Lucene search
+L
UbuntucveMost viewed

71772 matches found

UbuntuCve
UbuntuCve
•added 2021/11/23 10:15 p.m.•51 views

CVE-2021-38003

Inappropriate implementation in V8 in Google Chrome prior to 95.0.4638.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.3AI score0.36238EPSS
Exploits2References2
UbuntuCve
UbuntuCve
•added 2021/11/10 3:15 p.m.•51 views

CVE-2021-43523

In uClibc and uClibc-ng before 1.0.39, incorrect handling of special characters in domain names returned by DNS servers via gethostbyname, getaddrinfo, gethostbyaddr, and getnameinfo can lead to output of wrong hostnames leading to domain hijacking or injection into applications leading to remote...

9.6CVSS7.3AI score0.03261EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2021/11/04 7:15 p.m.•51 views

CVE-2021-43389

An issue was discovered in the Linux kernel before 5.14.15. There is an array-index-out-of-bounds flaw in the detachcapictr function in drivers/isdn/capi/kcapi.c...

5.5CVSS6.8AI score0.00669EPSS
Exploits1References14
UbuntuCve
UbuntuCve
•added 2021/10/05 12:15 a.m.•51 views

CVE-2021-42008

The decodedata function in drivers/net/hamradio/6pack.c in the Linux kernel before 5.13.13 has a slab out-of-bounds write. Input from a process that has the CAPNETADMIN capability can lead to root access...

7.8CVSS6.8AI score0.01476EPSS
Exploits3References12
UbuntuCve
UbuntuCve
•added 2021/09/08 3:15 p.m.•51 views

CVE-2021-1820

A memory initialization issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. Processing maliciously crafted web content may result in the disclosure of process memory...

6.5CVSS6.8AI score0.01334EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2021/09/08 1:28 a.m.•51 views

CVE-2021-3781

A trivial sandbox enabled with the -dSAFER option escape flaw was found in the ghostscript interpreter by injecting a specially crafted pipe command. This flaw allows a specially crafted document to execute arbitrary commands on the system in the context of the ghostscript interpreter. The highes...

9.9CVSS7.3AI score0.83913EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/09/07 3:15 p.m.•51 views

CVE-2021-35267

NTFS-3G versions 2021.8.22, a stack buffer overflow can occur when correcting differences in the MFT and MFTMirror allowing for code execution or escalation of privileges when setuid-root...

7.8CVSS7AI score0.00488EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2021/08/24 2:15 p.m.•51 views

CVE-2021-36690

A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo function when there is a crafted SQL query. NOTE: the vendor disputes the relevance of this report because a sqlite3.exe user already has full privileges e.g., is intentionally allowe...

7.5CVSS6.8AI score0.03898EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2021/06/22 3:15 p.m.•51 views

CVE-2021-34428

For Eclipse Jetty versions = 9.4.40, = 10.0.2, = 11.0.2, if an exception is thrown from the SessionListenersessionDestroyed method, then the session ID is not invalidated in the session ID manager. On deployments with clustered sessions and multiple contexts this can result in a session not being...

3.6CVSS6.8AI score0.00963EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2021/05/06 1:15 p.m.•51 views

CVE-2021-29921

In Python before 3,9,5, the ipaddress library mishandles leading zero characters in the octets of an IP address string. This in some situations allows attackers to bypass access control that is based on IP addresses...

9.8CVSS6.9AI score0.06827EPSS
Exploits1References12
UbuntuCve
UbuntuCve
•added 2021/04/27 6:15 a.m.•51 views

CVE-2019-25042

Unbound before 1.9.5 allows an out-of-bounds write via a compressed name in rdatacopy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited...

9.8CVSS7.2AI score0.02037EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/04/24 12:0 a.m.•51 views

CVE-2021-3522

GStreamer before 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags...

5.5CVSS6.8AI score0.05372EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2021/03/21 5:15 a.m.•51 views

CVE-2021-28957

An XSS vulnerability was discovered in python-lxml's clean module versions before 4.6.3. When disabling the safeattrsonly and forms arguments, the Cleaner class does not remove the formaction attribute allowing for JS to bypass the sanitizer. A remote attacker could exploit this flaw to run...

6.1CVSS6.8AI score0.04002EPSS
Exploits1References7
UbuntuCve
UbuntuCve
•added 2021/03/09 6:15 p.m.•51 views

CVE-2021-21166

Data race in audio in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.3AI score0.26525EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/02/26 11:15 p.m.•51 views

CVE-2020-27618

The iconv function in the GNU C Library aka glibc or libc6 2.32 and earlier, when processing invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, and IBM1399 encodings, fails to advance the input state, which could lead to an infinite loop in applications, resulting in a deni...

5.5CVSS6.7AI score0.00887EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2021/02/25 9:15 a.m.•51 views

CVE-2020-36254

scp.c in Dropbear before 2020.79 mishandles the filename of . or an empty filename, a related issue to CVE-2018-20685...

8.1CVSS7.2AI score0.01554EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/02/15 1:15 p.m.•51 views

CVE-2021-23336

The package python/cpython from 0 and before 3.6.13, from 3.7.0 and before 3.7.10, from 3.8.0 and before 3.8.8, from 3.9.0 and before 3.9.2 are vulnerable to Web Cache Poisoning via urllib.parse.parseqsl and urllib.parse.parseqs by using a vector called parameter cloaking. When the attacker can...

5.9CVSS6.9AI score0.35717EPSS
Exploits1References7
UbuntuCve
UbuntuCve
•added 2021/02/08 11:15 a.m.•51 views

CVE-2021-21436

Agents are able to see and link Config Items without permissions, which are defined in General Catalog. This issue affects: OTRS AG OTRSCIsInCustomerFrontend 7.0.x version 7.0.14 and prior versions...

4.3CVSS5.9AI score0.0076EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/01/08 12:0 a.m.•51 views

CVE-2020-16044

Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet...

8.8CVSS7.2AI score0.01304EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2020/12/09 5:15 p.m.•51 views

CVE-2020-29660

A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/ttyio.c and drivers/tty/ttyjobctrl.c may allow a read-after-free attack against TIOCGSID, aka CID-c8bcd9c5be24...

4.4CVSS6.7AI score0.00468EPSS
Exploits1References10
UbuntuCve
UbuntuCve
•added 2020/10/13 8:15 p.m.•51 views

CVE-2020-25645

A flaw was found in the Linux kernel in versions before 5.9-rc7. Traffic between two Geneve endpoints may be unencrypted when IPsec is configured to encrypt traffic for the specific UDP port used by the GENEVE tunnel allowing anyone between the two endpoints to read the traffic unencrypted. The...

7.5CVSS6.6AI score0.02433EPSS
Exploits1References6
UbuntuCve
UbuntuCve
•added 2020/10/13 5:0 p.m.•51 views

CVE-2020-16120

Overlayfs did not properly perform permission checking when copying up files in an overlayfs and could be exploited from within a user namespace, if, for example, unprivileged user namespaces were allowed. It was possible to have a file not readable by an unprivileged user to be copied to a...

5.1CVSS6.8AI score0.00396EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2020/09/15 8:15 p.m.•51 views

CVE-2020-14314

A memory out-of-bounds read flaw was found in the Linux kernel before 5.9-rc2 with the ext3/ext4 file system, in the way it accesses a directory with broken indexing. This flaw allows a local user to crash the system if the directory exists. The highest threat from this vulnerability is to system...

5.5CVSS6.7AI score0.00356EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2020/08/24 12:0 a.m.•51 views

CVE-2020-15811

An issue was discovered in Squid before 4.13 and 5.x before 5.0.4. Due to incorrect data validation, HTTP Request Splitting attacks may succeed against HTTP and HTTPS traffic. This leads to cache poisoning. This allows any client, including browser scripts, to bypass local security and poison the...

6.5CVSS6.7AI score0.04235EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2020/07/17 3:15 a.m.•51 views

CVE-2020-15803

Zabbix before 3.0.32rc1, 4.x before 4.0.22rc1, 4.1.x through 4.4.x before 4.4.10rc1, and 5.x before 5.0.2rc1 allows stored XSS in the URL Widget...

6.1CVSS6.9AI score0.32304EPSS
Exploits2References3
UbuntuCve
UbuntuCve
•added 2020/05/26 6:15 p.m.•51 views

CVE-2020-12388

The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape. Note: this issue only affects Firefox on Windows operating systems.. This vulnerability affects Firefox ESR 68.8 and Firefox 76...

10CVSS7.1AI score0.02714EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2020/05/24 12:0 a.m.•51 views

CVE-2005-1513

Integer overflow in the strallocreadyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large SMTP request...

9.8CVSS7.3AI score0.10789EPSS
Exploits4References5
UbuntuCve
UbuntuCve
•added 2020/05/19 4:15 p.m.•51 views

CVE-2020-10135

Legacy pairing and secure-connections pairing authentication in Bluetooth BR/EDR Core Specification v5.2 and earlier may allow an unauthenticated user to complete authentication without pairing credentials via adjacent access. An unauthenticated, adjacent attacker could impersonate a Bluetooth...

5.4CVSS6.8AI score0.02386EPSS
Exploits2References14
UbuntuCve
UbuntuCve
•added 2020/05/18 6:15 p.m.•51 views

CVE-2020-13143

gadgetdevdescUDCstore in drivers/usb/gadget/configfs.c in the Linux kernel 3.16 through 5.6.13 relies on kstrdup without considering the possibility of an internal '\0' value, which allows attackers to trigger an out-of-bounds read, aka CID-15753588bcd4...

6.5CVSS6.8AI score0.04505EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2020/05/12 12:0 p.m.•51 views

CVE-2020-10711

A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem in versions before 5.7. This flaw occurs while importing the Commercial IP Security Option CIPSO protocol's category bitmap into the SELinux extensible bitmap via the' ebitmapnetlblimport' routine. While processing...

5.9CVSS6.7AI score0.03097EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2020/05/06 12:0 a.m.•51 views

CVE-2020-6831

A buffer overflow could occur when parsing and validating SCTP chunks in WebRTC. This could have led to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox ESR 68.8, Firefox 76, and Thunderbird 68.8.0...

9.8CVSS7.3AI score0.05803EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2020/04/30 5:15 p.m.•51 views

CVE-2020-1752

A use-after-free vulnerability introduced in glibc upstream version 2.14 was found in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially...

7CVSS7AI score0.00535EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2020/03/02 4:15 a.m.•51 views

CVE-2020-9547

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to com.ibatis.sqlmap.engine.transaction.jta.JtaTransactionConfig aka ibatis-sqlmap...

9.8CVSS7.1AI score0.18671EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2020/01/02 11:15 p.m.•51 views

CVE-2016-1000027

Pivotal Spring Framework through 5.3.16 suffers from a potential remote code execution RCE issue if used for Java deserialization of untrusted data. Depending on how the library is implemented within a product, this issue may or not occur, and authentication may be required. NOTE: the vendor's...

9.8CVSS7.2AI score0.32257EPSS
Exploits4References2
UbuntuCve
UbuntuCve
•added 2019/12/18 6:15 p.m.•51 views

CVE-2019-8813

A logic issue was addressed with improved state management. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0. Processing maliciously crafted web content may lead to universal cross site scripting...

6.1CVSS5.7AI score0.0132EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2019/12/18 6:15 p.m.•51 views

CVE-2019-8823

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary...

8.8CVSS6.8AI score0.0192EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2019/12/12 8:15 p.m.•51 views

CVE-2019-19768

In the Linux kernel 5.4.0-rc2, there is a use-after-free read in the blkaddtrace function in kernel/trace/blktrace.c which is used to fill out a blkiotrace structure and place it in a per-cpu sub-buffer...

7.5CVSS6.7AI score0.0415EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2019/12/03 4:15 p.m.•51 views

CVE-2019-19532

In the Linux kernel before 5.3.9, there are multiple out-of-bounds write bugs that can be caused by a malicious USB device in the Linux kernel HID drivers, aka CID-d9d4b1e46d95. This affects drivers/hid/hid-axff.c, drivers/hid/hid-dr.c, drivers/hid/hid-emsff.c, drivers/hid/hid-gaff.c,...

6.8CVSS6.8AI score0.00504EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2019/09/06 10:15 p.m.•51 views

CVE-2019-9456

In the Android kernel in Pixel C USB monitor driver there is a possible OOB write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

6.7CVSS6.9AI score0.00197EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2019/08/20 8:15 a.m.•51 views

CVE-2019-15239

In the Linux kernel, a certain net/ipv4/tcpoutput.c change, which was properly incorporated into 4.16.12, was incorrectly backported to the earlier longterm kernels, introducing a new vulnerability that was potentially more severe than the issue that was intended to be fixed by backporting...

7.8CVSS6.9AI score0.00589EPSS
Exploits1References7
UbuntuCve
UbuntuCve
•added 2019/08/19 10:15 p.m.•51 views

CVE-2019-15217

An issue was discovered in the Linux kernel before 5.2.3. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/zr364xx/zr364xx.c driver...

4.9CVSS6.7AI score0.0068EPSS
Exploits1References8
UbuntuCve
UbuntuCve
•added 2019/08/19 12:0 a.m.•51 views

CVE-2019-15212

An issue was discovered in the Linux kernel before 5.1.8. There is a double-free caused by a malicious USB device in the drivers/usb/misc/rio500.c driver...

4.9CVSS6.7AI score0.00767EPSS
Exploits1References7
UbuntuCve
UbuntuCve
•added 2019/08/13 12:0 a.m.•51 views

CVE-2019-9517

Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially leading to a denial of service. The attacker opens the HTTP/2 window so the peer can send without constraint; however, they leave the TCP window closed so the peer cannot actually write many of the byt...

7.8CVSS7.1AI score0.27004EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2019/07/26 12:0 a.m.•51 views

CVE-2019-14284

In the Linux kernel before 5.2.3, drivers/block/floppy.c allows a denial of service by setupformatparams division-by-zero. Two consecutive ioctls can trigger the bug: the first one should set the drive geometry with .sect and .rate values that make FSECTPERTRACK be zero. Next, the floppy format...

6.2CVSS6.7AI score0.00703EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2019/07/05 12:0 a.m.•51 views

CVE-2019-10638

In the Linux kernel before 5.1.7, a device can be tracked by an attacker using the IP ID values the kernel produces for connection-less protocols e.g., UDP and ICMP. When such traffic is sent to multiple destination IP addresses, it is possible to obtain hash collisions of indices to the counter...

6.5CVSS6.7AI score0.02571EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2019/07/03 7:15 p.m.•51 views

CVE-2019-9186

In several JetBrains IntelliJ IDEA versions, a Spring Boot run configuration with the default setting allowed remote attackers to execute code when the configuration is running, because a JMX server listens on all interfaces instead of listening on only the localhost interface. This issue has bee...

9.8CVSS7.1AI score0.04509EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2019/06/04 12:0 a.m.•51 views

CVE-2019-10149

A flaw was found in Exim versions 4.87 to 4.91 inclusive. Improper validation of recipient address in delivermessage function in /src/deliver.c may lead to remote command execution...

10CVSS7.3AI score0.99961EPSS
Exploits27References4
UbuntuCve
UbuntuCve
•added 2019/04/02 12:0 a.m.•51 views

CVE-2019-0217

In Apache HTTP Server 2.4 release 2.4.38 and prior, a race condition in modauthdigest when running in a threaded server could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions...

7.5CVSS7AI score0.17666EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2019/03/28 9:29 p.m.•51 views

CVE-2019-0224

In Apache JSPWiki 2.9.0 to 2.11.0.M2, a carefully crafted URL could execute javascript on another user's session. No information could be saved on the server or jspwiki database, nor would an attacker be able to execute js on someone else's browser; only on its own browser...

6.1CVSS6.5AI score0.0515EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2019/03/12 12:0 a.m.•51 views

CVE-2019-9740

An issue was discovered in urllib2 in Python 2.x through 2.7.16 and urllib in Python 3.x through 3.7.3. CRLF injection is possible if the attacker controls a url parameter, as demonstrated by the first argument to urllib.request.urlopen with \r\n specifically in the query string after a ? charact...

6.1CVSS6.8AI score0.0552EPSS
Exploits1References5
Total number of security vulnerabilities5000