Lucene search
+L
UbuntucveMost viewed

71772 matches found

UbuntuCve
UbuntuCve
•added 2019/04/26 9:29 p.m.•45 views

CVE-2019-3843

It was discovered that a systemd service that uses DynamicUser property can create a SUID/SGID binary that would be allowed to run as the transient service UID/GID even after the service is terminated. A local attacker may use this flaw to access resources that will be owned by a potentially...

7.8CVSS6.3AI score0.00912EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2019/04/18 12:0 a.m.•45 views

CVE-2019-11324

The urllib3 library before 1.24.2 for Python mishandles certain cases where the desired set of CA certificates is different from the OS store of CA certificates, which results in SSL connections succeeding in situations where a verification failure is the correct outcome. This is related to use o...

7.5CVSS6.8AI score0.02836EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2019/04/10 3:29 p.m.•45 views

CVE-2019-0199

The HTTP/2 implementation in Apache Tomcat 9.0.0.M1 to 9.0.14 and 8.5.0 to 8.5.37 accepted streams with excessive numbers of SETTINGS frames and also permitted clients to keep streams open without reading/writing request/response data. By keeping streams open for requests that utilised the Servle...

7.5CVSS6.8AI score0.72855EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2019/04/01 2:29 p.m.•45 views

CVE-2019-1002101

The kubectl cp command allows copying files between containers and the user machine. To copy files from a container, Kubernetes creates a tar inside the container, copies it over the network, and kubectl unpacks it on the user’s machine. If the tar binary in the container is malicious, it could r...

6.4CVSS6.8AI score0.13164EPSS
Exploits2References2
UbuntuCve
UbuntuCve
•added 2019/03/25 6:29 p.m.•45 views

CVE-2018-16838

A flaw was found in sssd Group Policy Objects implementation. When the GPO is not readable by SSSD due to a too strict permission settings on the server side, SSSD will allow all authenticated users to login instead of denying access...

5.5CVSS6.4AI score0.01102EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2019/03/21 12:0 a.m.•45 views

CVE-2019-7221

The KVM implementation in the Linux kernel through 4.20.5 has a Use-after-Free...

7.8CVSS7AI score0.00805EPSS
Exploits1References7
UbuntuCve
UbuntuCve
•added 2019/02/26 2:29 a.m.•45 views

CVE-2019-9169

In the GNU C Library aka glibc or libc6 through 2.29, proceednextnode in posix/regexec.c has a heap-based buffer over-read via an attempted case-insensitive regular-expression match...

9.8CVSS6.9AI score0.04731EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2019/02/22 12:0 a.m.•45 views

CVE-2019-9021

An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. A heap-based buffer over-read in PHAR reading functions in the PHAR extension may allow an attacker to read allocated or unallocated memory past the actual data when trying to parse the...

9.8CVSS6.9AI score0.10059EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2019/02/21 12:0 a.m.•45 views

CVE-2018-20783

In PHP before 5.6.39, 7.x before 7.0.33, 7.1.x before 7.1.25, and 7.2.x before 7.2.13, a buffer over-read in PHAR reading functions may allow an attacker to read allocated or unallocated memory past the actual data when trying to parse a .phar file. This is related to pharparsepharfile in...

7.5CVSS7AI score0.0566EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2019/01/14 8:29 a.m.•45 views

CVE-2019-6256

A Denial of Service issue was discovered in the LIVE555 Streaming Media libraries as used in Live555 Media Server 0.93. It can cause an RTSPServer crash in handleHTTPCmdTunnelingPOST, when RTSP-over-HTTP tunneling is supported, via x-sessioncookie HTTP headers in a GET request and a POST request...

9.8CVSS7.2AI score0.02414EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2018/12/25 5:29 p.m.•45 views

CVE-2018-20453

The getlong function in numutils.c in libdoc through 2017-10-23 has a heap-based buffer over-read that allows attackers to cause a denial of service application crash via a crafted file...

6.5CVSS6.7AI score0.00944EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2018/12/06 12:0 a.m.•45 views

CVE-2018-9568

In skclonelock of sock.c, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID:...

7.8CVSS7AI score0.00715EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2018/11/21 12:0 a.m.•45 views

CVE-2018-19409

An issue was discovered in Artifex Ghostscript before 9.26. LockSafetyParams is not checked correctly if another device is used...

9.8CVSS7.1AI score0.07825EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2018/10/31 10:29 p.m.•45 views

CVE-2018-14651

It was found that the fix for CVE-2018-10927, CVE-2018-10928, CVE-2018-10929, CVE-2018-10930, and CVE-2018-10926 was incomplete. A remote, authenticated attacker could use one of these flaws to execute arbitrary code, create arbitrary files, or cause denial of service on glusterfs server nodes vi...

8.8CVSS7AI score0.03225EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2018/09/04 12:29 a.m.•45 views

CVE-2018-16430

GNU Libextractor through 1.7 has an out-of-bounds read vulnerability in EXTRACTORzipextractmethod in zipextractor.c...

8.8CVSS7.2AI score0.02646EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2018/08/16 8:29 p.m.•45 views

CVE-2016-9596

libxml2, as used in Red Hat JBoss Core Services and when in recovery mode, allows context-dependent attackers to cause a denial of service stack consumption via a crafted XML document. NOTE: this vulnerability exists because of an incorrect fix for CVE-2016-3627...

6.5CVSS6.9AI score0.01076EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2018/07/31 12:0 a.m.•45 views

CVE-2018-14567

libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service infinite loop via a crafted XML file that triggers LZMAMEMLIMITERROR, as demonstrated by xmllint, a different vulnerability than CVE-2015-8035 and CVE-2018-9251...

6.5CVSS6.8AI score0.043EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2018/07/30 12:0 a.m.•45 views

CVE-2018-10883

A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bounds write in jbd2journaldirtymetadata, a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image...

5.5CVSS6.7AI score0.0053EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2018/07/20 12:29 a.m.•45 views

CVE-2017-18343

The debug handler in Symfony before v2.7.33, 2.8.x before v2.8.26, 3.x before v3.2.13, and 3.3.x before v3.3.6 has XSS via an array key during exception pretty printing in ExceptionHandler.php, as demonstrated by a /debugbar/open?op=get URI. NOTE: the vendor's position is that this is not a...

6.1CVSS6.3AI score0.06107EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2018/07/17 2:29 p.m.•45 views

CVE-2018-14345

An issue was discovered in SDDM through 0.17.0. If configured with ReuseSession=true, the password is not checked for users with an already existing session. Any user with access to the system D-Bus can therefore unlock any graphical session. This is related to daemon/Display.cpp and...

7.5CVSS6.8AI score0.01019EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2018/07/13 2:29 p.m.•45 views

CVE-2018-14042

In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip...

6.1CVSS6.7AI score0.04009EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2018/07/09 8:29 p.m.•45 views

CVE-2018-1000613

Legion of the Bouncy Castle Legion of the Bouncy Castle Java Cryptography APIs 1.58 up to but not including 1.60 contains a CWE-470: Use of Externally-Controlled Input to Select Classes or Code 'Unsafe Reflection' vulnerability in XMSS/XMSS^MT private key deserialization that can result in...

9.8CVSS6.9AI score0.04767EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2018/06/26 4:29 p.m.•45 views

CVE-2018-1000500

Busybox contains a Missing SSL certificate validation vulnerability in The "busybox wget" applet that can result in arbitrary code execution. This attack appear to be exploitable via Simply download any file over HTTPS using "busybox wget https://compromised-domain.com/important-file"...

8.1CVSS7AI score0.02462EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2018/06/13 12:0 a.m.•45 views

CVE-2018-0495

Libgcrypt before 1.7.10 and 1.8.x before 1.8.3 allows a memory-cache side-channel attack on ECDSA signatures that can be mitigated through the use of blinding during the signing process in the gcryeccecdsasign function in cipher/ecc-ecdsa.c, aka the Return Of the Hidden Number Problem or ROHNP. T...

4.7CVSS6.5AI score0.00887EPSS
Exploits1References10
UbuntuCve
UbuntuCve
•added 2018/05/17 4:29 a.m.•45 views

CVE-2018-11224

An issue was discovered in Libav 12.3. A read access violation in the intableinit16 function in libavcodec/aacsbr.c allows remote attackers to cause a denial of service application crash, as demonstrated by avconv...

6.5CVSS6.7AI score0.01047EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2018/04/29 12:0 a.m.•45 views

CVE-2018-10546

An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. An infinite loop exists in ext/iconv/iconv.c because the iconv stream filter does not reject invalid multibyte sequences...

7.5CVSS6.8AI score0.10433EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2018/04/24 12:0 a.m.•45 views

CVE-2018-10323

The xfsbmapextentstobtree function in fs/xfs/libxfs/xfsbmap.c in the Linux kernel through 4.16.3 allows local users to cause a denial of service xfsbmapiwrite NULL pointer dereference via a crafted xfs image...

5.5CVSS6.8AI score0.00574EPSS
Exploits1References8
UbuntuCve
UbuntuCve
•added 2018/03/01 5:29 a.m.•45 views

CVE-2017-18207

The Waveread.readfmtchunk function in Lib/wave.py in Python through 3.6.4 does not ensure a nonzero channel value, which allows attackers to cause a denial of service divide-by-zero and exception via a crafted wav format audio file. NOTE: the vendor disputes this issue because Python applications...

6.5CVSS6.8AI score0.01348EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2018/03/01 12:0 a.m.•45 views

CVE-2018-5732

Failure to properly bounds-check a buffer used for processing DHCP options allows a malicious server or an entity masquerading as a server to cause a buffer overflow and resulting crash in dhclient by sending a response containing a specially constructed options section. Affects ISC DHCP versions...

7.5CVSS7.3AI score0.0496EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2018/02/12 10:29 p.m.•45 views

CVE-2017-17723

In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::Image::byteSwap4 function in image.cpp. Remote attackers can exploit this vulnerability to disclose memory data or cause a denial of service via a crafted TIFF file...

8.1CVSS7.2AI score0.01834EPSS
Exploits1References1
UbuntuCve
UbuntuCve
•added 2018/02/04 12:0 a.m.•45 views

CVE-2018-6616

In OpenJPEG 2.3.0, there is excessive iteration in the opjt1encodecblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file...

5.5CVSS6.8AI score0.01733EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2018/02/02 2:29 p.m.•45 views

CVE-2017-14178

In snapd 2.27 through 2.29.2 the 'snap logs' command could be made to call journalctl without match arguments and therefore allow unprivileged, unauthenticated users to bypass systemd-journald's access restrictions...

7.5CVSS7.1AI score0.01757EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2018/01/17 12:0 a.m.•45 views

CVE-2018-2612

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: InnoDB. Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

7.5CVSS6.7AI score0.03751EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2018/01/17 12:0 a.m.•45 views

CVE-2018-2579

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Difficult to exploit vulnerability allows unauthenticated...

4.3CVSS6.7AI score0.04078EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2017/12/06 2:29 p.m.•45 views

CVE-2017-13165

An elevation of privilege vulnerability in the kernel file system. Product: Android. Versions: Android kernel. Android ID A-31269937...

7.8CVSS7.1AI score0.00137EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2017/12/06 12:0 a.m.•45 views

CVE-2017-17450

net/netfilter/xtosf.c in the Linux kernel through 4.14.4 does not require the CAPNETADMIN capability for addcallback and removecallback operations, which allows local users to bypass intended access restrictions because the xtosffingers data structure is shared across all net namespaces...

7.8CVSS6.7AI score0.0039EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2017/11/24 12:0 a.m.•45 views

CVE-2017-16939

The XFRM dump policy implementation in net/xfrm/xfrmuser.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service use-after-free via a crafted SORCVBUF setsockopt system call in conjunction with XFRMMSGGETPOLICY Netlink messages...

7.8CVSS6.7AI score0.0215EPSS
Exploits3References16
UbuntuCve
UbuntuCve
•added 2017/11/22 12:0 a.m.•45 views

CVE-2017-12193

The assocarrayinsertintoterminalnode function in lib/assocarray.c in the Linux kernel before 4.13.11 mishandles node splitting, which allows local users to cause a denial of service NULL pointer dereference and panic via a crafted application, as demonstrated by the keyring key type, and key...

5.5CVSS6.8AI score0.00451EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2017/11/10 2:29 a.m.•45 views

CVE-2017-12783

The ReadDataFloat function in ebmlnumber.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service assert fault via a crafted mkv file...

6.5CVSS6.7AI score0.02415EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2017/11/07 12:0 a.m.•45 views

CVE-2017-16645

The imspcugetcdcuniondesc function in drivers/input/misc/ims-pcu.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service imspcuparsecdcdata out-of-bounds read and system crash or possibly have unspecified other impact via a crafted USB device...

7.2CVSS6.8AI score0.00404EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2017/10/27 5:29 a.m.•45 views

CVE-2017-5066

Insufficient consistency checks in signature handling in the networking stack in Google Chrome prior to 58.0.3029.81 for Mac, Windows, and Linux, and 58.0.3029.83 for Android, allowed a remote attacker to incorrectly accept a badly formed X.509 certificate via a crafted HTML page...

6.5CVSS7AI score0.00729EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2017/10/25 12:0 a.m.•45 views

CVE-2017-15906

The processopen function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files...

5.3CVSS6.8AI score0.03359EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2017/10/22 12:0 a.m.•45 views

CVE-2017-15804

The glob function in glob.c in the GNU C Library aka glibc or libc6 before 2.27 contains a buffer overflow during unescaping of user names with the operator...

9.8CVSS7.1AI score0.02801EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2017/10/19 12:0 a.m.•45 views

CVE-2017-10356

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144; JRockit: R28.3.15. Easily exploitable vulnerability allows unauthenticated attacker wit...

6.2CVSS6.7AI score0.00754EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2017/10/18 12:0 a.m.•45 views

CVE-2017-10155

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Pluggable Auth. Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to...

7.5CVSS7AI score0.04291EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2017/09/23 8:29 p.m.•45 views

CVE-2017-14719

Before version 4.8.2, WordPress was vulnerable to a directory traversal attack during unzip operations in the ZipArchive and PclZip components...

7.5CVSS7.1AI score0.14245EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2017/09/20 5:29 p.m.•45 views

CVE-2017-12611

In Apache Struts 2.0.0 through 2.3.33 and 2.5 through 2.5.10.1, using an unintentional expression in a Freemarker tag instead of string literals can lead to a RCE attack...

9.8CVSS7.3AI score0.8802EPSS
Exploits6References2
UbuntuCve
UbuntuCve
•added 2017/09/19 1:29 p.m.•45 views

CVE-2017-12615

When running Apache Tomcat 7.0.0 to 7.0.79 on Windows with HTTP PUTs enabled e.g. via setting the readonly initialisation parameter of the Default to false it was possible to upload a JSP file to the server via a specially crafted request. This JSP could then be requested and any code it containe...

8.1CVSS7.3AI score0.99607EPSS
Exploits18References3
UbuntuCve
UbuntuCve
•added 2017/08/31 3:29 p.m.•45 views

CVE-2017-14055

In libavformat/mvdec.c in FFmpeg 3.3.3, a DoS in mvreadheader due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted MV file, which claims a large "nbframes" field in the header but does not contain sufficient backing data, is provided, the loop over t...

7.1CVSS6.9AI score0.01822EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2017/08/28 12:0 a.m.•45 views

CVE-2017-3735

While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL before 1.0.2m and 1.1.0g...

5.3CVSS6.5AI score0.17699EPSS
Exploits0References4
Total number of security vulnerabilities5000