Lucene search
K
UbuntucveMost viewed

68528 matches found

UbuntuCve
UbuntuCve
•added 2018/05/14 12:29 a.m.•364 views

CVE-2018-11033

The DCTStream::readHuffSym function in Stream.cc in the DCT decoder in xpdf before 4.00 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via crafted JPEG data...

7.8CVSS7.2AI score0.01276EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2024/03/18 1:15 p.m.•363 views

CVE-2023-7250

A flaw was found in iperf, a utility for testing network performance using TCP, UDP, and SCTP. A malicious or malfunctioning client can send less than the expected amount of data to the iperf server, which can cause the server to hang indefinitely waiting for the remainder or until the connection...

5.3CVSS6.4AI score0.00932EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2023/12/01 12:0 a.m.•363 views

CVE-2023-5427

Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU processing operations to gain access to already freed memory.This issue affects Bifrost...

7.8CVSS7.7AI score0.00334EPSS
Exploits3References5
UbuntuCve
UbuntuCve
•added 2021/09/07 12:15 p.m.•363 views

CVE-2021-37219

HashiCorp Consul and Consul Enterprise 1.10.1 Raft RPC layer allows non-server agents with a valid certificate signed by the same CA to access server-only functionality, enabling privilege escalation. Fixed in 1.8.15, 1.9.9 and 1.10.2...

8.8CVSS6.8AI score0.01149EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2024/08/22 7:15 p.m.•362 views

CVE-2024-8088

There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive for example, methods of "zipfile.Path" like "namelist", "iterdir", etc...

8.7CVSS6.8AI score0.01275EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/08/11 3:15 a.m.•362 views

CVE-2023-28736

Buffer overflow in some IntelR SSD Tools software before version mdadm-4.2-rc2 may allow a privileged user to potentially enable escalation of privilege via local access...

6.7CVSS6.7AI score0.00231EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2020/11/13 8:15 p.m.•362 views

CVE-2020-12313

Insufficient control flow management in some IntelR PROSet/Wireless WiFi products before version 21.110 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access...

8.8CVSS6.4AI score0.00887EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2019/11/27 6:15 p.m.•362 views

CVE-2012-6655

An issue exists AccountService 0.6.37 in the userchangepasswordauthorizedcb function in user.c which could let a local users obtain encrypted passwords...

3.3CVSS5.8AI score0.00448EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2023/08/31 12:0 a.m.•361 views

CVE-2023-20900

A malicious actor that has been granted Guest Operation Privileges https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security/GUID-6A952214-0E5E-4CCF-9D2A-90948FF643EC.html in a target virtual machine may be able to elevate their privileges if that target virtual machine has been assigned a...

7.5CVSS6.8AI score0.01193EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2023/02/16 12:0 a.m.•361 views

CVE-2023-25173

containerd is an open source container runtime. A bug was found in containerd prior to versions 1.6.18 and 1.5.18 where supplementary groups are not set up properly inside a container. If an attacker has direct access to a container and manipulates their supplementary group access, they may be ab...

7.8CVSS6.7AI score0.00542EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2022/10/18 8:15 p.m.•361 views

CVE-2022-3593

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

5.8AI score
Exploits0References3
UbuntuCve
UbuntuCve
•added 2020/12/28 7:15 p.m.•361 views

CVE-2020-27837

A flaw was found in GDM in versions prior to 3.38.2.1. A race condition in the handling of session shutdown makes it possible to bypass the lock screen for a user that has autologin enabled, accessing their session without authentication. This is similar to CVE-2017-12164, but requires more...

6.4CVSS6.5AI score0.00225EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2024/06/17 8:15 p.m.•360 views

CVE-2024-37890

ws is an open source WebSocket client and server for Node.js. A request with a number of headers exceeding theserver.maxHeadersCount threshold could be used to crash a ws server. The vulnerability was fixed in [email protected] e55e510 and backported to [email protected] 22c2876, [email protected] eeb76d3, and [email protected]...

7.5CVSS6.8AI score0.01357EPSS
Exploits0References13
UbuntuCve
UbuntuCve
•added 2023/05/15 12:0 a.m.•360 views

CVE-2023-2603

A vulnerability was found in libcap. This issue occurs in the libcapstrdup function and can lead to an integer overflow if the input string is close to 4GiB...

7.8CVSS6.8AI score0.00574EPSS
Exploits1References6
UbuntuCve
UbuntuCve
•added 2023/04/04 3:15 p.m.•360 views

CVE-2021-28235

Authentication vulnerability found in Etcd-io v.3.4.10 allows remote attackers to escalate privileges via the debug function...

9.8CVSS6.8AI score0.01605EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2019/08/22 1:15 p.m.•360 views

CVE-2019-14511

Sphinx Technologies Sphinx 3.1.1 by default has no authentication and listens on 0.0.0.0, making it exposed to the internet unless filtered by a firewall or reconfigured to listen to 127.0.0.1 only...

7.5CVSS7AI score0.02042EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2023/07/13 12:0 a.m.•359 views

CVE-2022-24834

Redis is an in-memory database that persists on disk. A specially crafted Lua script executing in Redis can trigger a heap overflow in the cjson library, and result with heap corruption and potentially remote code execution. The problem exists in all versions of Redis with Lua scripting support,...

8.8CVSS6.8AI score0.41409EPSS
Exploits1References8
UbuntuCve
UbuntuCve
•added 2020/06/18 6:15 p.m.•359 views

CVE-2020-13882

CISOfy Lynis before 3.0.0 has Incorrect Access Control because of a TOCTOU race condition. The routine to check the log and report file permissions was not working as intended and could be bypassed locally. Because of the race, an unprivileged attacker can set up a log and report file, and contro...

4.2CVSS6.2AI score0.00256EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2016/12/08 8:59 a.m.•359 views

CVE-2016-9918

In BlueZ 5.42, an out-of-bounds read was identified in "packethexdump" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash...

7.5CVSS7.1AI score0.03479EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2021/04/06 3:15 p.m.•358 views

CVE-2021-30130

phpseclib before 2.0.31 and 3.x before 3.0.7 mishandles RSA PKCS1 v1.5 signature verification...

7.5CVSS7.1AI score0.01055EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2024/07/03 6:15 p.m.•357 views

CVE-2023-52168

The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 for 7zz contains a heap-based buffer overflow that allows an attacker to overwrite two bytes at multiple offsets beyond the allocated buffer size: buffer+512i-2, for i=9, i=10, i=11, etc...

8.4CVSS7.3AI score0.00343EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/08/22 7:16 p.m.•357 views

CVE-2022-47069

p7zip 16.02 was discovered to contain a heap-buffer-overflow vulnerability via the function NArchive::NZip::CInArchive::FindCdbool at CPP/7zip/Archive/Zip/ZipIn.cpp. NOTE: the Supplier has found that this is not a buffer overflow; at most an out-of-bounds read can occur...

7.8CVSS7.2AI score0.00298EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2022/08/24 4:15 p.m.•357 views

CVE-2021-4217

A flaw was found in unzip. The vulnerability occurs due to improper handling of Unicode strings, which can lead to a null pointer dereference. This flaw allows an attacker to input a specially crafted zip file, leading to a crash or code execution...

3.3CVSS6.4AI score0.0057EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2021/08/30 7:15 p.m.•357 views

CVE-2021-36370

An issue was discovered in Midnight Commander through 4.8.26. When establishing an SFTP connection, the fingerprint of the server is neither checked nor displayed. As a result, a user connects to the server without the ability to verify its authenticity...

7.5CVSS7.1AI score0.02216EPSS
Exploits1References7
UbuntuCve
UbuntuCve
•added 2023/01/05 3:15 p.m.•356 views

CVE-2022-3715

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parametertransform. This issue may lead to memory problems...

7.8CVSS6.9AI score0.00356EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2020/09/18 4:15 p.m.•356 views

CVE-2020-0347

In iptables, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-136658008...

6.7CVSS6.9AI score0.00185EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2020/04/17 2:15 a.m.•356 views

CVE-2019-7306

Byobu Apport hook may disclose sensitive information since it automatically uploads the local user's .screenrc which may contain private hostnames, usernames and passwords. This issue affects: byobu...

7.5CVSS7AI score0.01616EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2024/05/16 9:15 p.m.•355 views

CVE-2023-45745

Improper input validation in some IntelR TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access...

8.2CVSS6.5AI score0.00379EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2020/02/05 2:15 p.m.•355 views

CVE-2020-8632

In cloud-init through 19.4, randuserpassword in cloudinit/config/ccsetpasswords.py has a small default pwlen value, which makes it easier for attackers to guess passwords...

5.5CVSS6.3AI score0.00368EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2024/06/16 12:15 a.m.•354 views

CVE-2024-38394

Mismatches in interpreting USB authorization policy between GNOME Settings Daemon GSD through 46.0 and the Linux kernel's underlying device matching logic allow a physically proximate attacker to access some unintended Linux kernel USB functionality, such as USB device-specific kernel modules and...

4.3CVSS7AI score0.00318EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2024/06/13 4:15 p.m.•354 views

CVE-2024-35328

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

7.1AI score
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/08/30 6:15 p.m.•354 views

CVE-2023-36811

borgbackup is an opensource, deduplicating archiver with compression and authenticated encryption. A flaw in the cryptographic authentication scheme in borgbackup allowed an attacker to fake archives and potentially indirectly cause backup data loss in the repository. The attack requires an...

4.7CVSS5.8AI score0.00106EPSS
Exploits0References15
UbuntuCve
UbuntuCve
•added 2022/02/11 1:15 a.m.•354 views

CVE-2022-23806

Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element...

9.1CVSS7.1AI score0.03015EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2022/01/24 12:0 a.m.•354 views

CVE-2022-0204

A heap overflow vulnerability was found in bluez in versions prior to 5.63. An attacker with local network access could pass specially crafted files causing an application to halt or crash, leading to a denial of service...

8.8CVSS6.8AI score0.01808EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2018/12/10 7:29 p.m.•354 views

CVE-2018-1279

Pivotal RabbitMQ for PCF, all versions, uses a deterministically generated cookie that is shared between all machines when configured in a multi-tenant cluster. A remote attacker who can gain information about the network topology can guess this cookie and, if they have access to the right ports ...

8.5CVSS7AI score0.0183EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2022/06/15 2:15 p.m.•352 views

CVE-2022-20162

In asn1p256int of crypto/asn1.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

4.9CVSS6.9AI score0.00138EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2019/08/29 12:15 a.m.•352 views

CVE-2017-18594

nselibssh2.cc in Nmap 7.70 is subject to a denial of service condition due to a double free when an SSH connection fails, as demonstrated by a leading \n character to ssh-brute.nse or ssh-auth-methods.nse...

7.5CVSS6.9AI score0.03164EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2019/07/17 9:15 p.m.•352 views

CVE-2019-1010275

helm Before 2.7.2 is affected by: CWE-295: Improper Certificate Validation. The impact is: Unauthorized clients could connect to the server because self-signed client certs were aloowed. The component is: helm many files updated, see...

9.8CVSS7.2AI score0.01358EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/08/14 5:15 p.m.•351 views

CVE-2023-40359

xterm before 380 supports ReGIS reporting for character-set names even if they have unexpected characters i.e., neither alphanumeric nor underscore, aka a pointer/overflow issue. This can only occur for xterm installations that are configured at compile time to use a certain experimental feature...

9.8CVSS6.8AI score0.00734EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2019/10/07 4:15 p.m.•351 views

CVE-2019-17042

An issue was discovered in Rsyslog v8.1908.0. contrib/pmcisconames/pmcisconames.c has a heap overflow in the parser for Cisco log messages. The parser tries to locate a log message delimiter in this case, a space or a colon, but fails to account for strings that do not satisfy this constraint. If...

9.8CVSS6.9AI score0.03066EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2024/08/08 1:15 p.m.•350 views

CVE-2024-7348

Time-of-check Time-of-use TOCTOU race condition in pgdump in PostgreSQL allows an object creator to execute arbitrary SQL functions as the user running pgdump, which is often a superuser. The attack involves replacing another relation type with a view or foreign table. The attack requires waiting...

8.8CVSS7.2AI score0.01565EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2024/07/31 12:0 a.m.•350 views

CVE-2024-7264

libcurl's ASN1 parser code has the GTime2str function, used for parsing an ASN.1 Generalized Time field. If given an syntactically incorrect field, the parser might end up using -1 for the length of the time fraction, leading to a strlen getting performed on a pointer to a heap buffer area that i...

6.5CVSS6.9AI score0.17301EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2023/07/14 6:15 p.m.•350 views

CVE-2023-38252

An out-of-bounds read flaw was found in w3m, in the Strnewsize function in Str.c. This issue may allow an attacker to cause a denial of service through a crafted HTML file...

5.5CVSS6.7AI score0.00355EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2023/11/14 6:0 p.m.•349 views

CVE-2023-23583

Sequence of processor instructions leads to unexpected behavior for some IntelR Processors may allow an authenticated user to potentially enable escalation of privilege and/or information disclosure and/or denial of service via local access...

8.8CVSS7AI score0.01728EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2020/03/10 5:15 p.m.•349 views

CVE-2012-1096

NetworkManager 0.9 and earlier allows local users to use other users' certificates or private keys when making a connection via the file path when adding a new connection...

5.5CVSS6.4AI score0.0071EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/08/16 8:15 a.m.•348 views

CVE-2021-23422

This affects the package bikeshed before 3.0.0. This can occur when an untrusted source file containing Inline Tag Command metadata is processed. When an arbitrary OS command is executed, the command output would be included in the HTML output...

7.8CVSS7.2AI score0.00789EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2020/12/01 12:0 a.m.•348 views

CVE-2020-17437

An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, and the stack is configured to ignore the urgent data, the stack attempts to use the value of the Urgent pointer bytes to separate the Urgent data from the normal data, by...

8.2CVSS7.3AI score0.02751EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2024/05/09 12:0 a.m.•347 views

CVE-2024-33871

An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver library, exploitable via a crafted PostScript document. This occurs because the Driver parameter for opvp and oprp devices can have an arbitrary name for a...

8.8CVSS7.7AI score0.01425EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2024/06/12 9:15 a.m.•346 views

CVE-2024-5742

A vulnerability was found in GNU Nano that allows a possible privilege escalation through an insecure temporary file. If Nano is killed while editing, a file it saves to an emergency file with the permissions of the running user provides a window of opportunity for attackers to escalate privilege...

6.7CVSS6.8AI score0.00346EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2023/08/22 7:16 p.m.•346 views

CVE-2022-48571

memcached 1.6.7 allows a Denial of Service via multi-packet uploads in UDP...

7.5CVSS6.8AI score0.00912EPSS
Exploits0References3
Total number of security vulnerabilities5000