Lucene search
K
UbuntucveMost viewed

68528 matches found

UbuntuCve
UbuntuCve
added 2024/01/31 1:15 p.m.160 views

CVE-2024-1086

A use-after-free vulnerability in the Linux kernel's netfilter: nftables component can be exploited to achieve local privilege escalation. The nftverdictinit function allows positive values as drop error within the hook verdict, and hence the nfhookslow function can cause a double free...

7.8CVSS6.9AI score0.28058EPSS
Exploits16References24
UbuntuCve
UbuntuCve
added 2021/09/16 3:15 p.m.160 views

CVE-2021-40438

A crafted request uri-path can cause modproxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier...

9CVSS7AI score0.99999EPSS
Exploits5References8
UbuntuCve
UbuntuCve
added 2021/06/06 10:15 p.m.159 views

CVE-2017-20005

NGINX before 1.13.6 has a buffer overflow for years that exceed four digits, as demonstrated by a file with a modification date in 1969 that causes an integer overflow or a false modification date far in the future, when encountered by the autoindex module...

9.8CVSS7.4AI score0.03285EPSS
Exploits1References7
UbuntuCve
UbuntuCve
added 2024/11/19 12:0 a.m.158 views

CVE-2024-10524

Applications that use Wget to access a remote resource using shorthand URLs and pass arbitrary user credentials in the URL are vulnerable. In these cases attackers can enter crafted credentials which will cause Wget to access an arbitrary host...

6.5CVSS7.2AI score0.0111EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2020/10/10 7:15 p.m.157 views

CVE-2020-26935

An issue was discovered in SearchController in phpMyAdmin before 4.9.6 and 5.x before 5.0.3. A SQL injection vulnerability was discovered in how phpMyAdmin processes SQL statements in the search feature. An attacker could use this flaw to inject malicious SQL in to a query...

9.8CVSS7.2AI score0.67081EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2025/01/26 6:15 a.m.156 views

CVE-2022-49043

xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free...

8.1CVSS6.9AI score0.00257EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2023/10/23 7:15 a.m.156 views

CVE-2023-31122

Out-of-bounds Read vulnerability in modmacro of Apache HTTP Server.This issue affects Apache HTTP Server: through 2.4.57...

7.5CVSS6.8AI score0.02978EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2022/02/21 7:15 p.m.156 views

CVE-2022-0563

A flaw was found in the util-linux chfn and chsh utilities when compiled with Readline support. The Readline library uses an "INPUTRC" environment variable to get a path to the library config file. When the library cannot parse the specified file, it prints an error message containing data from t...

5.5CVSS6.3AI score0.0043EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2019/11/20 12:0 a.m.155 views

CVE-2019-16201

WEBrick::HTTPAuth::DigestAuth in Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 has a regular expression Denial of Service cause by looping/backtracking. A victim must expose a WEBrick server that uses DigestAuth to the Internet or a untrusted network...

7.8CVSS6.6AI score0.05128EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2023/01/10 12:0 a.m.154 views

CVE-2023-22899

Zip4j through 2.11.2, as used in Threema and other products, does not always check the MAC when decrypting a ZIP archive...

5.9CVSS6.8AI score0.00619EPSS
Exploits1References6
UbuntuCve
UbuntuCve
added 2018/08/17 12:0 a.m.153 views

CVE-2018-15473

OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-pubkey.c...

5.9CVSS6.7AI score0.98631EPSS
Exploits23References4
UbuntuCve
UbuntuCve
added 2023/08/14 12:0 a.m.152 views

CVE-2023-40283

An issue was discovered in l2capsockrelease in net/bluetooth/l2capsock.c in the Linux kernel before 6.4.10. There is a use-after-free because the children of an sk are mishandled...

7.8CVSS6.7AI score0.0056EPSS
Exploits0References18
UbuntuCve
UbuntuCve
added 2022/07/25 4:15 p.m.152 views

CVE-2022-35653

A reflected XSS issue was identified in the LTI module of Moodle. The vulnerability exists due to insufficient sanitization of user-supplied data in the LTI module. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's brows...

6.1CVSS6.4AI score0.03747EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2019/01/15 12:29 a.m.151 views

CVE-2019-6293

An issue was discovered in the function markbeginningasnormal in nfa.c in flex 2.6.4. There is a stack exhaustion problem caused by the markbeginningasnormal function making recursive calls to itself in certain scenarios involving lots of '' characters. Remote attackers could leverage this...

5.5CVSS6.5AI score0.01588EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2024/11/07 10:15 a.m.150 views

CVE-2024-51504

When using IPAuthenticationProvider in ZooKeeper Admin Server there is a possibility of Authentication Bypass by Spoofing -- this only impacts IP based authentication implemented in ZooKeeper Admin Server. Default configuration of client's IP address detection in IPAuthenticationProvider, which...

9.1CVSS7AI score0.00924EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2023/10/18 3:15 p.m.150 views

CVE-2023-5631

Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcubewashtml.php behavior. This could allow a remote attacker to load arbitrary JavaScript code...

6.1CVSS6.4AI score0.75873EPSS
Exploits2References8
UbuntuCve
UbuntuCve
added 2004/08/18 4:0 a.m.150 views

CVE-2004-0230

TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service connection loss to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP...

5CVSS6.7AI score0.80855EPSS
Exploits3References1
UbuntuCve
UbuntuCve
added 2025/01/31 6:15 p.m.149 views

CVE-2025-0938

The Python standard library functions urllib.parse.urlsplit and urlparse accepted domain names that included square brackets which isn't valid according to RFC 3986. Square brackets are only meant to be used as delimiters for specifying IPv6 and IPvFuture hosts in URLs. This could result in...

6.3CVSS6.8AI score0.01499EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2024/11/12 3:15 a.m.149 views

CVE-2024-49394

In mutt and neomutt the In-Reply-To email header field is not protected by cryptographic signing which allows an attacker to reuse an unencrypted but signed email message to impersonate the original sender...

5.3CVSS6.1AI score0.00329EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2024/09/03 7:15 p.m.149 views

CVE-2024-45310

runc is a CLI tool for spawning and running containers according to the OCI specification. runc 1.1.13 and earlier, as well as 1.2.0-rc2 and earlier, can be tricked into creating empty files or directories in arbitrary locations in the host filesystem by sharing a volume between two containers an...

3.6CVSS6.7AI score0.00317EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2024/01/16 3:15 p.m.149 views

CVE-2024-0582

A memory leak flaw was found in the Linux kernel’s iouring functionality in how a user registers a buffer ring with IORINGREGISTERPBUFRING, mmap it, and then frees it. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7.8CVSS7AI score0.12836EPSS
Exploits9References9
UbuntuCve
UbuntuCve
added 2021/08/03 7:15 p.m.149 views

CVE-2021-30561

Type Confusion in V8 in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.2AI score0.04737EPSS
Exploits2References1
UbuntuCve
UbuntuCve
added 2019/11/20 12:0 a.m.149 views

CVE-2019-15845

Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 mishandles path checking within File.fnmatch functions...

6.5CVSS6.6AI score0.03317EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2022/02/01 12:0 a.m.148 views

CVE-2021-3998

A flaw was found in glibc. The realpath function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data...

7.5CVSS6.9AI score0.01444EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/01/28 12:0 a.m.147 views

CVE-2024-45340

Credentials provided via the new GOAUTH feature were not being properly segmented by domain, allowing a malicious server to request credentials they should not have access to. By default, unless otherwise set, this only affected credentials stored in the users .netrc file...

8.8CVSS7.1AI score0.00685EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2024/12/18 11:15 p.m.147 views

CVE-2024-53580

iperf v3.17.1 was discovered to contain a segmentation violation via the iperfexchangeparameters function...

7.5CVSS6.8AI score0.00926EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2024/12/15 11:15 a.m.147 views

CVE-2024-7701

Use of Password Hash With Insufficient Computational Effort vulnerability in percona percona-toolkit allows Encryption Brute Forcing.This issue affects percona-toolkit: 3.6.0...

7.5CVSS5.8AI score0.00204EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2022/08/29 3:15 p.m.147 views

CVE-2022-0400

An out-of-bounds read vulnerability was discovered in linux kernel in the smc protocol stack, causing remote dos...

7.5CVSS7.2AI score0.01222EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2024/10/01 7:15 p.m.146 views

CVE-2024-9341

A flaw was found in Go. When FIPS mode is enabled on a system, container runtimes may incorrectly handle certain file paths due to improper validation in the containers/common Go library. This flaw allows an attacker to exploit symbolic links and trick the system into mounting sensitive host...

8.2CVSS6.7AI score0.00969EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2024/08/22 3:15 p.m.146 views

CVE-2024-43398

REXML is an XML toolkit for Ruby. The REXML gem before 3.3.6 has a DoS vulnerability when it parses an XML that has many deep elements that have same local name attributes. If you need to parse untrusted XMLs with tree parser API like REXML::Document.new, you may be impacted to this vulnerability...

5.9CVSS6.6AI score0.01205EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2022/08/06 6:15 p.m.146 views

CVE-2022-37451

Exim before 4.96 has an invalid free in pamconverse in auths/callpam.c because storefree is not used after storemalloc...

7.5CVSS7.1AI score0.02602EPSS
Exploits2References4
UbuntuCve
UbuntuCve
added 2022/01/25 5:0 p.m.146 views

CVE-2021-4034

A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool designed to allow unprivileged users to run commands as privileged users according predefined policies. The current version of pkexec doesn't handle the calling parameters coun...

7.8CVSS7.2AI score0.94921EPSS
Exploits152References5
UbuntuCve
UbuntuCve
added 2020/10/07 7:15 p.m.146 views

CVE-2020-15175

In GLPI before version 9.5.2, the ​pluginimage.send.php​ endpoint allows a user to specify an image from a plugin. The parameters can be maliciously crafted to instead delete the .htaccess file for the files directory. Any user becomes able to read all the files and folders contained in “/files/”...

9.1CVSS7.2AI score0.71352EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2023/06/13 5:15 p.m.145 views

CVE-2023-31438

An issue was discovered in systemd 253. An attacker can truncate a sealed log file and then resume log sealing such that checking the integrity shows no error, despite modifications. NOTE: the vendor reportedly sent "a reply denying that any of the finding was a security vulnerability."...

5.3CVSS6.9AI score0.00328EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2022/09/28 2:15 p.m.145 views

CVE-2022-39261

Twig is a template language for PHP. Versions 1.x prior to 1.44.7, 2.x prior to 2.15.3, and 3.x prior to 3.4.3 encounter an issue when the filesystem loader loads templates for which the name is a user input. It is possible to use the source or include statement to read arbitrary files from outsi...

7.5CVSS7.2AI score0.01557EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2022/11/09 10:15 p.m.144 views

CVE-2022-37967

Windows Kerberos Elevation of Privilege Vulnerability...

7.2CVSS6.9AI score0.04488EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2022/03/13 12:15 a.m.144 views

CVE-2021-36368

An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the user cannot determine whether FIDO authenticatio...

3.7CVSS6.8AI score0.01677EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2023/05/25 10:15 p.m.143 views

CVE-2023-31147

c-ares is an asynchronous resolver library. When /dev/urandom or RtlGenRandom are unavailable, c-ares uses rand to generate random numbers used for DNS query ids. This is not a CSPRNG, and it is also not seeded by srand so will generate predictable output. Input from the random number generator i...

6.5CVSS6.7AI score0.00905EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2023/05/02 8:15 p.m.141 views

CVE-2023-30944

The vulnerability was found Moodle which exists due to insufficient sanitization of user-supplied data in external Wiki method for listing pages. A remote attacker can send a specially crafted request to the affected application and execute limited SQL commands within the application database...

7.3CVSS6.6AI score0.01142EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2022/05/01 4:15 p.m.141 views

CVE-2022-25647

The package com.google.code.gson:gson before 2.8.9 are vulnerable to Deserialization of Untrusted Data via the writeReplace method in internal classes, which may lead to DoS attacks...

7.7CVSS7.3AI score0.1158EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2023/07/11 12:15 p.m.140 views

CVE-2023-3269

A vulnerability exists in the memory management subsystem of the Linux kernel. The lock handling for accessing and updating virtual memory areas VMAs is incorrect, leading to use-after-free problems. This issue can be successfully exploited to execute arbitrary kernel code, escalate containers, a...

7.8CVSS7.2AI score0.01484EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2023/02/22 12:0 a.m.140 views

CVE-2023-0461

There is a use-after-free vulnerability in the Linux Kernel which can be exploited to achieve local privilege escalation. To reach the vulnerability kernel configuration flag CONFIGTLS or CONFIGXFRMESPINTCP has to be configured, but the operation does not require any privilege. There is a...

7.8CVSS6.8AI score0.00652EPSS
Exploits0References27
UbuntuCve
UbuntuCve
added 2022/08/08 12:0 a.m.139 views

CVE-2022-2590

A race condition was found in the way the Linux kernel's memory subsystem handled the copy-on-write COW breakage of private read-only shared memory mappings. This flaw allows an unprivileged, local user to gain write access to read-only memory mappings, increasing their privileges on the system...

7CVSS6.7AI score0.00901EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2023/05/08 12:0 a.m.137 views

CVE-2023-32233

In the Linux kernel through 6.3.1, a use-after-free in Netfilter nftables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs because anonymous sets are mishandled...

7.8CVSS6.8AI score0.12966EPSS
Exploits7References18
UbuntuCve
UbuntuCve
added 2022/08/26 4:15 p.m.137 views

CVE-2021-3864

A flaw was found in the way the dumpable flag setting was handled when certain SUID binaries executed its descendants. The prerequisite is a SUID binary that sets real UID equal to effective UID, and real GID equal to effective GID. The descendant will then have a dumpable value set to 1. As a...

7CVSS7.1AI score0.00726EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2022/06/09 12:0 a.m.137 views

CVE-2022-31813

Apache HTTP Server 2.4.53 and earlier may not send the X-Forwarded- headers to the origin server based on client side Connection header hop-by-hop mechanism. This may be used to bypass IP based authentication on the origin server/application...

9.8CVSS7.2AI score0.0314EPSS
Exploits1References7
UbuntuCve
UbuntuCve
added 2023/11/08 9:15 p.m.136 views

CVE-2023-45857

An issue discovered in Axios 1.5.1 inadvertently reveals the confidential XSRF-TOKEN stored in cookies by including it in the HTTP header X-XSRF-TOKEN for every request made to any host allowing attackers to view sensitive information...

6.5CVSS6.9AI score0.00556EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2023/03/07 12:0 a.m.135 views

CVE-2023-27522

HTTP Response Smuggling vulnerability in Apache HTTP Server via modproxyuwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55. Special characters in the origin response header can truncate/split the response forwarded to the client...

7.5CVSS7.1AI score0.02134EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2019/08/05 7:15 p.m.135 views

CVE-2019-14665

Brandy 1.20.1 has a heap-based buffer overflow in definearray in variables.c via crafted BASIC source code...

5.5CVSS6.3AI score0.00842EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2019/04/02 12:0 a.m.135 views

CVE-2019-0211

In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code executing in less-privileged child processes or threads including scripts executed by an in-process scripting interpreter could execute arbitrary code with the privileges of the parent process usually roo...

7.8CVSS7.1AI score0.65005EPSS
Exploits8References5
Total number of security vulnerabilities5000