Lucene search
K
SusecveMost viewed

59380 matches found

SUSE CVE
SUSE CVE
•added 2023/02/15 3:50 a.m.•9 views

SUSE CVE-2020-36182

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS...

8.8CVSS8AI score0.05018EPSS
Exploits2References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:49 a.m.•9 views

SUSE CVE-2021-3444

The bpf verifier in the Linux kernel did not properly handle mod32 destination register truncation when the source register was known to be 0. A local attacker with the ability to load bpf programs could use this gain out-of-bounds reads in kernel memory leading to information disclosure kernel...

7CVSS6.6AI score0.0061EPSS
Exploits0References35
SUSE CVE
SUSE CVE
•added 2023/02/15 3:49 a.m.•9 views

SUSE CVE-2021-3493

The overlayfs implementation in the linux kernel did not properly validate with respect to user namespaces the setting of file capabilities on files in an underlying file system. Due to the combination of unprivileged user namespaces along with a patch carried in the Ubuntu kernel to allow...

8.8CVSS5.7AI score0.43988EPSS
Exploits27References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:48 a.m.•9 views

SUSE CVE-2021-3656

A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB virtual machine control block provided by the L1 guest to spawn/handle a nested guest L2. Due to improper validation of the "virtext" field, this issue could allow a malicious...

7.8CVSS8.7AI score0.00658EPSS
Exploits0References33
SUSE CVE
SUSE CVE
•added 2023/02/15 3:48 a.m.•9 views

SUSE CVE-2021-3732

A flaw was found in the Linux kernel's OverlayFS subsystem in the way the user mounts the TmpFS filesystem with OverlayFS. This flaw allows a local user to gain access to hidden files that should not be accessible...

3.3CVSS6.3AI score0.00334EPSS
Exploits0References33
SUSE CVE
SUSE CVE
•added 2023/02/15 3:45 a.m.•9 views

SUSE CVE-2021-22924

libcurl keeps previously used connections in a connection pool for subsequenttransfers to reuse, if one of them matches the setup.Due to errors in the logic, the config matching function did not take 'issuercert' into account and it compared the involved paths case insensitively,which could lead ...

5.4CVSS6.2AI score0.0627EPSS
Exploits1References86
SUSE CVE
SUSE CVE
•added 2023/02/15 3:45 a.m.•9 views

SUSE CVE-2021-25329

The fix for CVE-2020-9484 was incomplete. When using Apache Tomcat 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41, 8.5.0 to 8.5.61 or 7.0.0. to 7.0.107 with a configuration edge case that was highly unlikely to be used, the Tomcat instance was still vulnerable to CVE-2020-9494. Note that both the...

7CVSS7.3AI score0.09491EPSS
Exploits15References12
SUSE CVE
SUSE CVE
•added 2023/02/15 3:45 a.m.•9 views

SUSE CVE-2021-25634

LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alteration of the document occurred since the last signing and that the signature is valid. An Improper Certificate Validation vulnerability in LibreOffice allowed an attacker to...

7.5CVSS6.8AI score0.00685EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:43 a.m.•9 views

SUSE CVE-2021-28712

Rogue backends can cause DoS of guests via high frequency events This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Xen offers the ability to run PV backends in regular unprivileged guests, typically referred to as "drive...

6.2CVSS7.4AI score0.00332EPSS
Exploits0References27
SUSE CVE
SUSE CVE
•added 2023/02/15 3:43 a.m.•9 views

SUSE CVE-2021-29543

TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a denial of service via a CHECK-fail in tf.rawops.CTCGreedyDecoder. This is because the...

5.5CVSS5.4AI score0.00189EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:41 a.m.•9 views

SUSE CVE-2021-31227

An issue was discovered in HCC embedded InterNiche 4.0.1. A potential heap buffer overflow exists in the code that parses the HTTP POST request, due to an incorrect signed integer comparison. This vulnerability requires the attacker to send a malformed HTTP packet with a negative Content-Length,...

7.5CVSS7.9AI score0.01675EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:39 a.m.•9 views

SUSE CVE-2021-35619

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1, 19c and 21c. Difficult to exploit vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromise Java VM...

7.1CVSS8AI score0.00869EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:38 a.m.•9 views

SUSE CVE-2021-38205

drivers/net/ethernet/xilinx/xilinxemaclite.c in the Linux kernel before 5.13.3 makes it easier for attackers to defeat an ASLR protection mechanism because it prints a kernel pointer i.e., the real IOMEM pointer...

3.3CVSS6.3AI score0.00328EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2023/02/15 3:37 a.m.•9 views

SUSE CVE-2021-40438

A crafted request uri-path can cause modproxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier...

7.5CVSS8.7AI score0.99999EPSS
Exploits5References9
SUSE CVE
SUSE CVE
•added 2023/02/15 3:37 a.m.•9 views

SUSE CVE-2021-42008

The decodedata function in drivers/net/hamradio/6pack.c in the Linux kernel before 5.13.13 has a slab out-of-bounds write. Input from a process that has the CAPNETADMIN capability can lead to root access...

8.8CVSS6.5AI score0.01476EPSS
Exploits3References38
SUSE CVE
SUSE CVE
•added 2023/02/15 3:37 a.m.•9 views

SUSE CVE-2021-42013

It was found that the fix for CVE-2021-41773 in Apache HTTP Server 2.4.50 was insufficient. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Alias-like directives. If files outside of these directories are not protected by the usual default...

9.8CVSS9.3AI score0.99964EPSS
Exploits62References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:36 a.m.•9 views

SUSE CVE-2021-44228

Apache Log4j2 2.0-beta9 through 2.15.0 excluding security releases 2.12.2, 2.12.3, and 2.3.1 JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message...

9.8CVSS9.1AI score0.99999EPSS
Exploits351References23
SUSE CVE
SUSE CVE
•added 2023/02/15 3:36 a.m.•9 views

SUSE CVE-2021-44532

Node.js 12.22.9, 14.18.3, 16.13.2, and 17.3.1 converts SANs Subject Alternative Names to a string format. It uses this string to check peer certificates against hostnames when validating connections. The string format was subject to an injection vulnerability when name constraints were used withi...

5.9CVSS7AI score0.10364EPSS
Exploits1References11
SUSE CVE
SUSE CVE
•added 2023/02/15 3:36 a.m.•9 views

SUSE CVE-2021-45105

Apache Log4j2 versions 2.0-alpha1 through 2.16.0 excluding 2.12.3 and 2.3.1 did not protect from uncontrolled recursion from self-referential lookups. This allows an attacker with control over Thread Context Map data to cause a denial of service when a crafted string is interpreted. This issue wa...

7.5CVSS7.4AI score0.99999EPSS
Exploits20References6
SUSE CVE
SUSE CVE
•added 2023/02/15 3:34 a.m.•9 views

SUSE CVE-2022-0850

A vulnerability was found in linux kernel, where an information leak occurs via ext4extentheader to userspace...

4.4CVSS6.6AI score0.00408EPSS
Exploits1References25
SUSE CVE
SUSE CVE
•added 2023/02/15 3:33 a.m.•9 views

SUSE CVE-2022-1974

A use-after-free flaw was found in the Linux kernel's NFC core functionality due to a race condition between kobject creation and delete. This vulnerability allows a local attacker with CAPNETADMIN privilege to leak kernel information...

6.8CVSS5.8AI score0.00142EPSS
Exploits0References32
SUSE CVE
SUSE CVE
•added 2023/02/15 3:32 a.m.•9 views

SUSE CVE-2022-2255

A vulnerability was found in modwsgi. The X-Client-IP header is not removed from a request from an untrusted proxy, allowing an attacker to pass the X-Client-IP header to the target WSGI application because the condition to remove it is missing...

5.6CVSS6.8AI score0.0069EPSS
Exploits1References7
SUSE CVE
SUSE CVE
•added 2023/02/15 3:31 a.m.•9 views

SUSE CVE-2022-3521

A vulnerability has been found in Linux Kernel and classified as problematic. This vulnerability affects the function kcmtxwork of the file net/kcm/kcmsock.c of the component kcm. The manipulation leads to race condition. It is recommended to apply a patch to fix this issue. VDB-211018 is the...

5.1CVSS6.2AI score0.00218EPSS
Exploits0References25
SUSE CVE
SUSE CVE
•added 2023/02/15 3:30 a.m.•9 views

SUSE CVE-2022-4382

A use-after-free flaw caused by a race among the superblock operations in the gadgetfs Linux driver was found. It could be triggered by yanking out a device that is running the gadgetfs side...

7.4CVSS6.8AI score0.00484EPSS
Exploits1References12
SUSE CVE
SUSE CVE
•added 2023/02/15 3:30 a.m.•9 views

SUSE CVE-2022-21256

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Group Replication Plugin. Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

4.9CVSS5AI score0.02031EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:29 a.m.•9 views

SUSE CVE-2022-21288

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.4.34 and prior, 7.5.24 and prior, 7.6.20 and prior and 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physica...

6.3CVSS5.8AI score0.02686EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:29 a.m.•9 views

SUSE CVE-2022-21289

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.4.34 and prior, 7.5.24 and prior, 7.6.20 and prior and 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physica...

6.3CVSS5.8AI score0.02686EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:29 a.m.•9 views

SUSE CVE-2022-21334

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physical communication segment attached to the hardware where th...

6.3CVSS5.8AI score0.02795EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:29 a.m.•9 views

SUSE CVE-2022-21436

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

4.9CVSS5.6AI score0.01252EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:28 a.m.•9 views

SUSE CVE-2022-22965

A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution RCE via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e. the default, it is...

9.8CVSS8.6AI score0.99677EPSS
Exploits101References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:26 a.m.•9 views

SUSE CVE-2022-27381

An issue in the component Field::setdefault of MariaDB Server v10.6 and below was discovered to allow attackers to cause a Denial of Service DoS via specially crafted SQL statements...

7.1CVSS8.5AI score0.02159EPSS
Exploits1References12
SUSE CVE
SUSE CVE
•added 2023/02/15 3:26 a.m.•9 views

SUSE CVE-2022-28390

emsusbstartxmit in drivers/net/can/usb/emsusb.c in the Linux kernel through 5.17.1 has a double free...

7CVSS6.6AI score0.0035EPSS
Exploits0References42
SUSE CVE
SUSE CVE
•added 2023/02/15 3:26 a.m.•9 views

SUSE CVE-2022-29217

PyJWT is a Python implementation of RFC 7519. PyJWT supports multiple different JWT signing algorithms. With JWT, an attacker submitting the JWT token can choose the used signing algorithm. The PyJWT library requires that the application chooses what algorithms are supported. The application can...

7.5CVSS9.4AI score0.012EPSS
Exploits0References29
SUSE CVE
SUSE CVE
•added 2023/02/15 3:23 a.m.•9 views

SUSE CVE-2022-42896

There are use-after-free vulnerabilities in the Linux kernel's net/bluetooth/l2capcore.c's l2capconnect and l2capleconnectreq functions which may allow code execution and leaking kernel memory respectively remotely via Bluetooth. A remote attacker could execute code leaking kernel memory via...

6.8CVSS7.4AI score0.02014EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2023/02/15 3:22 a.m.•9 views

SUSE CVE-2022-44032

An issue was discovered in the Linux kernel through 6.0.6. drivers/char/pcmcia/cm4000cs.c has a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling open, aka a race condition between cmmopen and cm4000detach...

4.3CVSS7.8AI score0.00323EPSS
Exploits0References5
SUSE CVE
SUSE CVE
•added 2023/02/15 3:22 a.m.•9 views

SUSE CVE-2022-47938

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2misc.c has an out-of-bounds read and OOPS for SMB2TREECONNECT...

6.5CVSS6.8AI score0.58461EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2 days ago•8 views

SUSE CVE-2026-53361

In the Linux kernel, the following vulnerability has been resolved: afunix: Set gcinprogress to true in unixgc. Igor Ushakov reported that unixgc could run with gcinprogress being false if the work is scheduled while running: Thread 1 Thread 2 Thread 3 -------- -------- -------- unixschedulegc...

5.8AI score0.00171EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 3 days ago•8 views

SUSE CVE-2026-38969

ruby webrick through v1.9.2 WEBrick reparses trailer Content-Length into canonical request state, enabling request smuggling...

5.9AI score0.00162EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 3 days ago•8 views

SUSE CVE-2026-39883

OpenTelemetry-Go is the Go implementation of OpenTelemetry. From 1.15.0 to 1.42.0, the fix for CVE-2026-24051 changed the Darwin ioreg command to use an absolute path but left the BSD kenv command using a bare name, allowing the same PATH hijacking attack on BSD and Solaris platforms. This...

7CVSS7.1AI score0.0022EPSS
Exploits1References2
SUSE CVE
SUSE CVE
•added 4 days ago•8 views

SUSE CVE-2022-46294

Multiple out-of-bounds write vulnerabilities exist in the translationVectors parsing functionality in multiple supported formats of Open Babel 3.1.1 and master commit 530dbfa3. A specially-crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to...

7.8CVSS7.5AI score0.00863EPSS
Exploits1References2
SUSE CVE
SUSE CVE
•added 4 days ago•8 views

SUSE CVE-2026-20244

A vulnerability in the DMG file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device. This vulnerability is due to improper boundary checks for content in DMG...

7.5CVSS7.2AI score0.00389EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 4 days ago•8 views

SUSE CVE-2026-53354

In the Linux kernel, the following vulnerability has been resolved: arm64: errata: Mitigate TLBI errata on various Arm CPUs A number of CPUs developed by Arm suffer from errata whereby a broadcast TLBI;DSB sequence may complete before the global observation of writes which are translated by an...

7CVSS5.8AI score0.00182EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:50 a.m.•8 views

SUSE CVE-2026-8461

An out-of-bounds write vulnerability in FFmpeg's libavcodec library, specifically in the MagicYUV decoder, allows denial-of-service and, in some cases, can be exploited for remote code execution. This vulnerability is associated with the file libavcodec/magicyuv.C. This issue affects FFmpeg befor...

8.8CVSS6AI score0.00477EPSS
Exploits3References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:49 a.m.•8 views

SUSE CVE-2026-12244

If NSD is configured as secondary for a zone, the primary of that zone can crash NSD with an AXFR containing a DNS message with a special crafted SVCB RR with an rdata size of 65512, that let's an uint16t variable that is used to allocate space needed for the RR wrap because total size 65535,...

8.8CVSS5.9AI score0.00303EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:44 a.m.•8 views

SUSE CVE-2026-47778

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, a structural flaw was identified in DefaultCertValidator::verifySubjectAltName where the extracted DNS SAN string is cast to a C-style string using .cstr before bei...

4.4CVSS5.8AI score0.00212EPSS
Exploits1References2
SUSE CVE
SUSE CVE
•added 2026/06/30 1:44 a.m.•8 views

SUSE CVE-2026-48804

unknown...

5.7AI score
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:43 a.m.•8 views

SUSE CVE-2026-53108

In the Linux kernel, the following vulnerability has been resolved: powerpc/64s: Fix unmap race with PMD migration entries The following race is possible with migration swap entries or device-private THP entries. e.g. when movepages is called on a PMD THP page, then there maybe an intermediate...

5.8AI score0.00151EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:42 a.m.•8 views

SUSE CVE-2026-53325

In the Linux kernel, the following vulnerability has been resolved: agp/amd64: Fix broken error propagation in agpamd64probe A NULL pointer dereference was observed in the AMD64 AGP driver when running in a virtualized environment e.g. qemu/kvm without a physical AMD northbridge. The crash occurs...

4.4CVSS5.8AI score0.00203EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:42 a.m.•8 views

SUSE CVE-2026-58050

libssh2 through 1.11.1 reads an attacker-controlled 32-bit attribute count from a publickey-subsystem response and uses it in the allocation numattrs sizeoflibssh2publickeyattribute without bounds checking, so on 32-bit platforms the multiplication overflows to an undersized buffer. A malicious S...

8.3CVSS6AI score0.00333EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:42 a.m.•8 views

SUSE CVE-2026-58055

nghttp2's nghttpx proxy through 1.69.0 forwards an HTTP/1.1 Upgrade request that also carries a Content-Length header and body onto reusable keep-alive backend connections, re-adding the Upgrade and Connection headers while passing Content-Length verbatim. A backend that resolves the resulting...

6.3CVSS5.8AI score0.00202EPSS
Exploits0References3
Total number of security vulnerabilities5000