Lucene search
K
UbuntucveMost viewed

68528 matches found

UbuntuCve
UbuntuCve
•added 2018/06/26 4:29 p.m.•44 views

CVE-2018-1000500

Busybox contains a Missing SSL certificate validation vulnerability in The "busybox wget" applet that can result in arbitrary code execution. This attack appear to be exploitable via Simply download any file over HTTPS using "busybox wget https://compromised-domain.com/important-file"...

8.1CVSS7AI score0.02462EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2018/06/26 4:29 p.m.•44 views

CVE-2017-7657

In Eclipse Jetty, versions 9.2.x and older, 9.3.x all configurations, and 9.4.x non-default configuration with RFC2616 compliance enabled, transfer-encoding chunks are handled poorly. The chunk length parsing was vulnerable to an integer overflow. Thus a large chunk size could be interpreted as a...

9.8CVSS7.1AI score0.16154EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2018/06/13 12:0 a.m.•44 views

CVE-2018-0495

Libgcrypt before 1.7.10 and 1.8.x before 1.8.3 allows a memory-cache side-channel attack on ECDSA signatures that can be mitigated through the use of blinding during the signing process in the gcryeccecdsasign function in cipher/ecc-ecdsa.c, aka the Return Of the Hidden Number Problem or ROHNP. T...

4.7CVSS6.5AI score0.00887EPSS
Exploits1References10
UbuntuCve
UbuntuCve
•added 2018/06/08 6:29 p.m.•44 views

CVE-2018-4204

An issue was discovered in certain Apple products. iOS before 11.4 is affected. iOS before 11.3.1 is affected. Safari before 11.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. The issue involves the "WebKit"...

8.8CVSS7.5AI score0.03236EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2018/05/09 12:0 a.m.•44 views

CVE-2018-10940

The cdromioctlmediachanged function in drivers/cdrom/cdrom.c in the Linux kernel before 4.16.6 allows local attackers to use a incorrect bounds check in the CDROM driver CDROMMEDIACHANGED ioctl to read out kernel memory...

5.5CVSS6.8AI score0.0054EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2018/04/19 5:29 p.m.•44 views

CVE-2018-9861

Cross-site scripting XSS vulnerability in the Enhanced Image aka image2 plugin for CKEditor in versions 4.5.10 through 4.9.1; fixed in 4.9.2, as used in Drupal 8 before 8.4.7 and 8.5.x before 8.5.2 and other products, allows remote attackers to inject arbitrary web script through a crafted IMG...

6.1CVSS6.8AI score0.0178EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2018/04/18 12:29 a.m.•44 views

CVE-2018-8734

SQL injection vulnerability in the core config manager in Nagios XI 5.2.x through 5.4.x before 5.4.13 allows an attacker to execute arbitrary SQL commands via the selInfoKey1 parameter...

9.8CVSS7.5AI score0.53247EPSS
Exploits9References4
UbuntuCve
UbuntuCve
•added 2018/04/18 12:0 a.m.•44 views

CVE-2018-2797

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JMX. Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthenticated attacker with...

5.3CVSS6.2AI score0.078EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2018/04/11 1:29 p.m.•44 views

CVE-2018-1275

Spring Framework, versions 5.0 prior to 5.0.5 and versions 4.3 prior to 4.3.16 and older unsupported versions, allow applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the spring-messaging module. A malicious user or attacker can craft a message to...

9.8CVSS7.5AI score0.57632EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2018/04/03 12:0 a.m.•44 views

CVE-2018-8778

In Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1, an attacker controlling the unpacking format similar to format string vulnerabilities can trigger a buffer under-read in the Stringunpack method, resulting in a massive and controlled informatio...

7.5CVSS7AI score0.07825EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2018/04/01 12:0 a.m.•44 views

CVE-2018-1094

The ext4fillsuper function in fs/ext4/super.c in the Linux kernel through 4.15.15 does not always initialize the crc32c checksum driver, which allows attackers to cause a denial of service ext4xattrinodehash NULL pointer dereference and system crash via a crafted ext4 image...

7.1CVSS6.7AI score0.02128EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2018/03/16 5:29 p.m.•44 views

CVE-2014-4613

Cross-site request forgery CSRF vulnerability in the administration panel in Piwigo before 2.6.2 allows remote attackers to hijack the authentication of administrators for requests that add users via a pwg.users.add action in a request to ws.php...

6.5CVSS6.7AI score0.03225EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2018/03/01 5:29 a.m.•44 views

CVE-2017-18207

The Waveread.readfmtchunk function in Lib/wave.py in Python through 3.6.4 does not ensure a nonzero channel value, which allows attackers to cause a denial of service divide-by-zero and exception via a crafted wav format audio file. NOTE: the vendor disputes this issue because Python applications...

6.5CVSS6.8AI score0.01348EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2018/01/31 12:0 a.m.•44 views

CVE-2017-16913

The "stubrecvcmdsubmit" function drivers/usb/usbip/stubrx.c in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 when handling CMDSUBMIT packets allows attackers to cause a denial of service arbitrary memory allocation via a specially crafted USB over IP packet...

7.1CVSS6.8AI score0.03896EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2018/01/24 12:0 a.m.•44 views

CVE-2018-1000007

libcurl 7.1 through 7.57.0 might accidentally leak authentication data to third parties. When asked to send custom headers in its HTTP requests, libcurl will send that set of headers first to the host in the initial URL but also, if asked to follow redirects and a 30X HTTP response code is...

9.8CVSS6.8AI score0.08031EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2018/01/17 12:0 a.m.•44 views

CVE-2018-2677

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: AWT. Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple...

4.3CVSS6.8AI score0.04675EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2018/01/17 12:0 a.m.•44 views

CVE-2018-2612

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: InnoDB. Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

7.5CVSS6.7AI score0.03751EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2017/12/06 12:0 a.m.•44 views

CVE-2017-17450

net/netfilter/xtosf.c in the Linux kernel through 4.14.4 does not require the CAPNETADMIN capability for addcallback and removecallback operations, which allows local users to bypass intended access restrictions because the xtosffingers data structure is shared across all net namespaces...

7.8CVSS6.7AI score0.0039EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2017/11/24 12:0 a.m.•44 views

CVE-2017-16939

The XFRM dump policy implementation in net/xfrm/xfrmuser.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service use-after-free via a crafted SORCVBUF setsockopt system call in conjunction with XFRMMSGGETPOLICY Netlink messages...

7.8CVSS6.7AI score0.0215EPSS
Exploits3References16
UbuntuCve
UbuntuCve
•added 2017/11/22 10:29 p.m.•44 views

CVE-2017-16879

Stack-based buffer overflow in the ncwriteentry function in tinfo/writeentry.c in ncurses 6.0 allows attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted terminfo file, as demonstrated by tic...

7.8CVSS7.2AI score0.02383EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2017/10/14 11:29 p.m.•44 views

CVE-2017-12629

Remote code execution occurs in Apache Solr before 7.1 with Apache Lucene before 7.1 by exploiting XXE in conjunction with use of a Config API add-listener command to reach the RunExecutableListener class. Elasticsearch, although it uses Lucene, is NOT vulnerable to this. Note that the XML extern...

9.8CVSS7.6AI score0.91896EPSS
Exploits11References4
UbuntuCve
UbuntuCve
•added 2017/09/18 12:29 a.m.•44 views

CVE-2017-14528

The TIFFSetProfiles function in coders/tiff.c in ImageMagick 7.0.6 has incorrect expectations about whether LibTIFF TIFFGetField return values imply that data validation has occurred, which allows remote attackers to cause a denial of service use-after-free after an invalid call to TIFFSetField,...

6.5CVSS6.8AI score0.02616EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2017/09/01 12:0 a.m.•44 views

CVE-2017-14106

The tcpdisconnect function in net/ipv4/tcp.c in the Linux kernel before 4.12 allows local users to cause a denial of service tcpselectwindow divide-by-zero error and system crash by triggering a disconnect within a certain tcprecvmsg code path...

5.5CVSS6.8AI score0.00445EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2017/08/31 3:29 p.m.•44 views

CVE-2017-14055

In libavformat/mvdec.c in FFmpeg 3.3.3, a DoS in mvreadheader due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted MV file, which claims a large "nbframes" field in the header but does not contain sufficient backing data, is provided, the loop over t...

7.1CVSS6.9AI score0.01822EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2017/07/26 9:29 p.m.•44 views

CVE-2017-7659

A maliciously constructed HTTP/2 request could cause modhttp2 in Apache HTTP Server 2.4.24, 2.4.25 to dereference a NULL pointer and crash the server process...

7.5CVSS6.8AI score0.53939EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2017/07/20 12:0 a.m.•44 views

CVE-2017-10115

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JCE. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerability allows unauthenticated attacker with networ...

7.5CVSS6.8AI score0.02737EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2017/06/29 11:29 p.m.•44 views

CVE-2017-10685

In ncurses 6.0, there is a format string vulnerability in the fmtentry function. A crafted input will lead to a remote arbitrary code execution attack...

9.8CVSS7.1AI score0.04257EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2017/06/21 12:0 a.m.•44 views

CVE-2017-9233

XML External Entity vulnerability in libexpat 2.2.0 and earlier Expat XML Parser Library allows attackers to put the parser in an infinite loop using a malformed external entity definition from an external DTD...

7.5CVSS7.1AI score0.09051EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2017/05/24 12:0 a.m.•44 views

CVE-2017-9226

An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A heap out-of-bounds write or read occurs in nextstateval during regular expression compilation. Octal numbers larger than 0xff are not handled correctly in fetchtoken and...

9.8CVSS6.8AI score0.07511EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2017/05/23 4:29 a.m.•44 views

CVE-2016-9842

The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers...

8.8CVSS7AI score0.05204EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2017/05/22 12:0 a.m.•44 views

CVE-2017-9147

LibTIFF 4.0.7 has an invalid read in the TIFFVGetField function in tifdir.c, which might allow remote attackers to cause a denial of service crash via a crafted TIFF file...

6.5CVSS6.8AI score0.07EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2017/05/19 8:29 p.m.•44 views

CVE-2017-7475

Cairo version 1.15.4 is vulnerable to a NULL pointer dereference related to the FTLoadGlyph and FTRenderGlyph resulting in an application crash...

5.5CVSS6.4AI score0.01824EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2017/05/02 12:0 a.m.•44 views

CVE-2014-9940

The regulatorenagpiofree function in drivers/regulator/core.c in the Linux kernel before 3.19 allows local users to gain privileges or cause a denial of service use-after-free via a crafted application...

7.6CVSS6.8AI score0.01613EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2017/04/24 12:0 a.m.•44 views

CVE-2017-3453

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Optimizer. Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple...

6.5CVSS6.7AI score0.03078EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2017/04/24 12:0 a.m.•44 views

CVE-2017-3599

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Pluggable Auth. Supported versions that are affected are 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via multiple protocols to...

7.8CVSS7.1AI score0.89924EPSS
Exploits7References3
UbuntuCve
UbuntuCve
•added 2017/04/19 3:59 p.m.•44 views

CVE-2017-7963

The GNU Multiple Precision Arithmetic Library GMP interfaces for PHP through 7.1.4 allow attackers to cause a denial of service memory consumption and application crash via operations on long strings. NOTE: the vendor disputes this, stating "There is no security issue here, because GMP safely...

7.5CVSS7.1AI score0.0174EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2017/04/07 10:59 p.m.•44 views

CVE-2017-0556

An information disclosure vulnerability in libmpeg2 in Mediaserver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access data without permission. Product: Android. Versions: 6.0, 6.0.1, 7.0,...

5.5CVSS6.4AI score0.00524EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2017/03/24 12:0 a.m.•44 views

CVE-2016-10269

LibTIFF 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6 and 4.0.7 allows remote attackers to cause a denial of service heap-based buffer over-read or possibly have unspecified other impact via a crafted TIFF image, related to "READ of...

7.8CVSS7AI score0.02377EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2017/03/03 3:59 p.m.•44 views

CVE-2017-5865

The password reset functionality in ownCloud Server before 8.1.11, 8.2.x before 8.2.9, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 sends different error messages depending on whether the username is valid, which allows remote attackers to enumerate user names via a large number of password reset...

4.3CVSS6.1AI score0.01095EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2017/02/22 12:0 a.m.•44 views

CVE-2017-2620

Quick emulator QEMU before 2.8 built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access issue. The issue could occur while copying VGA data in cirrusbitbltcputovideo. A privileged user inside guest could use this flaw to crash the QEMU process OR potentially...

9.9CVSS7.1AI score0.03559EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2017/02/13 12:0 a.m.•44 views

CVE-2017-6056

It was discovered that a programming error in the processing of HTTPS requests in the Apache Tomcat servlet and JSP engine may result in denial of service via an infinite loop. The denial of service is easily achievable as a consequence of backporting a CVE-2016-6816 fix but not backporting the f...

7.5CVSS7.1AI score0.07486EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2017/02/06 5:59 p.m.•44 views

CVE-2017-5368

ZoneMinder v1.30 and v1.29, an open-source CCTV server web application, is vulnerable to CSRF Cross Site Request Forgery which allows a remote attack to make changes to the web application as the current logged in victim. If the victim visits a malicious web page, the attacker can silently and...

8.8CVSS7.2AI score0.01052EPSS
Exploits3References6
UbuntuCve
UbuntuCve
•added 2017/02/06 12:0 a.m.•44 views

CVE-2017-2583

The loadsegmentdescriptor implementation in arch/x86/kvm/emulate.c in the Linux kernel before 4.9.5 improperly emulates a "MOV SS, NULL selector" instruction, which allows guest OS users to cause a denial of service guest OS crash or gain guest OS privileges via a crafted application...

8.4CVSS7.2AI score0.00582EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2017/01/31 12:0 a.m.•44 views

CVE-2016-6329

OpenVPN, when using a 64-bit block cipher, makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-duration encrypted session, as demonstrated by an HTTP-over-OpenVPN session using Blowfish in CBC mode, aka a "Sweet32" attack...

5.9CVSS6.6AI score0.0594EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2017/01/13 12:0 a.m.•44 views

CVE-2016-9310

The control mode mode 6 functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to set or unset traps via a crafted control mode packet...

6.5CVSS6.8AI score0.11162EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2016/12/29 9:59 a.m.•44 views

CVE-2016-9878

An issue was discovered in Pivotal Spring Framework before 3.2.18, 4.2.x before 4.2.9, and 4.3.x before 4.3.5. Paths provided to the ResourceServlet were not properly sanitized and as a result exposed to directory traversal attacks...

7.5CVSS7.1AI score0.0564EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2016/12/13 9:59 p.m.•44 views

CVE-2016-6663

Race condition in Oracle MySQL before 5.5.52, 5.6.x before 5.6.33, 5.7.x before 5.7.15, and 8.x before 8.0.1; MariaDB before 5.5.52, 10.0.x before 10.0.28, and 10.1.x before 10.1.18; Percona Server before 5.5.51-38.2, 5.6.x before 5.6.32-78-1, and 5.7.x before 5.7.14-8; and Percona XtraDB Cluster...

7CVSS7AI score0.04313EPSS
Exploits18References2
UbuntuCve
UbuntuCve
•added 2016/12/13 4:59 p.m.•44 views

CVE-2015-3217

PCRE 7.8 and 8.32 through 8.37, and PCRE2 10.10 mishandle group empty matches, which might allow remote attackers to cause a denial of service stack-based buffer overflow via a crafted regular expression, as demonstrated by /^?:?1\.|^\\W?++$/...

7.5CVSS7.3AI score0.06169EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2016/12/13 4:59 p.m.•44 views

CVE-2015-3418

The ProcPutImage function in dix/dispatch.c in X.Org Server aka xserver and xorg-server before 1.16.4 allows attackers to cause a denial of service divide-by-zero and crash via a zero-height PutImage request...

7.5CVSS7.1AI score0.02314EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2016/11/25 4:59 p.m.•44 views

CVE-2016-6753

An information disclosure vulnerability in kernel components, including the process-grouping subsystem and the networking subsystem, in Android before 2016-11-05 could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it...

5.5CVSS6.5AI score0.00477EPSS
Exploits0References2
Total number of security vulnerabilities5000