Lucene search
+L
UbuntucveMost viewed

71772 matches found

UbuntuCve
UbuntuCve
•added 2023/08/22 7:16 p.m.•76 views

CVE-2022-36648

The hardware emulation in the ofdpacmdaddl2flood of rocker device model in QEMU, as used in 7.0.0 and earlier, allows remote attackers to crash the host qemu and potentially execute code on the host via execute a malformed program in the guest OS. Note: This has been disputed by multiple third...

10CVSS6.9AI score0.01401EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2023/06/23 6:15 p.m.•76 views

CVE-2023-32373

A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, Safari 16.5, iOS 16.5 and iPadOS 16.5. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is...

8.8CVSS7.5AI score0.12172EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2023/04/20 12:0 a.m.•76 views

CVE-2023-1255

Issue summary: The AES-XTS cipher decryption implementation for 64 bit ARM platform contains a bug that could cause it to read past the input buffer, leading to a crash. Impact summary: Applications that use the AES-XTS algorithm on the 64 bit ARM platform can crash in rare circumstances. The...

5.9CVSS6.9AI score0.00953EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2023/04/14 7:15 p.m.•76 views

CVE-2023-2033

Type confusion in V8 in Google Chrome prior to 112.0.5615.121 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.3AI score0.40798EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2022/12/23 4:15 p.m.•76 views

CVE-2022-47938

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2misc.c has an out-of-bounds read and OOPS for SMB2TREECONNECT...

6.5CVSS6.8AI score0.58461EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2022/10/21 6:15 a.m.•76 views

CVE-2022-37454

The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function interface...

9.8CVSS7.2AI score0.05193EPSS
Exploits1References20
UbuntuCve
UbuntuCve
•added 2022/05/10 8:15 p.m.•76 views

CVE-2022-20009

In various functions of the USB gadget subsystem, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Andro...

7.2CVSS6.9AI score0.00329EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2022/05/03 12:0 a.m.•76 views

CVE-2022-1292

The crehash script does not properly sanitise shell metacharacters to prevent command injection. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an attacker could execute arbitrary commands with the privileges of the...

10CVSS7AI score0.83223EPSS
Exploits5References7
UbuntuCve
UbuntuCve
•added 2022/04/05 4:15 a.m.•76 views

CVE-2021-39114

Affected versions of Atlassian Confluence Server and Data Center allow users with a valid account on a Confluence Data Center instance to execute arbitrary Java code or run arbitrary system commands by injecting an OGNL payload. The affected versions are before version 6.13.23, from version 6.14....

8.8CVSS7.3AI score0.01657EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2022/03/11 6:15 p.m.•76 views

CVE-2021-26401

LFENCE/JMP mitigation V2-2 may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs...

5.6CVSS6.8AI score0.00288EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2022/03/08 8:15 p.m.•76 views

CVE-2022-24715

Icinga Web 2 is an open source monitoring web interface, framework and command-line interface. Authenticated users, with access to the configuration, can create SSH resource files in unintended directories, leading to the execution of arbitrary code. This issue has been resolved in versions 2.8.6...

8.8CVSS7.3AI score0.1467EPSS
Exploits5References3
UbuntuCve
UbuntuCve
•added 2022/02/16 9:15 a.m.•76 views

CVE-2022-0613

Authorization Bypass Through User-Controlled Key in NPM urijs prior to 1.19.8...

6.5CVSS6.4AI score0.0158EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2022/01/13 12:0 a.m.•76 views

CVE-2022-22738

Applying a CSS filter effect could have accessed out of bounds memory. This could have lead to a heap-buffer-overflow causing a potentially exploitable crash. This vulnerability affects Firefox ESR 91.5, Firefox 96, and Thunderbird 91.5...

8.8CVSS7.2AI score0.00995EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2021/11/02 9:15 p.m.•76 views

CVE-2021-37979

heap buffer overflow in WebRTC in Google Chrome prior to 94.0.4606.81 allowed a remote attacker who convinced a user to browse to a malicious website to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.4AI score0.01711EPSS
Exploits1References1
UbuntuCve
UbuntuCve
•added 2021/11/02 9:15 p.m.•76 views

CVE-2021-37977

Use after free in Garbage Collection in Google Chrome prior to 94.0.4606.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.2AI score0.00861EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2021/10/04 6:15 p.m.•76 views

CVE-2021-32762

Redis is an open source, in-memory database that persists on disk. The redis-cli command line tool and redis-sentinel service may be vulnerable to integer overflow when parsing specially crafted large multi-bulk network replies. This is a result of a vulnerability in the underlying hiredis librar...

9CVSS6.7AI score0.02497EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2017/01/04 12:0 a.m.•76 views

CVE-2016-10012

The shared memory manager associated with pre-authentication compression in sshd in OpenSSH before 7.4 does not ensure that a bounds check is enforced by all compilers, which might allows local users to gain privileges by leveraging access to a sandboxed privilege-separation process, related to t...

7.8CVSS6.9AI score0.01281EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2006/11/29 2:28 a.m.•76 views

CVE-2006-6168

tiki-register.php in TikiWiki before 1.9.7 allows remote attackers to trigger "notification-spam" via certain vectors such as a comma-separated list of addresses in the email field, related to lack of "a minimal check on email."...

7.5CVSS6AI score0.02678EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2006/01/04 11:3 p.m.•76 views

CVE-2006-0082

Format string vulnerability in the SetImageInfo function in image.c for ImageMagick 6.2.3 and other versions, and GraphicsMagick, allows user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code via a numeric format string specifier such as %d in the file name...

5.1CVSS7.5AI score0.04344EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2024/06/06 7:16 p.m.•75 views

CVE-2024-5480

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

5.7AI score
Exploits0References2
UbuntuCve
UbuntuCve
•added 2024/03/06 7:15 p.m.•75 views

CVE-2024-27304

pgx is a PostgreSQL driver and toolkit for Go. SQL injection can occur if an attacker can cause a single query or bind message to exceed 4 GB in size. An integer overflow in the calculated message size can cause the one large message to be sent as multiple messages under the attacker's control. T...

9.8CVSS7.2AI score0.01109EPSS
Exploits1References10
UbuntuCve
UbuntuCve
•added 2023/11/23 12:15 a.m.•75 views

CVE-2023-30581

The use of proto in process.mainModule.proto.require can bypass the policy mechanism and require modules outside of the policy.json definition. This vulnerability affects all users using the experimental policy mechanism in all active release lines: v16, v18 and, v20. Please note that at the time...

7.5CVSS6.9AI score0.0105EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2023/11/03 5:15 a.m.•75 views

CVE-2023-41259

Best Practical Request Tracker RT before 4.4.7 and 5.x before 5.0.5 allows Information Disclosure via fake or spoofed RT email headers in an email message or a mail-gateway REST API call...

7.5CVSS7.1AI score0.00717EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2023/04/22 4:15 p.m.•75 views

CVE-2023-2241

A vulnerability, which was classified as critical, was found in PoDoFo 0.10.0. Affected is the function readXRefStreamEntry of the file PdfXRefStreamParserObject.cpp. The manipulation leads to heap-based buffer overflow. An attack has to be approached locally. The exploit has been disclosed to th...

7.8CVSS5.7AI score0.00372EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2023/03/15 10:15 p.m.•75 views

CVE-2023-27601

OpenSIPS is a Session Initiation Protocol SIP server implementation. Prior to versions 3.1.7 and 3.2.4, OpenSIPS crashes when a malformed SDP body is received and is processed by the deletesdpline function in the sipmsgops module. This issue can be reproduced by calling the function with an SDP...

7.5CVSS6.9AI score0.0099EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2023/02/15 12:0 a.m.•75 views

CVE-2023-23914

A cleartext transmission of sensitive information vulnerability exists in curl v7.88.0 that could cause HSTS functionality fail when multiple URLs are requested serially. Using its HSTS support, curl can be instructed to use HTTPS instead of usingan insecure clear-text HTTP step even when HTTP is...

9.1CVSS6.8AI score0.00858EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2022/10/31 12:0 a.m.•75 views

CVE-2022-3628

A buffer overflow flaw was found in the Linux kernel Broadcom Full MAC Wi-Fi driver. This issue occurs when a user connects to a malicious USB device. This can allow a local user to crash the system or escalate their privileges...

6.6CVSS6.9AI score0.00503EPSS
Exploits1References28
UbuntuCve
UbuntuCve
•added 2022/07/05 10:15 a.m.•75 views

CVE-2022-2309

NULL Pointer Dereference allows attackers to cause a denial of service or application crash. This only applies when lxml is used together with libxml2 2.9.10 through 2.9.14. libxml2 2.9.9 and earlier are not affected. It allows triggering crashes through forged input data, given a vulnerable code...

7.5CVSS6.5AI score0.02462EPSS
Exploits1References8
UbuntuCve
UbuntuCve
•added 2022/03/28 2:15 a.m.•75 views

CVE-2022-24303

Pillow before 9.0.1 allows attackers to delete files because spaces in temporary pathnames are mishandled...

9.1CVSS6.9AI score0.02811EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2022/02/18 8:15 p.m.•75 views

CVE-2022-0543

It was discovered, that redis, a persistent key-value database, due to a packaging issue, is prone to a Debian-specific Lua sandbox escape, which could result in remote code execution...

10CVSS7.5AI score0.9967EPSS
Exploits10References3
UbuntuCve
UbuntuCve
•added 2022/01/26 7:15 p.m.•75 views

CVE-2022-23990

Expat aka libexpat before 2.4.4 has an integer overflow in the doProlog function...

7.5CVSS6.9AI score0.03992EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/12/28 12:0 a.m.•75 views

CVE-2021-44832

Apache Log4j2 versions 2.0-beta7 through 2.17.0 excluding security fix releases 2.3.2 and 2.12.4 are vulnerable to a remote code execution RCE attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the target LDAP server. This issue is...

8.5CVSS7.6AI score0.97906EPSS
Exploits9References4
UbuntuCve
UbuntuCve
•added 2021/12/14 12:15 p.m.•75 views

CVE-2021-4104

JMSAppender in Log4j 1.2 is vulnerable to deserialization of untrusted data when the attacker has write access to the Log4j configuration. The attacker can provide TopicBindingName and TopicConnectionFactoryBindingName configurations causing JMSAppender to perform JNDI requests that result in...

7.5CVSS7.4AI score0.81147EPSS
Exploits9References5
UbuntuCve
UbuntuCve
•added 2021/12/01 4:0 p.m.•75 views

CVE-2021-43527

NSS Network Security Services versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \7, or PKCS \12 are likely to be impacted. Applications using N...

9.8CVSS7AI score0.17563EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2017/03/11 2:59 a.m.•75 views

CVE-2017-5638

The Jakarta Multipart parser in Apache Struts 2 2.3.x before 2.3.32 and 2.5.x before 2.5.10.1 has incorrect exception handling and error-message generation during file-upload attempts, which allows remote attackers to execute arbitrary commands via a crafted Content-Type, Content-Disposition, or...

10CVSS7.4AI score0.99999EPSS
Exploits44References3
UbuntuCve
UbuntuCve
•added 2016/03/01 1:0 p.m.•75 views

CVE-2016-0702

The MODEXPCTIMECOPYFROMPREBUF function in crypto/bn/bnexp.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g does not properly consider cache-bank access times during modular exponentiation, which makes it easier for local users to discover RSA keys by running a crafted application on the...

5.1CVSS6.8AI score0.0191EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2012/11/19 12:0 a.m.•75 views

CVE-2012-5519

CUPS 1.4.4, when running in certain Linux distributions such as Debian GNU/Linux, stores the web interface administrator key in /var/run/cups/certs/0 using certain permissions, which allows local users in the lpadmin group to read or write arbitrary files as root by leveraging the web interface...

7.2CVSS7.2AI score0.02128EPSS
Exploits2References3
UbuntuCve
UbuntuCve
•added 2012/05/03 12:0 a.m.•75 views

CVE-2012-1823

sapi/cgi/cgimain.c in PHP before 5.3.12 and 5.4.x before 5.4.2, when configured as a CGI script aka php-cgi, does not properly handle query strings that lack an = equals sign character, which allows remote attackers to execute arbitrary code by placing command-line options in the query string,...

9.8CVSS7.7AI score0.99998EPSS
Exploits42References4
UbuntuCve
UbuntuCve
•added 2024/05/16 2:15 p.m.•74 views

CVE-2023-46842

Unlike 32-bit PV guests, HVM guests may switch freely between 64-bit and other modes. This in particular means that they may set registers used to pass 32-bit-mode hypercall arguments to values outside of the range 32-bit code would be able to set them to. When processing of hypercalls takes a...

6.5CVSS7.2AI score0.0853EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2023/09/20 10:15 p.m.•74 views

CVE-2023-36109

Buffer Overflow vulnerability in JerryScript version 3.0, allows remote attackers to execute arbitrary code via ecmastringbuilderappendraw component at /jerry-core/ecma/base/ecma-helpers-string.c...

9.8CVSS7.5AI score0.01977EPSS
Exploits2References3
UbuntuCve
UbuntuCve
•added 2023/06/16 9:15 p.m.•74 views

CVE-2023-35788

An issue was discovered in flsetgeneveopt in net/sched/clsflower.c in the Linux kernel before 6.3.7. It allows an out-of-bounds write in the flower classifier code via TCAFLOWERKEYENCOPTSGENEVE packets. This may result in denial of service or privilege escalation...

7.8CVSS6.8AI score0.00532EPSS
Exploits1References18
UbuntuCve
UbuntuCve
•added 2023/06/06 12:0 a.m.•74 views

CVE-2023-2640

On Ubuntu kernels carrying both c914c0e27eb0 and "UBUNTU: SAUCE: overlayfs: Skip permission checking for trusted.overlayfs. xattrs", an unprivileged user may set privileged extended attributes on the mounted files, leading them to be set on the upper files without the appropriate security checks...

7.8CVSS7AI score0.15783EPSS
Exploits12References13
UbuntuCve
UbuntuCve
•added 2023/05/03 1:0 p.m.•74 views

CVE-2023-31047

In Django 3.2 before 3.2.19, 4.x before 4.1.9, and 4.2 before 4.2.1, it was possible to bypass validation when using one form field to upload multiple files. This multiple upload has never been supported by forms.FileField or forms.ImageField only the last uploaded file was validated. However,...

9.8CVSS6.8AI score0.0138EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/01/03 7:15 p.m.•74 views

CVE-2022-45143

The JsonErrorReportValve in Apache Tomcat 8.5.83, 9.0.40 to 9.0.68 and 10.1.0-M1 to 10.1.1 did not escape the type, message or description values. In some circumstances these are constructed from user provided data and it was therefore possible for users to supply values that invalidated or...

7.5CVSS6.9AI score0.02505EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2022/07/05 12:0 a.m.•74 views

CVE-2022-2200

If an object prototype was corrupted by an attacker, they would have been able to set undesired attributes on a JavaScript object, leading to privileged code execution. This vulnerability affects Firefox 102, Firefox ESR 91.11, Thunderbird 102, and Thunderbird 91.11...

8.8CVSS7.3AI score0.23941EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2022/06/06 6:15 p.m.•74 views

CVE-2022-23712

A Denial of Service flaw was discovered in Elasticsearch. Using this vulnerability, an unauthenticated attacker could forcibly shut down an Elasticsearch node with a specifically formatted network request...

7.5CVSS7.1AI score0.074EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2022/05/12 12:0 a.m.•74 views

CVE-2022-1012

A memory leak problem was found in the TCP source port generation algorithm in net/ipv4/tcp.c due to the small table perturb size. This flaw may allow an attacker to information leak and may cause a denial of service problem...

8.2CVSS6.7AI score0.02986EPSS
Exploits0References22
UbuntuCve
UbuntuCve
•added 2022/03/10 5:44 p.m.•74 views

CVE-2021-4023

A flaw was found in the io-workqueue implementation in the Linux kernel versions prior to 5.15-rc1. The kernel can panic when an improper cancellation operation triggers the submission of new io-uring operations during a shortage of free space. This flaw allows a local user with permissions to...

5.5CVSS6.8AI score0.00234EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2022/03/10 5:42 p.m.•74 views

CVE-2021-34338

Ming 0.4.8 has an out-of-bounds buffer overwrite issue in the function getName in decompiler.c file that causes a direct segmentation fault and leads to denial of service...

6.5CVSS6.7AI score0.00942EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2022/03/10 5:41 p.m.•74 views

CVE-2021-20269

A flaw was found in the permissions of a log file created by kexec-tools. This flaw allows a local unprivileged user to read this file and leak kernel internal information from a previous panic. The highest threat from this vulnerability is to confidentiality. This flaw affects kexec-tools shippe...

5.5CVSS6.1AI score0.00248EPSS
Exploits0References2
Total number of security vulnerabilities5000