Lucene search
+L
UbuntucveMost viewed

71772 matches found

ubuntucve
ubuntucve
•added 2017/09/12 1:0 p.m.•48 views

CVE-2017-1000251

The native Bluetooth stack in the Linux Kernel BlueZ, starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel space...

8CVSS7.3AI score0.16181EPSS
Exploits12References10
ubuntucve
ubuntucve
•added 2016/12/09 11:59 a.m.•48 views

CVE-2016-8858

The kexinputkexinit function in kex.c in OpenSSH 6.x and 7.x through 7.3 allows remote attackers to cause a denial of service memory consumption by sending many duplicate KEXINIT requests. NOTE: a third party reports that "OpenSSH upstream does not consider this as a security issue."...

7.8CVSS7.1AI score0.29462EPSS
Exploits0References2
ubuntucve
ubuntucve
•added 2016/11/30 12:0 a.m.•48 views

CVE-2016-9078

Redirection from an HTTP connection to a "data:" URL assigns the referring site's origin to the "data:" URL in some circumstances. This can result in same-origin violations against a domain if it loads resources from malicious sites. Cross-origin setting of cookies has been demonstrated without t...

8.8CVSS7AI score0.01884EPSS
Exploits2References3
ubuntucve
ubuntucve
•added 2016/10/28 12:0 a.m.•48 views

CVE-2016-6794

When a SecurityManager is configured, a web application's ability to read system properties should be controlled by the SecurityManager. In Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70, 6.0.0 to 6.0.45 the system property replacement feature for...

5.3CVSS6.7AI score0.07152EPSS
Exploits0References4
ubuntucve
ubuntucve
•added 2016/09/26 7:59 p.m.•48 views

CVE-2016-6307

The state-machine implementation in OpenSSL 1.1.0 before 1.1.0a allocates memory before checking for an excessive length, which might allow remote attackers to cause a denial of service memory consumption via crafted TLS messages, related to statem/statem.c and statem/statemlib.c...

5.9CVSS6.9AI score0.13837EPSS
Exploits0References2
ubuntucve
ubuntucve
•added 2016/05/06 12:0 a.m.•48 views

CVE-2016-4537

The bcpowmod function in ext/bcmath/bcmath.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 accepts a negative integer for the scale argument, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted call...

9.8CVSS7.2AI score0.05873EPSS
Exploits1References3
ubuntucve
ubuntucve
•added 2016/04/29 12:0 a.m.•48 views

CVE-2016-4343

The pharmakedirstream function in ext/phar/dirstream.c in PHP before 5.6.18 and 7.x before 7.0.3 mishandles zero-size ././@LongLink files, which allows remote attackers to cause a denial of service uninitialized pointer dereference or possibly have unspecified other impact via a crafted TAR archi...

8.8CVSS7.2AI score0.0421EPSS
Exploits1References2
ubuntucve
ubuntucve
•added 2016/01/15 12:0 a.m.•48 views

CVE-2016-1908

The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by leveraging configuration issues ...

9.8CVSS6.9AI score0.13736EPSS
Exploits0References5
ubuntucve
ubuntucve
•added 2016/01/06 7:59 p.m.•48 views

CVE-2015-6646

The System V IPC implementation in the kernel in Android before 6.0 2016-01-01 allows attackers to cause a denial of service global kernel resource consumption by leveraging improper interaction between IPC resource allocation and the memory manager, aka internal bug 22300191, a different...

7.8CVSS6.8AI score0.006EPSS
Exploits0References3
ubuntucve
ubuntucve
•added 2015/12/03 12:0 a.m.•48 views

CVE-2015-3193

The Montgomery squaring implementation in crypto/bn/asm/x8664-mont5.pl in OpenSSL 1.0.2 before 1.0.2e on the x8664 platform, as used by the BNmodexp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote attackers to obtain sensitive private-key...

7.5CVSS6.8AI score0.25137EPSS
Exploits1References3
ubuntucve
ubuntucve
•added 2015/10/19 12:0 a.m.•48 views

CVE-2015-7833

The usbvision driver in the Linux kernel package 3.10.0-123.20.1.el7 through 3.10.0-229.14.1.el7 in Red Hat Enterprise Linux RHEL 7.1 allows physically proximate attackers to cause a denial of service panic via a nonzero bInterfaceNumber value in a USB device descriptor...

4.9CVSS6.7AI score0.00675EPSS
Exploits1References13
ubuntucve
ubuntucve
•added 2015/08/27 12:0 a.m.•48 views

CVE-2015-6832

Use-after-free vulnerability in the SPL unserialize implementation in ext/spl/splarray.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allows remote attackers to execute arbitrary code via crafted serialized data that triggers misuse of an array field...

7.5CVSS7.6AI score0.05153EPSS
Exploits0References4
ubuntucve
ubuntucve
•added 2015/08/27 12:0 a.m.•48 views

CVE-2015-6831

Multiple use-after-free vulnerabilities in SPL in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allow remote attackers to execute arbitrary code via vectors involving 1 ArrayObject, 2 SplObjectStorage, and 3 SplDoublyLinkedList, which are mishandled during unserialization...

7.5CVSS7.2AI score0.07057EPSS
Exploits0References3
ubuntucve
ubuntucve
•added 2015/04/06 12:0 a.m.•48 views

CVE-2015-2925

The prependpath function in fs/dcache.c in the Linux kernel before 4.2.4 does not properly handle rename actions inside a bind mount, which allows local users to bypass an intended container protection mechanism by renaming a directory, related to a "double-chroot attack."...

6.9CVSS6.8AI score0.01246EPSS
Exploits0References11
ubuntucve
ubuntucve
•added 2015/02/06 12:59 a.m.•48 views

CVE-2015-0314

Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Windows and OS X and before 11.2.202.442 on Linux allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2015-0316,...

10CVSS6.2AI score0.06367EPSS
Exploits0References2
ubuntucve
ubuntucve
•added 2015/01/09 12:0 a.m.•48 views

CVE-2014-9529

Race condition in the keygcunusedkeys function in security/keys/gc.c in the Linux kernel through 3.18.2 allows local users to cause a denial of service memory corruption or panic or possibly have unspecified other impact via keyctl commands that trigger access to a key structure member during...

6.9CVSS6.8AI score0.00336EPSS
Exploits0References11
ubuntucve
ubuntucve
•added 2014/10/29 12:0 a.m.•48 views

CVE-2014-3669

Integer overflow in the objectcustom function in ext/standard/varunserializer.c in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via an argument to the unserialize function...

7.5CVSS7.6AI score0.28862EPSS
Exploits1References3
ubuntucve
ubuntucve
•added 2014/10/15 3:55 p.m.•48 views

CVE-2014-6468

Unspecified vulnerability in Oracle Java SE 8u20 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot...

6.8CVSS5.9AI score0.02706EPSS
Exploits0References2
ubuntucve
ubuntucve
•added 2014/08/31 10:55 a.m.•48 views

CVE-2013-2595

The device-initialization functionality in the MSM camera driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, enables MSMCAMIOCTLSETMEMMAPINFO ioctl calls for an unrestricted mmap interface, which allows...

7.2CVSS6.1AI score0.00889EPSS
Exploits0References2
ubuntucve
ubuntucve
•added 2014/07/17 5:10 a.m.•48 views

CVE-2014-4220

Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4208...

5CVSS7.2AI score0.03192EPSS
Exploits0References2
ubuntucve
ubuntucve
•added 2014/06/23 12:0 a.m.•48 views

CVE-2014-4171

mm/shmem.c in the Linux kernel through 3.15.1 does not properly implement the interaction between range notification and hole punching, which allows local users to cause a denial of service imutex hold by using the mmap system call to access a hole, as demonstrated by interfering with intended...

4.7CVSS6.8AI score0.0044EPSS
Exploits0References7
ubuntucve
ubuntucve
•added 2014/03/18 12:0 a.m.•48 views

CVE-2014-1505

The SVG filter implementation in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 allows remote attackers to obtain sensitive displacement-correlation information, and possibly bypass the Same Origin Policy and read text from a differen...

7.5CVSS6.9AI score0.04002EPSS
Exploits3References4
ubuntucve
ubuntucve
•added 2013/12/07 12:55 a.m.•48 views

CVE-2013-6414

actionpack/lib/actionview/lookupcontext.rb in Action View in Ruby on Rails 3.x before 3.2.16 and 4.x before 4.0.2 allows remote attackers to cause a denial of service memory consumption via a header containing an invalid MIME type that leads to excessive caching...

5CVSS5.9AI score0.207EPSS
Exploits2References2
ubuntucve
ubuntucve
•added 2013/11/13 3:55 p.m.•48 views

CVE-2013-6623

The SVG implementation in Blink, as used in Google Chrome before 31.0.1650.48, allows remote attackers to cause a denial of service out-of-bounds read by leveraging the use of tree order, rather than transitive dependency order, for layout...

4.3CVSS7.2AI score0.01448EPSS
Exploits0References4
ubuntucve
ubuntucve
•added 2013/09/18 12:0 a.m.•48 views

CVE-2013-1066

language-selector 0.110.x before 0.110.1, 0.90.x before 0.90.1, and 0.79.x before 0.79.4 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a 1...

4.6CVSS5.9AI score0.00375EPSS
Exploits0References2
ubuntucve
ubuntucve
•added 2013/08/07 12:0 a.m.•48 views

CVE-2013-4185

Algorithmic complexity vulnerability in OpenStack Compute Nova before 2013.1.3 and Havana before havana-3 does not properly handle network source security group policy updates, which allows remote authenticated users to cause a denial of service nova-network consumption via a large number of...

4CVSS5.9AI score0.02087EPSS
Exploits1References3
ubuntucve
ubuntucve
•added 2013/06/18 12:0 a.m.•48 views

CVE-2013-2473

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2...

10CVSS6.9AI score0.07437EPSS
Exploits4References6
ubuntucve
ubuntucve
•added 2013/02/01 12:0 a.m.•48 views

CVE-2013-0441

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors relat...

10CVSS7.2AI score0.08087EPSS
Exploits0References5
ubuntucve
ubuntucve
•added 2012/11/28 1:3 p.m.•48 views

CVE-2012-2739

Oracle Java SE before 7 Update 6, and OpenJDK 7 before 7u6 build 12 and 8 before build 39, computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an...

5CVSS6.8AI score0.0317EPSS
Exploits1References6
ubuntucve
ubuntucve
•added 2012/10/05 12:0 a.m.•48 views

CVE-2012-4481

The safe-level feature in Ruby 1.8.7 allows context-dependent attackers to modify strings via the NameErrortos method when operating on Ruby objects. NOTE: this issue is due to an incomplete fix for CVE-2011-1005...

4.3CVSS5.9AI score0.01941EPSS
Exploits0References4
ubuntucve
ubuntucve
•added 2012/08/29 12:0 a.m.•48 views

CVE-2012-3969

Integer overflow in the nsSVGFEMorphologyElement::Filter function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to execute arbitrary code via a crafted SVG filter that...

9.3CVSS7.6AI score0.04805EPSS
Exploits0References3
ubuntucve
ubuntucve
•added 2012/07/13 12:0 a.m.•48 views

CVE-2012-3406

The vfprintf function in stdio-common/vfprintf.c in GNU C Library aka glibc 2.5, 2.12, and probably other versions does not "properly restrict the use of" the alloca function when allocating the SPECS array, which allows context-dependent attackers to bypass the FORTIFYSOURCE format-string...

6.8CVSS7.1AI score0.03163EPSS
Exploits0References7
ubuntucve
ubuntucve
•added 2012/06/16 12:0 a.m.•48 views

CVE-2012-2417

PyCrypto before 2.6 does not produce appropriate prime numbers when using an ElGamal scheme to generate a key, which reduces the signature space or public key space and makes it easier for attackers to conduct brute force attacks to obtain the private key...

4.3CVSS7.1AI score0.02727EPSS
Exploits2References3
ubuntucve
ubuntucve
•added 2012/06/04 12:0 a.m.•48 views

CVE-2012-1667

ISC BIND 9.x before 9.7.6-P1, 9.8.x before 9.8.3-P1, 9.9.x before 9.9.1-P1, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P1 does not properly handle resource records with a zero-length RDATA section, which allows remote DNS servers to cause a denial of service daemon crash or data corruption or obta...

8.5CVSS6.9AI score0.13405EPSS
Exploits1References3
ubuntucve
ubuntucve
•added 2012/01/27 12:0 a.m.•48 views

CVE-2012-0053

protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request aka 400 error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors involving a 1 long or 2 malformed header in...

4.3CVSS6.8AI score0.82756EPSS
Exploits4References4
ubuntucve
ubuntucve
•added 2012/01/19 12:0 a.m.•48 views

CVE-2012-0035

Untrusted search path vulnerability in EDE in CEDET before 1.0.1, as used in GNU Emacs before 23.4 and other products, allows local users to gain privileges via a crafted Lisp expression in a Project.ede file in the directory, or a parent directory, of an opened file...

9.3CVSS7.1AI score0.02723EPSS
Exploits0References2
ubuntucve
ubuntucve
•added 2011/11/28 12:0 a.m.•48 views

CVE-2011-4566

Integer overflow in the exifprocessIFDTAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations or cause a denial of service via a crafted offsetval value in an EXIF header in a JPEG file, a...

6.4CVSS7.4AI score0.06558EPSS
Exploits2References2
ubuntucve
ubuntucve
•added 2011/10/19 12:0 a.m.•48 views

CVE-2011-3556

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, 1.4.233 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to...

7.5CVSS7.2AI score0.76245EPSS
Exploits5References2
ubuntucve
ubuntucve
•added 2011/05/09 12:0 a.m.•48 views

CVE-2011-1745

Integer overflow in the agpgenericinsertmemory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allows local users to gain privileges or cause a denial of service system crash via a crafted AGPIOCBIND agpioctl ioctl call...

6.9CVSS7.1AI score0.00381EPSS
Exploits1References12
ubuntucve
ubuntucve
•added 2010/12/29 12:0 a.m.•48 views

CVE-2010-3859

Multiple integer signedness errors in the TIPC implementation in the Linux kernel before 2.6.36.2 allow local users to gain privileges via a crafted sendmsg call that triggers a heap-based buffer overflow, related to the tipcmsgbuild function in net/tipc/msg.c and the verifyiovec function in...

6.9CVSS6.4AI score0.00397EPSS
Exploits1References10
ubuntucve
ubuntucve
•added 2010/05/07 12:0 a.m.•48 views

CVE-2010-1173

The sctpprocessunkparam function in net/sctp/smmakechunk.c in the Linux kernel 2.6.33.3 and earlier, when SCTP is enabled, allows remote attackers to cause a denial of service system crash via an SCTPChunkInit packet containing multiple invalid parameters that require a large amount of error data...

7.1CVSS6.1AI score0.21238EPSS
Exploits7References2
ubuntucve
ubuntucve
•added 2010/04/05 12:0 a.m.•48 views

CVE-2010-0177

Mozilla Firefox before 3.0.19, 3.5.x before 3.5.9, and 3.6.x before 3.6.2, and SeaMonkey before 2.0.4, frees the contents of the window.navigator.plugins array while a reference to an array element is still active, which allows remote attackers to execute arbitrary code or cause a denial of servi...

9.3CVSS7.6AI score0.06995EPSS
Exploits1References3
ubuntucve
ubuntucve
•added 2010/04/01 10:30 p.m.•48 views

CVE-2010-1234

Unspecified vulnerability in Google Chrome before 4.1.249.1036 allows remote attackers to truncate the URL shown in the HTTP Basic Authentication dialog via unknown vectors...

7.5CVSS5.9AI score0.0115EPSS
Exploits1References2
ubuntucve
ubuntucve
•added 2010/03/05 12:0 a.m.•48 views

CVE-2010-0434

The apreadrequest function in server/protocol.c in the Apache HTTP Server 2.2.x before 2.2.15, when a multithreaded MPM is used, does not properly handle headers in subrequests in certain circumstances involving a parent request that has a body, which might allow remote attackers to obtain...

4.3CVSS7.2AI score0.18443EPSS
Exploits2References3
ubuntucve
ubuntucve
•added 2009/08/11 12:0 a.m.•48 views

CVE-2009-2414

Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allows context-dependent attackers to cause a denial of service application crash via a large depth of element declarations in a DTD, related to a function recursion, as demonstrated by the...

4.3CVSS6.7AI score0.03147EPSS
Exploits2References2
ubuntucve
ubuntucve
•added 2009/07/20 5:30 p.m.•48 views

CVE-2009-1897

The tunchrpoll function in drivers/net/tun.c in the tun subsystem in the Linux kernel 2.6.30 and 2.6.30.1, when the -fno-delete-null-pointer-checks gcc option is omitted, allows local users to gain privileges via vectors involving a NULL pointer dereference and an mmap of /dev/net/tun, a differen...

6.9CVSS5.9AI score0.01508EPSS
Exploits1References1
ubuntucve
ubuntucve
•added 2009/03/26 2:30 p.m.•48 views

CVE-2009-1151

Static code injection vulnerability in setup.php in phpMyAdmin 2.11.x before 2.11.9.5 and 3.x before 3.1.3.1 allows remote attackers to inject arbitrary PHP code into a configuration file via the save action...

9.8CVSS7.3AI score0.95438EPSS
Exploits16References2
ubuntucve
ubuntucve
•added 2009/03/25 12:0 a.m.•48 views

CVE-2009-1100

Multiple unspecified vulnerabilities in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allow remote attackers to cause a denial of service disk consumption via vectors related to temporary font files and 1 "limits on Font...

5CVSS6.3AI score0.03584EPSS
Exploits0References2
ubuntucve
ubuntucve
•added 2009/03/25 12:0 a.m.•48 views

CVE-2009-1094

Unspecified vulnerability in the LDAP implementation in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier; 6 Update 12 and earlier; SDK and JRE 1.3.124 and earlier; and 1.4.219 and earlier allows remote LDAP servers to execute arbitrary code via unknown vector...

10CVSS6.6AI score0.04389EPSS
Exploits0References2
ubuntucve
ubuntucve
•added 2008/10/20 5:59 p.m.•48 views

CVE-2008-4609

The TCP implementation in 1 Linux, 2 platforms based on BSD Unix, 3 Microsoft Windows, 4 Cisco products, and probably other operating systems allows remote attackers to cause a denial of service connection queue exhaustion via multiple vectors that manipulate information in the TCP state table, a...

7.1CVSS7.2AI score0.32123EPSS
Exploits1References1
Total number of security vulnerabilities5000