Lucene search
+L
UbuntucveMost viewed

71772 matches found

UbuntuCve
UbuntuCve
•added 2022/08/31 4:15 p.m.•58 views

CVE-2022-1319

A flaw was found in Undertow. For an AJP 400 response, EAP 7 is improperly sending two response packets, and those packets have the reuse flag set even though JBoss EAP closes the connection. A failure occurs when the connection is reused after a 400 by CPING since it reads in the second...

7.5CVSS6.8AI score0.01258EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2022/08/01 10:15 p.m.•58 views

CVE-2022-37315

graphql-go aka GraphQL for Go through 0.8.0 has infinite recursion in the type definition parser...

7.5CVSS7.1AI score0.00783EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2022/07/14 12:15 p.m.•58 views

CVE-2022-25802

Best Practical Request Tracker RT before 4.4.6 and 5.x before 5.0.3 allows XSS via a crafted content type for an attachment...

6.1CVSS6.3AI score0.00727EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2022/07/08 6:15 p.m.•58 views

CVE-2022-2343

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0044...

7.8CVSS7.1AI score0.01302EPSS
Exploits1References1
UbuntuCve
UbuntuCve
•added 2022/05/12 12:0 a.m.•58 views

CVE-2022-1651

A memory leak flaw was found in the Linux kernel in acrndevioctl in the drivers/virt/acrn/hsm.c function in how the ACRN Device Model emulates virtual NICs in VM. This flaw allows a local privileged attacker to leak unauthorized kernel information, causing a denial of service...

7.1CVSS6.7AI score0.00251EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2022/05/09 8:15 a.m.•58 views

CVE-2022-30333

RARLAB UnRAR before 6.12 on Linux and UNIX allows directory traversal to write to files during an extract aka unpack operation, as demonstrated by creating a /.ssh/authorizedkeys file. NOTE: WinRAR and Android RAR are unaffected...

7.5CVSS7.2AI score0.98975EPSS
Exploits12References8
UbuntuCve
UbuntuCve
•added 2022/04/13 4:15 p.m.•58 views

CVE-2015-20107

In Python aka CPython up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input if they lack validation of user-provided...

8CVSS6.8AI score0.07269EPSS
Exploits1References8
UbuntuCve
UbuntuCve
•added 2022/03/21 8:36 a.m.•58 views

CVE-2022-23121

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parseentries function. The issue results from the lack of proper error handling when parsin...

9.8CVSS7.7AI score0.08594EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2022/03/10 5:44 p.m.•58 views

CVE-2022-0516

A vulnerability was found in kvms390guestsidaop in the arch/s390/kvm/kvm-s390.c function in KVM for s390 in the Linux kernel. This flaw allows a local attacker with a normal user privilege to obtain unauthorized memory write access. This flaw affects Linux kernel versions prior to 5.17-rc4...

7.8CVSS6.7AI score0.00335EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2022/02/24 7:15 p.m.•58 views

CVE-2021-44533

Node.js 12.22.9, 14.18.3, 16.13.2, and 17.3.1 did not handle multi-value Relative Distinguished Names correctly. Attackers could craft certificate subjects containing a single-value Relative Distinguished Name that would be interpreted as a multi-value Relative Distinguished Name, for example, in...

5.3CVSS6.7AI score0.09358EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2022/02/16 8:15 p.m.•58 views

CVE-2022-25258

An issue was discovered in drivers/usb/gadget/composite.c in the Linux kernel before 5.16.10. The USB Gadget subsystem lacks certain validation of interface OS descriptor requests ones with a large array index and ones associated with NULL function pointer retrieval. Memory corruption might occur...

4.9CVSS6.8AI score0.00927EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2022/01/31 12:0 a.m.•58 views

CVE-2021-44142

The Samba vfsfruit module uses extended file attributes EA, xattr to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions prior to 4.13.17, 4.14.12 and 4.15.5 with vfsfruit configured allow out-of-bounds heap read and wri...

9CVSS7.1AI score0.7372EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2022/01/10 2:12 p.m.•58 views

CVE-2022-22817

PIL.ImageMath.eval in Pillow before 9.0.0 allows evaluation of arbitrary expressions, such as ones that use the Python exec method. A lambda expression could also be used...

9.8CVSS6.6AI score0.03399EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2021/11/09 12:0 a.m.•58 views

CVE-2020-25717

A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation...

8.5CVSS6.7AI score0.01612EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2021/11/03 1:15 a.m.•58 views

CVE-2021-38496

During operations on MessageTasks, a task may have been removed while it was still scheduled, resulting in memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 78.15, Thunderbird 91.2, Firefox ESR 91.2, Firefox ESR 78.15, and Firefox 93...

8.8CVSS7.2AI score0.01593EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2021/11/03 12:0 a.m.•58 views

CVE-2021-38507

The Opportunistic Encryption feature of HTTP2 RFC 8164 allows a connection to be transparently upgraded to TLS while retaining the visual properties of an HTTP connection, including being same-origin with unencrypted connections on port 80. However, if a second encrypted port on the same IP addre...

6.5CVSS6.9AI score0.00805EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2021/10/27 9:15 p.m.•58 views

CVE-2021-3903

vim is vulnerable to Heap-based Buffer Overflow...

7.8CVSS7.1AI score0.00601EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2021/10/19 3:15 p.m.•58 views

CVE-2021-37137

The Snappy frame decoder function doesn't restrict the chunk length which may lead to excessive memory usage. Beside this it also may buffer reserved skippable chunks until the whole chunk was received which may lead to excessive memory usage as well. This vulnerability can be triggered by...

7.5CVSS6.9AI score0.0628EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/07/16 6:15 p.m.•58 views

CVE-2021-32749

fail2ban is a daemon to ban hosts that cause multiple authentication errors. In versions 0.9.7 and prior, 0.10.0 through 0.10.6, and 0.11.0 through 0.11.2, there is a vulnerability that leads to possible remote code execution in the mailing action mail-whois. Command mail from mailutils package...

8.1CVSS7.2AI score0.03621EPSS
Exploits1References7
UbuntuCve
UbuntuCve
•added 2021/06/15 9:15 a.m.•58 views

CVE-2021-31618

Apache HTTP Server protocol handler for the HTTP/2 protocol checks received request headers against the size limitations as configured for the server and used for the HTTP/1 protocol as well. On violation of these restrictions and HTTP response is sent to the client with a status code indicating...

7.5CVSS7.1AI score0.51208EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/03/19 5:15 a.m.•58 views

CVE-2021-28831

decompressgunzip.c in BusyBox through 1.32.1 mishandles the error bit on the huftbuild result pointer, with a resultant invalid free or segmentation fault, via malformed gzip data...

7.5CVSS6.8AI score0.02719EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2021/03/17 3:15 p.m.•58 views

CVE-2021-28660

rtwwxsetscan in drivers/staging/rtl8188eu/osdep/ioctllinux.c in the Linux kernel through 5.11.6 allows writing beyond the end of the -ssid array. NOTE: from the perspective of kernel.org releases, CVE IDs are not normally used for drivers/staging/ unfinished work; however, system integrators may...

8.8CVSS6.8AI score0.01316EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2021/03/15 12:0 a.m.•58 views

CVE-2021-3428

A flaw was found in the Linux kernel. A denial of service problem is identified if an extent tree is corrupted in a crafted ext4 filesystem in fs/ext4/extents.c in ext4escacheextent. Fabricating an integer overflow, A local attacker with a special user privilege may cause a system crash problem...

5.5CVSS6.7AI score0.00296EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2021/02/22 2:15 a.m.•58 views

CVE-2021-26120

Smarty before 3.1.39 allows code injection via an unexpected function name after a function name= substring...

9.8CVSS6.6AI score0.82316EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2020/06/08 2:15 p.m.•58 views

CVE-2020-7676

angular.js prior to 1.8.0 allows cross site scripting. The regex-based input HTML replacement may turn sanitized code into unsanitized one. Wrapping "" elements in "" ones changes parsing behavior, leading to possibly unsanitizing code...

5.4CVSS5.7AI score0.02142EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2020/03/24 10:15 p.m.•58 views

CVE-2020-10942

In the Linux kernel before 5.5.8, getrawsocket in drivers/vhost/net.c lacks validation of an skfamily field, which might allow attackers to trigger kernel stack corruption via crafted system calls...

5.4CVSS6.7AI score0.00962EPSS
Exploits1References8
UbuntuCve
UbuntuCve
•added 2020/02/04 5:15 p.m.•58 views

CVE-2020-7221

mysqlinstalldb in MariaDB 10.4.7 through 10.4.11 allows privilege escalation from the mysql user account to root because chown and chmod are performed unsafely, as demonstrated by a symlink attack on a chmod 04755 of authpamtooldir/authpamtool. NOTE: this does not affect the Oracle MySQL product,...

7.8CVSS7AI score0.0067EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2019/12/04 5:16 p.m.•58 views

CVE-2019-11936

Various APC functions accept keys containing null bytes as input, leading to premature truncation of input. This issue affects HHVM versions prior to 3.30.12, all versions between 4.0.0 and 4.8.5, all versions between 4.9.0 and 4.23.1, as well as 4.24.0, 4.25.0, 4.26.0, 4.27.0, 4.28.0, and 4.28.1...

9.8CVSS7.2AI score0.01476EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2019/11/18 6:15 a.m.•58 views

CVE-2019-19074

A memory leak in the ath9kwmicmd function in drivers/net/wireless/ath/ath9k/wmi.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service memory consumption, aka CID-728c1e2a05e4...

7.8CVSS6.8AI score0.04433EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2019/09/11 4:15 p.m.•58 views

CVE-2019-16232

drivers/net/wireless/marvell/libertas/ifsdio.c in the Linux kernel 5.2.14 does not check the allocworkqueue return value, leading to a NULL pointer dereference...

4.7CVSS6.8AI score0.00583EPSS
Exploits1References7
UbuntuCve
UbuntuCve
•added 2019/08/13 12:0 a.m.•58 views

CVE-2019-9511

Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority ...

7.8CVSS7.2AI score0.58373EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2019/04/01 9:30 p.m.•58 views

CVE-2019-9193

In PostgreSQL 9.3 through 11.2, the "COPY TO/FROM PROGRAM" function allows superusers and users in the 'pgexecuteserverprogram' group to execute arbitrary code in the context of the database's operating system user. This functionality is enabled by default and can be abused to run arbitrary...

9CVSS7.2AI score0.91877EPSS
Exploits17References4
UbuntuCve
UbuntuCve
•added 2019/02/26 12:0 a.m.•58 views

CVE-2019-1559

If an application encounters a fatal protocol error and then calls SSLshutdown twice once to send a closenotify, and once to receive one then OpenSSL can respond differently to the calling application if a 0 byte record is received with invalid padding compared to if a 0 byte record is received...

5.9CVSS6.8AI score0.17139EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2018/08/28 8:29 a.m.•58 views

CVE-2018-15919

Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer states 'We understand that the OpenSSH developers do not want to treat such a username enumeration or...

5.3CVSS6.9AI score0.03557EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2018/07/10 5:0 p.m.•58 views

CVE-2018-3693

Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a speculative buffer overflow and side-channel analysis...

5.6CVSS7.3AI score0.08416EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2018/07/10 2:29 p.m.•58 views

CVE-2018-1128

It was found that cephx authentication protocol did not verify ceph clients correctly and was vulnerable to replay attack. Any attacker having access to ceph cluster network who is able to sniff packets on network can use this vulnerability to authenticate with ceph service and perform actions...

7.5CVSS6.8AI score0.01374EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2018/03/26 12:0 a.m.•58 views

CVE-2017-15710

In Apache httpd 2.0.23 to 2.0.65, 2.2.0 to 2.2.34, and 2.4.0 to 2.4.29, modauthnzldap, if configured with AuthLDAPCharsetConfig, uses the Accept-Language header value to lookup the right charset encoding when verifying the user's credentials. If the header value is not present in the charset...

7.5CVSS6.7AI score0.18197EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2018/01/17 12:0 a.m.•58 views

CVE-2018-2663

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacke...

4.3CVSS6.7AI score0.04675EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2017/07/20 12:0 a.m.•58 views

CVE-2017-10109

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Serialization. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerability allows unauthenticated attacker...

5.3CVSS6.9AI score0.03114EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2017/07/11 12:0 a.m.•58 views

CVE-2017-7529

Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow vulnerability in nginx range filter module resulting into leak of potentially sensitive information triggered by specially crafted request...

7.5CVSS6.8AI score0.62597EPSS
Exploits6References4
UbuntuCve
UbuntuCve
•added 2017/06/14 12:0 a.m.•58 views

CVE-2017-7776

Heap-based Buffer Overflow read in Graphite2 library in Firefox before 54 in graphite2::Silf::getClassGlyph...

8.1CVSS6.9AI score0.02767EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2017/05/12 8:29 p.m.•58 views

CVE-2017-8923

The zendstringextend function in Zend/zendstring.h in PHP through 7.1.5 does not prevent changes to string objects that result in a negative length, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact by leveraging a script's use ...

9.8CVSS6.9AI score0.07191EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2016/12/22 12:0 a.m.•58 views

CVE-2016-0736

In Apache HTTP Server versions 2.4.0 to 2.4.23, modsessioncrypto was encrypting its data/cookie using the configured ciphers with possibly either CBC or ECB modes of operation AES256-CBC by default, hence no selectable or builtin authenticated encryption. This made it vulnerable to padding oracle...

7.5CVSS7.1AI score0.49024EPSS
Exploits4References4
UbuntuCve
UbuntuCve
•added 2016/11/23 12:0 a.m.•58 views

CVE-2016-6816

The code in Apache Tomcat 9.0.0.M1 to 9.0.0.M11, 8.5.0 to 8.5.6, 8.0.0.RC1 to 8.0.38, 7.0.0 to 7.0.72, and 6.0.0 to 6.0.47 that parsed the HTTP request line permitted invalid characters. This could be exploited, in conjunction with a proxy that also permitted the invalid characters but with a...

7.1CVSS7.1AI score0.39633EPSS
Exploits6References4
UbuntuCve
UbuntuCve
•added 2016/10/19 12:0 a.m.•58 views

CVE-2016-5584

Unspecified vulnerability in Oracle MySQL 5.5.52 and earlier, 5.6.33 and earlier, and 5.7.15 and earlier allows remote administrators to affect confidentiality via vectors related to Server: Security: Encryption...

4.4CVSS6.8AI score0.01493EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2016/09/25 10:59 a.m.•58 views

CVE-2016-4694

The Apache HTTP Server in Apple OS X before 10.12 and OS X Server before 5.2 follows RFC 3875 section 4.1.18 and therefore does not protect applications from the presence of untrusted CGI client data in the HTTPPROXY environment variable, which might allow remote attackers to redirect an...

9.1CVSS7.3AI score0.01345EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2016/05/22 1:59 a.m.•58 views

CVE-2015-8879

The odbcbindcols function in ext/odbc/phpodbc.c in PHP before 5.6.12 mishandles driver behavior for SQLWVARCHAR columns, which allows remote attackers to cause a denial of service application crash in opportunistic circumstances by leveraging use of the odbcfetcharray function to access a certain...

7.5CVSS7.2AI score0.03419EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2016/05/03 12:0 a.m.•58 views

CVE-2016-2108

The ASN.1 implementation in OpenSSL before 1.0.1o and 1.0.2 before 1.0.2c allows remote attackers to execute arbitrary code or cause a denial of service buffer underflow and memory corruption via an ANY field in crafted serialized data, aka the "negative zero" issue...

10CVSS7.4AI score0.77906EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2014/09/27 12:0 a.m.•58 views

CVE-2014-6277

GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code or cause a denial of service uninitialized memory access, and untrusted-pointer read and write operations via a crafted...

10CVSS7.1AI score0.64326EPSS
Exploits16References7
UbuntuCve
UbuntuCve
•added 2014/08/18 11:15 a.m.•58 views

CVE-2014-5266

The Incutio XML-RPC IXR Library, as used in WordPress before 3.9.2 and Drupal 6.x before 6.33 and 7.x before 7.31, does not limit the number of elements in an XML document, which allows remote attackers to cause a denial of service CPU consumption via a large document, a different vulnerability...

5CVSS5.9AI score0.24385EPSS
Exploits3References7
Total number of security vulnerabilities5000