Lucene search
K
UbuntucveMost viewed

68528 matches found

UbuntuCve
UbuntuCve
added 2023/11/30 12:0 a.m.388 views

CVE-2023-39804

In GNU tar before 1.35, mishandled extension attributes in a PAX archive can lead to an application crash in xheader.c...

6.2CVSS6.8AI score0.00283EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2022/09/28 12:0 a.m.385 views

CVE-2022-3287

When creating an OPERATOR user account on the BMC, the redfish plugin saved the auto-generated password to /etc/fwupd/redfish.conf without proper restriction, allowing any user on the system to read the same configuration file...

6.5CVSS6.5AI score0.00619EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2022/04/04 8:15 p.m.385 views

CVE-2022-27650

A flaw was found in crun where containers were incorrectly started with non-empty default permissions. A vulnerability was found in Moby Docker Engine where containers were started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to...

7.5CVSS7AI score0.01133EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2021/01/12 9:15 a.m.385 views

CVE-2021-23240

selinuxeditcopytfiles in sudoedit in Sudo before 1.9.5 allows a local unprivileged user to gain file ownership and escalate privileges by replacing a temporary file with a symlink to an arbitrary file target. This affects SELinux RBAC support in permissive mode. Machines without SELinux are not...

7.8CVSS7.2AI score0.01066EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2023/06/23 12:0 a.m.384 views

CVE-2023-36191

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

6.6AI score
Exploits0References1
UbuntuCve
UbuntuCve
added 2022/05/19 8:15 p.m.384 views

CVE-2022-28948

An issue in the Unmarshal function in Go-Yaml v3 causes the program to crash when attempting to deserialize invalid input...

7.5CVSS6.8AI score0.035EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2020/12/11 11:15 a.m.384 views

CVE-2020-7788

This affects the package ini before 1.3.6. If an attacker submits a malicious INI file to an application that parses it with ini.parse, they will pollute the prototype on the application. This can be exploited further depending on the context...

9.8CVSS6.8AI score0.03612EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2017/02/13 6:59 p.m.383 views

CVE-2016-2568

pkexec, when used with --user nonpriv, allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal's input buffer...

7.8CVSS7.1AI score0.00351EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/02/04 4:15 p.m.381 views

CVE-2024-25062

An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation and XInclude expansion enabled, processing crafted XML documents can lead to an xmlValidatePopElement use-after-free...

7.5CVSS6.8AI score0.01364EPSS
Exploits3References3
UbuntuCve
UbuntuCve
added 2023/06/08 12:0 a.m.381 views

CVE-2023-29404

The go command may execute arbitrary code at build time when using cgo. This may occur when running "go get" on a malicious module, or when running any other command which builds untrusted code. This is can by triggered by linker flags, specified via a "cgo LDFLAGS" directive. The arguments for a...

9.8CVSS7AI score0.01837EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2021/08/31 5:15 p.m.380 views

CVE-2021-37713

The npm package "tar" aka node-tar before versions 4.4.18, 5.0.10, and 6.1.9 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be outside of the extraction target directory is not extracted. This is, ...

8.6CVSS7.1AI score0.01263EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/04/13 3:15 p.m.379 views

CVE-2024-32487

less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation also requires the...

8.6CVSS7.1AI score0.00628EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/05/14 3:39 p.m.378 views

CVE-2024-34459

An issue was discovered in xmllint from libxml2 before 2.11.8 and 2.12.x before 2.12.7. Formatting error messages with xmllint --htmlout can result in a buffer over-read in xmlHTMLPrintFileContext in xmllint.c...

7.5CVSS7AI score0.02298EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2021/03/12 10:15 p.m.376 views

CVE-2021-27290

ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service. Malicious SRIs could take an extremely long time to process, leading to denial of service. This issue only affects consumers using the strict option...

7.5CVSS6.8AI score0.0472EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2023/06/22 5:15 p.m.375 views

CVE-2023-3326

pamkrb5 authenticates a user by essentially running kinit with the password, getting a ticket-granting ticket tgt from the Kerberos KDC Key Distribution Center over the network, as a way to verify the password. However, if a keytab is not provisioned on the system, pamkrb5 has no way to validate...

9.8CVSS7.2AI score0.01098EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2022/08/26 4:15 p.m.375 views

CVE-2021-35939

It was found that the fix for CVE-2017-7500 and CVE-2017-7501 was incomplete: the check was only implemented for the parent directory of the file to be created. A local unprivileged user who owns another ancestor directory could potentially use this flaw to gain root privileges. The highest threa...

6.7CVSS6.7AI score0.00481EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2021/11/13 6:15 p.m.375 views

CVE-2021-43616

The npm ci command in npm 7.x and 8.x through 8.1.3 proceeds with an installation even if dependency information in package-lock.json differs from package.json. This behavior is inconsistent with the documentation, and makes it easier for attackers to install malware that was supposed to have bee...

9.8CVSS6.9AI score0.02534EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2020/06/29 6:15 p.m.375 views

CVE-2020-14145

The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts where no host key for the server has been cached by the client. NOTE: some reports...

5.9CVSS6.7AI score0.02057EPSS
Exploits2References5
UbuntuCve
UbuntuCve
added 2024/06/20 4:15 p.m.374 views

CVE-2024-37676

An issue in htop-dev htop v.2.20 allows a local attacker to cause an out-of-bounds access in the HeaderpopulateFromSettings function...

8.4CVSS5.9AI score0.00201EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2024/05/14 7:15 p.m.374 views

CVE-2024-32002

Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, repositories with submodules can be crafted in a way that exploits a bug in Git whereby it can be fooled into writing files not into the submodule's worktree but into a .git/ directory...

9CVSS6.7AI score0.25334EPSS
Exploits32References8
UbuntuCve
UbuntuCve
added 2024/02/05 12:0 a.m.374 views

CVE-2024-22667

Vim before 9.0.2142 has a stack-based buffer overflow because didsetlangmap in map.c calls sprintf to write to the error buffer that is passed down to the option callback functions...

7.8CVSS7.4AI score0.00563EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2022/06/28 5:15 p.m.374 views

CVE-2022-0987

A flaw was found in PackageKit in the way some of the methods exposed by the Transaction interface examines files. This issue allows a local user to measure the time the methods take to execute and know whether a file owned by root or other users exists...

3.3CVSS5.9AI score0.00263EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2021/05/24 4:15 p.m.374 views

CVE-2021-33502

The normalize-url package before 4.5.1, 5.x before 5.3.1, and 6.x before 6.0.1 for Node.js has a ReDoS regular expression denial of service issue because it has exponential performance for data: URLs...

7.5CVSS7.1AI score0.01705EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2022/04/13 9:15 p.m.373 views

CVE-2022-24828

Composer is a dependency manager for the PHP programming language. Integrators using Composer code to call VcsDriver::getFileContent can have a code injection vulnerability if the user can control the $file or $identifier argument. This leads to a vulnerability on packagist.org for example where...

8.8CVSS7.3AI score0.01857EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2022/01/14 8:15 p.m.373 views

CVE-2021-46195

GCC v12.0 was discovered to contain an uncontrolled recursion via the component libiberty/rust-demangle.c. This vulnerability allows attackers to cause a Denial of Service DoS by consuming excessive CPU and memory resources...

5.5CVSS6.4AI score0.00779EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2023/12/23 1:15 p.m.372 views

CVE-2023-7008

A vulnerability was found in systemd-resolved. This issue may allow systemd-resolved to accept records of DNSSEC-signed domains even when they have no signature, allowing man-in-the-middles or the upstream DNS resolver to manipulate records...

5.9CVSS6.7AI score0.00849EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2022/11/19 12:15 a.m.372 views

CVE-2022-4055

When xdg-mail is configured to use thunderbird for mailto URLs, improper parsing of the URL can lead to additional headers being passed to thunderbird that should not be included per RFC 2368. An attacker can use this method to create a mailto URL that looks safe to users, but will actually attac...

7.4CVSS7.1AI score0.00652EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2024/03/27 12:0 a.m.371 views

CVE-2024-28085

wall in util-linux through 2.40, often installed with setgid tty permissions, allows escape sequences to be sent to other users' terminals through argv. Specifically, escape sequences received from stdin are blocked, but escape sequences received from argv are not blocked. There may be plausible...

3.3CVSS6.9AI score0.02242EPSS
Exploits3References5
UbuntuCve
UbuntuCve
added 2023/08/22 7:16 p.m.371 views

CVE-2020-22916

An issue discovered in XZ 5.2.5 allows attackers to cause a denial of service via decompression of a crafted file. NOTE: the vendor disputes the claims of "endless output" and "denial of service" because decompression of the 17,486 bytes always results in 114,881,179 bytes, which is often a...

5.5CVSS6.1AI score0.0024EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2021/11/22 4:15 p.m.370 views

CVE-2021-3935

When PgBouncer is configured to use "cert" authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of TLS certificate verification and encryption. This flaw affects PgBouncer versions prior to 1.16.1...

8.1CVSS7.3AI score0.01029EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2019/11/25 11:15 a.m.370 views

CVE-2019-10214

The containers/image library used by the container tools Podman, Buildah, and Skopeo in Red Hat Enterprise Linux version 8 and CRI-O in OpenShift Container Platform, does not enforce TLS connections to the container registry authorization service. An attacker could use this vulnerability to launc...

6.4CVSS6.7AI score0.01604EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2022/08/01 3:15 p.m.369 views

CVE-2022-2596

Inefficient Regular Expression Complexity in GitHub repository node-fetch/node-fetch prior to 3.2.10...

5.9CVSS6.5AI score0.01126EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2021/11/29 4:15 p.m.369 views

CVE-2021-3802

A vulnerability found in udisks2. This flaw allows an attacker to input a specially crafted image file/USB leading to kernel panic. The highest threat from this vulnerability is to system availability...

6.3CVSS6.2AI score0.00808EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2021/06/02 3:15 p.m.369 views

CVE-2021-3530

A flaw was discovered in GNU libiberty within demanglepath in rust-demangle.c, as distributed in GNU Binutils version 2.36. A crafted symbol can cause stack memory to be exhausted leading to a crash...

7.5CVSS7AI score0.024EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2020/04/22 8:15 p.m.369 views

CVE-2020-1983

A use after free vulnerability in ipreass in ipinput.c of libslirp 4.2.0 and prior releases allows crafted packets to cause a denial of service...

7.5CVSS6.8AI score0.02293EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2019/01/02 2:29 p.m.369 views

CVE-2018-20657

The demangletemplate function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, has a memory leak via a crafted string, leading to a denial of service memory consumption, as demonstrated by cxxfilt, a related issue to CVE-2018-12698...

7.5CVSS6.8AI score0.04037EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2023/08/22 7:16 p.m.368 views

CVE-2020-20145

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-14834. Reason: This candidate is a reservation duplicate of CVE-2019-14834. Notes: All CVE users should reference CVE-2019-14834 instead of this candidate. All references and descriptions in this candidate have been removed t...

5.8AI score0.02664EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2023/10/04 3:15 p.m.367 views

CVE-2023-4237

A flaw was found in the Ansible Automation Platform. When creating a new keypair, the ec2key module prints out the private key directly to the standard output. This flaw allows an attacker to fetch those keys from the log files, compromising the system's confidentiality, integrity, and availabili...

7.8CVSS7AI score0.00239EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2022/05/17 6:0 p.m.367 views

CVE-2022-28653

Users can consume unlimited disk space in /var/crash...

7.5CVSS5.8AI score0.00386EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/01/12 4:15 a.m.367 views

CVE-2020-27637

The R programming language’s default package manager CRAN is affected by a path traversal vulnerability that can lead to server compromise. This vulnerability affects packages installed via the R CMD install cli command or the install.packages function from the interpreter. Update to version 4.0....

10CVSS7.2AI score0.0224EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2020/06/15 3:15 p.m.367 views

CVE-2017-18869

A TOCTOU issue in the chownr package before 1.1.0 for Node.js 10.10 could allow a local attacker to trick it into descending into unintended directories via symlink attacks...

2.5CVSS6.8AI score0.00334EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2021/02/16 8:15 p.m.366 views

CVE-2021-20066

JSDom improperly allows the loading of local resources, which allows for local files to be manipulated by a malicious web page when script execution is enabled...

6.8CVSS6.4AI score0.0139EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2024/01/31 10:15 p.m.365 views

CVE-2024-23652

BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. A malicious BuildKit frontend or Dockerfile using RUN --mount could trick the feature that removes empty files created for the mountpoints into removing a file outside the...

10CVSS6.9AI score0.02038EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2023/02/23 8:15 p.m.365 views

CVE-2022-3219

GnuPG can be made to spin on a relatively small input by for example crafting a public key with thousands of signatures attached, compressed down to just a few KB...

3.3CVSS6.8AI score0.00293EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2019/05/22 7:29 p.m.365 views

CVE-2018-12886

stackprotectprologue in cfgexpand.c and stackprotectepilogue in function.c in GNU Compiler Collection GCC 4.1 through 8 under certain circumstances generate instruction sequences when targeting ARM targets that spill the address of the stack protector guard, which allows an attacker to bypass the...

8.1CVSS7.2AI score0.02171EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2018/01/09 9:29 p.m.365 views

CVE-2017-15131

It was found that system umask policy is not being honored when creating XDG user directories, since Xsession sources xdg-user-dirs.sh before setting umask policy. This only affects xdg-user-dirs before 0.15.5 as shipped with Red Hat Enterprise Linux...

7.8CVSS6.7AI score0.00321EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/08/14 3:15 p.m.364 views

CVE-2024-7347

NGINX Open Source and NGINX Plus have a vulnerability in the ngxhttpmp4module, which might allow an attacker to over-read NGINX worker memory resulting in its termination, using a specially crafted mp4 file. The issue only affects NGINX if it is built with the ngxhttpmp4module and the mp4 directi...

5.7CVSS6.8AI score0.0032EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2024/01/23 12:0 a.m.364 views

CVE-2022-4964

Ubuntu's pipewire-pulse in snap grants microphone access even when the snap interface for audio-record is not set...

5.5CVSS6.1AI score0.00279EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2023/08/22 7:16 p.m.364 views

CVE-2022-47695

An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service or other unspecified impacts via function bfdmachogetsyntheticsymtab in match-o.c...

7.8CVSS6.3AI score0.00461EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2023/04/08 5:15 a.m.364 views

CVE-2023-24626

socket.c in GNU Screen through 4.9.0, when installed setuid or setgid the default on platforms such as Arch Linux and FreeBSD, allows local users to send a privileged SIGHUP signal to any PID, causing a denial of service or disruption of the target process...

6.5CVSS6.6AI score0.0054EPSS
Exploits3References5
Total number of security vulnerabilities5000