Lucene search
+L
UbuntucveMost viewed

71772 matches found

UbuntuCve
UbuntuCve
•added 2024/05/15 6:15 p.m.•48 views

CVE-2024-25743

In the Linux kernel through 6.9, an untrusted hypervisor can inject virtual interrupts 0 and 14 at any point in time and can trigger the SIGFPE signal handler in userspace applications. This affects AMD SEV-SNP and AMD SEV-ES...

7.1CVSS6.7AI score0.00245EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2024/05/03 8:15 a.m.•48 views

CVE-2024-33918

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Maxim K AJAX Login and Registration modal popup + inline form allows Stored XSS.This issue affects AJAX Login and Registration modal popup + inline form: from n/a through 2.23...

5.9CVSS5.9AI score0.00359EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2024/05/03 6:15 a.m.•48 views

CVE-2024-4439

WordPress Core is vulnerable to Stored Cross-Site Scripting via user display names in the Avatar block in various versions up to 6.5.2 due to insufficient output escaping on the display name. This makes it possible for authenticated attackers, with contributor-level access and above, to inject...

7.2CVSS7.2AI score0.70822EPSS
Exploits4References7
UbuntuCve
UbuntuCve
•added 2024/04/18 10:15 a.m.•48 views

CVE-2024-26921

In the Linux kernel, the following vulnerability has been resolved: inet: inetdefrag: prevent sk release while still in use iplocalout and other functions can pass skb-sk as function argument. If the skb is a fragment and reassembly happens before such function call returns, the sk must not be...

5.5CVSS6.5AI score0.0038EPSS
Exploits1References22
UbuntuCve
UbuntuCve
•added 2024/04/11 9:15 p.m.•48 views

CVE-2024-28458

Null Pointer Dereference vulnerability in swfdump in swftools 0.9.2 allows attackers to crash the appliation via the function compileSWFActionCode in action/actioncompiler.c...

7.5CVSS5.9AI score0.00706EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2024/04/09 6:15 p.m.•48 views

CVE-2024-22423

yt-dlp is a youtube-dl fork with additional features and fixes. The patch that addressed CVE-2023-40581 attempted to prevent RCE when using --exec with %q by replacing double quotes with two double quotes. However, this escaping is not sufficient, and still allows expansion of environment...

9.8CVSS7AI score0.01254EPSS
Exploits1References7
UbuntuCve
UbuntuCve
•added 2024/03/26 12:0 a.m.•48 views

CVE-2024-42950

Notes Author| Note ---|--- jdstrand | webkit receives limited support. For details, see https://wiki.ubuntu.com/SecurityTeam/FAQwebkit webkit in Ubuntu uses the JavaScriptCore JSC engine, not V8 mdeslaur | It is no longer possible to build new webkit2gtk versions on focal and earlier. Marking as...

7.2AI score0.00553EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2024/03/12 12:0 a.m.•48 views

CVE-2023-28746

Information exposure through microarchitectural state after transient execution from some register files for some IntelR AtomR Processors may allow an authenticated user to potentially enable information disclosure via local access...

6.5CVSS6.8AI score0.00546EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2024/03/11 6:15 p.m.•48 views

CVE-2023-52489

In the Linux kernel, the following vulnerability has been resolved: mm/sparsemem: fix race in accessing memorysection-usage The below race is observed on a PFN which falls into the device memory region with the system memory configuration where PFN's are such that ZONENORMAL ZONEDEVICE ZONENORMAL...

4.7CVSS6.3AI score0.00294EPSS
Exploits1References21
UbuntuCve
UbuntuCve
•added 2024/02/29 12:0 a.m.•48 views

CVE-2024-23807

The Apache Xerces C++ XML parser on versions 3.0.0 before 3.2.5 contains a use-after-free error triggered during the scanning of external DTDs. Users are recommended to upgrade to version 3.2.5 which fixes the issue, or mitigate the issue by disabling DTD processing. This can be accomplished via...

9.8CVSS6.8AI score0.01482EPSS
Exploits1References1
UbuntuCve
UbuntuCve
•added 2024/02/28 9:15 a.m.•48 views

CVE-2021-46990

In the Linux kernel, the following vulnerability has been resolved: powerpc/64s: Fix crashes when toggling entry flush barrier The entry flush mitigation can be enabled/disabled at runtime via a debugfs file entryflush, which causes the kernel to patch itself to enable/disable the relevant...

5.5CVSS6.4AI score0.00231EPSS
Exploits0References12
UbuntuCve
UbuntuCve
•added 2024/02/23 12:0 a.m.•48 views

CVE-2023-52462

In the Linux kernel, the following vulnerability has been resolved: bpf: fix check for attempt to corrupt spilled pointer When register is spilled onto a stack as a 1/2/4-byte register, we set slottypeBPFREGSIZE - 1 plus potentially few more below it, depending on actual spill size. So to check i...

5.5CVSS6.2AI score0.00226EPSS
Exploits0References18
UbuntuCve
UbuntuCve
•added 2024/02/21 3:15 p.m.•48 views

CVE-2024-26585

In the Linux kernel, the following vulnerability has been resolved: tls: fix race between tx work scheduling and socket close Similarly to previous commit, the submitting thread recvmsg/sendmsg may exit as soon as the async crypto handler calls complete. Reorder scheduling the work before calling...

4.7CVSS6.3AI score0.0019EPSS
Exploits0References25
UbuntuCve
UbuntuCve
•added 2024/02/20 1:15 p.m.•48 views

CVE-2023-52433

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftsetrbtree: skip sync GC for new elements in this transaction New elements in this transaction might expired before such transaction ends. Skip sync GC for such elements otherwise commit path might walk over an alrea...

4.4CVSS5.9AI score0.00265EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2024/02/17 2:15 a.m.•48 views

CVE-2024-20925

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JavaFX. Supported versions that are affected are Oracle Java SE: 8u391; Oracle GraalVM Enterprise Edition: 20.3.12 and 21.3.8. Difficult to exploit vulnerability allows unauthenticated...

3.1CVSS6.8AI score0.00553EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2024/02/12 3:15 a.m.•48 views

CVE-2023-52429

dmtablecreate in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to in alloctargets allocate more than INTMAX bytes, and crash, because of a missing check for struct dmioctl.targetcount...

5.5CVSS6.4AI score0.00249EPSS
Exploits0References13
UbuntuCve
UbuntuCve
•added 2024/01/30 4:15 p.m.•48 views

CVE-2024-1019

ModSecurity / libModSecurity 3.0.0 to 3.0.11 is affected by a WAF bypass for path-based payloads submitted via specially crafted request URLs. ModSecurity v3 decodes percent-encoded characters present in request URLs before it separates the URL path component from the optional query string...

8.6CVSS7.2AI score0.00682EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2024/01/29 11:15 a.m.•48 views

CVE-2023-46838

Transmit requests in Xen's virtual network protocol can consist of multiple parts. While not really useful, except for the initial part any of them may be of zero length, i.e. carry no data at all. Besides a certain initial portion of the to be transferred data, these parts are directly translate...

7.5CVSS6.8AI score0.01177EPSS
Exploits0References16
UbuntuCve
UbuntuCve
•added 2024/01/18 3:15 p.m.•48 views

CVE-2021-33630

NULL Pointer Dereference vulnerability in openEuler kernel on Linux network modules allows Pointer Manipulation. This vulnerability is associated with program files net/sched/schcbs.C. This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3...

5.5CVSS6.8AI score0.00341EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2024/01/16 10:15 p.m.•48 views

CVE-2024-20926

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Scripting. Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21; Oracle GraalVM for JDK: 17.0.9; Oracle GraalVM Enterprise Edition:...

5.9CVSS6.8AI score0.01026EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2024/01/11 3:15 a.m.•48 views

CVE-2024-22195

Jinja is an extensible templating engine. Special placeholders in the template allow writing code similar to Python syntax. It is possible to inject arbitrary HTML attributes into the rendered HTML template, potentially leading to Cross-Site Scripting XSS. The Jinja xmlattr filter can be abused t...

6.1CVSS7AI score0.00892EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/12/22 12:15 a.m.•48 views

CVE-2023-49086

Cacti is a robust performance and fault management framework and a frontend to RRDTool - a Time Series Database TSDB. A vulnerability in versions prior to 1.2.27 bypasses an earlier fix for CVE-2023-39360, therefore leading to a DOM XSS attack. Exploitation of the vulnerability is possible for an...

5.4CVSS6.2AI score0.01481EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2023/12/14 12:0 a.m.•48 views

CVE-2023-49933

An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. There is Improper Enforcement of Message Integrity During Transmission in a Communication Channel. This allows attackers to modify RPC traffic in a way that bypasses message hash checks. The fixed versions are 22.05.11,...

7.5CVSS7.1AI score0.00379EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/12/09 11:15 p.m.•48 views

CVE-2023-50431

secattestinfo in drivers/accel/habanalabs/common/habanalabsioctl.c in the Linux kernel through 6.6.5 allows an information leak to user space because info-pad0 is not initialized...

5.5CVSS6.4AI score0.003EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2023/11/09 3:15 p.m.•48 views

CVE-2023-6039

A use-after-free flaw was found in lan78xxdisconnect in drivers/net/usb/lan78xx.c in the network sub-component, net/usb/lan78xx in the Linux Kernel. This flaw allows a local attacker to crash the system when the LAN78XX USB device detaches...

5.5CVSS6.6AI score0.00258EPSS
Exploits0References13
UbuntuCve
UbuntuCve
•added 2023/11/08 8:15 p.m.•48 views

CVE-2023-5996

Use after free in WebAudio in Google Chrome prior to 119.0.6045.123 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.2AI score0.01976EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2023/11/03 8:15 a.m.•48 views

CVE-2023-5824

A flaw was found in Squid. The limits applied for validation of HTTP response headers are applied before caching. However, Squid may grow a cached HTTP response header beyond the configured maximum size, causing a stall or crash of the worker process when a large header is retrieved from the disk...

7.5CVSS7AI score0.05229EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2023/10/20 12:0 a.m.•48 views

CVE-2023-44483

All versions of Apache Santuario - XML Security for Java prior to 2.2.6, 2.3.4, and 3.0.3, when using the JSR 105 API, are vulnerable to an issue where a private key may be disclosed in log files when generating an XML Signature and logging with debug level is enabled. Users are recommended to...

6.5CVSS6.7AI score0.01212EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2023/10/16 9:15 a.m.•48 views

CVE-2023-4822

Grafana is an open-source platform for monitoring and observability. The vulnerability impacts Grafana instances with several organizations, and allows a user with Organization Admin permissions in one organization to change the permissions associated with Organization Viewer, Organization Editor...

7.2CVSS6.8AI score0.01074EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2023/10/12 5:15 p.m.•48 views

CVE-2023-45133

Babel is a compiler for writingJavaScript. In @babel/traverse prior to versions 7.23.2 and 8.0.0-alpha.4 and all versions of babel-traverse, using Babel to compile code that was specifically crafted by an attacker can lead to arbitrary code execution during compilation, when using plugins that re...

9.3CVSS7.2AI score0.0052EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2023/10/10 7:15 p.m.•48 views

CVE-2023-45648

Improper Input Validation vulnerability in Apache Tomcat.Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1 through 10.1.13, from 9.0.0-M1 through 9.0.81 and from 8.5.0 through 8.5.93 did not correctly parse HTTP trailer headers. A specially crafted, invalid trailer header could cause Tomca...

5.3CVSS6.7AI score0.05848EPSS
Exploits2References6
UbuntuCve
UbuntuCve
•added 2023/09/18 8:15 a.m.•48 views

CVE-2023-43115

In Artifex Ghostscript through 10.01.2, gdevijs.c in GhostPDL can lead to remote code execution via crafted PostScript documents because they can switch to the IJS device, or change the IjsServer parameter, after SAFER has been activated. NOTE: it is a documented risk that the IJS server can be...

8.8CVSS7.6AI score0.0468EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2023/09/09 10:15 p.m.•48 views

CVE-2023-41915

OpenPMIx PMIx before 4.2.6 and 5.0.x before 5.0.1 allows attackers to obtain ownership of arbitrary files via a race condition during execution of library code with UID 0...

8.1CVSS7.3AI score0.01121EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2023/08/25 9:15 p.m.•48 views

CVE-2023-40587

Pyramid is an open source Python web framework. A path traversal vulnerability in Pyramid versions 2.0.0 and 2.0.1 impacts users of Python 3.11 that are using a Pyramid static view with a full filesystem path and have a index.html file that is located exactly one directory above the location of t...

5.3CVSS6AI score0.00632EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2023/08/22 7:16 p.m.•48 views

CVE-2020-19726

An issue was discovered in binutils libbfd.c 2.36 relating to the auxiliary symbol data allows attackers to read or write to system memory or cause a denial of service...

8.8CVSS6.3AI score0.00664EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2023/08/22 7:16 p.m.•48 views

CVE-2022-45703

Heap buffer overflow vulnerability in binutils readelf before 2.40 via function displaydebugsection in file readelf.c...

7.8CVSS6.5AI score0.00513EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2023/08/22 12:0 a.m.•48 views

CVE-2022-40433

DISPUTED An issue was discovered in function ciMethodBlocks::makeblockat in Oracle JDK HotSpot VM 11, 17 and OpenJDK HotSpot VM 8, 11, 17, allows attackers to cause a denial of service. Note: Vendor states that this to is Defense in Depth at most due to the nature of the issue and the special...

5.1AI score
Exploits0References9
UbuntuCve
UbuntuCve
•added 2023/08/03 3:15 p.m.•48 views

CVE-2023-4132

A use-after-free vulnerability was found in the siano smsusb module in the Linux kernel. The bug occurs during device initialization when the siano device is plugged in. This flaw allows a local user to crash the system, causing a denial of service condition...

5.5CVSS6.7AI score0.00255EPSS
Exploits0References18
UbuntuCve
UbuntuCve
•added 2023/07/05 12:0 a.m.•48 views

CVE-2023-37211

Memory safety bugs present in Firefox 114, Firefox ESR 102.12, and Thunderbird 102.12. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox 115, Firefox ESR...

8.8CVSS7.2AI score0.00753EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2023/06/30 12:0 a.m.•48 views

CVE-2023-2861

A flaw was found in the 9p passthrough filesystem 9pfs implementation in QEMU. The 9pfs server did not prohibit opening special files on the host side, potentially allowing a malicious client to escape from the exported 9p tree by creating and opening a device file in the shared folder...

7.1CVSS6.8AI score0.00376EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/06/28 8:15 p.m.•48 views

CVE-2023-3389

A use-after-free vulnerability in the Linux Kernel iouring subsystem can be exploited to achieve local privilege escalation. Racing a iouring cancel poll request with a linked timeout can cause a UAF in a hrtimer. We recommend upgrading past commit ef7dfac51d8ed961b742218f526bd589f3900a59...

7.8CVSS6.8AI score0.00724EPSS
Exploits0References14
UbuntuCve
UbuntuCve
•added 2023/06/23 6:15 p.m.•48 views

CVE-2023-32435

A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.3, Safari 16.4, iOS 16.4 and iPadOS 16.4, iOS 15.7.7 and iPadOS 15.7.7. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have...

8.8CVSS7.3AI score0.22951EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2023/05/17 6:0 a.m.•48 views

CVE-2023-28319

A use after free vulnerability exists in curl v8.1.0 in the way libcurl offers a feature to verify an SSH server's public key using a SHA 256 hash. When this check fails, libcurl would free the memory for the fingerprint before it returns an error message containing the now freed hash. This flaw...

7.5CVSS6.8AI score0.02489EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2023/05/09 10:15 p.m.•48 views

CVE-2023-2610

Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1532...

7.8CVSS6.8AI score0.00485EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2023/04/20 12:0 a.m.•48 views

CVE-2023-0459

Copyfromuser on 64-bit versions of the Linux kernel does not implement the uaccessbeginnospec allowing a user to bypass the "accessok" check and pass a kernel pointer to copyfromuser. This would allow an attacker to leak information. We recommend upgrading beyond...

6.5CVSS6.8AI score0.00635EPSS
Exploits0References23
UbuntuCve
UbuntuCve
•added 2023/03/27 9:15 p.m.•48 views

CVE-2023-28628

lambdaisland/uri is a pure Clojure/ClojureScript URI library. In versions prior to 1.14.120 authority-regex allows an attacker to send malicious URLs to be parsed by the lambdaisland/uri and return the wrong authority. This issue is similar to but distinct from CVE-2020-8910. The regex in questio...

6.1CVSS6.3AI score0.00553EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2023/03/27 9:15 p.m.•48 views

CVE-2023-1380

A slab-out-of-bound read problem was found in brcmfgetassocies in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux Kernel. This issue could occur when associnfo-reqlen data is bigger than the size of the buffer, defined as WLEXTRABUFMAX, leading to a denial of service...

7.1CVSS6.7AI score0.16642EPSS
Exploits0References19
UbuntuCve
UbuntuCve
•added 2023/03/16 9:15 p.m.•48 views

CVE-2022-43441

A code execution vulnerability exists in the Statement Bindings functionality of Ghost Foundation node-sqlite3 5.1.1. A specially-crafted Javascript file can lead to arbitrary code execution. An attacker can provide malicious input to trigger this vulnerability...

9.8CVSS7.6AI score0.02356EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2023/03/10 2:15 p.m.•48 views

CVE-2023-26464

UNSUPPORTED WHEN ASSIGNED When using the Chainsaw or SocketAppender components with Log4j 1.x on JRE less than 1.7, an attacker that manages to cause a logging entry involving a specially-crafted ie, deeply nested hashmap or hashtable depending on which logging component is in use to be processed...

7.5CVSS6.8AI score0.01905EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2023/03/08 12:0 a.m.•48 views

CVE-2023-24532

The ScalarMult and ScalarBaseMult methods of the P256 Curve may return an incorrect result if called with some specific unreduced scalars a scalar larger than the order of the curve. This does not impact usages of crypto/ecdsa or crypto/ecdh...

5.3CVSS6.8AI score0.0081EPSS
Exploits0References6
Total number of security vulnerabilities5000