Lucene search
K

8181 matches found

Redos
Redos
•added 2024/03/13 12:0 a.m.•6 views

ROS-2-2098

2.2098 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS6.5AI score0.0262EPSS
Exploits0
Redos
Redos
•added 2024/03/13 12:0 a.m.•5 views

ROS-2-1794

2.1794 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS7.3AI score0.0262EPSS
Exploits0
Redos
Redos
•added 2024/03/13 12:0 a.m.•7 views

ROS-2-1452

2.1452 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS6.8AI score0.0262EPSS
Exploits0
Redos
Redos
•added 2024/03/13 12:0 a.m.•23 views

ROS-2-1356

2.1356 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS7.1AI score0.0262EPSS
Exploits0
Redos
Redos
•added 2024/03/13 12:0 a.m.•19 views

ROS-2-967

2.967 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS9.4AI score0.0262EPSS
Exploits0
Redos
Redos
•added 2024/03/13 12:0 a.m.•6 views

ROS-2-2115

2.2115 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS6.5AI score0.0262EPSS
Exploits0
Redos
Redos
•added 2024/03/13 12:0 a.m.•3 views

ROS-2-1942

2.1942 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS6.3AI score0.0262EPSS
Exploits0
Redos
Redos
•added 2024/03/13 12:0 a.m.•9 views

ROS-2-1558

2.1558 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS6.8AI score0.0262EPSS
Exploits0
Redos
Redos
•added 2024/03/13 12:0 a.m.•18 views

ROS-2-1485

2.1485 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS7.3AI score0.0262EPSS
Exploits0
Redos
Redos
•added 2024/03/13 12:0 a.m.•8 views

ROS-2-935

2.935 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS7.1AI score0.0262EPSS
Exploits0
Redos
Redos
•added 2024/03/13 12:0 a.m.•11 views

ROS-2-1454

2.1454 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability...

9.8CVSS9.9AI score0.05984EPSS
Exploits0
Redos
Redos
•added 2024/03/13 12:0 a.m.•11 views

ROS-2-26

2.26 Notification on the update of OPERATION SYSTEM "RED OS" MIS RED SOFT LLC notifies about renewal of the previously obtained certificate of conformity of FSTEC of Russia 4060 till 12.01.2029 of the operating system "RED OS", decimal number RU.29926343.02.01-01. You can contact the technical...

7.2AI score
Exploits0
Redos
Redos
•added 2024/03/13 12:0 a.m.•12 views

ROS-2-145

2.145 Notification on the update of OPERATION SYSTEM "RED OS" MIS RED SOFT LLC notifies of the renewal of the previously obtained certificate of conformity of FSTEC of Russia 4060 until 12.01.2029 of the operating system "RED OS", decimal number RU.29926343.02.01-01 You can contact the technical...

7.3AI score
Exploits0
Redos
Redos
•added 2024/03/13 12:0 a.m.•9 views

ROS-2-1611

2.1611 Denial of Service in libX11CVE-2021-31535 1. Vulnerability Description: The vulnerability allows a local user to execute a denial of service DoS attack. The vulnerability exists due to insufficient validation of color names in the XLookupColor function. A local user can launch a specially...

9.8CVSS7.3AI score0.10634EPSS
Exploits2
Redos
Redos
•added 2024/02/29 12:0 a.m.•35 views

ROS-20240226-02

A vulnerability in Microsoft's .NET Framework software platform is related to incorrectly restricting XML links to external objects. external objects. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to sensitive information...

5.9CVSS6.3AI score0.0192EPSS
Exploits0
Redos
Redos
•added 2024/02/26 12:0 a.m.•29 views

ROS-20240226-01

A vulnerability in the mustmkdirandopenwithperms function of the snap-confine utility is related to synchronization errors when using a shared resource "Race Situation". Exploitation of the vulnerability could allow an attacker to escalate privileges or execute arbitrary code...

7.8CVSS7.8AI score0.00384EPSS
Exploits2
Redos
Redos
•added 2024/02/12 12:0 a.m.•53 views

ROS-20240212-01

A vulnerability in the PKCS11 function of the ssh-agent component of the OpenSSH cryptographic security tool is related to the following the use of an insecure search path. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code. remotely to execute...

9.8CVSS7.9AI score0.76768EPSS
Exploits10
Redos
Redos
•added 2024/02/08 12:0 a.m.•38 views

ROS-20240208-01

A vulnerability in the sudo system administration program is related to an error in processing ipahostname, where ipahostname from /etc/sssd/sssd.conf was not propagated to sudo. Exploitation of the vulnerability could allow an attacker acting remotely to bypass existing security restrictions to...

8.8CVSS7.2AI score0.00687EPSS
Exploits0
Redos
Redos
•added 2024/02/08 12:0 a.m.•35 views

ROS-20240208-03

Grub loader vulnerability is related to out-of-bounds writes when processing delimited headers HTTP. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of denial of service A vulnerability in the grubcmdchainloader function of the Grub operating system...

8.1CVSS8.6AI score0.01284EPSS
Exploits0
Redos
Redos
•added 2024/02/08 12:0 a.m.•31 views

ROS-20240208-02

Vulnerability of handleimage function of UEFI shim loader is related to operation overrun of buffer boundaries in memory when processing EFI files taking into account SizeOfRawData field. when processing EFI files with SizeOfRawData field. Exploitation of the vulnerability could allow an attacker...

7.8CVSS8.3AI score0.00332EPSS
Exploits0
Redos
Redos
•added 2024/02/02 12:0 a.m.•37 views

ROS-20230920-01

Vulnerability of winbinddpamauthcrap.c component of Samba networking software package is related to operation exceeding the buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker, acting remotely, to cause a denial of service Vulnerability in SMB2 packet signing...

7.5CVSS7.4AI score0.62606EPSS
Exploits0
Redos
Redos
•added 2024/02/02 12:0 a.m.•10 views

ROS-20230920-02

Vulnerability of slunpackloop function of mdssvc RPC service of Samba networking software package is related to execution of a loop with an inaccessible exit condition. Exploitation of the vulnerability allows an attacker, acting remotely, to cause a denial of service A vulnerability in the...

7.5CVSS7.3AI score0.62606EPSS
Exploits0
Redos
Redos
•added 2024/02/01 12:0 a.m.•29 views

ROS-20240201-01

Vulnerability of XTerm terminal emulator is related to failure to clean input data. Exploitation exploitation of the vulnerability could allow a remote attacker to gain access to sensitive data, compromise its integrity, and cause denial of service Vulnerability in the ReGIS vector graphics...

9.8CVSS7.1AI score0.04949EPSS
Exploits1
Redos
Redos
•added 2024/01/23 12:0 a.m.•31 views

ROS-20240123-01

The vulnerability of the Atril multi-page document viewer is related to incorrect neutralization of special elements used in the OS command. neutralization of special elements used in the OS command. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary co...

9.6CVSS7.8AI score0.0234EPSS
Exploits2
Redos
Redos
•added 2023/11/22 12:0 a.m.•27 views

ROS-20231122-01

A vulnerability in the kubelet utility of the Kubernetes virtual machine cluster management software tool is related to insufficient verification of input data. Exploitation of the vulnerability could allow an attacker, acting remotely, escalate their privileges to administrator level...

8.8CVSS7.1AI score0.03578EPSS
Exploits0
Redos
Redos
•added 2023/11/21 12:0 a.m.•36 views

ROS-20231115-01

A vulnerability in the Squid proxy server related to the execution of a "buffer overflow" attack, writing up to 2MB of of arbitrary data to the memory heap when Squid is configured to accept HTTP Digest Authentication. Exploitation of the vulnerability could allow an attacker acting remotely to...

9.3CVSS7.7AI score0.85944EPSS
Exploits0
Redos
Redos
•added 2023/11/21 12:0 a.m.•52 views

ROS-20231115-04

Visual Studio Coden source code editor vulnerability related to improper control of code generation. code generation. Exploitation of the vulnerability may allow an attacker to execute arbitrary code Visual Studio Code source code editor vulnerability is related to insufficient protection of...

7.8CVSS7.8AI score0.67469EPSS
Exploits3
Redos
Redos
•added 2023/11/21 12:0 a.m.•24 views

ROS-20231121-03

OpenSearch software package vulnerability related to improper permission saving. Exploitation exploitation of the vulnerability could allow an attacker to affect data integrity...

5.4CVSS6.9AI score0.0041EPSS
Exploits0
Redos
Redos
•added 2023/11/21 12:0 a.m.•25 views

ROS-20231115-02

Vulnerability of the GetPacket function of VideoLAN VLC media player program is related to incorrect reading of the offset, which leads to heap buffer overflow in GetPacket function. Exploitation of the vulnerability could allow an attacker acting remotely to corrupt memory A vulnerability in the...

9.8CVSS7.9AI score0.01096EPSS
Exploits2
Redos
Redos
•added 2023/11/20 12:0 a.m.•24 views

ROS-20231120-01

Vulnerability in the gfisomgetuserdata function of the GPAC multimedia platform is related to a buffer overflow in the gpac MP4Box v.2.3-DEV-rev573-g201320819-master. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS7.9AI score0.00309EPSS
Exploits1
Redos
Redos
•added 2023/11/16 12:0 a.m.•38 views

ROS-20231116-01

A vulnerability in the RoundCube email client is related to improper input neutralization during the creation of a of a web page. Exploitation of the vulnerability could allow an attacker acting remotely to conduct a cross-site scripted attack. cross-site scripting attacks...

6.1CVSS6.2AI score0.00641EPSS
Exploits0
Redos
Redos
•added 2023/11/16 12:0 a.m.•32 views

ROS-20231116-02

Vulnerability in DecodeConfig component of Golang programming language is related to uncontrolled consumption of resources. resources. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the decoder component of the Golang programming language...

6.5CVSS6.8AI score0.0086EPSS
Exploits0
Redos
Redos
•added 2023/11/15 12:0 a.m.•30 views

ROS-20231114-02

Vulnerability of XIChangeDeviceProperty Xi/xiproperty.c and RRChangeOutputProperty functions randr/rrrproperty.c of X Window System Xorg-server is related to the possibility of writing outside the boundaries of the buffer in memory. Exploitation of the vulnerability could allow an attacker to cau...

7.8CVSS7.3AI score0.00715EPSS
Exploits0
Redos
Redos
•added 2023/11/15 12:0 a.m.•43 views

ROS-20231114-01

A vulnerability in the Blink Media component of the Google Chrome browser is related to memory usage after it has been after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code A vulnerability in the Blink Frames component of Goog...

9.6CVSS8.1AI score0.31864EPSS
Exploits1
Redos
Redos
•added 2023/11/15 12:0 a.m.•13 views

ROS-20231114-03

PowerDNS Recursor DNS server vulnerability related to marking authoritative servers as unreachable. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

5.3CVSS6.9AI score0.00593EPSS
Exploits0
Redos
Redos
•added 2023/11/13 12:0 a.m.•7 views

ROS-20231110-03

Vulnerability of the DirSync catlog synchronization mechanism of the Samba networking software package is related to insufficient protection of service data. Exploitation of the vulnerability could allow an attacker, acting remotely, gain unauthorized access to protected information and increase...

9.8CVSS7.5AI score0.02409EPSS
Exploits1
Redos
Redos
•added 2023/11/10 12:0 a.m.•28 views

ROS-20231110-02

The vulnerability of the functions EVPEncryptInitex2, EVPDecryptInitex2, EVPCipherInitex2 of the OpenSSL cryptographic library is related to manipulation of the keylen/ivelens argument. OpenSSL library is related to manipulation of the keylen/ivelens argument. Exploitation of the vulnerability...

7.5CVSS9.1AI score0.03332EPSS
Exploits0
Redos
Redos
•added 2023/11/10 12:0 a.m.•30 views

ROS-20231110-01

A vulnerability in the smbd library of the Samba networking software package is related to an incorrect restriction of the path name to a restricted directory. Exploitation of the vulnerability could allow an intruder, acting remotely, to cause a denial of service Vulnerability in the...

5.5CVSS7.1AI score0.00206EPSS
Exploits0
Redos
Redos
•added 2023/11/09 12:0 a.m.•29 views

ROS-20231109-02

Vulnerability in GLPI's request and incident handling system is related to information disclosure. Exploitation exploitation of the vulnerability could allow a remote attacker to obtain user logins. GLPI request and incident handling system vulnerability related to the lack of path filtering by...

9.8CVSS7.8AI score0.33874EPSS
Exploits0
Redos
Redos
•added 2023/11/09 12:0 a.m.•44 views

ROS-20231109-01

Go programming language vulnerability is related to insecure external control of critical state data state when processing the setuid and setgid attributes. Exploitation of the vulnerability could allow an attacker, acting remotely, escalate their privileges and gain access to read, modify, or...

9.8CVSS8.3AI score0.03332EPSS
Exploits0
Redos
Redos
•added 2023/11/07 12:0 a.m.•57 views

ROS-20231107-01

Vulnerability of HTTP/2 protocol implementation is related to the possibility of forming a stream of requests within an already established network connection without opening new network connections and without confirming receipt of requests. The vulnerability of the HTTP/2 protocol implementatio...

7.5CVSS7.3AI score0.99999EPSS
Exploits19
Redos
Redos
•added 2023/11/02 12:0 a.m.•26 views

ROS-20231102-01

A buc Traceroute vulnerability related to improper handling of lines of code. Exploitation of the vulnerability could allow an attacker acting locally to execute arbitrary code...

5.5CVSS8AI score0.00367EPSS
Exploits2
Redos
Redos
•added 2023/10/31 12:0 a.m.•35 views

ROS-20231031-01

A vulnerability in the Runc isolated container launch tool is related to improper saving of permissions. Exploitation of the vulnerability allows an attacker to gain access to sensitive data, compromise its integrity, and cause a denial of service. Vulnerability in the Runc isolated container too...

7.8CVSS7.1AI score0.00343EPSS
Exploits1
Redos
Redos
•added 2023/10/30 12:0 a.m.•25 views

ROS-20231030-06

The Unix socket vulnerability of the Redis database management system Redis is related to the use of a permissive mask, which creates a race condition that allows for a short period of time for another process to establish an unauthorized connection. Exploitation of the vulnerability could allow ...

3.6CVSS6.7AI score0.00444EPSS
Exploits0
Redos
Redos
•added 2023/10/30 12:0 a.m.•25 views

ROS-20231030-03

Vulnerability in lib/comp/comp.c, lib/comp/zstd/zstd.c, lib/dl/multipart.c, or lib/header.c files. zchunk is related to integer overflow . Exploitation of the vulnerability could allow an attacker acting locally to gain unauthorized access to protected information...

7.8CVSS7.3AI score0.00261EPSS
Exploits0
Redos
Redos
•added 2023/10/30 12:0 a.m.•33 views

ROS-20231030-02

A vulnerability in the Django web application software platform, is related to regular expressions for text clipping that have linear backtrack complexity, which can be slow. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service with certain HTML...

7.5CVSS6.8AI score0.01236EPSS
Exploits0
Redos
Redos
•added 2023/10/30 12:0 a.m.•42 views

ROS-20231030-05

Apache HTTP Server vulnerability is related to blocking HTTP/2 connection processing if it was opened with 0 initial sliding window size. was opened with the initial sliding window size set to 0. Exploitation of the vulnerability could Allow an attacker acting remotely to cause a denial of servic...

7.5CVSS6.8AI score0.70595EPSS
Exploits0
Redos
Redos
•added 2023/10/30 12:0 a.m.•34 views

ROS-20231030-04

The HPACK decoder vulnerability is related to uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting locally to cause a denial of service...

7.5CVSS7AI score0.04561EPSS
Exploits0
Redos
Redos
•added 2023/10/30 12:0 a.m.•43 views

ROS-20231030-01

A vulnerability in the modmacro component of the Apache HTTP Server web server is related to an out-of-field read. Exploitation of the vulnerability could allow an attacker acting remotely to gain unauthorized access to protected information...

7.5CVSS6.8AI score0.02978EPSS
Exploits0
Redos
Redos
•added 2023/10/26 12:0 a.m.•25 views

ROS-20231025-01

Vulnerability of program/lib/Roundcube/rcubewashtml.php component of RoundCube mail client is related to failure to take measures to protect the structure of the web page. Exploitation of the vulnerability could allow an attacker, acting remotely, to download arbitrary JavaScript code...

6.1CVSS7.2AI score0.73445EPSS
Exploits2
Total number of security vulnerabilities8181