Lucene search
+L
UbuntucveMost viewed

71772 matches found

UbuntuCve
UbuntuCve
•added 2023/10/04 5:15 p.m.•59 views

CVE-2023-5371

RTPS dissector memory leak in Wireshark 4.0.0 to 4.0.8 and 3.6.0 to 3.6.16 allows denial of service via packet injection or crafted capture file...

6.5CVSS6.7AI score0.00485EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2023/09/06 2:15 p.m.•59 views

CVE-2023-4206

A use-after-free vulnerability in the Linux kernel's net/sched: clsroute component can be exploited to achieve local privilege escalation. When route4change is called on an existing filter, the whole tcfresult struct is always copied into the new instance of the filter. This causes a problem when...

7.8CVSS6.7AI score0.00565EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/08/22 7:16 p.m.•59 views

CVE-2020-21699

The web server Tengine 2.2.2 developed in the Nginx version from 0.5.6 thru 1.13.2 is vulnerable to an integer overflow vulnerability in the nginx range filter module, resulting in the leakage of potentially sensitive information triggered by specially crafted requests...

7.5CVSS7.1AI score0.00663EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2023/05/03 9:15 p.m.•59 views

CVE-2023-1836

A cross-site scripting issue has been discovered in GitLab affecting all versions starting from 5.1 before 15.9.6, all versions starting from 15.10 before 15.10.5, all versions starting from 15.11 before 15.11.1. When viewing an XML file in a repository in "raw" mode, it can be made to render as...

5.4CVSS5.8AI score0.00753EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/02/28 6:15 p.m.•59 views

CVE-2022-41723

A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests...

7.5CVSS6.8AI score0.04561EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2022/12/27 10:15 p.m.•59 views

CVE-2021-4235

Due to unbounded alias chasing, a maliciously crafted YAML file can cause the system to consume significant system resources. If parsing user input, this may be used as a denial of service vector...

5.5CVSS6.6AI score0.00415EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2022/12/12 4:15 a.m.•59 views

CVE-2022-25837

Bluetooth® Pairing in Bluetooth Core Specification v1.0B through v5.3 may permit an unauthenticated MITM to acquire credentials with two pairing devices via adjacent access when at least one device supports BR/EDR Secure Connections pairing and the other BR/EDR Legacy PIN code pairing if the MITM...

7.5CVSS7.1AI score0.00353EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2022/12/05 10:15 p.m.•59 views

CVE-2022-32224

A possible escalation to RCE vulnerability exists when using YAML serialized columns in Active Record 7.0.3.1, 6.1.6.1, 6.0.5.1 and 5.2.8.1 which could allow an attacker, that can manipulate data in the database via means like SQL injection, the ability to escalate to an RCE...

9.8CVSS6.7AI score0.02386EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2022/11/30 5:15 a.m.•59 views

CVE-2022-45869

A race condition in the x86 KVM subsystem in the Linux kernel through 6.1-rc6 allows guest OS users to cause a denial of service host OS crash or host OS memory corruption when nested virtualisation and the TDP MMU are enabled...

5.5CVSS6.8AI score0.00256EPSS
Exploits1References11
UbuntuCve
UbuntuCve
•added 2022/09/30 12:0 a.m.•59 views

CVE-2022-41850

roccatreportevent in drivers/hid/hid-roccat.c in the Linux kernel through 5.19.12 has a race condition and resultant use-after-free in certain situations where a report is received while copying a report-value is in progress...

4.7CVSS6.8AI score0.00214EPSS
Exploits0References27
UbuntuCve
UbuntuCve
•added 2022/09/09 5:15 a.m.•59 views

CVE-2022-40307

An issue was discovered in the Linux kernel through 5.19.8. drivers/firmware/efi/capsule-loader.c has a race condition with a resultant use-after-free...

4.7CVSS6.8AI score0.00199EPSS
Exploits0References16
UbuntuCve
UbuntuCve
•added 2022/08/18 7:15 p.m.•59 views

CVE-2021-32862

The GitHub Security Lab discovered sixteen ways to exploit a cross-site scripting vulnerability in nbconvert. When using nbconvert to generate an HTML version of a user-controllable notebook, it is possible to inject arbitrary HTML which may lead to cross-site scripting XSS vulnerabilities if the...

7.5CVSS6.7AI score0.01102EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2022/07/26 10:15 p.m.•59 views

CVE-2022-1641

Use after free in Web UI Diagnostics in Google Chrome on Chrome OS prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via specific user interaction...

8.8CVSS7.3AI score0.00776EPSS
Exploits1References1
UbuntuCve
UbuntuCve
•added 2022/07/15 8:15 p.m.•59 views

CVE-2022-25858

The package terser before 4.8.1, from 5.0.0 and before 5.14.2 are vulnerable to Regular Expression Denial of Service ReDoS due to insecure usage of regular expressions...

7.5CVSS6.8AI score0.03004EPSS
Exploits1References6
UbuntuCve
UbuntuCve
•added 2022/07/06 11:15 a.m.•59 views

CVE-2022-35229

An authenticated user can create a link with reflected Javascript code inside it for the discovery page and send it to other users. The payload can be executed only with a known CSRF token value of the victim, which is changed periodically and is difficult to predict...

5.4CVSS6.8AI score0.00725EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2022/07/05 1:15 p.m.•59 views

CVE-2022-33743

network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP eXpress Data Path, a code label was moved in a way allowing for SKBs having references pointers retained for further processing to nevertheless be freed...

7.8CVSS6.8AI score0.00349EPSS
Exploits0References16
UbuntuCve
UbuntuCve
•added 2022/06/18 4:15 p.m.•59 views

CVE-2022-33981

drivers/block/floppy.c in the Linux kernel before 5.17.6 is vulnerable to a denial of service, because of a concurrency use-after-free flaw after deallocating rawcmd in the rawcmdioctl function...

3.3CVSS6.8AI score0.0055EPSS
Exploits1References13
UbuntuCve
UbuntuCve
•added 2022/06/15 2:15 p.m.•59 views

CVE-2022-20154

In locksocknested of sock.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

6.4CVSS7AI score0.00107EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2022/06/10 6:15 p.m.•59 views

CVE-2022-31285

An issue was discovered in Bento4 1.2. The allocator is out of memory in /Source/C++/Core/Ap4Array.h...

5.5CVSS6.1AI score0.00655EPSS
Exploits1References1
UbuntuCve
UbuntuCve
•added 2022/06/02 2:15 p.m.•59 views

CVE-2022-1789

With shadow paging enabled, the INVPCID instruction results in a call to kvmmmuinvpcidgva. If INVPCID is executed with CR0.PG=0, the invlpg callback is not set and the result is a NULL pointer dereference...

6.9CVSS6.8AI score0.00318EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2022/05/25 6:15 p.m.•59 views

CVE-2022-29248

Guzzle is a PHP HTTP client. Guzzle prior to versions 6.5.6 and 7.4.3 contains a vulnerability with the cookie middleware. The vulnerability is that it is not checked if the cookie domain equals the domain of the server which sets the cookie via the Set-Cookie header, allowing a malicious server ...

8.1CVSS7.1AI score0.01239EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2022/04/05 12:15 a.m.•59 views

CVE-2022-0604

Heap buffer overflow in Tab Groups in Google Chrome prior to 98.0.4758.102 allowed an attacker who convinced a user to install a malicious extension and engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.4AI score0.00655EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2022/02/09 11:15 p.m.•59 views

CVE-2021-0175

Improper Validation of Specified Index, Position, or Offset in Input in firmware for some IntelR PROSet/Wireless Wi-Fi in multiple operating systems and some KillerTM Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable denial of service via adjacent access...

6.5CVSS6.3AI score0.00515EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2022/02/09 11:15 p.m.•59 views

CVE-2021-33096

Improper isolation of shared resources in network on chip for the IntelR 82599 Ethernet Controllers and Adapters may allow an authenticated user to potentially enable denial of service via local access...

5.5CVSS6.1AI score0.00277EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2022/01/20 2:0 p.m.•59 views

CVE-2021-45417

AIDE before 0.17.4 allows local users to obtain root privileges via crafted file metadata such as XFS extended attributes or tmpfs ACLs, because of a heap-based buffer overflow...

7.8CVSS7.4AI score0.00493EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2022/01/10 2:12 p.m.•59 views

CVE-2022-22824

defineAttribute in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...

9.8CVSS7AI score0.03404EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2021/12/31 12:0 a.m.•59 views

CVE-2021-4197

An unprivileged write to the file handler flaw in the Linux kernel's control groups and namespaces subsystem was found in the way users have access to some less privileged process that are controlled by cgroups and have higher privileged parent process. It is actually both for cgroup2 and cgroup1...

7.8CVSS6.7AI score0.00541EPSS
Exploits0References12
UbuntuCve
UbuntuCve
•added 2021/12/24 12:0 a.m.•59 views

CVE-2021-31566

An improper link resolution flaw can occur while extracting an archive leading to changing modes, times, access control lists, and flags of a file outside of the archive. An attacker may provide a malicious archive to a victim user, who would trigger this flaw when trying to extract the archive. ...

7.8CVSS6.8AI score0.00366EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/11/15 9:15 p.m.•59 views

CVE-2021-42385

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function...

7.2CVSS7.3AI score0.02579EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/10/11 7:15 p.m.•59 views

CVE-2021-42252

An issue was discovered in aspeedlpcctrlmmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel before 5.14.6. Local attackers able to access the Aspeed LPC control interface could overwrite memory in the kernel and potentially execute privileges, aka CID-b49a0e69a7b1. This occurs becaus...

7.8CVSS6.8AI score0.00358EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2021/08/08 8:15 p.m.•59 views

CVE-2021-38204

drivers/usb/host/max3421-hcd.c in the Linux kernel before 5.13.6 allows physically proximate attackers to cause a denial of service use-after-free and panic by removing a MAX-3421 USB device in certain situations...

6.8CVSS6.8AI score0.00333EPSS
Exploits0References13
UbuntuCve
UbuntuCve
•added 2021/07/27 12:0 a.m.•59 views

CVE-2021-30795

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to arbitrary code execution...

9.3CVSS6.9AI score0.02164EPSS
Exploits2References2
UbuntuCve
UbuntuCve
•added 2021/07/18 12:0 p.m.•59 views

CVE-2021-3640

A flaw use-after-free in function scosocksendmsg of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIOREGISTER or other way triggers race condition of the call scoconndel together with the call scosocksendmsg with the expected controllable faulting memory page. A privilege...

7CVSS6.7AI score0.0037EPSS
Exploits1References10
UbuntuCve
UbuntuCve
•added 2021/06/21 12:0 p.m.•59 views

CVE-2021-33515

The submission service in Dovecot before 2.3.15 allows STARTTLS command injection in lib-smtp. Sensitive information can be redirected to an attacker-controlled address...

5.8CVSS6.8AI score0.02837EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2021/05/20 1:15 p.m.•59 views

CVE-2021-3426

There's a flaw in Python 3's pydoc. A local or adjacent attacker who discovers or is able to convince another local or adjacent user to start a pydoc server could access the server and use it to disclose sensitive information belonging to the other user that they would not normally be able to...

5.7CVSS6.8AI score0.01863EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2021/04/19 12:0 a.m.•59 views

CVE-2021-24002

When a user clicked on an FTP URL containing encoded newline characters %0A and %0D, the newlines would have been interpreted as such and allowed arbitrary commands to be sent to the FTP server. This vulnerability affects Firefox ESR 78.10, Thunderbird 78.10, and Firefox 88...

8.8CVSS6.8AI score0.01218EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2021/03/07 5:15 a.m.•59 views

CVE-2021-27364

An issue was discovered in the Linux kernel through 5.11.3. drivers/scsi/scsitransportiscsi.c is adversely affected by the ability of an unprivileged user to craft Netlink messages...

7.1CVSS6.8AI score0.00957EPSS
Exploits1References9
UbuntuCve
UbuntuCve
•added 2021/02/02 6:15 p.m.•59 views

CVE-2019-25017

An issue was discovered in rcp in MIT krb5-appl through 1.0.3. Due to the rcp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the rcp client only performs cursory validation of the object name returned only directory traversa...

5.9CVSS6.4AI score0.01429EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2020/12/08 12:0 a.m.•59 views

CVE-2020-1971

The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a function GENERALNAMEcmp which compares different instances of a GENERALNAME to see if they are equal or not. This function behaves incorrect...

5.9CVSS6.6AI score0.06968EPSS
Exploits3References4
UbuntuCve
UbuntuCve
•added 2020/07/13 1:15 p.m.•59 views

CVE-2019-20907

In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open, because procpax lacks header validation...

7.5CVSS6.8AI score0.06036EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2020/05/27 3:15 p.m.•59 views

CVE-2020-13631

SQLite before 3.32.0 allows a virtual table to be renamed to the name of one of its shadow tables, related to alter.c and build.c...

5.5CVSS6.8AI score0.0062EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2020/04/01 6:15 p.m.•59 views

CVE-2020-3901

A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, watchOS 6.2, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Processing maliciously crafted web content may lead to arbitrar...

8.8CVSS6.8AI score0.01846EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2020/04/01 4:15 a.m.•59 views

CVE-2020-7064

In PHP versions 7.2.x below 7.2.9, 7.3.x below 7.3.16 and 7.4.x below 7.4.4, while parsing EXIF data with exifreaddata function, it is possible for malicious data to cause PHP to read one byte of uninitialized memory. This could potentially lead to information disclosure or crash...

6.5CVSS6.8AI score0.04295EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2020/01/11 3:15 a.m.•59 views

CVE-2020-6839

In mruby 2.1.0, there is a stack-based buffer overflow in mrbstrlentodbl in string.c...

9.8CVSS7.5AI score0.01355EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2019/11/12 6:0 p.m.•59 views

CVE-2019-0154

Insufficient access control in subsystem for Intel R processor graphics in 6th, 7th, 8th and 9th Generation IntelR CoreTM Processor Families; IntelR PentiumR Processor J, N, Silver and Gold Series; IntelR CeleronR Processor J, N, G3900 and G4900 Series; IntelR AtomR Processor A and E3900 Series;...

5.5CVSS6.8AI score0.00646EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2019/10/17 1:15 p.m.•59 views

CVE-2019-17671

In WordPress before 5.2.4, unauthenticated viewing of certain content is possible because the static query property is mishandled...

5.3CVSS6.8AI score0.36054EPSS
Exploits2References5
UbuntuCve
UbuntuCve
•added 2019/10/16 6:15 p.m.•59 views

CVE-2019-2962

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: 2D. Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

4.3CVSS6.8AI score0.03533EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2019/07/23 1:15 p.m.•59 views

CVE-2019-10173

It was found that xstream API version 1.4.10 before 1.4.11 introduced a regression for a previous deserialization flaw. If the security framework has not been initialized, it may allow a remote attacker to run arbitrary shell commands when unmarshalling XML or any supported format. e.g. JSON...

9.8CVSS7.1AI score0.94774EPSS
Exploits4References3
UbuntuCve
UbuntuCve
•added 2019/06/13 12:0 a.m.•59 views

CVE-2019-12819

An issue was discovered in the Linux kernel before 5.0. The function mdiobusregister in drivers/net/phy/mdiobus.c calls putdevice, which will trigger a fixedmdiobusinit use-after-free. This will cause a denial of service...

5.5CVSS6.7AI score0.0064EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2019/02/20 12:29 a.m.•59 views

CVE-2019-7164

SQLAlchemy through 1.2.17 and 1.3.x through 1.3.0b2 allows SQL Injection via the orderby parameter...

9.8CVSS7.2AI score0.03525EPSS
Exploits2References1
Total number of security vulnerabilities5000