Lucene search
+L
UbuntucveMost viewed

71772 matches found

UbuntuCve
UbuntuCve
•added 2022/03/18 6:15 p.m.•56 views

CVE-2022-1011

A use-after-free flaw was found in the Linux kernel’s FUSE filesystem in the way a user triggers write. This flaw allows a local user to gain unauthorized access to data from the FUSE filesystem, resulting in privilege escalation...

7.8CVSS6.7AI score0.01169EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2022/03/16 5:15 p.m.•56 views

CVE-2022-24729

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. CKEditor4 prior to version 4.18.0 contains a vulnerability in the dialog plugin. The vulnerability allows abuse of a dialog input validator regular expression, which can cause a significant performance drop resulting in a brows...

7.5CVSS6.8AI score0.02448EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2022/03/10 12:0 a.m.•56 views

CVE-2022-23040

Linux PV device frontends vulnerable to attacks by backends This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Several Linux PV device frontends are using the grant table interfaces for removing access rights of the...

7CVSS6.5AI score0.00359EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2022/03/03 3:15 p.m.•56 views

CVE-2022-22706

Arm Mali GPU Kernel Driver allows a non-privileged user to achieve write access to read-only memory pages. This affects Midgard r26p0 through r31p0, Bifrost r0p0 through r35p0, and Valhall r19p0 through r35p0...

7.8CVSS7.3AI score0.01226EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2022/03/02 11:15 p.m.•56 views

CVE-2021-4076

A flaw exists in tang, a network-based cryptographic binding server, which could result in leak of private keys...

7.5CVSS7.1AI score0.0154EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2022/02/21 8:15 p.m.•56 views

CVE-2022-0696

NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.4428...

6.2CVSS6.8AI score0.01525EPSS
Exploits1References6
UbuntuCve
UbuntuCve
•added 2022/02/18 6:15 p.m.•56 views

CVE-2021-3947

A stack-buffer-overflow was found in QEMU in the NVME component. The flaw lies in nvmechangednslist where a malicious guest controlling certain input can read out of bounds memory. A malicious user could use this flaw leading to disclosure of sensitive information...

5.5CVSS6.8AI score0.00317EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2022/02/11 6:15 a.m.•56 views

CVE-2022-24959

An issue was discovered in the Linux kernel before 5.16.5. There is a memory leak in yamsiocdevprivate in drivers/net/hamradio/yam.c...

5.5CVSS6.8AI score0.00428EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2022/01/01 5:15 a.m.•56 views

CVE-2021-41817

Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS regular expression Denial of Service via a long string. The fixed versions are 3.2.1, 3.1.2, 3.0.2, and 2.0.1...

7.5CVSS6.8AI score0.03222EPSS
Exploits1References6
UbuntuCve
UbuntuCve
•added 2021/11/15 9:15 p.m.•56 views

CVE-2021-42376

A NULL pointer dereference in Busybox's hush applet leads to denial of service when processing a crafted shell command, due to missing validation after a \x03 delimiter character. This may be used for DoS under very rare conditions of filtered command input...

5.5CVSS6.9AI score0.00399EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/11/10 6:15 p.m.•56 views

CVE-2021-3572

A flaw was found in python-pip in the way it handled Unicode separators in git references. A remote attacker could possibly use this issue to install a different revision on a repository. The highest threat from this vulnerability is to data integrity. This is fixed in python-pip version 21.1...

5.7CVSS6.8AI score0.01687EPSS
Exploits2References6
UbuntuCve
UbuntuCve
•added 2021/09/07 7:15 p.m.•56 views

CVE-2021-35949

The shareinfo controller in the ownCloud Server before 10.8.0 allows an attacker to bypass the permission checks for upload only shares and list metadata about the share...

5.3CVSS6.1AI score0.00909EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/09/03 2:15 p.m.•56 views

CVE-2021-39191

modauthopenidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In versions prior to 2.4.9.4, the 3rd-party init SSO functionality of modauthopenidc was reported to ...

6.1CVSS6.7AI score0.0175EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2021/04/06 7:15 p.m.•56 views

CVE-2021-28688

The fix for XSA-365 includes initialization of pointers such that subsequent cleanup code wouldn't use uninitialized or stale values. This initialization went too far and may under certain conditions also overwrite pointers which are in need of cleaning up. The lack of cleanup would result in...

6.5CVSS6.8AI score0.00332EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2021/04/01 3:15 p.m.•56 views

CVE-2021-28163

In Eclipse Jetty 9.4.32 to 9.4.38, 10.0.0.beta2 to 10.0.1, and 11.0.0.beta2 to 11.0.1, if a user uses a webapps directory that is a symlink, the contents of the webapps directory is deployed as a static webapp, inadvertently serving the webapps themselves and anything else that might be in that...

4CVSS6.8AI score0.0418EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2021/02/17 12:0 a.m.•56 views

CVE-2020-8625

BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting valid values for the...

8.1CVSS7AI score0.64161EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2021/02/15 12:0 a.m.•56 views

CVE-2020-13558

A code execution vulnerability exists in the AudioSourceProviderGStreamer functionality of Webkit WebKitGTK 2.30.1. A specially crafted web page can lead to a use after free...

8.8CVSS7.6AI score0.01792EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2021/02/05 12:0 a.m.•56 views

CVE-2021-20227

A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...

5.5CVSS6.8AI score0.00496EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/01/05 5:15 a.m.•56 views

CVE-2020-36158

mwifiexcmd80211adhocstart in drivers/net/wireless/marvell/mwifiex/join.c in the Linux kernel through 5.10.4 might allow remote attackers to execute arbitrary code via a long SSID value, aka CID-5c455c5ab332...

8.8CVSS7.2AI score0.02209EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2020/09/09 7:15 p.m.•56 views

CVE-2020-24916

CGI implementation in Yaws web server versions 1.81 to 2.0.7 is vulnerable to OS command injection...

10CVSS7.2AI score0.17374EPSS
Exploits3References4
UbuntuCve
UbuntuCve
•added 2020/05/28 3:15 p.m.•56 views

CVE-2020-13649

parser/js/js-scanner.c in JerryScript 2.2.0 mishandles errors during certain out-of-memory conditions, as demonstrated by a scannerreverseinfolist NULL pointer dereference and a scannerscanall assertion failure...

7.5CVSS7.1AI score0.02125EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2020/02/06 1:15 a.m.•56 views

CVE-2020-8648

There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the nttyreceivebufcommon function in drivers/tty/ntty.c...

7.1CVSS6.8AI score0.00661EPSS
Exploits1References7
UbuntuCve
UbuntuCve
•added 2019/11/12 8:15 p.m.•56 views

CVE-2010-3439

It is possible to cause a DoS condition by causing the server to crash in alien-arena 7.33 by supplying various invalid parameters to the download command...

6.5CVSS6.6AI score0.01794EPSS
Exploits1References1
UbuntuCve
UbuntuCve
•added 2019/09/04 12:0 a.m.•56 views

CVE-2019-15903

In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XMLGetCurrentLineNumber or XMLGetCurrentColumnNumber then resulted in a heap-based buffer over-read...

7.5CVSS6.9AI score0.06707EPSS
Exploits1References13
UbuntuCve
UbuntuCve
•added 2019/09/04 12:0 a.m.•56 views

CVE-2019-11747

The "Forget about this site" feature in the History pane is intended to remove all saved user data that indicates a user has visited a site. This includes removing any HTTP Strict Transport Security HSTS settings received from sites that use it. Due to a bug, sites on the pre-load list also have...

6.5CVSS6.8AI score0.01195EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2019/07/10 3:15 p.m.•56 views

CVE-2017-7189

main/streams/xpsocket.c in PHP 7.x before 2017-03-07 misparses fsockopen calls, such as by interpreting fsockopen'127.0.0.1:80', 443 as if the address/port were 127.0.0.1:80:443, which is later truncated to 127.0.0.1:80. This behavior has a security risk if the explicitly provided port number i.e...

7.5CVSS7.1AI score0.02492EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2019/05/31 11:29 a.m.•56 views

CVE-2019-12495

An issue was discovered in Tiny C Compiler aka TinyCC or TCC 0.9.27. Compiling a crafted source file leads to a one-byte out-of-bounds write in the gsymaddr function in x8664-gen.c. This occurs because tccasm.c mishandles section switches...

5.5CVSS6AI score0.01218EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2019/05/17 5:29 a.m.•56 views

CVE-2018-7191

In the tun subsystem in the Linux kernel before 4.13.14, devgetvalidname is not called before registernetdevice. This allows local users to cause a denial of service NULL pointer dereference and panic via an ioctlTUNSETIFF call with a dev name containing a / character. This is similar to...

5.5CVSS6.7AI score0.00654EPSS
Exploits1References10
UbuntuCve
UbuntuCve
•added 2019/01/09 12:0 a.m.•56 views

CVE-2018-20679

An issue was discovered in BusyBox before 1.30.0. An out of bounds read in udhcp components consumed by the DHCP server, client, and relay allows a remote attacker to leak sensitive information from the stack by sending a crafted DHCP message. This is related to verification in udhcpgetoption in...

7.5CVSS6.8AI score0.07694EPSS
Exploits2References3
UbuntuCve
UbuntuCve
•added 2019/01/07 5:29 p.m.•56 views

CVE-2019-5489

The mincore implementation in mm/mincore.c in the Linux kernel through 4.19.13 allowed local attackers to observe page cache access patterns of other processes on the same system, potentially allowing sniffing of secret information. Fixing this affects the output of the fincore program. Limited...

5.5CVSS6.8AI score0.00774EPSS
Exploits1References6
UbuntuCve
UbuntuCve
•added 2018/12/20 5:29 p.m.•56 views

CVE-2018-1000875

Berkeley Open Infrastructure for Network Computing BOINC Server and Website Code version 0.9-1.0.2 contains a CWE-302: Authentication Bypass by Assumed-Immutable Data vulnerability in Website Terms of Service Acceptance Page that can result in Access to any user account. This attack appear to be...

9.8CVSS7.2AI score0.01676EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2018/07/24 12:0 a.m.•56 views

CVE-2018-1336

An improper handing of overflow in the UTF-8 decoder with supplementary characters can lead to an infinite loop in the decoder causing a Denial of Service. Versions Affected: Apache Tomcat 9.0.0.M9 to 9.0.7, 8.5.0 to 8.5.30, 8.0.0.RC1 to 8.0.51, and 7.0.28 to 7.0.86...

7.5CVSS7.1AI score0.20599EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2018/06/13 4:29 p.m.•56 views

CVE-2018-12320

There is a use after free in radare2 2.6.0 in ranalbbfree in libr/anal/bb.c via a crafted Java binary file...

7.8CVSS7.1AI score0.01021EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2018/05/21 9:0 p.m.•56 views

CVE-2018-3639

Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Stor...

5.5CVSS7.2AI score0.60631EPSS
Exploits2References16
UbuntuCve
UbuntuCve
•added 2018/02/02 9:29 a.m.•56 views

CVE-2018-6548

A use-after-free issue was discovered in libwebm through 2018-02-02. If a Vp9HeaderParser was initialized once before, its property frame would not be changed because of code in vp9parser::Vp9HeaderParser::SetFrame. Its frame could be freed while the corresponding pointer would not be updated,...

9.8CVSS7.2AI score0.01387EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2017/10/19 12:0 a.m.•56 views

CVE-2017-10357

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Serialization. Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144. Easily exploitable vulnerability allows unauthenticated attacker with network access via...

5.3CVSS6.8AI score0.03305EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2017/10/02 12:0 a.m.•56 views

CVE-2017-14491

Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service crash or execute arbitrary code via a crafted DNS response...

9.8CVSS7.6AI score0.84925EPSS
Exploits6References4
UbuntuCve
UbuntuCve
•added 2017/07/21 12:0 a.m.•56 views

CVE-2017-7542

The ip6find1stfragopt function in net/ipv6/outputcore.c in the Linux kernel through 4.12.3 allows local users to cause a denial of service integer overflow and infinite loop by leveraging the ability to open a raw socket...

5.5CVSS6.8AI score0.00454EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2017/07/11 12:0 a.m.•56 views

CVE-2017-11176

The mqnotify function in the Linux kernel through 4.11.9 does not set the sock pointer to NULL upon entry into the retry logic. During a user-space close of a Netlink socket, it allows attackers to cause a denial of service use-after-free or possibly have unspecified other impact...

7.8CVSS6.8AI score0.03631EPSS
Exploits8References11
UbuntuCve
UbuntuCve
•added 2017/06/19 12:0 a.m.•56 views

CVE-2017-7679

In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, modmime can read one byte past the end of a buffer when sending a malicious Content-Type response header...

9.8CVSS7.1AI score0.39341EPSS
Exploits3References4
UbuntuCve
UbuntuCve
•added 2017/05/18 12:0 a.m.•56 views

CVE-2017-9048

libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a stack-based buffer overflow. The function xmlSnprintfElementContent in valid.c is supposed to recursively dump the element content definition into a char buffer 'buf' of size 'size'. At the end of the routine, the function may strcat two more...

7.5CVSS7AI score0.04888EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2017/05/02 9:59 p.m.•56 views

CVE-2015-9004

kernel/events/core.c in the Linux kernel before 3.19 mishandles counter grouping, which allows local users to gain privileges via a crafted application, related to the perfpmuregister and perfeventopen functions...

9.3CVSS6.8AI score0.00845EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2016/06/24 12:0 a.m.•56 views

CVE-2016-5771

splarray.c in the SPL extension in PHP before 5.5.37 and 5.6.x before 5.6.23 improperly interacts with the unserialize implementation and garbage collection, which allows remote attackers to execute arbitrary code or cause a denial of service use-after-free and application crash via crafted...

9.8CVSS7.4AI score0.15484EPSS
Exploits5References2
UbuntuCve
UbuntuCve
•added 2016/05/22 1:59 a.m.•56 views

CVE-2015-8867

The opensslrandompseudobytes function in ext/openssl/openssl.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 incorrectly relies on the deprecated RANDpseudobytes function, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified...

7.5CVSS7.2AI score0.04353EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2015/12/17 12:0 a.m.•56 views

CVE-2015-8552

The PCI backend driver in Xen, when running on an x86 system and using Linux 3.1.x through 4.3.x as the driver domain, allows local guest administrators to generate a continuous stream of WARN messages and cause a denial of service disk consumption by leveraging a system with access to a...

4.4CVSS6.8AI score0.00446EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2015/07/31 12:0 a.m.•56 views

CVE-2015-5621

The snmppduparse function in snmpapi.c in net-snmp 5.7.2 and earlier does not remove the varBind variable in a netsnmpvariablelist item when parsing of the SNMP PDU fails, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted packet...

7.5CVSS7.3AI score0.40002EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2015/06/09 12:0 a.m.•56 views

CVE-2015-4025

PHP before 5.4.41, 5.5.x before 5.5.25, and 5.6.x before 5.6.9 truncates a pathname upon encountering a \x00 character in certain situations, which allows remote attackers to bypass intended extension restrictions and access files or directories with unexpected names via a crafted argument to 1...

7.5CVSS7.2AI score0.20233EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2014/12/06 3:59 p.m.•56 views

CVE-2014-9278

The OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7 and when running in a Kerberos environment, allows remote authenticated users to log in as another user when they are listed in the .k5users file of that user, which might bypass intended authentication requirements that would...

4CVSS6.8AI score0.01833EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2014/11/29 12:0 a.m.•56 views

CVE-2014-9090

The dodoublefault function in arch/x86/kernel/traps.c in the Linux kernel through 3.17.4 does not properly handle faults associated with the Stack Segment SS segment register, which allows local users to cause a denial of service panic via a modifyldt system call, as demonstrated by sigreturn32 i...

4.9CVSS6.8AI score0.00376EPSS
Exploits0References12
UbuntuCve
UbuntuCve
•added 2014/06/05 12:0 a.m.•56 views

CVE-2014-3917

kernel/auditsc.c in the Linux kernel through 3.14.5, when CONFIGAUDITSYSCALL is enabled with certain syscall rules, allows local users to obtain potentially sensitive single-bit values from kernel memory or cause a denial of service OOPS via a large value of a syscall number...

3.3CVSS6.5AI score0.0036EPSS
Exploits0References12
Total number of security vulnerabilities5000