Lucene search
+L
UbuntucveMost viewed

71772 matches found

UbuntuCve
UbuntuCve
•added 2021/10/18 12:0 a.m.•70 views

CVE-2021-20321

A race condition accessing file object in the Linux kernel OverlayFS subsystem was found in the way users do rename in specific way with OverlayFS. A local user could use this flaw to crash the system...

4.7CVSS6.7AI score0.00216EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2021/08/24 12:0 a.m.•70 views

CVE-2021-3711

In order to decrypt SM2 encrypted data an application is expected to call the API function EVPPKEYdecrypt. Typically an application will call this function twice. The first time, on entry, the "out" parameter can be NULL and, on exit, the "outlen" parameter is populated with the buffer size...

9.8CVSS7.1AI score0.87816EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2021/08/17 9:15 p.m.•70 views

CVE-2021-39247

Zint Barcode Generator before 2.10.0 has a one-byte buffer over-read, related to islastsingleascii in code1.c, and rsencodeuint in reedsol.c...

6.5CVSS6.7AI score0.00922EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2021/08/08 8:15 p.m.•70 views

CVE-2021-38208

net/nfc/llcpsock.c in the Linux kernel before 5.12.10 allows local unprivileged users to cause a denial of service NULL pointer dereference and BUG by making a getsockname call after a certain type of failure of a bind call...

5.5CVSS6.8AI score0.00493EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2021/04/08 11:15 p.m.•70 views

CVE-2021-3448

A flaw was found in dnsmasq in versions before 2.85. When configured to use a specific server for a given network interface, dnsmasq uses a fixed port while forwarding queries. An attacker on the network, able to find the outgoing port used by dnsmasq, only needs to guess the random transmission ...

4.3CVSS6.7AI score0.01988EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2021/01/19 12:0 a.m.•70 views

CVE-2020-25684

A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query, dnsmasq checks in the forward.c:replyquery if the reply destination address/port is used by the pending forwarded queries. However, it does not use the address/port to retrieve the exact forwarded query,...

4.3CVSS6.8AI score0.04041EPSS
Exploits2References4
UbuntuCve
UbuntuCve
•added 2020/12/16 2:15 p.m.•70 views

CVE-2020-29363

An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in a CKATTRIBUTE, the receiving entity may not...

7.5CVSS7.2AI score0.03515EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2019/02/20 4:29 p.m.•70 views

CVE-2019-8331

In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover data-template attribute...

6.1CVSS6.6AI score0.1686EPSS
Exploits2References3
UbuntuCve
UbuntuCve
•added 2018/04/06 1:29 p.m.•70 views

CVE-2018-1270

Spring Framework, versions 5.0 prior to 5.0.5 and versions 4.3 prior to 4.3.15 and older unsupported versions, allow applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the spring-messaging module. A malicious user or attacker can craft a message to...

9.8CVSS7.6AI score0.77245EPSS
Exploits5References3
UbuntuCve
UbuntuCve
•added 2018/02/28 6:29 a.m.•70 views

CVE-2018-7551

There is an invalid free in MiniPS::delete0 in minips.cpp that leads to a Segmentation fault in sam2p 0.49.4. A crafted input will lead to a denial of service or possibly unspecified other impact...

9.8CVSS7.2AI score0.0222EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2018/01/09 12:0 a.m.•70 views

CVE-2017-15129

A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function getnetnsbyid in net/core/netnamespace.c does not check for the net::count value after it has found a peer network in netnsids idr, which could lead to double free and memory...

4.9CVSS6.7AI score0.00357EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2017/06/19 12:0 a.m.•70 views

CVE-2017-3167

In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, use of the apgetbasicauthpw by third-party modules outside of the authentication phase may lead to authentication requirements being bypassed...

9.8CVSS7.1AI score0.20231EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2016/12/22 12:0 a.m.•70 views

CVE-2016-8743

Apache HTTP Server, in all releases prior to 2.2.32 and 2.4.25, was liberal in the whitespace accepted from requests and sent in response lines and headers. Accepting these different behaviors represented a security concern when httpd participates in any chain of proxies or interacts with back-en...

7.5CVSS6.8AI score0.13252EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2013/12/11 12:0 a.m.•70 views

CVE-2013-6420

The asn1timetotimet function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, and 5.5.x before 5.5.7 does not properly parse 1 notBefore and 2 notAfter timestamps in X.509 certificates, which allows remote attackers to execute arbitrary code or cause a denial of service memory...

7.5CVSS7.2AI score0.35635EPSS
Exploits8References2
UbuntuCve
UbuntuCve
•added 2012/08/28 12:55 a.m.•70 views

CVE-2012-4681

Multiple vulnerabilities in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 6 and earlier allow remote attackers to execute arbitrary code via a crafted applet that bypasses SecurityManager restrictions by 1 using com.sun.beans.finder.ClassFinder.findClass and leveraging an...

10CVSS7.5AI score0.98536EPSS
Exploits10References7
UbuntuCve
UbuntuCve
•added 2009/05/05 8:30 p.m.•70 views

CVE-2009-1527

Race condition in the ptraceattach function in kernel/ptrace.c in the Linux kernel before 2.6.30-rc4 allows local users to gain privileges via a PTRACEATTACH ptrace call during an exec system call that is launching a setuid application, related to locking an incorrect credexecmutex object...

6.9CVSS5.9AI score0.00492EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2007/12/28 12:46 a.m.•70 views

CVE-2007-6562

Multiple stack-based buffer overflows in the use of FDSET in TCPreen before 1.4.4 allow remote attackers to cause a denial of service via multiple concurrent connections, which result in overflows in the 1 SocketAddress::Connect function in libsolve/sockprot.cpp and 2 monitorbridge function in...

5CVSS6.2AI score0.02276EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2026/05/01 3:16 p.m.•69 views

CVE-2026-42476

Two heap-based out-of-bounds read vulnerabilities in the STL ASCII file parser in Open CASCADE Technology OCCT V800rc5 exist in RWStlReader::ReadAscii because buffers returned by StandardReadLineBuffer::ReadLine are not properly length-validated before strncasecmp or direct byte access...

7.1CVSS5.8AI score0.00106EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2024/02/07 9:15 p.m.•69 views

CVE-2023-6535

A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver, causing kernel panic and a denial of service...

7.5CVSS6.6AI score0.01549EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2023/11/03 8:15 a.m.•69 views

CVE-2023-1194

An out-of-bounds OOB memory read flaw was found in parseleasestate in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. When an attacker sends the CREATE command with a malformed payload to KSMBD, due to a missing check of NameOffset in the parseleasestate...

8.1CVSS6.8AI score0.01077EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2023/10/11 6:0 a.m.•69 views

CVE-2023-38546

This flaw allows an attacker to insert cookies at will into a running program using libcurl, if the specific series of conditions are met. libcurl performs transfers. In its API, an application creates "easy handles" that are the individual handles for single transfers. libcurl provides a functio...

3.7CVSS6.9AI score0.06208EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2023/08/22 7:16 p.m.•69 views

CVE-2020-22218

An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory...

7.5CVSS6.8AI score0.00914EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2023/06/08 12:0 a.m.•69 views

CVE-2023-29402

The go command may generate unexpected code at build time when using cgo. This may result in unexpected behavior when running a go program which uses cgo. This may occur when running an untrusted module which contains directories with newline characters in their names. Modules which are retrieved...

9.8CVSS6.8AI score0.01694EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2023/02/16 10:15 p.m.•69 views

CVE-2021-43529

Thunderbird versions prior to 91.3.0 are vulnerable to the heap overflow described in CVE-2021-43527 when processing S/MIME messages. Thunderbird versions 91.3.0 and later will not call the vulnerable code when processing S/MIME messages that contain certificates with DER-encoded DSA or RSA-PSS...

9.8CVSS7.2AI score0.00469EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2023/01/17 6:0 p.m.•69 views

CVE-2022-41903

Git is distributed revision control system. git log can display commits in an arbitrary format using its --format specifiers. This functionality is also exposed to git archive via the export-subst gitattribute. When processing the padding operators, there is a integer overflow in...

9.8CVSS7.5AI score0.44268EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2023/01/04 10:15 p.m.•69 views

CVE-2023-22466

Tokio is a runtime for writing applications with Rust. Starting with version 1.7.0 and prior to versions 1.18.4, 1.20.3, and 1.23.1, when configuring a Windows named pipe server, setting pipemode will reset rejectremoteclients to false. If the application has previously configured...

5.4CVSS6AI score0.00569EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2022/08/24 4:15 p.m.•69 views

CVE-2021-4028

A flaw in the Linux kernel's implementation of RDMA communications manager listener code allowed an attacker with local access to setup a socket to listen on a high port allowing for a list element to be used after free. Given the ability to execute code, a local attacker could leverage this...

7.8CVSS6.9AI score0.00296EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2022/07/05 12:0 a.m.•69 views

CVE-2022-34470

Session history navigations may have led to a use-after-free and potentially exploitable crash. This vulnerability affects Firefox 102, Firefox ESR 91.11, Thunderbird 102, and Thunderbird 91.11...

9.8CVSS7.2AI score0.01064EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2022/06/09 12:0 a.m.•69 views

CVE-2022-29404

In Apache HTTP Server 2.4.53 and earlier, a malicious request to a lua script that calls r:parsebody0 may cause a denial of service due to no default limit on possible input size...

7.5CVSS7.1AI score0.05678EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2022/05/12 8:15 a.m.•69 views

CVE-2022-29885

The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62 and 8.5.38 to 8.5.78 for the EncryptInterceptor incorrectly stated it enabled Tomcat clustering to run over an untrusted network. This was not correct. While the EncryptInterceptor does provide...

7.5CVSS7.1AI score0.73139EPSS
Exploits5References5
UbuntuCve
UbuntuCve
•added 2022/03/25 7:15 p.m.•69 views

CVE-2021-4157

An out of memory bounds write flaw 1 or 2 bytes of memory in the Linux kernel NFS subsystem was found in the way users use mirroring replication of files with NFS. A user, having access to the NFS mount, could potentially use this flaw to crash the system or escalate privileges on the system...

8CVSS6.7AI score0.01584EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2022/03/04 6:15 p.m.•69 views

CVE-2021-20303

A flaw found in function dataWindowForTile of IlmImf/ImfTiledMisc.cpp. An attacker who is able to submit a crafted file to be processed by OpenEXR could trigger an integer overflow, leading to an out-of-bounds write on the heap. The greatest impact of this flaw is to application availability, wit...

6.1CVSS6.8AI score0.00809EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2022/02/09 11:15 p.m.•69 views

CVE-2021-0173

Improper Validation of Consistency within input in firmware for some IntelR PROSet/Wireless Wi-Fi in multiple operating systems and some KillerTM Wi-Fi in Windows 10 and 11 may allow a unauthenticated user to potentially enable denial of service via adjacent access...

6.5CVSS6.3AI score0.00515EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/10/04 12:0 a.m.•69 views

CVE-2021-41091

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where the data directory typically /var/lib/docker contained subdirectories with insufficiently restricted permissions, allowing otherwise unprivileged Linux users to traver...

6.3CVSS6.6AI score0.02671EPSS
Exploits3References2
UbuntuCve
UbuntuCve
•added 2021/07/22 6:15 p.m.•69 views

CVE-2021-36222

ecverify in kdc/kdcpreauthec.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.18.4 and 1.19.x before 1.19.2 allows remote attackers to cause a NULL pointer dereference and daemon crash. This occurs because a return value is not properly managed in a certain situation...

7.5CVSS6.8AI score0.10276EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/01/08 7:15 p.m.•69 views

CVE-2020-16040

Insufficient data validation in V8 in Google Chrome prior to 87.0.4280.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

6.5CVSS7AI score0.99595EPSS
Exploits14References2
UbuntuCve
UbuntuCve
•added 2020/04/01 8:15 p.m.•69 views

CVE-2020-1934

In Apache HTTP Server 2.4.0 to 2.4.41, modproxyftp may use uninitialized memory when proxying to a malicious FTP server...

5.3CVSS6.8AI score0.51951EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2019/09/23 3:15 p.m.•70 views

CVE-2019-10087

On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the Page Revision History, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about...

6.1CVSS6.3AI score0.02913EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2019/05/03 12:0 a.m.•69 views

CVE-2019-6470

There had existed in one of the ISC BIND libraries a bug in a function that was used by dhcpd when operating in DHCPv6 mode. There was also a bug in dhcpd relating to the use of this function per its documentation, but the bug in the library function prevented this from causing any harm. All...

7.5CVSS6.6AI score0.08813EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2019/05/01 9:29 p.m.•69 views

CVE-2019-0227

A Server Side Request Forgery SSRF vulnerability affected the Apache Axis 1.4 distribution that was last released in 2006. Security and bug commits commits continue in the projects Axis 1.x Subversion repository, legacy users are encouraged to build from source. The successor to Axis 1.x is Axis2...

7.5CVSS6.8AI score0.86503EPSS
Exploits7References2
UbuntuCve
UbuntuCve
•added 2018/04/29 12:0 a.m.•69 views

CVE-2018-10548

An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. ext/ldap/ldap.c allows remote LDAP servers to cause a denial of service NULL pointer dereference and application crash because of mishandling of the ldapgetdn return value...

7.5CVSS6.9AI score0.08677EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2017/01/26 12:0 a.m.•69 views

CVE-2017-3732

There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed...

5.9CVSS6.8AI score0.15934EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2016/11/02 12:0 a.m.•69 views

CVE-2016-8706

An integer overflow in processbinsaslauth function in Memcached, which is responsible for authentication commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution...

8.1CVSS7.6AI score0.45703EPSS
Exploits2References5
UbuntuCve
UbuntuCve
•added 2016/03/01 1:0 p.m.•69 views

CVE-2016-0800

The SSLv2 protocol, as used in OpenSSL before 1.0.1s and 1.0.2 before 1.0.2g and other products, requires a server to send a ServerVerify message before establishing that a client possesses certain plaintext RSA data, which makes it easier for remote attackers to decrypt TLS ciphertext data by...

5.9CVSS6.9AI score0.82112EPSS
Exploits2References3
UbuntuCve
UbuntuCve
•added 2012/06/15 12:0 a.m.•69 views

CVE-2011-3193

Heap-based buffer overflow in the LookupMarkMarkPos function in the HarfBuzz module harfbuzz-gpos.c, as used by Qt before 4.7.4 and Pango, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted font file...

9.3CVSS6.3AI score0.07543EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2009/06/15 7:30 p.m.•69 views

CVE-2009-2065

Mozilla Firefox 3.0.10, and possibly other versions, detects http content in https web pages only when the top-level frame uses https, which allows man-in-the-middle attackers to execute arbitrary web script, in an https site's context, by modifying an http page to include an https iframe that...

6.8CVSS6.1AI score0.00851EPSS
Exploits1References1
UbuntuCve
UbuntuCve
•added 2009/01/05 8:30 p.m.•69 views

CVE-2004-2761

The MD5 Message-Digest Algorithm is not collision resistant, which makes it easier for context-dependent attackers to conduct spoofing attacks, as demonstrated by attacks on the use of MD5 in the signature algorithm of an X.509 certificate...

9.8CVSS6.6AI score0.09854EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2007/09/18 7:17 p.m.•69 views

CVE-2007-4944

The canvas.createPattern function in Opera 9.x before 9.22 for Linux, FreeBSD, and Solaris does not clear memory before using it to process a new pattern, which allows remote attackers to obtain sensitive information memory contents via JavaScript...

5CVSS6AI score0.02139EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2007/09/12 1:17 a.m.•69 views

CVE-2007-4752

ssh in OpenSSH before 4.7 does not properly handle when an untrusted cookie cannot be created and uses a trusted X11 cookie instead, which allows attackers to violate intended policy and gain privileges by causing an X client to be treated as trusted...

7.5CVSS7.1AI score0.02374EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2025/03/25 9:15 p.m.•68 views

CVE-2025-27836

An issue was discovered in Artifex Ghostscript before 10.05.0. The BJ10V device has a Print buffer overflow in contrib/japanese/gdev10v.c...

9.8CVSS7AI score0.00579EPSS
Exploits0References3
Total number of security vulnerabilities5000