Lucene search
+L
UbuntucveMost viewed

71772 matches found

UbuntuCve
UbuntuCve
•added 2024/07/12 1:15 p.m.•45 views

CVE-2024-40954

In the Linux kernel, the following vulnerability has been resolved: net: do not leave a dangling sk pointer, when socket creation fails It is possible to trigger a use-after-free by: attaching an fentry probe to sockrelease and the probe calling the bpfgetsocketcookie helper running traceroute -I...

7.8CVSS6.4AI score0.00255EPSS
Exploits0References20
UbuntuCve
UbuntuCve
•added 2024/07/01 7:15 p.m.•45 views

CVE-2024-39573

Potential SSRF in modrewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to cause unsafe RewriteRules to unexpectedly setup URL's to be handled by modproxy. Users are recommended to upgrade to version 2.4.60, which fixes this issue...

7.5CVSS6.7AI score0.35447EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2024/06/10 8:15 p.m.•45 views

CVE-2022-32933

An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in macOS Monterey 12.5. A website may be able to track the websites a user visited in Safari private browsing mode...

5.3CVSS6.8AI score0.00418EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2024/06/09 7:15 p.m.•45 views

CVE-2024-5585

In PHP versions 8.1. before 8.1.29, 8.2. before 8.2.20, 8.3. before 8.3.8, the fix for CVE-2024-1874 does not work if the command name includes trailing spaces. Original issue: when using procopen command with array syntax, due to insufficient escaping, if the arguments of the executed command ar...

8.8CVSS6.7AI score0.28807EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2024/05/28 2:15 p.m.•45 views

CVE-2024-22181

An out-of-bounds write vulnerability exists in the readNODE functionality of libigl v2.5.0. A specially crafted .node file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability...

7.8CVSS5.9AI score0.00444EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2024/05/17 9:15 p.m.•45 views

CVE-2023-52424

The IEEE 802.11 standard sometimes enables an adversary to trick a victim into connecting to an unintended or untrusted network with Home WEP, Home WPA3 SAE-loop. Enterprise 802.1X/EAP, Mesh AMPE, or FILS, aka an "SSID Confusion" issue. This occurs because the SSID is not always used to derive th...

7.4CVSS6.6AI score0.00716EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2024/05/17 2:15 p.m.•45 views

CVE-2024-35811

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix use-after-free bug in brcmfcfg80211detach This is the candidate patch of CVE-2023-47233 : https://nvd.nist.gov/vuln/detail/CVE-2023-47233 In brcm80211 driver,it starts with the following invoking chain to star...

5.5CVSS6.3AI score0.00233EPSS
Exploits0References24
UbuntuCve
UbuntuCve
•added 2024/05/17 12:15 p.m.•45 views

CVE-2024-27413

In the Linux kernel, the following vulnerability has been resolved: efi/capsule-loader: fix incorrect allocation size gcc-14 notices that the allocation with sizeofvoid on 32-bit architectures is not enough for a 64-bit physaddrt: drivers/firmware/efi/capsule-loader.c: In function 'eficapsuleopen...

5.5CVSS6.2AI score0.00244EPSS
Exploits0References22
UbuntuCve
UbuntuCve
•added 2024/05/01 6:15 a.m.•45 views

CVE-2024-26932

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: fix double-free issue in tcpmportunregisterpd When unregister pd capabilitie in tcpm, KASAN will capture below double -free issue. The root cause is the same capabilitiy will be kfreed twice, the first time is...

7.8CVSS6.3AI score0.00216EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2024/04/16 10:15 p.m.•45 views

CVE-2024-21012

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 11.0.22, 17.0.10, 21.0.2, 22; Oracle GraalVM for JDK: 17.0.10, 21.0.2, 22; Oracle GraalVM...

3.7CVSS6.8AI score0.00902EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2024/04/03 3:15 p.m.•45 views

CVE-2024-26690

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: protect updates of 64-bit statistics counters As explained by a comment in , write side of struct u64statssync must ensure mutual exclusion, or one seqcount update could be lost on 32-bit platforms, thus blocking...

6.5CVSS5.7AI score0.00709EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2024/03/27 3:15 a.m.•45 views

CVE-2024-25580

An issue was discovered in gui/util/qktxhandler.cpp in Qt before 5.15.17, 6.x before 6.2.12, 6.3.x through 6.5.x before 6.5.5, and 6.6.x before 6.6.2. A buffer overflow and application crash can occur via a crafted KTX image file...

6.2CVSS7.1AI score0.00321EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2024/03/26 8:15 p.m.•45 views

CVE-2024-2955

T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet injection or crafted capture file...

7.8CVSS6.8AI score0.01403EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2024/03/25 8:15 p.m.•45 views

CVE-2024-29025

Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. The HttpPostRequestDecoder can be tricked to accumulate data. While the decoder can store items on the disk if configured so, there are no limits ...

5.3CVSS6.8AI score0.0138EPSS
Exploits1References6
UbuntuCve
UbuntuCve
•added 2024/03/11 6:15 p.m.•45 views

CVE-2024-26615

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix illegal rmbdesc access in SMC-D connection dump A crash was found when dumping SMC-D connections. It can be reproduced by following steps: - run nginx/wrk test: smcrun nginx smcrun wrk -t 16 -c 1000 -d -H 'Connection...

5.5CVSS6.3AI score0.00257EPSS
Exploits0References25
UbuntuCve
UbuntuCve
•added 2024/03/09 1:15 a.m.•45 views

CVE-2024-28176

jose is JavaScript module for JSON Object Signing and Encryption, providing support for JSON Web Tokens JWT, JSON Web Signature JWS, JSON Web Encryption JWE, JSON Web Key JWK, JSON Web Key Set JWKS, and more. A vulnerability has been identified in the JSON Web Encryption JWE decryption interfaces...

5.9CVSS6.6AI score0.02085EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2024/03/06 7:15 a.m.•45 views

CVE-2023-52587

In the Linux kernel, the following vulnerability has been resolved: IB/ipoib: Fix mcast list locking Releasing the priv-lock while iterating the priv-multicastlist in ipoibmcastjointask opens a window for ipoibmcastdevflush to remove the items while in the middle of iteration. If the mcast is...

5.5CVSS6.4AI score0.00309EPSS
Exploits1References26
UbuntuCve
UbuntuCve
•added 2024/03/02 10:15 p.m.•45 views

CVE-2023-52530

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix potential key use-after-free When ieee80211keylink is called by ieee80211gtkrekeyadd but returns 0 due to KRACK protection identical key reinstall, ieee80211gtkrekeyadd will still return a pointer into the key...

7.8CVSS6.5AI score0.00233EPSS
Exploits0References12
UbuntuCve
UbuntuCve
•added 2024/02/21 3:15 p.m.•45 views

CVE-2024-26584

In the Linux kernel, the following vulnerability has been resolved: net: tls: handle backlogging of crypto requests Since we're setting the CRYPTOTFMREQMAYBACKLOG flag on our requests to the crypto API, cryptoaeadencrypt,decrypt can return -EBUSY instead of -EINPROGRESS in valid situations. For...

5.5CVSS6.3AI score0.00246EPSS
Exploits0References25
UbuntuCve
UbuntuCve
•added 2024/02/05 8:15 a.m.•45 views

CVE-2024-24859

A race condition was found in the Linux kernel's net/bluetooth in sniffmin,maxintervalset function. This can result in a bluetooth sniffing exception issue, possibly leading denial of service...

4.8CVSS6.3AI score0.00712EPSS
Exploits0References25
UbuntuCve
UbuntuCve
•added 2024/01/15 12:0 a.m.•45 views

CVE-2023-50290

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Solr. The Solr Metrics API publishes all unprotected environment variables available to each Apache Solr instance. Users are able to specify which environment variables to hide, however, the default list is designe...

6.5CVSS6.5AI score0.68665EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2024/01/12 12:0 a.m.•45 views

CVE-2023-5356

Incorrect authorization checks in GitLab CE/EE from all versions starting from 8.13 before 16.5.6, all versions starting from 16.6 before 16.6.4, all versions starting from 16.7 before 16.7.2, allows a user to abuse slack/mattermost integrations to execute slash commands as another user...

8.8CVSS7.5AI score0.00829EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2023/12/27 9:15 p.m.•45 views

CVE-2023-51079

A long execution time can occur in the ParseTools.subCompileExpression method in MVEL 2.5.0.Final because of many Java class lookups. NOTE: the vendor disputes this because "the only thing that you could expect is that the parser will take a crazy amount of time to complete its task."...

5.3CVSS6.3AI score0.00737EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2023/12/21 12:0 a.m.•45 views

CVE-2023-7024

Heap buffer overflow in WebRTC in Google Chrome prior to 120.0.6099.129 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.6AI score0.07356EPSS
Exploits2References2
UbuntuCve
UbuntuCve
•added 2023/12/12 9:15 p.m.•45 views

CVE-2023-50251

php-svg-lib is an SVG file parsing / rendering library. Prior to version 0.5.1, when parsing the attributes passed to a use tag inside an svg document, an attacker can cause the system to go to an infinite recursion. Depending on the system configuration and attack pattern this could exhaust the...

7.5CVSS7.1AI score0.00878EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2023/11/30 10:15 p.m.•45 views

CVE-2023-49735

UNSUPPORTED WHEN ASSIGNED The value set as the DefaultLocaleResolver.LOCALEKEY attribute on the session was not validated while resolving XML definition files, leading to possible path traversal and eventually SSRF/XXE when passing user-controlled data to this key. Passing user-controlled data to...

7.5CVSS7.1AI score0.01345EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2023/11/26 11:15 p.m.•45 views

CVE-2023-6299

A vulnerability, which was classified as problematic, has been found in Apryse iText 8.0.1. This issue affects some unknown processing of the file PdfDocument.java of the component Reference Table Handler. The manipulation leads to memory leak. The attack may be initiated remotely. The exploit ha...

6.5CVSS5.3AI score0.00942EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2023/11/23 4:15 p.m.•45 views

CVE-2023-33202

Bouncy Castle for Java before 1.73 contains a potential Denial of Service DoS issue within the Bouncy Castle org.bouncycastle.openssl.PEMParser class. This class parses OpenSSL PEM encoded streams containing X.509 certificates, PKCS8 encoded keys, and PKCS7 objects. Parsing a file that has crafte...

5.5CVSS6.8AI score0.00932EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2023/11/16 6:15 p.m.•45 views

CVE-2023-6176

A null pointer dereference flaw was found in the Linux kernel API for the cryptographic algorithm scatterwalk functionality. This issue occurs when a user constructs a malicious packet with specific socket configuration, which could allow a local user to crash the system or escalate their...

4.7CVSS6.6AI score0.00251EPSS
Exploits0References16
UbuntuCve
UbuntuCve
•added 2023/11/14 3:15 a.m.•45 views

CVE-2023-46445

An issue in AsyncSSH before 2.14.1 allows attackers to control the extension info message RFC 8308 via a man-in-the-middle attack, aka a "Rogue Extension Negotiation."...

5.9CVSS6.2AI score0.00586EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/11/14 12:0 a.m.•45 views

CVE-2023-36558

ASP.NET Core Security Feature Bypass Vulnerability...

6.2CVSS6.8AI score0.01085EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/11/06 12:15 a.m.•45 views

CVE-2023-47272

Roundcube 1.5.x before 1.5.6 and 1.6.x before 1.6.5 allows XSS via a Content-Type or Content-Disposition header used for attachment preview or download...

6.1CVSS6.3AI score0.00641EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2023/11/03 1:15 a.m.•45 views

CVE-2017-7252

bcrypt password hashing in Botan before 2.1.0 does not correctly handle passwords with a length between 57 and 72 characters, which makes it easier for attackers to determine the cleartext password...

7.5CVSS7.1AI score0.00315EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2023/10/25 12:0 a.m.•45 views

CVE-2023-31582

jose4j before v0.9.3 allows attackers to set a low iteration count of 1000 or less...

7.5CVSS6.9AI score0.00644EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2023/09/18 12:0 a.m.•45 views

CVE-2023-43090

A vulnerability was found in GNOME Shell. GNOME Shell's lock screen allows an unauthenticated local user to view windows of the locked desktop session by using keyboard shortcuts to unlock the restricted functionality of the screenshot tool...

5.5CVSS6AI score0.00311EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2023/08/25 9:15 p.m.•45 views

CVE-2023-41080

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in FORM authentication feature Apache Tomcat.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M10, from 10.1.0-M1 through 10.0.12, from 9.0.0-M1 through 9.0.79 and from 8.5.0 through 8.5.92. Older, EOL versions may als...

6.1CVSS6.8AI score0.05972EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2023/08/25 12:0 a.m.•45 views

CVE-2023-40477

RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS7.5AI score0.1308EPSS
Exploits1References7
UbuntuCve
UbuntuCve
•added 2023/08/22 7:16 p.m.•45 views

CVE-2022-48064

GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function bfddwarf2findnearestlinewithalt at dwarf2.c. The attacker could supply a crafted ELF file and cause a DNS attack...

5.5CVSS6.4AI score0.0059EPSS
Exploits1References1
UbuntuCve
UbuntuCve
•added 2023/08/09 12:0 a.m.•45 views

CVE-2023-34319

The fix for XSA-423 added logic to Linux'es netback driver to deal with a frontend splitting a packet in a way such that not all of the headers would come in one piece. Unfortunately the logic introduced there didn't account for the extreme case of the entire packet being split into as many piece...

7.8CVSS6.8AI score0.00296EPSS
Exploits0References22
UbuntuCve
UbuntuCve
•added 2023/08/01 11:15 p.m.•45 views

CVE-2023-3728

Use after free in WebRTC in Google Chrome prior to 115.0.5790.98 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.2AI score0.007EPSS
Exploits1References1
UbuntuCve
UbuntuCve
•added 2023/07/24 4:15 p.m.•45 views

CVE-2023-33951

A race condition vulnerability was found in the vmwgfx driver in the Linux kernel. The flaw exists within the handling of GEM objects. The issue results from improper locking when performing operations on an object. This flaw allows a local privileged user to disclose information in the context o...

6.7CVSS6.7AI score0.00343EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2023/06/28 10:15 p.m.•45 views

CVE-2023-3358

A null pointer dereference was found in the Linux kernel's Integrated Sensor Hub ISH driver. This issue could allow a local user to crash the system...

5.5CVSS6.6AI score0.00195EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2023/06/26 9:15 p.m.•45 views

CVE-2023-3422

Use after free in Guest View in Google Chrome prior to 114.0.5735.198 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.2AI score0.00658EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2023/06/19 12:0 a.m.•45 views

CVE-2023-35853

In Suricata before 6.0.13, an adversary who controls an external source of Lua rules may be able to execute Lua code. This is addressed in 6.0.13 by disabling Lua unless allow-rules is true in the security lua configuration section...

9.8CVSS7.2AI score0.01031EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2023/06/15 5:15 p.m.•45 views

CVE-2023-34453

snappy-java is a fast compressor/decompressor for Java. Due to unchecked multiplications, an integer overflow may occur in versions prior to 1.1.10.1, causing a fatal error. The function shuffleint input in the file BitShuffle.java receives an array of integers and applies a bit shuffle on it. It...

7.5CVSS6.8AI score0.01707EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2023/06/08 9:15 p.m.•45 views

CVE-2023-29401

The filename parameter of the Context.FileAttachment function is not properly sanitized. A maliciously crafted filename can cause the Content-Disposition header to be sent with an unexpected filename value or otherwise modify the Content-Disposition header. For example, a filename of...

4.3CVSS6.2AI score0.00486EPSS
Exploits2References6
UbuntuCve
UbuntuCve
•added 2023/05/15 10:15 p.m.•45 views

CVE-2023-2124

An out-of-bounds memory access flaw was found in the Linux kernel’s XFS file system in how a user restores an XFS image after failure with a dirty log journal. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7.8CVSS6.7AI score0.00491EPSS
Exploits1References20
UbuntuCve
UbuntuCve
•added 2023/05/09 12:0 a.m.•45 views

CVE-2023-2283

A vulnerability was found in libssh, where the authentication check of the connecting client can be bypassed in thepkiverifydatasignature function in memory allocation problems. This issue may happen if there is insufficient memory or the memory usage is limited. The problem is caused by the retu...

6.5CVSS6.6AI score0.01061EPSS
Exploits2References3
UbuntuCve
UbuntuCve
•added 2023/04/18 9:15 p.m.•45 views

CVE-2023-26048

Jetty is a java based web server and servlet engine. In affected versions servlets with multipart support e.g. annotated with @MultipartConfig that call HttpServletRequest.getParameter or HttpServletRequest.getParts may cause OutOfMemoryError when the client sends a multipart request with a part...

5.3CVSS6.7AI score0.0326EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2023/04/16 2:15 a.m.•45 views

CVE-2022-37186

In LemonLDAP::NG before 2.0.15. some sessions are not deleted when they are supposed to be deleted according to the timeoutActivity setting. This can occur when there are at least two servers, and a session is manually removed before the time at which it would have been removed automatically...

5.9CVSS6.2AI score0.00725EPSS
Exploits1References3
Total number of security vulnerabilities5000