Lucene search
+L
UbuntucveMost viewed

71772 matches found

UbuntuCve
UbuntuCve
•added 2017/12/05 12:0 a.m.•65 views

CVE-2017-8824

The dccpdisconnect function in net/dccp/proto.c in the Linux kernel through 4.14.3 allows local users to gain privileges or cause a denial of service use-after-free via an AFUNSPEC connect system call during the DCCPLISTEN state...

7.8CVSS6.8AI score0.01344EPSS
Exploits5References11
UbuntuCve
UbuntuCve
•added 2017/03/07 5:0 p.m.•65 views

CVE-2017-2636

Race condition in drivers/tty/nhdlc.c in the Linux kernel through 4.10.1 allows local users to gain privileges or cause a denial of service double free by setting the HDLC line discipline...

7CVSS6.9AI score0.01021EPSS
Exploits2References10
UbuntuCve
UbuntuCve
•added 2017/01/15 2:59 a.m.•65 views

CVE-2017-5487

wp-includes/rest-api/endpoints/class-wp-rest-users-controller.php in the REST API implementation in WordPress 4.7 before 4.7.1 does not properly restrict listings of post authors, which allows remote attackers to obtain sensitive information via a wp-json/wp/v2/users request...

5.3CVSS6.9AI score0.87095EPSS
Exploits7References8
UbuntuCve
UbuntuCve
•added 2015/06/09 12:0 a.m.•65 views

CVE-2015-1158

The addjob function in scheduler/ipp.c in cupsd in CUPS before 2.0.3 performs incorrect free operations for multiple-value job-originating-host-name attributes, which allows remote attackers to trigger data corruption for reference-counted strings via a crafted 1 IPPCREATEJOB or 2 IPPPRINTJOB...

10CVSS7.2AI score0.29913EPSS
Exploits8References3
UbuntuCve
UbuntuCve
•added 2014/11/29 12:0 a.m.•65 views

CVE-2014-8884

Stack-based buffer overflow in the ttusbdecfedvbsdiseqcsendmastercmd function in drivers/media/usb/ttusb-dec/ttusbdecfe.c in the Linux kernel before 3.17.4 allows local users to cause a denial of service system crash or possibly gain privileges via a large message length in an ioctl call...

6.1CVSS7AI score0.00638EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2014/02/28 12:0 a.m.•65 views

CVE-2014-0069

The cifsiovecwrite function in fs/cifs/file.c in the Linux kernel through 3.13.5 does not properly handle uncached write operations that copy fewer than the requested number of bytes, which allows local users to obtain sensitive information from kernel memory, cause a denial of service memory...

7.2CVSS6.5AI score0.00414EPSS
Exploits0References12
UbuntuCve
UbuntuCve
•added 2012/05/11 10:15 a.m.•65 views

CVE-2012-2329

Buffer overflow in the apacherequestheaders function in sapi/cgi/cgimain.c in PHP 5.4.x before 5.4.3 allows remote attackers to cause a denial of service application crash via a long string in the header of an HTTP request...

5CVSS5.9AI score0.62649EPSS
Exploits6References5
UbuntuCve
UbuntuCve
•added 2010/12/09 12:0 a.m.•65 views

CVE-2010-3770

Multiple cross-site scripting XSS vulnerabilities in the rendering engine in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, allow remote attackers to inject arbitrary web script or HTML via 1 x-mac-arabic, 2 x-mac-farsi, or 3 x-mac-hebrew characters that may b...

4.3CVSS7.2AI score0.04451EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2008/05/13 5:20 p.m.•65 views

CVE-2008-0166

OpenSSL 0.9.8c-1 up to versions before 0.9.8g-9 on Debian-based operating systems uses a random number generator that generates predictable numbers, which makes it easier for remote attackers to conduct brute force guessing attacks against cryptographic keys...

7.8CVSS6.9AI score0.70721EPSS
Exploits8References6
UbuntuCve
UbuntuCve
•added 2007/08/28 1:17 a.m.•65 views

CVE-2007-4559

Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. dot dot sequence in filenames in a TAR archive, a related issue to CVE-2001-1267...

9.8CVSS6.9AI score0.27095EPSS
Exploits3References3
UbuntuCve
UbuntuCve
•added 2024/09/19 5:15 p.m.•64 views

CVE-2024-31570

libfreeimage in FreeImage 3.4.0 through 3.18.0 has a stack-based buffer overflow in the PluginXPM.cpp Load function via an XPM file...

9.8CVSS6AI score0.00605EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2023/10/15 1:15 a.m.•64 views

CVE-2023-45871

An issue was discovered in drivers/net/ethernet/intel/igb/igbmain.c in the IGB driver in the Linux kernel before 6.5.3. A buffer size may not be adequate for frames larger than the MTU...

7.5CVSS6.9AI score0.00544EPSS
Exploits0References17
UbuntuCve
UbuntuCve
•added 2023/10/11 12:0 a.m.•64 views

CVE-2023-34324

Closing of an event channel in the Linux kernel can result in a deadlock. This happens when the close is being performed in parallel to an unrelated Xen console action and the handling of a Xen console interrupt in an unprivileged guest. The closing of an event channel is e.g. triggered by remova...

4.9CVSS6.6AI score0.00888EPSS
Exploits0References13
UbuntuCve
UbuntuCve
•added 2023/02/17 1:15 p.m.•64 views

CVE-2023-23586

Due to a vulnerability in the iouring subsystem, it is possible to leak kernel memory information to the user process. timensinstall calls currentissinglethreaded to determine if the current process is single-threaded, but this call does not consider iouring's ioworker threads, thus it is possibl...

5.5CVSS6.8AI score0.0027EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/02/15 6:15 p.m.•64 views

CVE-2023-0361

A timing side-channel in the handling of RSA ClientKeyExchange messages was discovered in GnuTLS. This side-channel can be sufficient to recover the key encrypted in the RSA ciphertext across a network in a Bleichenbacher style attack. To achieve a successful decryption the attacker would need to...

7.4CVSS6.9AI score0.01403EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2023/01/10 12:0 a.m.•64 views

CVE-2023-22320

OpenAM Web Policy Agent OpenAM Consortium Edition provided by OpenAM Consortium parses URLs improperly, leading to a path traversal vulnerabilityCWE-22. Furthermore, a crafted URL may be evaluated incorrectly...

7.5CVSS7AI score0.00722EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2022/11/23 6:15 p.m.•64 views

CVE-2022-40304

An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked...

7.8CVSS6.8AI score0.06782EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2022/08/18 8:15 p.m.•64 views

CVE-2022-37048

The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in getl2lenprotocol at common/get.c:344. NOTE: this is different from CVE-2022-27941...

7.8CVSS7.3AI score0.00403EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2022/07/27 8:15 p.m.•64 views

CVE-2022-36946

nfqnlmangle in net/netfilter/nfnetlinkqueue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service panic because, in the case of an nfqueue verdict with a one-byte nftapayload attribute, an skbpull can encounter a negative skb-len...

7.5CVSS6.8AI score0.05542EPSS
Exploits1References23
UbuntuCve
UbuntuCve
•added 2022/06/09 12:0 a.m.•64 views

CVE-2022-28615

Apache HTTP Server 2.4.53 and earlier may crash or disclose information due to a read beyond bounds in apstrcmpmatch when provided with an extremely large input buffer. While no code distributed with the server can be coerced into such a call, third-party modules or lua scripts that use...

9.1CVSS7.2AI score0.05729EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2022/04/05 12:15 a.m.•64 views

CVE-2022-0609

Use after free in Animation in Google Chrome prior to 98.0.4758.102 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.4AI score0.23546EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2022/04/03 9:15 p.m.•64 views

CVE-2022-28389

mcbausbstartxmit in drivers/net/can/usb/mcbausb.c in the Linux kernel through 5.17.1 has a double free...

5.5CVSS6.8AI score0.00317EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2022/03/17 12:15 p.m.•64 views

CVE-2021-23632

All versions of package git are vulnerable to Remote Code Execution RCE due to missing sanitization in the Git.git method, which allows execution of OS commands rather than just git commands. Steps to Reproduce 1. Create a file named exploit.js with the following content: js var Git =...

9.8CVSS7.2AI score0.02201EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2022/02/24 7:15 p.m.•64 views

CVE-2021-3596

A NULL pointer dereference flaw was found in ImageMagick in versions prior to 7.0.10-31 in ReadSVGImage in coders/svg.c. This issue is due to not checking the return value from libxml2's xmlCreatePushParserCtxt and uses the value directly, which leads to a crash and segmentation fault...

6.5CVSS6.8AI score0.01894EPSS
Exploits1References1
UbuntuCve
UbuntuCve
•added 2022/02/16 9:15 p.m.•64 views

CVE-2021-43300

Stack overflow in PJSUA API when calling pjsuarecordercreate. An attacker-controlled 'filename' argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation...

9.8CVSS7.5AI score0.02376EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2022/02/15 4:15 p.m.•64 views

CVE-2022-21698

clientgolang is the instrumentation library for Go applications in Prometheus, and the promhttp package in clientgolang provides tooling around HTTP servers and clients. In clientgolang prior to version 1.11.1, HTTP server is susceptible to a Denial of Service through unbounded cardinality, and...

7.5CVSS6.8AI score0.05994EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2021/07/20 12:0 p.m.•64 views

CVE-2021-33909

fs/seqfile.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05...

7.8CVSS7.1AI score0.09729EPSS
Exploits6References9
UbuntuCve
UbuntuCve
•added 2021/06/08 5:0 p.m.•64 views

CVE-2020-26558

Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 through 5.2 may permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing in the Passkey authentication procedure by reflection of the public key and the authentication evidence of the initiati...

4.3CVSS6.9AI score0.00872EPSS
Exploits0References12
UbuntuCve
UbuntuCve
•added 2021/03/10 4:15 p.m.•64 views

CVE-2020-1917

xbufformatconverter, used as part of exifreaddata, was appending a terminating null character to the generated string, but was not using its standard append char function. As a result, if the buffer was full, it would result in an out-of-bounds write. This issue affects HHVM versions prior to...

9.8CVSS7.3AI score0.01384EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/02/08 8:15 p.m.•64 views

CVE-2021-26910

Firejail before 0.9.64.4 allows attackers to bypass intended access restrictions because there is a TOCTOU race condition between a stat operation and an OverlayFS mount operation...

7.8CVSS7.1AI score0.00444EPSS
Exploits1References8
UbuntuCve
UbuntuCve
•added 2021/02/08 8:15 p.m.•64 views

CVE-2021-21240

httplib2 is a comprehensive HTTP client library for Python. In httplib2 before version 0.19.0, a malicious server which responds with long series of "\xa0" characters in the "www-authenticate" header may cause Denial of Service CPU burn while parsing header of the httplib2 client accessing said...

7.5CVSS7.1AI score0.03876EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2021/02/02 7:15 a.m.•64 views

CVE-2020-24335

An issue was discovered in uIP through 1.0, as used in Contiki and Contiki-NG. Domain name parsing lacks bounds checks, allowing an attacker to corrupt memory with crafted DNS packets...

7.5CVSS7.1AI score0.03044EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2020/05/19 12:0 a.m.•64 views

CVE-2020-8617

Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows or successfully guesses the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whose configuration doe...

7.5CVSS6.7AI score0.93422EPSS
Exploits5References4
UbuntuCve
UbuntuCve
•added 2020/02/11 2:15 p.m.•64 views

CVE-2019-18210

Persistent XSS in /course/modedit.php of Moodle through 3.7.2 allows authenticated users Teacher and above to inject JavaScript into the session of another user e.g., enrolled student or site administrator via the introeditortext parameter. NOTE: the discoverer and vendor disagree on whether Mood...

5.4CVSS6AI score0.00791EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2020/02/10 8:15 a.m.•64 views

CVE-2020-7059

When using fgetss function to read data with stripping tags, in PHP versions 7.2.x below 7.2.27, 7.3.x below 7.3.14 and 7.4.x below 7.4.2 it is possible to supply data that will cause this function to read past the allocated buffer. This may lead to information disclosure or crash...

9.1CVSS6.8AI score0.07116EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2019/10/21 10:15 p.m.•64 views

CVE-2019-17498

In libssh2 v1.9.0 and earlier versions, the SSHMSGDISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to specify an arbitrary out-of-bounds offset for a subsequent memory read. A crafted SSH server may be able to disclose sensitive information or cause a...

8.1CVSS6.8AI score0.03793EPSS
Exploits1References6
UbuntuCve
UbuntuCve
•added 2017/11/30 6:29 p.m.•64 views

CVE-2017-14868

Restlet Framework before 2.3.11, when using SimpleXMLProvider, allows remote attackers to access arbitrary files via an XXE attack in a REST API HTTP request. This affects use of the Jax-rs extension...

7.5CVSS7.2AI score0.02518EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2017/02/23 12:0 a.m.•64 views

CVE-2017-6074

The dccprcvstateprocess function in net/dccp/input.c in the Linux kernel through 4.9.11 mishandles DCCPPKTREQUEST packet data structures in the LISTEN state, which allows local users to obtain root privileges or cause a denial of service double free via an application that makes an IPV6RECVPKTINF...

7.8CVSS6.9AI score0.0596EPSS
Exploits13References11
UbuntuCve
UbuntuCve
•added 2010/12/14 12:0 a.m.•64 views

CVE-2010-4345

Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spooldirectory directive...

7.8CVSS7.4AI score0.17794EPSS
Exploits4References6
UbuntuCve
UbuntuCve
•added 2005/04/12 4:0 a.m.•64 views

CVE-2004-0790

Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service reset TCP connections via spoofed ICMP error messages, aka the "blind connection-reset attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks;...

5CVSS6AI score0.80675EPSS
Exploits10References1
UbuntuCve
UbuntuCve
•added 2024/11/11 8:15 p.m.•63 views

CVE-2024-51489

Ampache is a web based audio/video streaming application and file manager. The current implementation of token parsing does not adequately validate CSRF tokens when users send messages to one another. This vulnerability could be exploited to forge CSRF attacks, allowing an attacker to send messag...

5.4CVSS5.8AI score0.00272EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2024/02/19 5:15 p.m.•63 views

CVE-2024-25982

The link to update all installed language packs did not include the necessary token to prevent a CSRF risk...

8.8CVSS6.6AI score0.005EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2024/01/17 4:15 p.m.•63 views

CVE-2024-0646

An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with a ktls socket as the destination. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7.8CVSS6.8AI score0.00308EPSS
Exploits0References16
UbuntuCve
UbuntuCve
•added 2023/09/28 12:0 a.m.•63 views

CVE-2023-5171

During Ion compilation, a Garbage Collection could have resulted in a use-after-free condition, allowing an attacker to write two NUL bytes, and cause a potentially exploitable crash. This vulnerability affects Firefox 118, Firefox ESR 115.3, and Thunderbird 115.3...

6.5CVSS6.7AI score0.0102EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2023/05/17 6:0 a.m.•63 views

CVE-2023-28322

An information disclosure vulnerability exists in curl v8.1.0 when doing HTTPS transfers, libcurl might erroneously use the read callback CURLOPTREADFUNCTION to ask for data to send, even when the CURLOPTPOSTFIELDS option has been set, if the same handle previously wasused to issue a PUT request...

5.3CVSS6.6AI score0.02211EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2023/04/04 1:15 p.m.•63 views

CVE-2023-29000

The Nextcloud Desktop Client is a tool to synchronize files from Nextcloud Server. Starting with version 3.0.0 and prior to version 3.7.0, by trusting that the server will return a certificate that belongs to the keypair of the user, a malicious server could get the desktop client to encrypt file...

6.5CVSS6.6AI score0.00388EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/02/17 3:15 p.m.•63 views

CVE-2023-24329

An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank characters...

7.5CVSS7AI score0.20459EPSS
Exploits3References9
UbuntuCve
UbuntuCve
•added 2023/02/14 8:15 p.m.•63 views

CVE-2023-21722

.NET Framework Denial of Service Vulnerability...

5CVSS6.8AI score0.00917EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2023/01/17 8:15 p.m.•63 views

CVE-2022-37436

Prior to Apache HTTP Server 2.4.55, a malicious backend can cause the response headers to be truncated early, resulting in some headers being incorporated into the response body. If the later headers have any security purpose, they will not be interpreted by the client...

5.3CVSS6.8AI score0.57941EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2022/12/13 7:15 p.m.•63 views

CVE-2022-41089

.NET Framework Remote Code Execution Vulnerability...

7.8CVSS7.2AI score0.0113EPSS
Exploits0References2
Total number of security vulnerabilities5000