Lucene search
+L
UbuntucveMost viewed

71772 matches found

UbuntuCve
UbuntuCve
•added 2021/10/05 12:15 a.m.•50 views

CVE-2021-42008

The decodedata function in drivers/net/hamradio/6pack.c in the Linux kernel before 5.13.13 has a slab out-of-bounds write. Input from a process that has the CAPNETADMIN capability can lead to root access...

7.8CVSS6.8AI score0.01476EPSS
Exploits3References12
UbuntuCve
UbuntuCve
•added 2021/09/02 12:0 a.m.•50 views

CVE-2021-3733

There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client such as web browser connects to, could trigger a Regular Expression Denial of Service ReDOS during an authentication request with a specially crafted payload that is sen...

6.5CVSS6.8AI score0.04675EPSS
Exploits1References12
UbuntuCve
UbuntuCve
•added 2021/08/03 7:15 p.m.•50 views

CVE-2021-32803

The npm package "tar" aka node-tar before versions 6.1.2, 5.0.7, 4.4.15, and 3.2.3 has an arbitrary File Creation/Overwrite vulnerability via insufficient symlink protection. node-tar aims to guarantee that any file whose location would be modified by a symbolic link is not extracted. This is, in...

8.2CVSS6.9AI score0.07795EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2021/07/27 12:0 a.m.•50 views

CVE-2021-30665

A memory corruption issue was addressed with improved state management. This issue is fixed in watchOS 7.4.1, iOS 14.5.1 and iPadOS 14.5.1, tvOS 14.6, iOS 12.5.3, macOS Big Sur 11.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that...

8.8CVSS7.2AI score0.03692EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/07/27 12:0 a.m.•50 views

CVE-2021-30758

A type confusion issue was addressed with improved state handling. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to arbitrary code execution...

8.8CVSS6.9AI score0.01633EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/06/09 12:15 p.m.•50 views

CVE-2021-33829

A cross-site scripting XSS vulnerability in the HTML Data Processor in CKEditor 4 4.14.0 through 4.16.x before 4.16.1 allows remote attackers to inject executable JavaScript code through a crafted comment because --! is mishandled...

6.1CVSS6.7AI score0.03189EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2021/05/18 12:15 p.m.•50 views

CVE-2002-2438

firewalls might let some TCP flags combinations pass e.g. all with RST flag set and the OS e.g. Linux stack would in turn accept a TCP session it might not have accepted otherwise...

7.5CVSS7.1AI score0.03742EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2021/05/12 11:15 p.m.•50 views

CVE-2021-23134

Use After Free vulnerability in nfc sockets in the Linux Kernel before 5.12.4 allows local attackers to elevate their privileges. In typical configurations, the issue can only be triggered by a privileged local user with the CAPNETRAW capability...

7.8CVSS6.7AI score0.00343EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2021/04/30 12:0 a.m.•50 views

CVE-2021-31916

An out-of-bounds OOB memory write flaw was found in listdevices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel before 5.12. A bound check failure allows an attacker with special user CAPSYSADMIN privilege to gain access to out-of-bounds memory leading to a system...

6.7CVSS6.7AI score0.00704EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2021/04/27 6:15 a.m.•50 views

CVE-2019-25038

Unbound before 1.9.5 allows an integer overflow in a size calculation in dnscrypt/dnscrypt.c. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited...

9.8CVSS7.2AI score0.02037EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/04/20 4:15 p.m.•50 views

CVE-2021-29155

An issue was discovered in the Linux kernel through 5.11.x. kernel/bpf/verifier.c performs undesirable out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory. Specifically, for sequences ...

5.5CVSS6.8AI score0.01071EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2021/04/07 12:15 a.m.•50 views

CVE-2020-36311

An issue was discovered in the Linux kernel before 5.9. arch/x86/kvm/svm/sev.c allows attackers to cause a denial of service soft lockup by triggering destruction of a large SEV VM which requires unregistering many encrypted regions, aka CID-7be74942f184...

5.5CVSS6.8AI score0.00335EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2021/03/03 12:0 a.m.•50 views

CVE-2021-25289

An issue was discovered in Pillow before 8.1.1. TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation conflicts with LibTIFF in RGBA mode. NOTE: this issue exists because of an incomplete fix for CVE-2020-35654...

9.8CVSS6.9AI score0.02281EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/02/15 5:15 p.m.•50 views

CVE-2021-27219

An issue was discovered in GNOME GLib before 2.66.6 and 2.67.x before 2.67.3. The function gbytesnew has an integer overflow on 64-bit platforms due to an implicit cast from 64 bits to 32 bits. The overflow could potentially lead to memory corruption...

7.5CVSS7.1AI score0.02993EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2021/01/29 12:0 a.m.•50 views

CVE-2021-3347

An issue was discovered in the Linux kernel through 5.10.11. PI futexes have a kernel stack use-after-free during fault handling, allowing local users to execute code in the kernel, aka CID-34b1a1ce1458...

7.8CVSS6.9AI score0.01377EPSS
Exploits1References6
UbuntuCve
UbuntuCve
•added 2021/01/08 12:0 a.m.•50 views

CVE-2020-16044

Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet...

8.8CVSS7.2AI score0.01304EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2020/12/30 8:15 p.m.•50 views

CVE-2019-12953

Dropbear 2011.54 through 2018.76 has an inconsistent failure delay that may lead to revealing valid usernames, a different issue than CVE-2018-15599...

5.3CVSS6.8AI score0.01179EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2020/12/14 10:15 p.m.•50 views

CVE-2020-0465

In various methods of hid-multitouch.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

7.2CVSS6.9AI score0.00268EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2020/12/11 5:15 a.m.•50 views

CVE-2020-27786

A flaw was found in the Linux kernel’s implementation of MIDI, where an attacker with a local account and the permissions to issue ioctl commands to midi devices could trigger a use-after-free issue. A write to this specific memory while freed and before use causes the flow of execution to change...

7.8CVSS6.9AI score0.01672EPSS
Exploits2References2
UbuntuCve
UbuntuCve
•added 2020/11/18 8:28 a.m.•50 views

CVE-2020-25723

A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory map failure. A malicious privileged user within the guest may abuse this flaw to send bogus USB requests and crash the QEMU process on t...

3.2CVSS6.8AI score0.00357EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2020/10/07 4:15 p.m.•50 views

CVE-2020-26870

Cure53 DOMPurify before 2.0.17 allows mutation XSS. This occurs because a serialize-parse roundtrip does not necessarily return the original DOM tree, and a namespace can change from HTML to MathML, as demonstrated by nesting of FORM elements...

6.1CVSS6.7AI score0.04881EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2020/05/11 5:15 p.m.•50 views

CVE-2018-1285

Apache log4net versions before 2.0.10 do not disable XML external entities when parsing log4net configuration files. This allows for XXE-based attacks in applications that accept attacker-controlled log4net configuration files...

9.8CVSS7AI score0.17823EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2020/04/15 2:15 p.m.•50 views

CVE-2020-2757

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Serialization. Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

4.3CVSS6.7AI score0.04211EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2020/04/03 12:0 a.m.•50 views

CVE-2020-6820

Under certain conditions, when handling a ReadableStream, a race condition can cause a use-after-free. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Thunderbird 68.7.0, Firefox 74.0.1, and Firefox ESR 68.6.1...

8.1CVSS7.2AI score0.06305EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2020/03/07 1:15 a.m.•50 views

CVE-2020-9281

A cross-site scripting XSS vulnerability in the HTML Data Processor for CKEditor 4.0 before 4.14 allows remote attackers to inject arbitrary web script through a crafted "protected" comment with the ckeprotected syntax...

6.1CVSS6.7AI score0.04327EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2020/03/04 3:15 p.m.•50 views

CVE-2020-10029

The GNU C Library aka glibc or libc6 before 2.32 could overflow an on-stack buffer during range reduction if an input to an 80-bit long double function contains a non-canonical bit pattern, a seen when passing a 0x5d414141414141410000 value to sinl on x86 targets. This is related to...

5.5CVSS7AI score0.00758EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2020/01/28 3:15 a.m.•50 views

CVE-2019-15579

An information disclosure exists in 12.3.2, 12.2.6, and 12.1.12 for GitLab Community Edition CE and Enterprise Edition EE where the assignees of a confidential issue in a private project would be disclosed to a guest via milestones...

5.3CVSS6.1AI score0.01031EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2019/12/17 6:15 a.m.•50 views

CVE-2019-19813

In the Linux kernel 5.0.21, mounting a crafted btrfs filesystem image, performing some operations, and then making a syncfs system call can lead to a use-after-free in mutexlock in kernel/locking/mutex.c. This is related to mutexcanspinonowner in kernel/locking/mutex.c, btrfsqgroupfreemeta in...

7.1CVSS6.7AI score0.02129EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2019/12/04 5:16 p.m.•50 views

CVE-2019-11935

Insufficient boundary checks when processing a string in mberegreplace allows access to out-of-bounds memory. This issue affects HHVM versions prior to 3.30.12, all versions between 4.0.0 and 4.8.5, all versions between 4.9.0 and 4.23.1, as well as 4.24.0, 4.25.0, 4.26.0, 4.27.0, 4.28.0, and 4.28...

9.8CVSS7.2AI score0.01476EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2019/12/03 4:15 p.m.•50 views

CVE-2019-19532

In the Linux kernel before 5.3.9, there are multiple out-of-bounds write bugs that can be caused by a malicious USB device in the Linux kernel HID drivers, aka CID-d9d4b1e46d95. This affects drivers/hid/hid-axff.c, drivers/hid/hid-dr.c, drivers/hid/hid-emsff.c, drivers/hid/hid-gaff.c,...

6.8CVSS6.8AI score0.00504EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2019/11/20 9:15 p.m.•50 views

CVE-2013-2092

Cross-site Scripting XSS in Dolibarr ERP/CRM 3.3.1 allows remote attackers to inject arbitrary web script or HTML in functions.lib.php...

6.1CVSS6.5AI score0.01347EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2019/10/16 6:15 p.m.•50 views

CVE-2019-2978

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Networking. Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multip...

4.3CVSS6.8AI score0.03284EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2019/09/25 6:15 p.m.•50 views

CVE-2019-16884

runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfslinux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory...

7.5CVSS6.8AI score0.04409EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2019/09/09 12:0 a.m.•50 views

CVE-2019-15031

In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via an interrupt. To exploit the venerability, a local user starts a transaction via the hardware transactional memory instruction tbegin and then accesses vector registers...

4.4CVSS6.7AI score0.00555EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2019/09/04 12:0 a.m.•50 views

CVE-2019-11744

Some HTML elements, such as title and textarea, can contain literal angle brackets without treating them as markup. It is possible to pass a literal closing tag to .innerHTML on these elements, and subsequent content after that will be parsed as if it were outside the tag. This can lead to XSS if...

6.1CVSS6.8AI score0.0145EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2019/07/29 12:0 a.m.•50 views

CVE-2019-10207

A flaw was found in the Linux kernel's Bluetooth implementation of UART, all versions kernel 3.x.x before 4.18.0 and kernel 5.x.x. An attacker with local access and write permissions to the Bluetooth hardware could use this flaw to issue a specially crafted ioctl function call and cause the syste...

5.5CVSS6.7AI score0.00881EPSS
Exploits1References7
UbuntuCve
UbuntuCve
•added 2019/07/26 12:0 a.m.•50 views

CVE-2019-14284

In the Linux kernel before 5.2.3, drivers/block/floppy.c allows a denial of service by setupformatparams division-by-zero. Two consecutive ioctls can trigger the bug: the first one should set the drive geometry with .sect and .rate values that make FSECTPERTRACK be zero. Next, the floppy format...

6.2CVSS6.7AI score0.00703EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2019/06/04 12:0 a.m.•50 views

CVE-2019-10149

A flaw was found in Exim versions 4.87 to 4.91 inclusive. Improper validation of recipient address in delivermessage function in /src/deliver.c may lead to remote command execution...

10CVSS7.3AI score0.99961EPSS
Exploits27References4
UbuntuCve
UbuntuCve
•added 2019/05/28 12:0 a.m.•50 views

CVE-2019-0221

The SSI printenv command in Apache Tomcat 9.0.0.M1 to 9.0.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 echoes user provided data without escaping and is, therefore, vulnerable to XSS. SSI is disabled by default. The printenv command is intended for debugging and is unlikely to be present in a...

6.1CVSS6.8AI score0.45571EPSS
Exploits3References5
UbuntuCve
UbuntuCve
•added 2019/02/22 12:0 a.m.•50 views

CVE-2019-9023

An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. A number of heap-based buffer over-read instances are present in mbstring regular expression functions when supplied with invalid multibyte data. These occur in...

9.8CVSS6.8AI score0.09317EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2019/02/01 12:0 a.m.•50 views

CVE-2019-7308

kernel/bpf/verifier.c in the Linux kernel before 4.20.6 performs undesirable out-of-bounds speculation on pointer arithmetic in various cases, including cases of different branches with different state or limits to sanitize, leading to side-channel attacks...

5.6CVSS6.8AI score0.00543EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2018/10/29 12:0 a.m.•50 views

CVE-2018-0735

The OpenSSL ECDSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.0j Affected 1.1.0-1.1.0i. Fixed in OpenSSL 1.1.1a Affected 1.1.1...

5.9CVSS6.6AI score0.04763EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2018/09/04 3:0 p.m.•50 views

CVE-2018-6554

Memory leak in the irdabind function in net/irda/afirda.c and later in drivers/staging/irda/net/afirda.c in the Linux kernel before 4.17 allows local users to cause a denial of service memory consumption by repeatedly binding an AFIRDA socket...

5.5CVSS6.7AI score0.00506EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2018/05/17 2:29 p.m.•50 views

CVE-2018-7159

The HTTP parser in all current versions of Node.js ignores spaces in the Content-Length header, allowing input such as Content-Length: 1 2 to be interpreted as having a value of 12. The HTTP specification does not allow for spaces in the Content-Length value and the Node.js HTTP parser has been...

5.3CVSS6.7AI score0.03621EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2018/05/01 3:0 p.m.•50 views

CVE-2018-1000199

The Linux Kernel version 3.18 contains a dangerous feature vulnerability in modifyuserhwbreakpoint that can result in crash and possibly memory corruption. This attack appear to be exploitable via local code execution and the ability to use ptrace. This vulnerability appears to have been fixed in...

5.5CVSS6.8AI score0.01221EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2018/04/16 9:58 a.m.•50 views

CVE-2014-1686

MediaWiki 1.18.0 allows remote attackers to obtain the installation path via vectors related to thumbnail creation...

5.3CVSS6.1AI score0.02117EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2018/03/29 7:29 a.m.•50 views

CVE-2018-7600

Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations...

9.8CVSS7.4AI score0.99993EPSS
Exploits46References6
UbuntuCve
UbuntuCve
•added 2018/02/09 12:0 a.m.•50 views

CVE-2018-1000026

Linux Linux kernel version at least v4.8 onwards, probably well before contains a Insufficient input validation vulnerability in bnx2x network card driver that can result in DoS: Network card firmware assertion takes card off-line. This attack appear to be exploitable via An attacker on a must pa...

7.7CVSS6.7AI score0.039EPSS
Exploits0References14
UbuntuCve
UbuntuCve
•added 2018/01/29 12:0 a.m.•50 views

CVE-2017-18079

drivers/input/serio/i8042.c in the Linux kernel before 4.12.4 allows attackers to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact because the port-exists value can change after it is validated...

7.8CVSS6.8AI score0.00418EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2018/01/16 7:29 p.m.•50 views

CVE-2014-6071

jQuery 1.4.2 allows remote attackers to conduct cross-site scripting XSS attacks via vectors related to use of the text method inside after...

6.1CVSS6.7AI score0.02338EPSS
Exploits0References1
Total number of security vulnerabilities5000