Lucene search
+L
UbuntucveMost viewed

71772 matches found

UbuntuCve
UbuntuCve
•added 2022/03/04 6:15 p.m.•67 views

CVE-2021-20300

A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a crafted file that is processed by OpenEXR, to trigger an integer overflow. The highest threat from this vulnerability is to system availability...

7.1CVSS6.7AI score0.00876EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2022/02/16 7:15 p.m.•67 views

CVE-2022-25255

In Qt 5.9.x through 5.15.x before 5.15.9 and 6.x before 6.2.4 on Linux and UNIX, QProcess could execute a binary from the current working directory when not found in the PATH...

7.8CVSS7.1AI score0.00334EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2021/11/15 9:15 p.m.•67 views

CVE-2021-42386

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the nvalloc function...

7.2CVSS7.3AI score0.02542EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/09/16 3:15 p.m.•67 views

CVE-2021-34798

Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier...

7.5CVSS7.1AI score0.64509EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2021/09/08 2:15 p.m.•67 views

CVE-2021-30761

A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 12.5.4. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited...

8.8CVSS7.1AI score0.10591EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/06/21 12:0 a.m.•67 views

CVE-2021-3609

.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsystem to corrupt memory, crash the system or escalate privileges. This race condition in net/can/bcm.c in the Linux kernel allows for local privilege escalation to root...

7CVSS6.7AI score0.00431EPSS
Exploits1References15
UbuntuCve
UbuntuCve
•added 2021/04/28 12:0 a.m.•67 views

CVE-2021-25216

In BIND 9.5.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.11.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.1 of the BIND 9.17 development branch, BIND servers are vulnerable if they are running an affected version an...

9.8CVSS7.3AI score0.82367EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2019/11/05 11:15 p.m.•67 views

CVE-2011-1459

The WebKit::WebPluginContainerImpl::handleEvent function in Google Chrome before Blink M11 allows an attacker to cause a denial of service crash via the htmlpluginelement.cpp plugin...

6.5CVSS6.6AI score0.00654EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2019/05/31 12:29 p.m.•67 views

CVE-2019-12499

Firejail before 0.9.60 allows truncation resizing to length 0 of the firejail binary on the host by running exploit code inside a firejail sandbox and having the sandbox terminated. To succeed, certain conditions need to be fulfilled: The jail with the exploit code inside needs to be started as...

9.3CVSS7.2AI score0.02033EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2017/09/19 12:0 a.m.•67 views

CVE-2017-12616

When using a VirtualDirContext with Apache Tomcat 7.0.0 to 7.0.80 it was possible to bypass security constraints and/or view the source code of JSPs for resources served by the VirtualDirContext using a specially crafted request...

7.5CVSS6.9AI score0.708EPSS
Exploits4References5
UbuntuCve
UbuntuCve
•added 2017/09/18 12:0 a.m.•67 views

CVE-2017-9798

Apache httpd allows remote attackers to read secret data from process memory if the Limit directive can be set in a user's .htaccess file, or if httpd.conf has certain misconfigurations, aka Optionsbleed. This affects the Apache HTTP Server through 2.2.34 and 2.4.x through 2.4.27. The attacker...

7.5CVSS6.8AI score0.94999EPSS
Exploits9References5
UbuntuCve
UbuntuCve
•added 2017/03/01 3:59 p.m.•67 views

CVE-2017-5852

The PoDoFo::PdfPage::GetInheritedKeyFromObject function in base/PdfVariant.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service infinite loop via a crafted file...

5.5CVSS6.9AI score0.01389EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2015/09/09 12:0 a.m.•67 views

CVE-2015-6838

The xslextfunctionphp function in ext/xsl/xsltprocessor.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13, when libxml2 before 2.9.2 is used, does not consider the possibility of a NULL valuePop return value before proceeding with a free operation after the principal argument...

7.5CVSS7.2AI score0.07276EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2015/03/30 12:0 a.m.•67 views

CVE-2015-2787

Use-after-free vulnerability in the processnesteddata function in ext/standard/varunserializer.re in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 allows remote attackers to execute arbitrary code via a crafted unserialize call that leverages use of the unset function within an...

7.5CVSS7.1AI score0.12219EPSS
Exploits5References4
UbuntuCve
UbuntuCve
•added 2013/02/08 12:0 a.m.•67 views

CVE-2013-0169

The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct...

2.6CVSS6.8AI score0.35584EPSS
Exploits1References7
UbuntuCve
UbuntuCve
•added 2012/08/22 12:0 a.m.•67 views

CVE-2012-2687

Multiple cross-site scripting XSS vulnerabilities in the makevariantlist function in modnegotiation.c in the modnegotiation module in the Apache HTTP Server 2.4.x before 2.4.3, when the MultiViews option is enabled, allow remote attackers to inject arbitrary web script or HTML via a crafted...

2.6CVSS7.2AI score0.22515EPSS
Exploits2References2
UbuntuCve
UbuntuCve
•added 2012/07/20 10:40 a.m.•67 views

CVE-2012-3365

The SQLite functionality in PHP before 5.3.15 allows remote attackers to bypass the openbasedir protection mechanism via unspecified vectors...

5CVSS7.3AI score0.02978EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2011/08/25 6:55 p.m.•67 views

CVE-2011-3268

Buffer overflow in the crypt function in PHP before 5.3.7 allows context-dependent attackers to have an unspecified impact via a long salt argument, a different vulnerability than CVE-2011-2483...

10CVSS6AI score0.05719EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2006/03/30 11:2 a.m.•67 views

CVE-2006-1542

Stack-based buffer overflow in Python 2.4.2 and earlier, running on Linux 2.6.12.5 under gcc 4.0.3 with libc 2.3.5, allows local users to cause a "stack overflow," and possibly gain privileges, by running a script from a current working directory that has a long name, related to the realpath...

3.7CVSS5.8AI score0.00947EPSS
Exploits1References1
UbuntuCve
UbuntuCve
•added 2024/05/10 12:0 a.m.•66 views

CVE-2024-33655

The DNS protocol in RFC 1035 and updates allows remote attackers to cause a denial of service resource consumption by arranging for DNS queries to be accumulated for seconds, such that responses are later sent in a pulsing burst which can be considered traffic amplification in some cases, aka the...

7.5CVSS7AI score0.01743EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2024/02/23 12:0 a.m.•66 views

CVE-2024-26598

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache There is a potential UAF scenario in the case of an LPI translation cache hit racing with an operation that invalidates the cache, such as a DISCARD ITS command...

7.8CVSS6.4AI score0.0024EPSS
Exploits0References21
UbuntuCve
UbuntuCve
•added 2024/01/26 12:0 a.m.•66 views

CVE-2024-0402

An issue has been discovered in GitLab CE/EE affecting all versions from 16.0 prior to 16.6.6, 16.7 prior to 16.7.4, and 16.8 prior to 16.8.1 which allows an authenticated user to write files to arbitrary locations on the GitLab server while creating a workspace...

9.9CVSS7.3AI score0.03302EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/12/24 9:15 p.m.•66 views

CVE-2023-51714

An issue was discovered in the HTTP2 implementation in Qt before 5.15.17, 6.x before 6.2.11, 6.3.x through 6.5.x before 6.5.4, and 6.6.x before 6.6.2. network/access/http2/hpacktable.cpp has an incorrect HPack integer overflow check...

9.8CVSS7.1AI score0.00986EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/08/14 12:0 a.m.•66 views

CVE-2023-40303

GNU inetutils before 2.5 may allow privilege escalation because of unchecked return values of setid family functions in ftpd, rcp, rlogin, rsh, rshd, and uucpd. This is, for example, relevant if the setuid system call fails when a process is trying to drop privileges before letting an ordinary us...

7.8CVSS7.1AI score0.0039EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2023/06/06 12:0 a.m.•66 views

CVE-2023-32629

Local privilege escalation vulnerability in Ubuntu Kernels overlayfs ovlcopyupmetainodedata skip permission checks when calling ovldosetxattr on Ubuntu kernels...

7.8CVSS7AI score0.08894EPSS
Exploits12References15
UbuntuCve
UbuntuCve
•added 2023/04/06 4:15 p.m.•66 views

CVE-2023-24538

Templates do not properly consider backticks as Javascript string delimiters, and do not escape them as expected. Backticks are used, since ES6, for JS template literals. If a template contains a Go template action within a Javascript template literal, the contents of the action can be used to...

9.8CVSS6.9AI score0.02281EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2023/04/05 8:15 p.m.•66 views

CVE-2023-0842

xml2js version 0.4.23 allows an external attacker to edit or add new properties to an object. This is possible because the application does not properly validate incoming JSON keys, thus allowing the proto property to be edited...

5.3CVSS6.8AI score0.01404EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2023/03/16 12:15 a.m.•66 views

CVE-2023-28466

dotlsgetsockopt in net/tls/tlsmain.c in the Linux kernel through 6.2.6 lacks a locksock call, leading to a race condition with a resultant use-after-free or NULL pointer dereference...

7CVSS6.8AI score0.00273EPSS
Exploits0References16
UbuntuCve
UbuntuCve
•added 2023/01/10 10:15 p.m.•66 views

CVE-2022-4337

An out-of-bounds read in Organization Specific TLV was found in various versions of OpenvSwitch...

9.8CVSS7.2AI score0.01324EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/01/05 8:15 a.m.•66 views

CVE-2019-25097

A vulnerability was found in soerennb eXtplorer up to 2.1.12 and classified as critical. Affected by this issue is some unknown functionality of the component Directory Content Handler. The manipulation leads to path traversal. Upgrading to version 2.1.13 is able to address this issue. The name o...

9.8CVSS6.1AI score0.01024EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2022/12/23 4:15 p.m.•66 views

CVE-2022-47940

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.18 before 5.18.18. fs/ksmbd/smb2pdu.c lacks length validation in the non-padding case in smb2write...

8.1CVSS6.8AI score0.01393EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2022/12/19 9:15 a.m.•66 views

CVE-2022-4427

Improper Input Validation vulnerability in OTRS AG OTRS, OTRS AG OTRS Community Edition allows SQL Injection via TicketSearch Webservice This issue affects OTRS: from 7.0.1 before 7.0.40 Patch 1, from 8.0.1 before 8.0.28 Patch 1; OTRS Community Edition: from 6.0.1 through 6.0.34...

9.8CVSS6.4AI score0.00715EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2022/10/19 10:15 p.m.•66 views

CVE-2022-41742

NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngxhttpmp4module that might allow a local attacker to cause a worker process crash, or might...

7.1CVSS7.1AI score0.01069EPSS
Exploits2References5
UbuntuCve
UbuntuCve
•added 2022/10/17 4:15 p.m.•66 views

CVE-2022-3283

A potential DOS vulnerability was discovered in GitLab CE/EE affecting all versions before before 15.2.5, all versions starting from 15.3 before 15.3.4, all versions starting from 15.4 before 15.4.1 While cloning an issue with special crafted content added to the description could have been used ...

7.5CVSS7.1AI score0.01349EPSS
Exploits1References1
UbuntuCve
UbuntuCve
•added 2022/10/12 9:15 p.m.•66 views

CVE-2021-36369

An issue was discovered in Dropbear through 2020.81. Due to a non-RFC-compliant check of the available authentication methods in the client-side SSH code, it is possible for an SSH server to change the login process in its favor. This attack can bypass additional security measures such as FIDO2...

7.5CVSS7.1AI score0.01348EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2022/09/06 7:15 p.m.•66 views

CVE-2022-36032

ReactPHP HTTP is a streaming HTTP client and server implementation for ReactPHP. In ReactPHP's HTTP server component versions starting with 0.7.0 and prior to 1.7.0, when ReactPHP is processing incoming HTTP cookie values, the cookie names are url-decoded. This may lead to cookies with prefixes...

5.3CVSS6AI score0.00804EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2022/05/10 8:15 p.m.•66 views

CVE-2022-20011

In getArray of NotificationManagerService.java , there is a possible leak of one user notifications to another due to missing check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

5.5CVSS6.3AI score0.00128EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2022/03/09 12:0 a.m.•66 views

CVE-2022-26384

If an attacker could control the contents of an iframe sandboxed with allow-popups but not allow-scripts, they were able to craft a link that, when clicked, would lead to JavaScript execution in violation of the sandbox. This vulnerability affects Firefox 98, Firefox ESR 91.7, and Thunderbird 91....

9.6CVSS6.9AI score0.00931EPSS
Exploits1References6
UbuntuCve
UbuntuCve
•added 2022/03/04 6:15 p.m.•66 views

CVE-2021-3575

A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420torgb when decompressing a crafted .j2k file. An attacker could use this to execute arbitrary code with the permissions of the application compiled against openjpeg...

7.8CVSS7.2AI score0.01536EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2022/02/16 9:15 p.m.•66 views

CVE-2021-43299

Stack overflow in PJSUA API when calling pjsuaplayercreate. An attacker-controlled 'filename' argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation...

9.8CVSS7.5AI score0.02514EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2021/12/19 12:0 a.m.•66 views

CVE-2021-45105

Apache Log4j2 versions 2.0-alpha1 through 2.16.0 excluding 2.12.3 and 2.3.1 did not protect from uncontrolled recursion from self-referential lookups. This allows an attacker with control over Thread Context Map data to cause a denial of service when a crafted string is interpreted. This issue wa...

5.9CVSS7AI score0.99999EPSS
Exploits21References5
UbuntuCve
UbuntuCve
•added 2021/11/29 7:15 a.m.•66 views

CVE-2021-21707

In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below 8.0.13, certain XML parsing functions, like simplexmlloadfile, URL-decode the filename passed to them. If that filename contains URL-encoded NUL character, this may cause the function to interpret this as the end of the...

5.3CVSS6.8AI score0.25951EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2021/11/18 3:15 p.m.•66 views

CVE-2021-27023

A flaw was discovered in Puppet Agent and Puppet Server that may result in a leak of HTTP credentials when following HTTP redirects to a different host. This is similar to CVE-2018-1000007...

9.8CVSS7.2AI score0.01328EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2021/10/26 12:0 a.m.•66 views

CVE-2021-3760

A flaw was found in the Linux kernel. A use-after-free vulnerability in the NFC stack can lead to a threat to confidentiality, integrity, and system availability...

7.8CVSS6.7AI score0.00354EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2021/10/21 12:0 a.m.•66 views

CVE-2021-42097

GNU Mailman before 2.1.35 may allow remote Privilege Escalation. A csrftoken value is not specific to a single user account. An attacker can obtain a value within the context of an unprivileged user account, and then use that value in a CSRF attack against an admin e.g., for account takeover...

8.5CVSS7AI score0.01289EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2021/09/02 12:0 a.m.•66 views

CVE-2021-3759

A memory overflow vulnerability was found in the Linux kernel’s ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. The highest threat from th...

5.5CVSS6.7AI score0.00345EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2021/08/02 4:15 a.m.•66 views

CVE-2021-35477

In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because a certain preempting store operation does not necessarily occur before a store operation that has an attacker-controlled...

5.5CVSS6.7AI score0.0046EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2021/06/15 10:15 p.m.•66 views

CVE-2021-30551

Type confusion in V8 in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.3AI score0.64701EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2021/04/13 12:0 a.m.•66 views

CVE-2021-29425

In Apache Commons IO before 2.7, When invoking the method FileNameUtils.normalize with an improper input string, like "//../foo", or "\..\foo", the result would be the same value, thus possibly providing access to files in the parent directory, but not further above thus "limited" path traversal,...

5.8CVSS6.8AI score0.10608EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2021/03/24 12:0 a.m.•66 views

CVE-2021-1789

A type confusion issue was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, tvOS 14.4, watchOS 7.3, iOS 14.4 and iPadOS 14.4, Safari 14.0.3. Processing maliciously crafted web content may lead to...

8.8CVSS7.5AI score0.14542EPSS
Exploits0References4
Total number of security vulnerabilities5000