Lucene search
K
UbuntucveMost viewed

68528 matches found

UbuntuCve
UbuntuCve
•added 2006/07/07 6:5 p.m.•46 views

CVE-2006-2451

The suiddumpable support in Linux kernel 2.6.13 up to versions before 2.6.17.4, and 2.6.16 before 2.6.16.24, allows a local user to cause a denial of service disk consumption and possibly gain privileges via the PRSETDUMPABLE argument of the prctl function and a program that causes a core dump fi...

4.6CVSS5.8AI score0.04387EPSS
Exploits17References2
UbuntuCve
UbuntuCve
•added 2006/04/14 10:2 a.m.•46 views

CVE-2006-1729

Mozilla Firefox 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to read arbitrary files by 1 inserting the target filename into a text box, then turning that box into a file upload control, or 2 changing the type of the...

4.3CVSS6AI score0.02234EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2006/01/18 1:7 a.m.•46 views

CVE-2006-0236

GUI display truncation vulnerability in Mozilla Thunderbird 1.0.2, 1.0.6, and 1.0.7 allows user-assisted attackers to execute arbitrary code via an attachment with a filename containing a large number of spaces ending with a dangerous extension that is not displayed by Thunderbird, along with an...

5.1CVSS6.3AI score0.02057EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2005/12/31 5:0 a.m.•46 views

CVE-2005-4838

Multiple cross-site scripting XSS vulnerabilities in the example web applications for Jakarta Tomcat 5.5.6 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 el/functions.jsp, 2 el/implicit-objects.jsp, and 3 jspx/textRotate.jspx in examples/jsp2/, as demonstrated via...

4.3CVSS5.8AI score0.07883EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2005/11/30 11:3 a.m.•46 views

CVE-2005-3912

Format string vulnerability in miniserv.pl Perl web server in Webmin before 1.250 and Usermin before 1.180, with syslog logging enabled, allows remote attackers to cause a denial of service crash or memory consumption and possibly execute arbitrary code via format string specifiers in the usernam...

7.5CVSS6.6AI score0.1448EPSS
Exploits2References1
UbuntuCve
UbuntuCve
•added 2005/10/27 10:2 a.m.•46 views

CVE-2005-3319

The apache2handler SAPI sapiapache2.c in the Apache module modphp for PHP 5.x before 5.1.0 final and 4.4 before 4.4.1 final allows attackers to cause a denial of service segmentation fault via the session.savepath option in a .htaccess file or VirtualHost...

2.1CVSS5.9AI score0.00587EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2005/09/16 10:3 p.m.•46 views

CVE-2005-2946

The default configuration on OpenSSL before 0.9.8 uses MD5 for creating message digests instead of a more cryptographically strong algorithm, which makes it easier for remote attackers to forge certificates with a valid certificate authority signature...

7.5CVSS7.3AI score0.00844EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2004/11/23 5:0 a.m.•46 views

CVE-2004-0598

The pnghandleiCCP function in libpng 1.2.5 and earlier allows remote attackers to cause a denial of service application crash via a certain PNG image that triggers a null dereference...

5CVSS5.9AI score0.06148EPSS
Exploits1References1
UbuntuCve
UbuntuCve
•added 2004/10/20 4:0 a.m.•46 views

CVE-2004-0785

Multiple buffer overflows in Gaim before 0.82 allow remote attackers to cause a denial of service and possibly execute arbitrary code via 1 Rich Text Format RTF messages, 2 a long hostname for the local system as obtained from DNS, or 3 a long URL that is not properly handled by the URL decoder...

7.5CVSS6.5AI score0.05427EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2025/02/20 6:15 p.m.•45 views

CVE-2025-27091

OpenH264 is a free license codec library which supports H.264 encoding and decoding. A vulnerability in the decoding functions of OpenH264 codec library could allow a remote, unauthenticated attacker to trigger a heap overflow. This vulnerability is due to a race condition between a Sequence...

8.6CVSS7.3AI score0.00639EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2024/07/01 7:15 p.m.•45 views

CVE-2024-39573

Potential SSRF in modrewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to cause unsafe RewriteRules to unexpectedly setup URL's to be handled by modproxy. Users are recommended to upgrade to version 2.4.60, which fixes this issue...

7.5CVSS6.7AI score0.35447EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2024/06/10 8:15 p.m.•45 views

CVE-2022-32933

An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in macOS Monterey 12.5. A website may be able to track the websites a user visited in Safari private browsing mode...

5.3CVSS6.8AI score0.00418EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2024/06/09 7:15 p.m.•45 views

CVE-2024-5585

In PHP versions 8.1. before 8.1.29, 8.2. before 8.2.20, 8.3. before 8.3.8, the fix for CVE-2024-1874 does not work if the command name includes trailing spaces. Original issue: when using procopen command with array syntax, due to insufficient escaping, if the arguments of the executed command ar...

8.8CVSS6.7AI score0.28807EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2024/05/28 2:15 p.m.•45 views

CVE-2024-22181

An out-of-bounds write vulnerability exists in the readNODE functionality of libigl v2.5.0. A specially crafted .node file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability...

7.8CVSS5.9AI score0.00444EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2024/05/17 12:15 p.m.•45 views

CVE-2024-27413

In the Linux kernel, the following vulnerability has been resolved: efi/capsule-loader: fix incorrect allocation size gcc-14 notices that the allocation with sizeofvoid on 32-bit architectures is not enough for a 64-bit physaddrt: drivers/firmware/efi/capsule-loader.c: In function 'eficapsuleopen...

5.5CVSS6.2AI score0.00244EPSS
Exploits0References22
UbuntuCve
UbuntuCve
•added 2024/05/01 6:15 a.m.•45 views

CVE-2024-26965

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: mmcc-msm8974: fix terminating of frequency table arrays The frequency table arrays are supposed to be terminated with an empty element. Add such entry to the end of the arrays where it is missing in order to avoid...

7.8CVSS6.3AI score0.0026EPSS
Exploits0References29
UbuntuCve
UbuntuCve
•added 2024/05/01 6:15 a.m.•45 views

CVE-2024-26932

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: fix double-free issue in tcpmportunregisterpd When unregister pd capabilitie in tcpm, KASAN will capture below double -free issue. The root cause is the same capabilitiy will be kfreed twice, the first time is...

7.8CVSS6.3AI score0.00216EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2024/04/09 5:15 p.m.•45 views

CVE-2024-21409

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability...

7.3CVSS7.2AI score0.02513EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2024/03/27 3:15 a.m.•45 views

CVE-2024-25580

An issue was discovered in gui/util/qktxhandler.cpp in Qt before 5.15.17, 6.x before 6.2.12, 6.3.x through 6.5.x before 6.5.5, and 6.6.x before 6.6.2. A buffer overflow and application crash can occur via a crafted KTX image file...

6.2CVSS7.1AI score0.00321EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2024/03/26 8:15 p.m.•45 views

CVE-2024-2955

T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet injection or crafted capture file...

7.8CVSS6.8AI score0.01403EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2024/03/11 6:15 p.m.•45 views

CVE-2024-26615

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix illegal rmbdesc access in SMC-D connection dump A crash was found when dumping SMC-D connections. It can be reproduced by following steps: - run nginx/wrk test: smcrun nginx smcrun wrk -t 16 -c 1000 -d -H 'Connection...

5.5CVSS6.3AI score0.00257EPSS
Exploits0References25
UbuntuCve
UbuntuCve
•added 2024/03/09 1:15 a.m.•45 views

CVE-2024-28176

jose is JavaScript module for JSON Object Signing and Encryption, providing support for JSON Web Tokens JWT, JSON Web Signature JWS, JSON Web Encryption JWE, JSON Web Key JWK, JSON Web Key Set JWKS, and more. A vulnerability has been identified in the JSON Web Encryption JWE decryption interfaces...

5.9CVSS6.6AI score0.02085EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2024/03/06 7:15 a.m.•45 views

CVE-2023-52587

In the Linux kernel, the following vulnerability has been resolved: IB/ipoib: Fix mcast list locking Releasing the priv-lock while iterating the priv-multicastlist in ipoibmcastjointask opens a window for ipoibmcastdevflush to remove the items while in the middle of iteration. If the mcast is...

5.5CVSS6.4AI score0.00309EPSS
Exploits1References26
UbuntuCve
UbuntuCve
•added 2024/02/21 3:15 p.m.•45 views

CVE-2024-26584

In the Linux kernel, the following vulnerability has been resolved: net: tls: handle backlogging of crypto requests Since we're setting the CRYPTOTFMREQMAYBACKLOG flag on our requests to the crypto API, cryptoaeadencrypt,decrypt can return -EBUSY instead of -EINPROGRESS in valid situations. For...

5.5CVSS6.3AI score0.00246EPSS
Exploits0References25
UbuntuCve
UbuntuCve
•added 2024/02/05 8:15 a.m.•45 views

CVE-2024-24859

A race condition was found in the Linux kernel's net/bluetooth in sniffmin,maxintervalset function. This can result in a bluetooth sniffing exception issue, possibly leading denial of service...

4.8CVSS6.3AI score0.00712EPSS
Exploits0References25
UbuntuCve
UbuntuCve
•added 2024/01/15 12:0 a.m.•45 views

CVE-2023-50290

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Solr. The Solr Metrics API publishes all unprotected environment variables available to each Apache Solr instance. Users are able to specify which environment variables to hide, however, the default list is designe...

6.5CVSS6.5AI score0.68665EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2024/01/12 12:0 a.m.•45 views

CVE-2023-5356

Incorrect authorization checks in GitLab CE/EE from all versions starting from 8.13 before 16.5.6, all versions starting from 16.6 before 16.6.4, all versions starting from 16.7 before 16.7.2, allows a user to abuse slack/mattermost integrations to execute slash commands as another user...

8.8CVSS7.5AI score0.00829EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2024/01/09 12:0 a.m.•45 views

CVE-2024-0057

NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability...

9.8CVSS7.1AI score0.02778EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/12/27 9:15 p.m.•45 views

CVE-2023-51079

A long execution time can occur in the ParseTools.subCompileExpression method in MVEL 2.5.0.Final because of many Java class lookups. NOTE: the vendor disputes this because "the only thing that you could expect is that the parser will take a crazy amount of time to complete its task."...

5.3CVSS6.3AI score0.00737EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2023/12/21 12:0 a.m.•45 views

CVE-2023-7024

Heap buffer overflow in WebRTC in Google Chrome prior to 120.0.6099.129 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.6AI score0.07356EPSS
Exploits2References2
UbuntuCve
UbuntuCve
•added 2023/12/12 9:15 p.m.•45 views

CVE-2023-50251

php-svg-lib is an SVG file parsing / rendering library. Prior to version 0.5.1, when parsing the attributes passed to a use tag inside an svg document, an attacker can cause the system to go to an infinite recursion. Depending on the system configuration and attack pattern this could exhaust the...

7.5CVSS7.1AI score0.00878EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2023/12/11 12:0 a.m.•45 views

CVE-2023-6186

Insufficient macro permission validation of The Document Foundation LibreOffice allows an attacker to execute built-in macros without warning. In affected versions LibreOffice supports hyperlinks with macro or similar built-in command targets that can be executed when activated without warning th...

8.8CVSS7.3AI score0.00772EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/11/26 11:15 p.m.•45 views

CVE-2023-6299

A vulnerability, which was classified as problematic, has been found in Apryse iText 8.0.1. This issue affects some unknown processing of the file PdfDocument.java of the component Reference Table Handler. The manipulation leads to memory leak. The attack may be initiated remotely. The exploit ha...

6.5CVSS5.3AI score0.00942EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2023/11/16 6:15 p.m.•45 views

CVE-2023-6176

A null pointer dereference flaw was found in the Linux kernel API for the cryptographic algorithm scatterwalk functionality. This issue occurs when a user constructs a malicious packet with specific socket configuration, which could allow a local user to crash the system or escalate their...

4.7CVSS6.6AI score0.00251EPSS
Exploits0References16
UbuntuCve
UbuntuCve
•added 2023/11/14 3:15 a.m.•45 views

CVE-2023-46445

An issue in AsyncSSH before 2.14.1 allows attackers to control the extension info message RFC 8308 via a man-in-the-middle attack, aka a "Rogue Extension Negotiation."...

5.9CVSS6.2AI score0.00586EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/11/06 12:15 a.m.•45 views

CVE-2023-47272

Roundcube 1.5.x before 1.5.6 and 1.6.x before 1.6.5 allows XSS via a Content-Type or Content-Disposition header used for attachment preview or download...

6.1CVSS6.3AI score0.00641EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2023/11/03 1:15 a.m.•45 views

CVE-2017-7252

bcrypt password hashing in Botan before 2.1.0 does not correctly handle passwords with a length between 57 and 72 characters, which makes it easier for attackers to determine the cleartext password...

7.5CVSS7.1AI score0.00315EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2023/10/25 12:0 a.m.•45 views

CVE-2023-5752

When installing a package from a Mercurial VCS URL ie "pip install hg+..." with pip prior to v23.3, the specified Mercurial revision could be used to inject arbitrary configuration options to the "hg clone" call ie "--config". Controlling the Mercurial configuration can modify how and which...

5.5CVSS6.8AI score0.00476EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/09/18 12:0 a.m.•45 views

CVE-2023-43090

A vulnerability was found in GNOME Shell. GNOME Shell's lock screen allows an unauthenticated local user to view windows of the locked desktop session by using keyboard shortcuts to unlock the restricted functionality of the screenshot tool...

5.5CVSS6AI score0.00311EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2023/08/25 9:15 p.m.•45 views

CVE-2023-41080

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in FORM authentication feature Apache Tomcat.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M10, from 10.1.0-M1 through 10.0.12, from 9.0.0-M1 through 9.0.79 and from 8.5.0 through 8.5.92. Older, EOL versions may als...

6.1CVSS6.8AI score0.05972EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2023/08/22 7:16 p.m.•45 views

CVE-2022-48064

GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function bfddwarf2findnearestlinewithalt at dwarf2.c. The attacker could supply a crafted ELF file and cause a DNS attack...

5.5CVSS6.4AI score0.0059EPSS
Exploits1References1
UbuntuCve
UbuntuCve
•added 2023/08/09 12:0 a.m.•45 views

CVE-2023-34319

The fix for XSA-423 added logic to Linux'es netback driver to deal with a frontend splitting a packet in a way such that not all of the headers would come in one piece. Unfortunately the logic introduced there didn't account for the extreme case of the entire packet being split into as many piece...

7.8CVSS6.8AI score0.00296EPSS
Exploits0References22
UbuntuCve
UbuntuCve
•added 2023/08/01 11:15 p.m.•45 views

CVE-2023-3728

Use after free in WebRTC in Google Chrome prior to 115.0.5790.98 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.2AI score0.007EPSS
Exploits1References1
UbuntuCve
UbuntuCve
•added 2023/07/29 12:15 a.m.•45 views

CVE-2022-4918

Use after free in UI in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS7.3AI score0.0055EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2023/07/24 4:15 p.m.•45 views

CVE-2023-33951

A race condition vulnerability was found in the vmwgfx driver in the Linux kernel. The flaw exists within the handling of GEM objects. The issue results from improper locking when performing operations on an object. This flaw allows a local privileged user to disclose information in the context o...

6.7CVSS6.7AI score0.00343EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2023/06/28 10:15 p.m.•45 views

CVE-2023-3358

A null pointer dereference was found in the Linux kernel's Integrated Sensor Hub ISH driver. This issue could allow a local user to crash the system...

5.5CVSS6.6AI score0.00207EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2023/06/19 12:0 a.m.•45 views

CVE-2023-35853

In Suricata before 6.0.13, an adversary who controls an external source of Lua rules may be able to execute Lua code. This is addressed in 6.0.13 by disabling Lua unless allow-rules is true in the security lua configuration section...

9.8CVSS7.2AI score0.01031EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/06/15 5:15 p.m.•45 views

CVE-2023-34453

snappy-java is a fast compressor/decompressor for Java. Due to unchecked multiplications, an integer overflow may occur in versions prior to 1.1.10.1, causing a fatal error. The function shuffleint input in the file BitShuffle.java receives an array of integers and applies a bit shuffle on it. It...

7.5CVSS6.8AI score0.01707EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2023/06/08 9:15 p.m.•45 views

CVE-2023-29401

The filename parameter of the Context.FileAttachment function is not properly sanitized. A maliciously crafted filename can cause the Content-Disposition header to be sent with an unexpected filename value or otherwise modify the Content-Disposition header. For example, a filename of...

4.3CVSS6.2AI score0.00486EPSS
Exploits2References6
UbuntuCve
UbuntuCve
•added 2023/04/18 9:15 p.m.•45 views

CVE-2023-26048

Jetty is a java based web server and servlet engine. In affected versions servlets with multipart support e.g. annotated with @MultipartConfig that call HttpServletRequest.getParameter or HttpServletRequest.getParts may cause OutOfMemoryError when the client sends a multipart request with a part...

5.3CVSS6.7AI score0.0326EPSS
Exploits0References6
Total number of security vulnerabilities5000