Lucene search
K
UbuntucveMost viewed

68528 matches found

UbuntuCve
UbuntuCve
added 2020/04/06 1:15 a.m.57 views

CVE-2020-11565

An issue was discovered in the Linux kernel through 5.6.2. mpolparsestr in mm/mempolicy.c has a stack-based out-of-bounds write because an empty nodelist is mishandled during mount option parsing, aka CID-aa9f7d5172fa. NOTE: Someone in the security community disagrees that this is a vulnerability...

6CVSS6.8AI score0.00517EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2020/01/14 6:0 p.m.57 views

CVE-2020-7053

In the Linux kernel 4.14 longterm through 4.14.165 and 4.19 longterm through 4.19.96 and 5.x before 5.2, there is a use-after-free write in the i915ppgttclose function in drivers/gpu/drm/i915/i915gemgtt.c, aka CID-7dc40713618c. This is related to i915gemcontextdestroyioctl in...

7.8CVSS6.8AI score0.00617EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2020/01/09 9:15 p.m.57 views

CVE-2019-20372

NGINX before 1.17.7, with certain errorpage configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer...

5.3CVSS6.8AI score0.14961EPSS
Exploits3References7
UbuntuCve
UbuntuCve
added 2019/12/25 4:15 a.m.57 views

CVE-2019-19965

In the Linux kernel through 5.4.6, there is a NULL pointer dereference in drivers/scsi/libsas/sasdiscover.c because of mishandling of port disconnection during discovery, related to a PHY down race condition, aka CID-f70267f379b5...

4.7CVSS6.7AI score0.00654EPSS
Exploits1References9
UbuntuCve
UbuntuCve
added 2019/11/25 3:0 p.m.57 views

CVE-2019-14897

A stack-based buffer overflow was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. An attacker is able to cause a denial of service system crash or, possibly execute arbitrary code, when a STA works in IBSS mode allows connecting stations together without the use of ...

9.8CVSS7.3AI score0.02909EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2019/10/01 10:0 a.m.57 views

CVE-2019-14821

An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor implements the Coalesced MMIO write operation. It operates on an MMIO ring buffer 'struct kvmcoalescedmmio' object, wherein write indices 'ring-first' and 'ring-last'...

8.8CVSS6.8AI score0.00763EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2019/09/11 4:15 p.m.57 views

CVE-2019-16232

drivers/net/wireless/marvell/libertas/ifsdio.c in the Linux kernel 5.2.14 does not check the allocworkqueue return value, leading to a NULL pointer dereference...

4.7CVSS6.8AI score0.00583EPSS
Exploits1References7
UbuntuCve
UbuntuCve
added 2019/08/26 6:15 p.m.58 views

CVE-2019-15641

xmlrpc.cgi in Webmin through 1.930 allows authenticated XXE attacks. By default, only root, admin, and sysadm can access xmlrpc.cgi...

6.8CVSS6.6AI score0.01452EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2019/07/19 11:15 p.m.57 views

CVE-2019-12815

An arbitrary file copy vulnerability in modcopy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306...

9.8CVSS7.2AI score0.57606EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2019/04/08 8:29 p.m.57 views

CVE-2019-0215

In Apache HTTP Server 2.4 releases 2.4.37 and 2.4.38, a bug in modssl when using per-location client certificate verification with TLSv1.3 allowed a client to bypass configured access control restrictions...

7.5CVSS7.3AI score0.10508EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2019/04/01 9:30 p.m.57 views

CVE-2019-9193

In PostgreSQL 9.3 through 11.2, the "COPY TO/FROM PROGRAM" function allows superusers and users in the 'pgexecuteserverprogram' group to execute arbitrary code in the context of the database's operating system user. This functionality is enabled by default and can be abused to run arbitrary...

9CVSS7.2AI score0.91877EPSS
Exploits17References4
UbuntuCve
UbuntuCve
added 2018/07/10 5:0 p.m.57 views

CVE-2018-3693

Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a speculative buffer overflow and side-channel analysis...

5.6CVSS7.3AI score0.08416EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2018/07/10 2:29 p.m.57 views

CVE-2018-1128

It was found that cephx authentication protocol did not verify ceph clients correctly and was vulnerable to replay attack. Any attacker having access to ceph cluster network who is able to sniff packets on network can use this vulnerability to authenticate with ceph service and perform actions...

7.5CVSS6.8AI score0.01374EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2018/01/17 12:0 a.m.57 views

CVE-2018-2663

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacke...

4.3CVSS6.7AI score0.04675EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2018/01/10 6:29 p.m.57 views

CVE-2017-17485

FasterXML jackson-databind through 2.8.10 and 2.9.x through 2.9.3 allows unauthenticated remote code execution because of an incomplete fix for the CVE-2017-7525 deserialization flaw. This is exploitable by sending maliciously crafted JSON input to the readValue method of the ObjectMapper,...

9.8CVSS7.5AI score0.49727EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2017/07/20 12:0 a.m.57 views

CVE-2017-10109

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Serialization. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerability allows unauthenticated attacker...

5.3CVSS6.9AI score0.03114EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2017/06/19 12:0 a.m.57 views

CVE-2017-3169

In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, modssl may dereference a NULL pointer when third-party modules call aphookprocessconnection during an HTTP request to an HTTPS port...

9.8CVSS6.8AI score0.19953EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2017/06/14 12:0 a.m.57 views

CVE-2017-7776

Heap-based Buffer Overflow read in Graphite2 library in Firefox before 54 in graphite2::Silf::getClassGlyph...

8.1CVSS6.9AI score0.02767EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2017/05/12 8:29 p.m.57 views

CVE-2017-8923

The zendstringextend function in Zend/zendstring.h in PHP through 7.1.5 does not prevent changes to string objects that result in a negative length, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact by leveraging a script's use ...

9.8CVSS6.9AI score0.07191EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2016/11/23 12:0 a.m.57 views

CVE-2016-6816

The code in Apache Tomcat 9.0.0.M1 to 9.0.0.M11, 8.5.0 to 8.5.6, 8.0.0.RC1 to 8.0.38, 7.0.0 to 7.0.72, and 6.0.0 to 6.0.47 that parsed the HTTP request line permitted invalid characters. This could be exploited, in conjunction with a proxy that also permitted the invalid characters but with a...

7.1CVSS7.1AI score0.39633EPSS
Exploits6References4
UbuntuCve
UbuntuCve
added 2015/04/06 12:0 a.m.57 views

CVE-2015-2922

The ndiscrouterdiscovery function in net/ipv6/ndisc.c in the Neighbor Discovery ND protocol implementation in the IPv6 stack in the Linux kernel before 3.19.6 allows remote attackers to reconfigure a hop-limit setting via a small hoplimit value in a Router Advertisement RA message...

3.3CVSS6.9AI score0.03052EPSS
Exploits1References10
UbuntuCve
UbuntuCve
added 2014/04/15 12:0 a.m.57 views

CVE-2014-2423

Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0452 and CVE-2014-0458...

7.5CVSS7.1AI score0.04976EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2014/03/14 3:55 p.m.57 views

CVE-2014-2323

SQL injection vulnerability in modmysqlvhost.c in lighttpd before 1.4.35 allows remote attackers to execute arbitrary SQL commands via the host name, related to requestcheckhostname...

9.8CVSS7.3AI score0.61665EPSS
Exploits2References3
UbuntuCve
UbuntuCve
added 2012/04/18 10:33 a.m.57 views

CVE-2012-0883

envvars aka envvars-std in the Apache HTTP Server before 2.4.2 places a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse DSO in the current working directory during execution of apachectl...

6.9CVSS7.4AI score0.00946EPSS
Exploits4References1
UbuntuCve
UbuntuCve
added 2011/08/25 12:0 a.m.57 views

CVE-2011-2483

cryptblowfish before 1.1, as used in PHP before 5.3.7 on certain platforms, PostgreSQL before 8.4.9, and other products, does not properly handle 8-bit characters, which makes it easier for context-dependent attackers to determine a cleartext password by leveraging knowledge of a password hash...

5CVSS7.1AI score0.04972EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2009/11/02 3:30 p.m.57 views

CVE-2009-3605

Multiple integer overflows in Poppler 0.10.5 and earlier allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PDF file, related to 1 glib/poppler-page.cc; 2 ArthurOutputDev.cc, 3 CairoOutputDev.cc, 4 GfxState.cc, 5 JBIG2Stream.cc, ...

6.8CVSS6AI score0.04409EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2009/08/10 8:30 p.m.57 views

CVE-2009-2717

The Abstract Window Toolkit AWT implementation in Sun Java SE 6 before Update 15 on Windows 2000 Professional does not provide a Security Warning Icon, which makes it easier for context-dependent attackers to trick a user into interacting unsafely with an untrusted applet...

6.8CVSS5.9AI score0.0133EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2009/04/27 10:30 p.m.57 views

CVE-2009-1190

Algorithmic complexity vulnerability in the java.util.regex.Pattern.compile method in Sun Java Development Kit JDK before 1.6, when used with spring.jar in SpringSource Spring Framework 1.1.0 through 2.5.6 and 3.0.0.M1 through 3.0.0.M2 and dm Server 1.0.0 through 1.0.2, allows remote attackers to...

5CVSS7.2AI score0.02796EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2007/06/14 11:30 p.m.57 views

CVE-2007-2449

Multiple cross-site scripting XSS vulnerabilities in certain JSP files in the examples web application in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote attackers to inject arbitrary web script or HTML via...

4.3CVSS6AI score0.77376EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2007/06/11 6:30 p.m.57 views

CVE-2007-3143

Visual truncation vulnerability in Konqueror 3.5.5 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a long hostname, which is truncated after a certain number of characters, as demonstrated by a phishing attack using HTTP Basic Authentication...

6.4CVSS5.9AI score0.01987EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2007/03/16 10:19 p.m.57 views

CVE-2007-0450

Directory traversal vulnerability in Apache HTTP Server and Tomcat 5.x before 5.5.22 and 6.x before 6.0.10, when using certain proxy modules modproxy, modrewrite, modjk, allows remote attackers to read arbitrary files via a .. dot dot sequence with combinations of 1 "/" slash, 2 "" backslash, and...

5CVSS6AI score0.90768EPSS
Exploits2References1
UbuntuCve
UbuntuCve
added 2005/12/22 11:3 p.m.57 views

CVE-2005-3660

Linux kernel 2.4 and 2.6 allows attackers to cause a denial of service memory exhaustion and panic by creating a large number of connected file descriptors or socketpairs and setting a large data transfer buffer, then preventing Linux from being able to finish the transfer by causing the process ...

4.9CVSS7.2AI score0.00402EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/09/09 10:15 a.m.56 views

CVE-2024-6572

Improper host key checking in active check 'Check SFTP Service' and special agent 'VNX quotas and filesystem' in Checkmk before Checkmk 2.3.0p15, 2.2.0p33, 2.1.0p48 and 2.0.0 EOL allows man-in-the-middle attackers to intercept traffic...

7.4CVSS5.8AI score0.00338EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/08/29 5:15 p.m.56 views

CVE-2024-45056

zksolc is a Solidity compiler for ZKsync. All LLVM versions since 2015 fold xor shl 1, x, -1 to rotl 1, x if run with optimizations enabled. Here 1 is generated as an unsigned 64 bits number 2^64-1. This number is zero-extended to 256 bits on EraVM target while it should have been sign-extended...

5.9CVSS5.9AI score0.00403EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/07/02 8:15 p.m.56 views

CVE-2022-30636

httpTokenCacheKey uses path.Base to extract the expected HTTP-01 token value to lookup in the DirCache implementation. On Windows, path.Base acts differently to filepath.Base, since Windows uses a different path separator \ vs. /, allowing a user to provide a relative path, i.e...

7.5CVSS7.2AI score0.00632EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2024/05/23 7:15 a.m.56 views

CVE-2024-4835

A XSS condition exists within GitLab in versions 15.11 before 16.10.6, 16.11 before 16.11.3, and 17.0 before 17.0.1. By leveraging this condition, an attacker can craft a malicious page to exfiltrate sensitive user information...

8.2CVSS5.9AI score0.00802EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2024/05/21 3:15 p.m.56 views

CVE-2021-47337

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix bad pointer dereference when ehandler kthread is invalid Commit 66a834d09293 "scsi: core: Fix error handling of scsihostalloc" changed the allocation logic to call putdevice to perform host cleanup with the...

5.5CVSS6AI score0.0024EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2024/05/18 10:15 p.m.56 views

CVE-2024-36050

Nix through 2.22.1 mishandles certain usage of hash caches, which makes it easier for attackers to replace current source code with attacker-controlled source code by luring a maintainer into accepting a malicious pull request...

4.3CVSS5.9AI score0.00394EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/04/28 1:15 p.m.56 views

CVE-2022-48642

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: fix percpu memory leak at nftablesaddchain It seems to me that percpu memory for chain stats started leaking since commit 3bc158f8d0330f0a "netfilter: nftables: map basechain priority to hardware priority" wh...

5.5CVSS6.2AI score0.00232EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2024/04/23 12:0 a.m.56 views

CVE-2024-3651

A vulnerability was identified in the kjd/idna library, specifically within the idna.encode function, affecting version 3.6. The issue arises from the function's handling of crafted input strings, which can lead to quadratic complexity and consequently, a denial of service condition. This...

7.5CVSS6.7AI score0.01386EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2024/03/18 11:15 a.m.56 views

CVE-2024-26638

In the Linux kernel, the following vulnerability has been resolved: nbd: always initialize struct msghdr completely syzbot complains that msg-msggetinq value can be uninitialized 1 struct msghdr got many new fields recently, we should always make sure their values is zero by default. 1 BUG: KMSAN...

4.4CVSS6.3AI score0.00222EPSS
Exploits0References14
UbuntuCve
UbuntuCve
added 2024/02/05 9:15 p.m.56 views

CVE-2023-50782

A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data...

7.5CVSS6.7AI score0.01118EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2024/01/23 12:0 a.m.56 views

CVE-2024-23851

copyparams in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to allocate more than INTMAX bytes, and crash, because of a missing paramkernel-datasize check. This is related to ctlioctl...

5.5CVSS6.7AI score0.00296EPSS
Exploits0References13
UbuntuCve
UbuntuCve
added 2023/11/01 12:0 a.m.56 views

CVE-2023-46930

GPAC 2.3-DEV-rev605-gfc9e29089-master contains a SEGV in gpac/MP4Box in gfisomfindodidfortrack /afltest/gpac/src/isomedia/mediaodf.c:522:14...

5.5CVSS6.1AI score0.00206EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2023/10/03 12:0 a.m.56 views

CVE-2023-4732

A flaw was found in pfnswapentrytopage in memory management subsystem in the Linux Kernel. In this flaw, an attacker with a local user privilege may cause a denial of service problem due to a BUG statement referencing pmdt x...

4.7CVSS6.6AI score0.00179EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2023/09/08 12:15 p.m.56 views

CVE-2023-4807

Issue summary: The POLY1305 MAC message authentication code implementation contains a bug that might corrupt the internal state of applications on the Windows 64 platform when running on newer X8664 processors supporting the AVX512-IFMA instructions. Impact summary: If in an application that uses...

7.8CVSS6.9AI score0.00862EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2023/06/30 10:15 p.m.56 views

CVE-2023-1206

A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that accepts IPV6...

5.7CVSS6.6AI score0.00553EPSS
Exploits0References17
UbuntuCve
UbuntuCve
added 2023/03/15 9:15 p.m.56 views

CVE-2023-28450

An issue was discovered in Dnsmasq before 2.90. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020...

7.5CVSS7.1AI score0.01345EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2023/02/15 12:0 a.m.56 views

CVE-2023-23916

An allocation of resources without limits or throttling vulnerability exists in curl v7.88.0 based on the "chained" HTTP compression algorithms, meaning that a server response can be compressed multiple times and potentially with differentalgorithms. The number of acceptable "links" in this...

6.5CVSS6.8AI score0.01703EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2023/01/23 4:15 p.m.56 views

CVE-2022-38725

An integer overflow in the RFC3164 parser in One Identity syslog-ng 3.0 through 3.37 allows remote attackers to cause a Denial of Service via crafted syslog input that is mishandled by the tcp or network function. syslog-ng Premium Edition 7.0.30 and syslog-ng Store Box 6.10.0 are also affected...

7.5CVSS7.2AI score0.02383EPSS
Exploits0References3
Total number of security vulnerabilities5000