7149 matches found
ROS-20251223-7310
Vulnerability in python3.13 related to incorrect validation of a specified index, position or offset in input data. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20251223-7322
A vulnerability in the urllib.parse.urlsplit and urlparse functions of the Python programming language interpreter is related to insufficient validation of incoming requests. Exploitation of the vulnerability could allow an attacker acting remotely to affect data integrity...
ROS-20251223-7321
A vulnerability in the urllib.parse.urlsplit and urlparse functions of the Python programming language interpreter is related to insufficient validation of incoming requests. Exploitation of the vulnerability could allow an attacker acting remotely to affect data integrity...
ROS-20251223-7314
A vulnerability in the Snapshot/Restore commands of the AdminServer component of the centralized service for maintaining configuration information, naming, providing distributed synchronization, and provisioning Apache ZooKeeper group services is related to incorrect handling of insufficient...
ROS-20251223-7313
Vulnerability in iputils related to integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20251223-7311
Module-Scandeps library vulnerability is related to failure to take measures to neutralize special elements used in an operating system command. Exploitation of the vulnerability could allow an attacker to execute arbitrary commands...
ROS-20251223-7307
Vulnerability in python3 related to incorrect validation of a specified index, position or offset in input data. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20251223-7303
Vulnerability in 389-ds-base related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20251223-7318
Vulnerability in jenkins related to a flaw in the authorization procedure. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information...
ROS-20251223-7319
Vulnerability in jenkins related to unencrypted storage of credentials. Exploitation of the vulnerability may allow an attacker to gain unauthorized access to protected information...
ROS-20251223-7316
Vulnerability in jenkins related to cross-site request forgery. Exploitation of the vulnerability could allow an attacker acting remotely to launch a csrf attack...
ROS-20251223-7309
Vulnerability in python3.11 related to incorrect validation of a specified index, position or offset in input data. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20251223-7306
Vulnerability in libarchive related to uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20251223-7304
Vulnerability in PackageKit related to memory usage after its release. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...
ROS-20251223-7312
A vulnerability in the ICMP Echo Reply packet of the ping utility is related to integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20251223-7320
Vulnerability in jenkins related to unencrypted storage of credentials. Exploitation of the vulnerability may allow an attacker to gain unauthorized access to protected information...
ROS-20251223-7315
Vulnerability in php-symfony4 related to the use of non-canonical url-paths for authorization solutions. Exploitation of the vulnerability could allow an attacker acting remotely to escalate their privileges...
ROS-20251223-7308
Vulnerability in python3.10 related to incorrect validation of a specified index, position or offset in input data. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20251223-7324
A vulnerability in the urllib.parse.urlsplit and urlparse functions of the Python programming language interpreter is related to insufficient validation of incoming requests. Exploitation of the vulnerability could allow an attacker acting remotely to affect data integrity...
ROS-20251223-7323
A vulnerability in the urllib.parse.urlsplit and urlparse functions of the Python programming language interpreter is related to insufficient validation of incoming requests. Exploitation of the vulnerability could allow an attacker acting remotely to affect data integrity...
ROS-20251223-7317
Vulnerability in jenkins related to incorrect resource cleanup or release. Exploitation of the vulnerability may allow an attacker to cause a denial of service...
ROS-20251222-7301
A vulnerability in the Golang programming language is related to input validation errors when processing directory traversal sequences in filenames. Exploitation of the vulnerability may allow an intruder to gain unauthorized access to protected information...
ROS-20251219-7305
Vulnerability in mongodb-org related to incorrect input of configuration data. The vulnerability can be exploited remotely...
ROS-20251219-7306
A vulnerability in the 7-Zip file archiver is related to incorrect symbolic link detection before accessing a file. Exploitation of the vulnerability could allow an attacker to execute arbitrary code if a user opens a specially generated ZIP archive...
ROS-20251219-7301
Vulnerability in nomad related to incorrect link definition before accessing a file. Exploitation of the vulnerability could allow an attacker to escalate his privileges...
ROS-20251219-7303
A vulnerability in the MongoDB database management system server is related to the use of assert or a similar operator. Exploitation of the vulnerability could allow a remote attacker to affect the availability of protected information...
ROS-20251219-7304
Vulnerability in mongodb-org related to flaws in authorization procedure. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information...
ROS-20251219-7302
Vulnerability in chromium is related to speculative race conditions that can lead to access to already freed memory areas in case of incorrect prediction of code branches by the processor. Exploitation of the vulnerability could allow an attacker to access protected memory from a program without...
ROS-20251217-7319
Vulnerability in golang related to insufficient control of a resource during its lifetime. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20251217-7318
A vulnerability in the V8 JavaScript script handler of Google Chrome browser is related to data type mixing errors. Exploitation of the vulnerability could allow a remote attacker to affect the confidentiality, integrity and availability of protected information using a specially crafted HTML pag...
ROS-20251217-7311
A vulnerability in the V8 JavaScript script handler of Google Chrome browser is related to incorrect security checks for standard elements. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...
ROS-20251217-7309
A vulnerability in the Audio/Video component of Mozilla Firefox and Firefox ESR browsers is related to the ability to use memory after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20251217-7324
Vulnerability in valkey related to reading beyond buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20251217-7304
A vulnerability in the V8 JavaScript script handler of Google Chrome browser is related to a memory management procedure mismatch. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code by injecting a specially crafted script...
ROS-20251217-7302
A vulnerability in the WebGPU component of the Google Chrome browser is related to reading beyond buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code and cause a denial of service...
ROS-20251217-7312
A vulnerability in the V8 JavaScript script handler of Google Chrome browser is related to data type mixing errors. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code using a specially crafted HTML page...
ROS-20251217-7301
A vulnerability in the isolated container runc tool is associated with a race condition that allows link tracking. Exploitation of the vulnerability could allow an attacker to impact the confidentiality, integrity and availability of protected information...
ROS-20251217-7316
A vulnerability in the V8 JavaScript script handler of Google Chrome browser is related to data type mixing errors. Exploitation of the vulnerability could allow a remote attacker to affect the confidentiality, integrity and availability of protected information using a specially crafted HTML pag...
ROS-20251217-7313
A vulnerability in the V8 JavaScript script handler of Google Chrome browser is related to data type mixing errors. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code using a specially crafted HTML page...
ROS-20251217-7308
A vulnerability in the DOM: Core & HTML component of Mozilla Firefox and Firefox ESR browsers is related to a data protection mechanism violation. Exploitation of the vulnerability could allow a remote attacker to bypass existing security restrictions...
ROS-20251217-7320
Vulnerability in golang related to insufficient control of a resource during its lifetime. Exploitation of the vulnerability may allow an attacker to cause a denial of service...
ROS-20251217-7315
A vulnerability in the V8 JavaScript script handler of Google Chrome browser is related to data type mixing errors. Exploitation of the vulnerability could allow a remote attacker to affect the confidentiality, integrity and availability of protected information using a specially crafted HTML pag...
ROS-20251217-7314
A vulnerability in the V8 JavaScript script handler of Google Chrome browser is related to data type mixing errors. Exploitation of the vulnerability could allow a remote attacker to affect the confidentiality, integrity and availability of protected information using a specially crafted HTML pag...
ROS-20251217-7310
A vulnerability in Mozilla Firefox and Firefox ESR browsers is related to information presentation errors in the user interface. Exploitation of the vulnerability could allow an attacker acting remotely to conduct spoofing attacks...
ROS-20251217-7306
A vulnerability in the Omnibox component of the Google Chrome browser is related to the implementation of an incorrect control flow. Exploitation of the vulnerability could allow an attacker acting remotely to disclose protected information...
ROS-20251217-7323
A vulnerability in the Redis database management system DBMS is related to mismanagement of code generation. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...
ROS-20251217-7322
A vulnerability in the Redis database management system DBMS involves integer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...
ROS-20251217-7321
A vulnerability in the Redis database management system DBMS is related to memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...
ROS-20251217-7317
A vulnerability in the V8 JavaScript script handler of Google Chrome browser is related to data type mixing errors. Exploitation of the vulnerability could allow a remote attacker to affect the confidentiality, integrity and availability of protected information using a specially crafted HTML pag...
ROS-20251217-7307
A vulnerability in the Graphics component of Mozilla Firefox and Firefox ESR browsers is related to synchronization errors when using a shared resource "Race Situation". Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...