. You can contact the...

7.3AI score
Exploits0
Redos
Redos
added 2024/03/13 12:0 a.m.5 views

ROS-2-775

2.775 Notification on the update of the Red OS OPERATION SYSTEM MIS RED SOFT LLC notifies of the renewal of the previously obtained certificate of conformity of FSTEC of Russia №4060 until 12.01.2029 of the operating system "RED OS", decimal number RU.29926343.02.01-01. You can contact the...

7.3AI score
Exploits0
Redos
Redos
added 2024/03/13 12:0 a.m.5 views

ROS-2-787

2.787 Notification on the update of the Red OS OPERATING SYSTEM MIS RED SOFT LLC notifies of the renewal of the previously obtained certificate of conformity of FSTEC of Russia 4060 until 12.01.2029 of the operating system "RED OS", decimal number RU.29926343.02.01-01. You can contact the technic...

7.3AI score
Exploits0
Redos
Redos
added 2024/03/13 12:0 a.m.6 views

ROS-2-381

2.381 Notification on the update of the Red OS OPERATING SYSTEM MIS RED SOFT LLC notifies of the renewal of the previously obtained certificate of conformity of FSTEC of Russia №4060 until 12.01.2029 of the operating system "RED OS", decimal number RU.29926343.02.01-01. You can contact the...

7.3AI score
Exploits0
Redos
Redos
added 2024/03/13 12:0 a.m.6 views

ROS-2-411

2.411 Notification on the update of the Red OS OPERATIONAL SYSTEM MIS RED SOFT LLC notifies of the renewal of the previously obtained certificate of conformity of FSTEC of Russia №4060 until 12.01.2029 of the operating system "RED OS", decimal number RU.29926343.02.01-01. You can contact the...

7.3AI score
Exploits0
Redos
Redos
added 2024/03/13 12:0 a.m.10 views

ROS-2-56

2.56 Notification on the update of the Red OS OPERATION SYSTEM MIS RED SOFT LLC notifies of the renewal of the previously obtained certificate of conformity of FSTEC of Russia 4060 until 12.01.2029 of the operating system "RED OS", decimal number RU.29926343.02.01-01. You can contact the technica...

7.3AI score
Exploits0
Redos
Redos
added 2024/03/13 12:0 a.m.14 views

ROS-2-1636

2.1636 Vulnerability in SpamAssassin spam filtering tool CVE-2020-1946 1. Vulnerability Description: CVE-2020-1946 A vulnerability in the SpamAssassin spam filtering tool, is related to improper input validation when processing rule configuration .cf files. Exploitation of the vulnerability could...

10CVSS9.9AI score0.06132EPSS
Exploits0
Redos
Redos
added 2024/03/13 12:0 a.m.34 views

ROS-2-479

2.479 Vulnerability in Mozilla Thunderbird email client CVE-2021-29964, CVE-2021-29967 1. Vulnerability description: CVE-2021-29964 A vulnerability in the Mozilla Thunderbird email client, is related to boundary conditions. Exploitation of the vulnerability could allow an attacker acting remotely...

8.8CVSS9AI score0.01368EPSS
Exploits0
Total number of security vulnerabilities8181