Lucene search
+L
UbuntucveMost viewed

71772 matches found

UbuntuCve
UbuntuCve
•added 2022/01/10 11:15 p.m.•47 views

CVE-2021-36410

A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function putepelhvfallback when running program dec265...

5.5CVSS6.8AI score0.00859EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2022/01/06 11:15 p.m.•47 views

CVE-2022-21664

WordPress is a free and open-source content management system written in PHP and paired with a MariaDB database. Due to lack of proper sanitization in one of the classes, there's potential for unintended SQL queries to be executed. This has been patched in WordPress version 5.8.3. Older affected...

8.8CVSS7.1AI score0.04052EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2021/12/24 12:0 a.m.•47 views

CVE-2021-23177

An improper link resolution flaw while extracting an archive can lead to changing the access control list ACL of the target of the link. An attacker may provide a malicious archive to a victim user, who would trigger this flaw when trying to extract the archive. A local attacker may use this flaw...

7.8CVSS7.1AI score0.00367EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/12/08 5:15 a.m.•47 views

CVE-2018-25020

The BPF subsystem in the Linux kernel before 4.17 mishandles situations with a long jump over an instruction sequence where inner instructions require substantial expansions into multiple BPF instructions, leading to an overflow. This affects kernel/bpf/core.c and net/core/filter.c...

7.8CVSS7.2AI score0.00505EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/12/08 12:0 a.m.•47 views

CVE-2021-43537

An incorrect type conversion of sizes from 64bit to 32bit integers allowed an attacker to corrupt memory leading to a potentially exploitable crash. This vulnerability affects Thunderbird 91.4.0, Firefox ESR 91.4.0, and Firefox 95...

8.8CVSS7.2AI score0.0202EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2021/11/17 5:15 p.m.•47 views

CVE-2021-43976

In the Linux kernel through 5.15.2, mwifiexusbrecv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker who can connect a crafted USB device to cause a denial of service skboverpanic...

4.6CVSS6.7AI score0.00643EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2021/11/15 9:15 p.m.•47 views

CVE-2021-42378

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvari function...

7.2CVSS7.3AI score0.02542EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/11/05 6:15 p.m.•47 views

CVE-2021-35368

OWASP ModSecurity Core Rule Set 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.2 is affected by a Request Body Bypass via a trailing pathname...

9.8CVSS7.1AI score0.02542EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2021/10/26 8:15 p.m.•47 views

CVE-2019-3556

HHVM supports the use of an "admin" server which accepts administrative requests over HTTP. One of those request handlers, dump-pcre-cache, can be used to output cached regular expressions from the current execution context into a file. The handler takes a parameter which specifies where on the...

8.1CVSS7.2AI score0.01731EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2021/10/20 11:17 a.m.•47 views

CVE-2021-35603

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Difficult to exploit vulnerability allows unauthenticated...

4.3CVSS6.8AI score0.04104EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/09/08 3:15 p.m.•47 views

CVE-2021-1817

A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. Processing maliciously crafted web content may lead to arbitrary code execution...

8.8CVSS7AI score0.01843EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2021/09/08 2:15 p.m.•47 views

CVE-2021-30762

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.5.4. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited...

8.8CVSS7.1AI score0.10986EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/09/07 8:15 p.m.•47 views

CVE-2021-35946

A receiver of a federated share with access to the database with ownCloud version before 10.8 could update the permissions and therefore elevate their own permissions...

9.8CVSS7.2AI score0.01482EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/09/07 8:15 p.m.•47 views

CVE-2021-35948

Session fixation on password protected public links in the ownCloud Server before 10.8.0 allows an attacker to bypass the password protection when they can force a target client to use a controlled cookie...

5.8CVSS6.1AI score0.00693EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/08/30 5:15 a.m.•47 views

CVE-2021-38385

Tor before 0.3.5.16, 0.4.5.10, and 0.4.6.7 mishandles the relationship between batch-signature verification and single-signature verification, leading to a remote assertion failure, aka TROVE-2021-007...

7.5CVSS7.2AI score0.01685EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2021/08/25 12:0 a.m.•47 views

CVE-2021-3743

An out-of-bounds OOB memory read flaw was found in the Qualcomm IPC router protocol in the Linux kernel. A missing sanity check allows a local attacker to gain access to out-of-bounds memory, leading to a system crash or a leak of internal kernel information. The highest threat from this...

7.1CVSS6.7AI score0.0072EPSS
Exploits1References11
UbuntuCve
UbuntuCve
•added 2021/08/11 12:0 a.m.•47 views

CVE-2021-29989

Mozilla developers reported memory safety bugs present in Firefox 90 and Firefox ESR 78.12. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird 78.13,...

8.8CVSS7.3AI score0.01268EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2021/08/08 8:15 p.m.•47 views

CVE-2021-38199

fs/nfs/nfs4client.c in the Linux kernel before 5.13.4 has incorrect connection-setup ordering, which allows operators of remote NFSv4 servers to cause a denial of service hanging of mounts by arranging for those servers to be unreachable during trunking detection...

6.5CVSS6.8AI score0.01245EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2021/08/05 9:15 p.m.•47 views

CVE-2021-22926

libcurl-using applications can ask for a specific client certificate to be used in a transfer. This is done with the CURLOPTSSLCERT option --cert with the command line tool.When libcurl is built to use the macOS native TLS library Secure Transport, an application can ask for the client certificat...

7.5CVSS6.6AI score0.0982EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2021/07/27 12:0 a.m.•47 views

CVE-2021-30689

A logic issue was addressed with improved state management. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Safari 14.1.1, macOS Big Sur 11.4, watchOS 7.5. Processing maliciously crafted web content may lead to universal cross site scripting...

6.1CVSS5.7AI score0.01105EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/07/21 12:0 a.m.•47 views

CVE-2021-22925

curl supports the -t command line option, known as CURLOPTTELNETOPTIONSin libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending NEWENV variables, libcurlcould be made to pass on uninitialized data from a stack based...

5.3CVSS6.8AI score0.04929EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2021/07/02 12:0 a.m.•47 views

CVE-2021-21705

In PHP versions 7.3.x below 7.3.29, 7.4.x below 7.4.21 and 8.0.x below 8.0.8, when using URL validation functionality via filtervar function with FILTERVALIDATEURL parameter, an URL with invalid password field can be accepted as valid. This can lead to the code incorrectly parsing the URL and...

5.3CVSS6.8AI score0.01945EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2021/07/01 3:15 a.m.•47 views

CVE-2021-36084

The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission and cilpreverifyhelper...

3.3CVSS6.8AI score0.00481EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2021/06/08 12:0 a.m.•47 views

CVE-2020-24489

Incomplete cleanup in some IntelR VT-d products may allow an authenticated user to potentially enable escalation of privilege via local access...

8.8CVSS6.9AI score0.00352EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2021/05/18 12:0 a.m.•47 views

CVE-2021-31535

LookupCol.c in X.Org X through X11R7.7 and libX11 before 1.7.1 might allow remote attackers to execute arbitrary code. The libX11 XLookupColor request intended for server-side color lookup contains a flaw allowing a client to send color-name requests with a name longer than the maximum size allow...

9.8CVSS7.1AI score0.10634EPSS
Exploits2References7
UbuntuCve
UbuntuCve
•added 2021/05/11 6:0 p.m.•47 views

CVE-2020-26145

An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second or subsequent broadcast fragments even when sent in plaintext and process them as full unfragmented frames. An adversary can abuse this to inject arbitrary network packets...

6.5CVSS7AI score0.03515EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2021/05/11 6:0 p.m.•47 views

CVE-2020-26140

An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext frames in a protected Wi-Fi network. An adversary can abuse this to inject arbitrary data frames independent of the network configuration...

6.5CVSS7AI score0.02923EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/04/27 6:15 a.m.•47 views

CVE-2019-25036

Unbound before 1.9.5 allows an assertion failure and denial of service in synthcname. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited...

7.5CVSS7.1AI score0.01989EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/04/05 10:15 p.m.•47 views

CVE-2021-20305

A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions GOST DSA, EDDSA & ECDSA result in the Elliptic Curve Cryptography point ECC multiply function being called with out-of-range scalers, possibly resulting in incorrect results. This flaw allow...

8.1CVSS6.7AI score0.01607EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/03/26 10:15 p.m.•47 views

CVE-2021-29264

An issue was discovered in the Linux kernel through 5.11.10. drivers/net/ethernet/freescale/gianfar.c in the Freescale Gianfar Ethernet driver allows attackers to cause a system crash because a negative fragment size is calculated in situations involving an rx queue overrun when jumbo packets are...

5.5CVSS6.8AI score0.00272EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2021/03/23 5:0 p.m.•47 views

CVE-2021-3444

The bpf verifier in the Linux kernel did not properly handle mod32 destination register truncation when the source register was known to be 0. A local attacker with the ability to load bpf programs could use this gain out-of-bounds reads in kernel memory leading to information disclosure kernel...

7.8CVSS6.8AI score0.0061EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2021/03/12 12:0 a.m.•47 views

CVE-2021-20231

A flaw was found in gnutls. A use after free issue in client sending keyshare extension may lead to memory corruption and other consequences...

9.8CVSS6.7AI score0.03751EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2021/03/11 1:15 a.m.•47 views

CVE-2020-1900

When unserializing an object with dynamic properties HHVM needs to pre-reserve the full size of the dynamic property array before inserting anything into it. Otherwise the array might resize, invalidating previously stored references. This pre-reservation was not occurring in HHVM prior to v4.32....

9.8CVSS7.2AI score0.01384EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2021/02/16 5:15 p.m.•47 views

CVE-2021-23841

The OpenSSL public API function X509issuerandserialhash attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. However it fails to correctly handle any errors that may occur while parsing the issuer field which might occur if the...

5.9CVSS6.7AI score0.07471EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2021/02/15 11:15 a.m.•47 views

CVE-2020-28500

Lodash versions prior to 4.17.21 are vulnerable to Regular Expression Denial of Service ReDoS via the toNumber, trim and trimEnd functions...

5.3CVSS6.8AI score0.07336EPSS
Exploits1References9
UbuntuCve
UbuntuCve
•added 2021/02/09 9:15 p.m.•47 views

CVE-2020-14343

A vulnerability was discovered in the PyYAML library in versions before 5.4, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the fullload method or with the FullLoader loader. Applications that use the library to process untrusted input may be...

10CVSS7.5AI score0.05984EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2021/02/08 11:15 a.m.•47 views

CVE-2021-21434

Survey administrator can craft a survey in such way that malicious code can be executed in the agent interface i.e. another agent who wants to make changes in the survey. This issue affects: OTRS AG Survey 6.0.x version 6.0.20 and prior versions; 7.0.x version 7.0.19 and prior versions...

4.8CVSS5.9AI score0.00659EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2021/01/02 6:15 a.m.•47 views

CVE-2020-28852

In x/text in Go before v0.3.5, a "slice bounds out of range" panic occurs in language.ParseAcceptLanguage while processing a BCP 47 tag. x/text/language is supposed to be able to parse an HTTP Accept-Language header...

7.5CVSS7.1AI score0.01674EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2020/12/28 12:0 a.m.•47 views

CVE-2020-35730

An XSS issue was discovered in Roundcube Webmail before 1.2.13, 1.3.x before 1.3.16, and 1.4.x before 1.4.10. The attacker can send a plain text e-mail message, with JavaScript in a link reference element that is mishandled by linkrefaddindex in rcubestringreplacer.php...

6.1CVSS7.1AI score0.32823EPSS
Exploits1References6
UbuntuCve
UbuntuCve
•added 2020/12/15 12:0 a.m.•47 views

CVE-2020-29569

An issue was discovered in the Linux kernel through 5.10.1, as used with Xen through 4.14.x. The Linux kernel PV block backend expects the kernel thread handler to reset ring-xenblkd to NULL when stopped. However, the handler may not have time to run if the frontend quickly toggles between the...

8.8CVSS6.7AI score0.00388EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2020/12/10 12:0 a.m.•47 views

CVE-2020-27824

A flaw was found in OpenJPEG’s encoder in the opjdwtcalcexplicitstepsizes function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow. The highest threat from this vulnerability is to system availability...

5.5CVSS6.8AI score0.0161EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2020/12/09 5:15 p.m.•47 views

CVE-2020-29661

A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/ttyjobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b...

7.8CVSS6.7AI score0.01129EPSS
Exploits2References10
UbuntuCve
UbuntuCve
•added 2020/11/13 12:0 a.m.•47 views

CVE-2020-25709

A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAP’s slapd server, to trigger an assertion failure. The highest threat from this vulnerability is to system availability...

7.5CVSS7AI score0.02858EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2020/11/05 9:15 p.m.•47 views

CVE-2020-25661

A Red Hat only CVE-2020-12351 regression issue was found in the way the Linux kernel's Bluetooth implementation handled L2CAP packets with A2MP CID. This flaw allows a remote attacker in an adjacent range to crash the system, causing a denial of service or potentially executing arbitrary code on...

8.8CVSS7.2AI score0.01765EPSS
Exploits5References2
UbuntuCve
UbuntuCve
•added 2020/10/21 3:15 p.m.•47 views

CVE-2020-14779

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Serialization. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

4.3CVSS6.7AI score0.03758EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2020/10/20 12:0 a.m.•47 views

CVE-2020-15999

Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

9.6CVSS7.3AI score0.5063EPSS
Exploits2References7
UbuntuCve
UbuntuCve
•added 2020/10/02 1:15 p.m.•47 views

CVE-2020-18184

In PluxXml V5.7,the theme edit function /PluXml/core/admin/parametresedittpl.php allows remote attackers to execute arbitrary PHP code by placing this code into a template...

7.2CVSS7.2AI score0.01438EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2020/09/30 6:15 p.m.•47 views

CVE-2020-26160

jwt-go before 4.0.0-preview1 allows attackers to bypass intended access restrictions in situations with string for m"aud" which is allowed by the specification. Because the type assertion fails, "" is the value of aud. This is a security problem if the JWT token is presented to a service that lac...

7.5CVSS6.8AI score0.02158EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2020/09/23 10:15 p.m.•47 views

CVE-2020-25599

An issue was discovered in Xen through 4.14.x. There are evtchnreset race conditions. Uses of EVTCHNOPreset potentially by a guest on itself or XENDOMCTLsoftreset by itself covered by XSA-77 can lead to the violation of various internal assumptions. This may lead to out of bounds memory accesses ...

7CVSS6.7AI score0.00286EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2020/09/15 7:15 p.m.•47 views

CVE-2020-14331

A flaw was found in the Linux kernel’s implementation of the invert video code on VGA consoles when a local attacker attempts to resize the console, calling an ioctl VTRESIZE, which causes an out-of-bounds write to occur. This flaw allows a local user with access to the VGA console to crash the...

7.2CVSS6.7AI score0.00563EPSS
Exploits1References2
Total number of security vulnerabilities5000