Lucene search
K
UbuntucveMost viewed

68528 matches found

UbuntuCve
UbuntuCve
•added 2019/09/10 5:15 p.m.•346 views

CVE-2019-12105

In Supervisor through 4.0.2, an unauthenticated user can read log files or restart a service. Note: The maintainer responded that the affected component, inethttpserver, is not enabled by default but if the user enables it and does not set a password, Supervisor logs a warning message. The...

8.2CVSS7.1AI score0.02283EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2019/05/03 8:29 p.m.•346 views

CVE-2019-11037

In PHP imagick extension in versions between 3.3.0 and 3.4.4, writing to an array of values in ImagickKernel::fromMatrix function did not check that the address will be within the allocated array. This could lead to out of bounds write to memory if the function is called with the data controlled ...

9.8CVSS6.8AI score0.01972EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2023/10/25 12:0 a.m.•345 views

CVE-2023-46118

RabbitMQ is a multi-protocol messaging and streaming broker. HTTP API did not enforce an HTTP request body limit, making it vulnerable for denial of service DoS attacks with very large messages. An authenticated user with sufficient credentials can publish a very large messages over the HTTP API...

4.9CVSS6.1AI score0.01077EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2022/01/25 6:15 a.m.•345 views

CVE-2022-23935

lib/Image/ExifTool.pm in ExifTool before 12.38 mishandles a $file = /|$/ check, leading to command injection...

7.8CVSS7.1AI score0.07575EPSS
Exploits5References3
UbuntuCve
UbuntuCve
•added 2020/09/16 2:15 p.m.•345 views

CVE-2020-25412

comline in command.c in gnuplot 5.4 leads to an out-of-bounds-write from strncpy that may lead to arbitrary code execution...

9.8CVSS7.2AI score0.02528EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2024/08/14 12:0 a.m.•344 views

CVE-2023-49141

Improper isolation in some IntelR Processors stream cache mechanism may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS6.5AI score0.00285EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/02/14 12:0 a.m.•344 views

CVE-2023-25564

GSS-NTLMSSP is a mechglue plugin for the GSSAPI library that implements NTLM authentication. Prior to version 1.2.0, memory corruption can be triggered when decoding UTF16 strings. The variable outlen was not initialized and could cause writing a zero to an arbitrary place in memory if...

8.2CVSS7.2AI score0.01942EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2019/04/20 12:29 a.m.•344 views

CVE-2019-11358

jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extendtrue, , ... because of Object.prototype pollution. If an unsanitized source object contained an enumerable proto property, it could extend the native Object.prototype...

6.1CVSS6.8AI score0.87218EPSS
Exploits4References8
UbuntuCve
UbuntuCve
•added 2023/08/08 12:0 a.m.•343 views

CVE-2023-4156

A heap out-of-bounds read flaw was found in builtin.c in the gawk package. This issue may lead to a crash and could be used to read sensitive information...

7.1CVSS6.6AI score0.00428EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2019/01/22 8:29 a.m.•343 views

CVE-2019-6502

sccontextcreate in ctx.c in libopensc in OpenSC 0.19.0 has a memory leak, as demonstrated by a call from eidenv...

7.5CVSS6.8AI score0.02198EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2023/06/14 2:15 p.m.•342 views

CVE-2023-35116

jackson-databind through 2.15.2 allows attackers to cause a denial of service or other unspecified impact via a crafted object that uses cyclic dependencies. NOTE: the vendor's perspective is that this is not a valid vulnerability report, because the steps of constructing a cyclic data structure...

4.7CVSS6.8AI score0.00352EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2023/04/29 12:15 a.m.•342 views

CVE-2023-31485

GitLab::API::v4 through 0.26 does not verify TLS certificates when connecting to a GitLab server, enabling machine-in-the-middle attacks...

5.9CVSS6.2AI score0.00651EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2017/07/31 1:29 p.m.•342 views

CVE-2017-11549

The playmidi function in playmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service large loop and CPU consumption via a crafted mid file. NOTE: CPU consumption might be relevant when using the --background option...

7.1CVSS6AI score0.0096EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2024/08/12 1:38 p.m.•341 views

CVE-2024-43168

DISPUTE NOTE: this issue does not pose a security risk as it according to analysis by the original software developer, NLnet Labs falls within the expected functionality and security controls of the application. Red Hat has made a claim that there is a security risk within Red Hat products. NLnet...

4.8CVSS6.9AI score0.00311EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2020/12/14 8:15 p.m.•341 views

CVE-2020-29509

The encoding/xml package in Go all versions does not correctly preserve the semantics of attribute namespace prefixes during tokenization round-trips, which allows an attacker to craft inputs that behave in conflicting ways during different stages of processing in affected downstream applications...

9.8CVSS6.9AI score0.02081EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2024/04/10 12:15 a.m.•340 views

CVE-2024-3119

A buffer overflow vulnerability exists in all versions of sngrep since v0.4.2, due to improper handling of 'Call-ID' and 'X-Call-ID' SIP headers. The functions sipgetcallid and sipgetxcallid in sip.c use the strncpy function to copy header contents into fixed-size buffers without checking the dat...

9.8CVSS7.5AI score0.018EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2024/03/15 11:15 a.m.•340 views

CVE-2024-23944

Information disclosure in persistent watchers handling in Apache ZooKeeper due to missing ACL check. It allows an attacker to monitor child znodes by attaching a persistent watcher addWatch command to a parent which the attacker has already access to. ZooKeeper server doesn't do ACL check when th...

5.3CVSS6.7AI score0.00246EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2023/06/28 12:0 p.m.•339 views

CVE-2023-3297

In Ubuntu's accountsservice an unprivileged local attacker can trigger a use-after-free vulnerability in accountsservice by sending a D-Bus message to the accounts-daemon process...

8.1CVSS7.1AI score0.0033EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2022/01/06 11:15 p.m.•338 views

CVE-2022-21663

WordPress is a free and open-source content management system written in PHP and paired with a MariaDB database. On a multisite, users with Super Admin role can bypass explicit/additional hardening under certain conditions through object injection. This has been patched in WordPress version 5.8.3...

7.2CVSS7AI score0.03695EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2021/09/16 3:15 p.m.•336 views

CVE-2021-39275

apescapequotes may write beyond the end of a buffer when given malicious input. No included modules pass untrusted data to these functions, but third-party / external modules may. This issue affects Apache HTTP Server 2.4.48 and earlier...

9.8CVSS7.1AI score0.36339EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2018/11/18 7:29 p.m.•336 views

CVE-2018-19358

GNOME Keyring through 3.28.2 allows local users to retrieve login credentials via a Secret Service API call and the D-Bus interface if the keyring is unlocked, a similar issue to CVE-2008-7320. One perspective is that this occurs because available D-Bus protection mechanisms involving the busconf...

7.8CVSS7AI score0.00554EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2017/10/30 4:29 p.m.•336 views

CVE-2012-0881

Apache Xerces2 Java Parser before 2.12.0 allows remote attackers to cause a denial of service CPU consumption via a crafted message to an XML service, which triggers hash table collisions...

7.8CVSS7.2AI score0.17461EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2024/08/27 4:15 a.m.•335 views

CVE-2024-45321

The App::cpanminus package through 1.7047 for Perl downloads code via insecure HTTP, enabling code execution for network attackers...

9.8CVSS7.5AI score0.00737EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2018/06/20 2:29 p.m.•335 views

CVE-2018-12327

Stack-based buffer overflow in ntpq and ntpdc of NTP version 4.2.8p11 allows an attacker to achieve code execution or escalate to higher privileges via a long string as the argument for an IPv4 or IPv6 command-line parameter. NOTE: It is unclear whether there are any common situations in which nt...

9.8CVSS7.4AI score0.29037EPSS
Exploits5References4
UbuntuCve
UbuntuCve
•added 2021/03/05 9:15 p.m.•330 views

CVE-2021-28041

ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios, such as unconstrained agent-socket access on a legacy operating system, or the forwarding of an agent to an attacker-controlled host...

7.1CVSS7AI score0.03422EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2023/02/03 6:15 a.m.•326 views

CVE-2023-25136

OpenSSH server sshd 9.1 introduced a double-free vulnerability during options.kexalgorithms handling. This is fixed in OpenSSH 9.2. The double free can be leveraged, by an unauthenticated remote attacker in the default configuration, to jump to any location in the sshd address space. One...

6.5CVSS7.5AI score0.89955EPSS
Exploits10References4
UbuntuCve
UbuntuCve
•added 2020/03/24 2:15 p.m.•324 views

CVE-2020-10684

A flaw was found in Ansible Engine, all versions 2.7.x, 2.8.x and 2.9.x prior to 2.7.17, 2.8.9 and 2.9.6 respectively, when using ansiblefacts as a subkey of itself and promoting it to a variable when inject is enabled, overwriting the ansiblefacts after the clean. An attacker could take advantag...

7.9CVSS6.8AI score0.00345EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2023/05/30 12:0 a.m.•320 views

CVE-2023-34151

A vulnerability was found in ImageMagick. This security flaw ouccers as an undefined behaviors of casting double to sizet in svg, mvg and other coders recurring bugs of CVE-2022-32546...

5.5CVSS6.5AI score0.01018EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2022/03/26 1:15 p.m.•320 views

CVE-2022-27943

libiberty/rust-demangle.c in GNU GCC 11.2 allows stack consumption in demangleconst, as demonstrated by nm-new...

5.5CVSS6.8AI score0.00892EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2024/06/07 1:15 a.m.•317 views

CVE-2022-4968

netplan leaks the private key of wireguard to local users. Versions after 1.0 are not affected...

6.5CVSS5.9AI score0.00264EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2011/12/27 6:55 p.m.•315 views

CVE-2007-6750

The Apache HTTP Server 1.x and 2.x allows remote attackers to cause a denial of service daemon outage via partial HTTP requests, as demonstrated by Slowloris, related to the lack of the modreqtimeout module in versions before 2.2.15...

5CVSS7.2AI score0.71634EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2021/09/20 4:15 p.m.•311 views

CVE-2020-20898

Integer Overflow vulnerability in function filter16prewitt in libavfilter/vfconvolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts...

8.8CVSS6.9AI score0.01271EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2021/06/10 7:15 a.m.•305 views

CVE-2019-17567

Apache HTTP Server versions 2.4.6 to 2.4.46 modproxywstunnel configured on an URL that is not necessarily Upgraded by the origin server was tunneling the whole connection regardless, thus allowing for subsequent requests on the same connection to pass through with no HTTP validation, authenticati...

5.3CVSS6.8AI score0.60266EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2022/10/31 12:0 a.m.•304 views

CVE-2022-31630

In PHP versions prior to 7.4.33, 8.0.25 and 8.1.12, when using imageloadfont function in gd extension, it is possible to supply a specially crafted font file, such as if the loaded font is used with imagechar function, the read outside allocated buffer will be used. This can lead to crashes or...

7.1CVSS7AI score0.02197EPSS
Exploits3References3
UbuntuCve
UbuntuCve
•added 2011/07/28 6:55 p.m.•303 views

CVE-2011-2688

SQL injection vulnerability in mysql/mysql-auth.pl in the modauthnzexternal module 3.2.5 and earlier for the Apache HTTP Server allows remote attackers to execute arbitrary SQL commands via the user field...

7.5CVSS6.2AI score0.05659EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2023/01/14 1:15 a.m.•295 views

CVE-2023-22496

Netdata is an open source option for real-time infrastructure monitoring and troubleshooting. An attacker with the ability to establish a streaming connection can execute arbitrary commands on the targeted Netdata agent. When an alert is triggered, the function healthalarmexecute is called. This...

9.8CVSS7.2AI score0.36171EPSS
Exploits2References2
UbuntuCve
UbuntuCve
•added 2024/12/12 12:0 a.m.•292 views

CVE-2024-45337

Applications and libraries which misuse connection.serverAuthenticate via callback field ServerConfig.PublicKeyCallback may be susceptible to an authorization bypass. The documentation for ServerConfig.PublicKeyCallback says that "A call to this function does not guarantee that the key offered is...

9.1CVSS6.8AI score0.03153EPSS
Exploits2References8
UbuntuCve
UbuntuCve
•added 2024/01/31 10:15 p.m.•292 views

CVE-2024-23653

BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. In addition to running containers as build steps, BuildKit also provides APIs for running interactive containers based on built images. It was possible to use these APIs to ask...

9.8CVSS6.9AI score0.02983EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2020/06/24 7:15 p.m.•291 views

CVE-2020-15025

ntpd in ntp 4.2.8 before 4.2.8p15 and 4.3.x before 4.3.101 allows remote attackers to cause a denial of service memory consumption by sending packets, because memory is not freed in situations where a CMAC key is used and associated with a CMAC algorithm in the ntp.keys file...

4.9CVSS6.5AI score0.03357EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2013/03/07 12:0 a.m.•288 views

CVE-2012-6542

The llcuigetname function in net/llc/afllc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument...

1.9CVSS6.8AI score0.00354EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2020/03/09 12:15 a.m.•287 views

CVE-2020-10232

In version 4.8.0 and earlier of The Sleuth Kit TSK, there is a stack buffer overflow vulnerability in the YAFFS file timestamp parsing logic in yaffsfsistat in fs/yaffs.c...

9.8CVSS7.2AI score0.02419EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2010/06/15 2:4 p.m.•285 views

CVE-2010-2287

Buffer overflow in the SigComp Universal Decompressor Virtual Machine dissector in Wireshark 0.10.8 through 1.0.13 and 1.2.0 through 1.2.8 has unknown impact and remote attack vectors...

8.3CVSS6AI score0.00812EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2024/03/19 4:15 p.m.•283 views

CVE-2023-6597

An issue was found in the CPython tempfile.TemporaryDirectory class affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, and 3.8.18 and prior. The tempfile.TemporaryDirectory class would dereference symlinks during cleanup of permissions-related errors. This means users which can run privileged...

7.8CVSS6.8AI score0.00313EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2019/12/13 1:15 a.m.•283 views

CVE-2019-16775

Versions of the npm CLI prior to 6.13.3 are vulnerable to an Arbitrary File Write. It is possible for packages to create symlinks to files outside of thenodemodules folder through the bin field upon installation. A properly constructed entry in the package.json bin field would allow a package...

7.7CVSS7AI score0.03266EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2020/07/09 4:15 p.m.•281 views

CVE-2020-10756

An out-of-bounds read vulnerability was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the icmp6sendechoreply routine while replying to an ICMP echo request, also known as ping. This flaw allows a malicious guest to leak the contents of the host memory,...

6.5CVSS6.8AI score0.0051EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2020/10/15 3:15 p.m.•280 views

CVE-2020-6108

An exploitable code execution vulnerability exists in the fsckchkorphannode functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause a heap buffer overflow resulting in a code execution. An attacker can provide a malicious file to trigger this vulnerability...

8.2CVSS7.6AI score0.02213EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2023/01/17 9:15 p.m.•279 views

CVE-2023-22727

CakePHP is a development framework for PHP web apps. In affected versions the Cake\Database\Query::limit and Cake\Database\Query::offset methods are vulnerable to SQL injection if passed un-sanitized user request data. This issue has been fixed in 4.2.12, 4.3.11, 4.4.10. Users are advised to...

9.8CVSS7.1AI score0.00858EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2020/11/17 12:0 a.m.•279 views

CVE-2020-26951

A parsing and event loading mismatch in Firefox's SVG code could have allowed load events to fire, even after sanitization. An attacker already capable of exploiting an XSS vulnerability in privileged internal pages could have used this attack to bypass our built-in sanitizer. This vulnerability...

6.1CVSS6.9AI score0.01038EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2017/07/03 4:29 p.m.•279 views

CVE-2017-5944

The dashboard subscription interface in Request Tracker RT 4.x before 4.0.25, 4.2.x before 4.2.14, and 4.4.x before 4.4.2 might allow remote authenticated users with certain privileges to execute arbitrary code via a crafted saved search name...

8.8CVSS7.5AI score0.02784EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2022/05/12 5:15 a.m.•277 views

CVE-2022-30594

The Linux kernel before 5.17.2 mishandles seccomp permissions. The PTRACESEIZE code path allows attackers to bypass intended restrictions on setting the PTSUSPENDSECCOMP flag...

7.8CVSS6.8AI score0.00798EPSS
Exploits1References11
Total number of security vulnerabilities5000