Lucene search
+L
UbuntucveMost viewed

71772 matches found

UbuntuCve
UbuntuCve
•added 2020/02/12 8:15 p.m.•72 views

CVE-2011-3336

regcomp in the BSD implementation of libc is vulnerable to denial of service due to stack exhaustion...

7.8CVSS7.1AI score0.06485EPSS
Exploits3References3
UbuntuCve
UbuntuCve
•added 2016/12/08 6:59 p.m.•72 views

CVE-2016-9920

steps/mail/sendmail.inc in Roundcube before 1.1.7 and 1.2.x before 1.2.3, when no SMTP server is configured and the sendmail program is enabled, does not properly restrict the use of custom envelope-from addresses on the sendmail command line, which allows remote authenticated users to execute...

7.5CVSS7.2AI score0.05621EPSS
Exploits2References5
UbuntuCve
UbuntuCve
•added 2015/05/18 3:59 p.m.•72 views

CVE-2015-3306

The modcopy module in ProFTPD 1.3.5 allows remote attackers to read and write to arbitrary files via the site cpfr and site cpto commands...

10CVSS7.3AI score0.96803EPSS
Exploits22References3
UbuntuCve
UbuntuCve
•added 2014/03/11 1:0 p.m.•72 views

CVE-2014-0094

The ParametersInterceptor in Apache Struts before 2.3.16.2 allows remote attackers to "manipulate" the ClassLoader via the class parameter, which is passed to the getClass method...

5CVSS7.2AI score0.99614EPSS
Exploits7References2
UbuntuCve
UbuntuCve
•added 2013/04/17 12:0 a.m.•72 views

CVE-2013-2384

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors relate...

10CVSS6.8AI score0.08778EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2024/03/16 5:15 a.m.•71 views

CVE-2024-22259

Applications that use UriComponentsBuilder in Spring Framework to parse an externally provided URL e.g. through a query parameter AND perform validation checks on the host of the parsed URL may be vulnerable to a open redirect https://cwe.mitre.org/data/definitions/601.html attack or to a SSRF...

8.1CVSS6.7AI score0.02573EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2024/02/23 12:0 a.m.•71 views

CVE-2024-22243

Applications that use UriComponentsBuilder to parse an externally provided URL e.g. through a query parameter AND perform validation checks on the host of the parsed URL may be vulnerable to a open redirect https://cwe.mitre.org/data/definitions/601.html attack or to a SSRF attack if the URL is...

8.1CVSS6.7AI score0.03967EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2023/06/23 6:15 p.m.•71 views

CVE-2023-28204

An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, Safari 16.5, iOS 16.5 and iPadOS 16.5. Processing web content may disclose sensitive information. Apple is aware of a report that th...

6.5CVSS7AI score0.14292EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2022/12/25 6:15 a.m.•71 views

CVE-2022-42898

PAC parsing in MIT Kerberos 5 aka krb5 before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution in KDC, kadmind, or a GSS or Kerberos application server on 32-bit platforms which have a resultant heap-based buffer overflow, and cause a denial of service ...

8.8CVSS7.4AI score0.06419EPSS
Exploits1References9
UbuntuCve
UbuntuCve
•added 2022/12/03 3:15 p.m.•71 views

CVE-2021-37533

Prior to Apache Commons Net 3.9.0, Net's FTP client trusts the host from PASV response by default. A malicious server can redirect the Commons Net code to use a different host, but the user has to connect to the malicious server in the first place. This may lead to leakage of information about...

6.5CVSS6.7AI score0.01858EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2022/11/14 12:0 a.m.•71 views

CVE-2022-45198

Pillow before 9.2.0 performs Improper Handling of Highly Compressed GIF Data Data Amplification...

7.5CVSS6.8AI score0.01184EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2022/10/06 12:0 a.m.•71 views

CVE-2022-41853

Those using java.sql.Statement or java.sql.PreparedStatement in hsqldb HyperSQL DataBase to process untrusted input may be vulnerable to a remote code execution attack. By default it is allowed to call any static method of any Java class in the classpath resulting in code execution. The issue can...

9.8CVSS7.1AI score0.03669EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2022/09/27 11:15 p.m.•71 views

CVE-2022-3303

A race condition flaw was found in the Linux kernel sound subsystem due to improper locking. It could lead to a NULL pointer dereference while handling the SNDCTLDSPSYNC ioctl. A privileged local user root or member of the audio group could use this flaw to crash the system, resulting in a denial...

4.7CVSS6.7AI score0.00303EPSS
Exploits1References20
UbuntuCve
UbuntuCve
•added 2022/08/09 5:0 p.m.•71 views

CVE-2022-2586

It was discovered that a nft object or expression could reference a nft set on a different nft table, leading to a use-after-free once that table was deleted...

7.8CVSS6.9AI score0.12746EPSS
Exploits7References14
UbuntuCve
UbuntuCve
•added 2022/07/19 10:15 p.m.•71 views

CVE-2022-21549

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 17.0.3.1; Oracle GraalVM Enterprise Edition: 21.3.2 and 22.1.0. Easily exploitable vulnerability allows unauthenticated...

5.3CVSS6.8AI score0.02253EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2022/07/08 11:42 a.m.•71 views

CVE-2022-24808

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-write credentials can use a malformed OID in a SET request to NET-SNMP-AGENT-MIB::nsLogTable to cause a NULL pointer dereference. Version 5.9.2 contains a patch. Users shou...

6.5CVSS6.8AI score0.01131EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2022/02/09 11:15 p.m.•71 views

CVE-2021-0161

Improper input validation in firmware for IntelR PROSet/Wireless Wi-Fi in multiple operating systems and KillerTM Wi-Fi in Windows 10 and 11 may allow a privileged user to potentially enable escalation of privilege via local access...

6.7CVSS6.5AI score0.00297EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/11/01 4:15 a.m.•71 views

CVE-2021-42574

An issue was discovered in the Bidirectional Algorithm in the Unicode Specification through 14.0. It permits the visual reordering of characters via control sequences, which can be used to craft source code that renders different logic than the logical ordering of tokens ingested by compilers and...

8.3CVSS7AI score0.12205EPSS
Exploits4References5
UbuntuCve
UbuntuCve
•added 2021/09/09 12:0 a.m.•71 views

CVE-2021-3772

A flaw was found in the Linux SCTP stack. A blind attacker may be able to kill an existing SCTP association through invalid chunks if the attacker knows the IP-addresses and port numbers being used and the attacker can send packets with spoofed IP addresses...

6.5CVSS6.7AI score0.0124EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2021/08/04 10:15 a.m.•71 views

CVE-2021-37232

A stack overflow vulnerability occurs in Atomicparsley 20210124.204813.840499f through AParread64 in src/util.cpp due to the lack of buffer size of uint32buffer while reading more bytes in AParread64...

9.8CVSS7.4AI score0.02155EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2021/08/03 7:15 p.m.•71 views

CVE-2021-30564

Heap buffer overflow in WebXR in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.4AI score0.01419EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2021/06/10 7:15 a.m.•71 views

CVE-2021-30641

Apache HTTP Server versions 2.4.39 to 2.4.46 Unexpected matching behavior with 'MergeSlashes OFF'...

5.3CVSS6.8AI score0.52331EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2021/01/12 12:0 a.m.•71 views

CVE-2020-28374

In drivers/target/targetcorexcopy.c in the Linux kernel before 5.10.7, insufficient identifier checking in the LIO SCSI target code can be used by remote attackers to read or write files via directory traversal in an XCOPY request, aka CID-2896c93811e3. For example, an attack can occur over a...

8.1CVSS6.7AI score0.06563EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2020/10/12 2:15 p.m.•71 views

CVE-2020-13943

If an HTTP/2 client connecting to Apache Tomcat 10.0.0-M1 to 10.0.0-M7, 9.0.0.M1 to 9.0.37 or 8.5.0 to 8.5.57 exceeded the agreed maximum number of concurrent streams for a connection in violation of the HTTP/2 protocol, it was possible that a subsequent request made on that connection could...

4.3CVSS6.8AI score0.57286EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2019/11/25 3:15 p.m.•71 views

CVE-2019-13720

Use after free in WebAudio in Google Chrome prior to 78.0.3904.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.3AI score0.72977EPSS
Exploits4References3
UbuntuCve
UbuntuCve
•added 2018/09/20 6:29 a.m.•71 views

CVE-2018-17236

The function MP4Free in mp4property.cpp in libmp4v2 2.1.0 internally calls free on a invalid pointer, raising a SIGABRT signal...

6.5CVSS6.6AI score0.01113EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2018/06/13 4:29 p.m.•71 views

CVE-2018-12321

There is a heap out of bounds read in radare2 2.6.0 in javaswitchop in libr/anal/p/analjava.c via a crafted Java binary file...

7.8CVSS7.1AI score0.01015EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2018/03/30 12:0 a.m.•71 views

CVE-2018-7566

The Linux kernel 4.15 has a Buffer Overflow via an SNDRVSEQIOCTLSETCLIENTPOOL ioctl write operation to /dev/snd/seq by a local user...

7.8CVSS7.1AI score0.005EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2017/08/10 5:0 p.m.•71 views

CVE-2017-1000111

Linux kernel: heap out-of-bounds in AFPACKET sockets. This new issue is analogous to previously disclosed CVE-2016-8655. In both cases, a socket option that changes socket state may race with safety checks in packetsetring. Previously with PACKETVERSION. This time with PACKETRESERVE. The solution...

7.8CVSS6.7AI score0.00374EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2016/08/06 12:0 a.m.•71 views

CVE-2016-6480

Race condition in the ioctlsendfib function in drivers/scsi/aacraid/commctrl.c in the Linux kernel through 4.7 allows local users to cause a denial of service out-of-bounds access or system crash by changing a certain size value, aka a "double fetch" vulnerability...

5.1CVSS6.8AI score0.00339EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2015/01/08 12:0 a.m.•71 views

CVE-2014-8275

OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not enforce certain constraints on certificate data, which allows remote attackers to defeat a fingerprint-based certificate-blacklist protection mechanism by including crafted data within a certificate's unsigned portion,...

5CVSS6.8AI score0.1653EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2024/05/28 12:0 a.m.•70 views

CVE-2024-4741

Issue summary: Calling the OpenSSL API function SSLfreebuffers may cause memory to be accessed that was previously freed in some situations Impact summary: A use after free can have a range of potential consequences such as the corruption of valid data, crashes or execution of arbitrary code...

7.5CVSS7.1AI score0.02945EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2024/04/15 8:15 p.m.•70 views

CVE-2024-31497

In PuTTY 0.68 through 0.80 before 0.81, biased ECDSA nonce generation allows an attacker to recover a user's NIST P-521 secret key via a quick attack in approximately 60 signatures. This is especially important in a scenario where an adversary is able to read messages signed by PuTTY or Pageant...

5.9CVSS7AI score0.05773EPSS
Exploits0References22
UbuntuCve
UbuntuCve
•added 2024/04/04 11:15 p.m.•70 views

CVE-2024-31210

WordPress is an open publishing platform for the Web. It's possible for a file of a type other than a zip file to be submitted as a new plugin by an administrative user on the Plugins - Add New - Upload Plugin screen in WordPress. If FTP credentials are requested for installation in order to move...

8.8CVSS7.1AI score0.00945EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2024/01/16 5:15 p.m.•70 views

CVE-2023-4969

A GPU kernel can read sensitive data from another GPU kernel even from another user or app through an optimized GPU memory region called local memory on various architectures...

6.5CVSS6.8AI score0.01175EPSS
Exploits1References7
UbuntuCve
UbuntuCve
•added 2023/11/03 9:15 p.m.•70 views

CVE-2023-47235

An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when a malformed BGP UPDATE message with an EOR is processed, because the presence of EOR does not lead to a treat-as-withdraw outcome...

7.5CVSS7.1AI score0.00685EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2023/09/13 12:0 a.m.•70 views

CVE-2023-38039

When curl retrieves an HTTP response, it stores the incoming headers so that they can be accessed later via the libcurl headers API. However, curl did not have a limit in how many or how large headers it would accept in a response, allowing a malicious server to stream an endless series of header...

7.5CVSS6.7AI score0.62246EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2023/08/01 11:15 p.m.•70 views

CVE-2023-3739

Insufficient validation of untrusted input in Chromad in Google Chrome on ChromeOS prior to 115.0.5790.131 allowed a remote attacker to execute arbitrary code via a crafted shell script. Chromium security severity: Low...

6.3CVSS6.7AI score0.00353EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2023/04/10 7:15 p.m.•70 views

CVE-2023-28205

A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report...

8.8CVSS7.4AI score0.27076EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/02/10 12:0 a.m.•70 views

CVE-2022-41862

In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions a server can cause a libpq client to over-read and report an error message containing uninitialized bytes...

3.7CVSS6.8AI score0.00616EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2022/11/04 7:15 p.m.•70 views

CVE-2022-43945

The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer overflow. NFSD tracks the number of pages held by each NFSD thread by combining the receive and send buffers of a remote procedure call RPC into a single array of pages. A client can force the send...

7.5CVSS7.2AI score0.21314EPSS
Exploits0References22
UbuntuCve
UbuntuCve
•added 2022/10/19 10:15 p.m.•70 views

CVE-2022-41741

NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngxhttpmp4module that might allow a local attacker to corrupt NGINX worker memory, resulting in...

7.8CVSS7.1AI score0.00756EPSS
Exploits2References5
UbuntuCve
UbuntuCve
•added 2022/09/30 12:0 a.m.•70 views

CVE-2022-41849

drivers/video/fbdev/smscufx.c in the Linux kernel through 5.19.12 has a race condition and resultant use-after-free if a physically proximate attacker removes a USB device while calling open, aka a race condition between ufxopsopen and ufxusbdisconnect...

4.2CVSS6.8AI score0.00323EPSS
Exploits0References27
UbuntuCve
UbuntuCve
•added 2022/06/30 1:15 p.m.•70 views

CVE-2022-1852

A NULL pointer dereference flaw was found in the Linux kernel’s KVM module, which can lead to a denial of service in the x86emulateinsn in arch/x86/kvm/emulate.c. This flaw occurs while executing an illegal instruction in guest in the Intel CPU...

5.5CVSS6.7AI score0.00302EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2022/05/26 12:15 p.m.•70 views

CVE-2021-42860

A stack buffer overflow exists in Mini-XML v3.2. When inputting an unformed XML string to the mxmlLoadString API, it will cause a stack-buffer-overflow in mxmlstringgetc:2611. NOTE: it is unclear whether this input is allowed by the API specification...

7.5CVSS7.3AI score0.0097EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2022/05/11 3:15 p.m.•70 views

CVE-2022-1623

LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tiflzw.c:624, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit b4e79bfa...

5.5CVSS6.8AI score0.0122EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2022/03/23 8:15 p.m.•70 views

CVE-2021-4149

A vulnerability was found in btrfsalloctreeb in fs/btrfs/extent-tree.c in the Linux kernel due to an improper lock operation in btrfs. In this flaw, a user with a local privilege may cause a denial of service DOS due to a deadlock problem...

5.5CVSS6.7AI score0.004EPSS
Exploits1References6
UbuntuCve
UbuntuCve
•added 2022/02/15 12:0 a.m.•70 views

CVE-2022-25236

xmlparse.c in Expat aka libexpat before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs...

9.8CVSS6.8AI score0.35867EPSS
Exploits0References13
UbuntuCve
UbuntuCve
•added 2022/01/04 10:0 a.m.•70 views

CVE-2021-45452

Storage.save in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1 allows directory traversal if crafted filenames are directly passed to it...

5.3CVSS6.8AI score0.02388EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/10/27 12:0 a.m.•70 views

CVE-2021-25219

In BIND 9.3.0 - 9.11.35, 9.12.0 - 9.16.21, and versions 9.9.3-S1 - 9.11.35-S1 and 9.16.8-S1 - 9.16.21-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.18 of the BIND 9.17 development branch, exploitation of broken authoritative servers using a flaw in response...

5.3CVSS6.4AI score0.08001EPSS
Exploits0References4
Total number of security vulnerabilities5000