Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
•added 2026/01/10 2:15 p.m.•3 views

CVE-2026-0822

A vulnerability was identified in quickjs-ng quickjs up to 0.11.0. This issue affects the function jstypedarraysort of the file quickjs.c. The manipulation leads to heap-based buffer overflow. Remote exploitation of the attack is possible. The exploit is publicly available and might be used. The...

8.8CVSS6.7AI score0.0041EPSS
Exploits1References6
UbuntuCve
UbuntuCve
•added 2026/01/10 1:15 p.m.•4 views

CVE-2026-0821

A vulnerability was determined in quickjs-ng quickjs up to 0.11.0. This vulnerability affects the function jstypedarrayconstructor of the file quickjs.c. Executing a manipulation can lead to heap-based buffer overflow. The attack may be launched remotely. The exploit has been publicly disclosed a...

9.8CVSS6.8AI score0.00443EPSS
Exploits1References6
UbuntuCve
UbuntuCve
•added 2026/01/10 7:16 a.m.•5 views

CVE-2026-22702

virtualenv is a tool for creating isolated virtual python environments. Prior to version 20.36.1, TOCTOU Time-of-Check-Time-of-Use vulnerabilities in virtualenv allow local attackers to perform symlink-based attacks on directory creation operations. An attacker with local access can exploit a rac...

4.5CVSS5.8AI score0.00085EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/01/10 7:16 a.m.•6 views

CVE-2026-22703

Cosign provides code signing and transparency for containers and binaries. Prior to versions 2.6.2 and 3.0.4, Cosign bundle can be crafted to successfully verify an artifact even if the embedded Rekor entry does not reference the artifact's digest, signature or public key. When verifying a Rekor...

5.5CVSS5.9AI score0.00077EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2026/01/10 6:15 a.m.•7 views

CVE-2026-22701

filelock is a platform-independent file lock for Python. Prior to version 3.20.3, a TOCTOU race condition vulnerability exists in the SoftFileLock implementation of the filelock package. An attacker with local filesystem access and permission to create symlinks can exploit a race condition betwee...

5.3CVSS5.8AI score0.00115EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2026/01/10 6:15 a.m.•4 views

CVE-2026-22693

HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh. The function fails to check if hbmalloc returns NULL before using placement new to construct an object at t...

5.3CVSS5.9AI score0.00377EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2026/01/10 5:16 a.m.•5 views

CVE-2026-22690

pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0, pypdf has possible long runtimes for missing /Root object with large /Size values. An attacker who uses this vulnerability can craft a PDF which leads to possibly long runtimes for actually invalid files. This can be...

6.9CVSS5.8AI score0.00391EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2026/01/10 5:16 a.m.•3 views

CVE-2026-22691

pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0, pypdf has possible long runtimes for malformed startxref. An attacker who uses this vulnerability can craft a PDF which leads to possibly long runtimes for invalid startxref entries. When rebuilding the cross-referen...

6.9CVSS5.7AI score0.00391EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2026/01/10 4:16 a.m.•7 views

CVE-2026-22610

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.18, 20.3.16, 21.0.7, and 21.1.0-rc.0, a cross-site scripting XSS vulnerability has been identified in the Angular Template Compiler. The...

8.5CVSS6.5AI score0.00444EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2026/01/09 10:15 p.m.•3 views

CVE-2025-46299

A memory initialization issue was addressed with improved memory handling. This issue is fixed in Safari 26.2, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, tvOS 26.2, visionOS 26.2, watchOS 26.2. Processing maliciously crafted web content may disclose internal states of the app...

4.3CVSS5.8AI score0.00266EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/01/09 4:16 p.m.•4 views

CVE-2025-56225

fluidsynth-2.4.6 and earlier versions is vulnerable to Null pointer dereference in fluidsynthmonopoly.c, that can be triggered when loading an invalid midi file...

7.5CVSS7AI score0.00414EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2026/01/09 10:15 a.m.•2 views

CVE-2025-11246

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.4 before 18.5.5, 18.6 before 18.6.3, and 18.7 before 18.7.1 that could have allowed an authenticated user with specific permissions to remove all project runners from unrelated projects by manipulating GraphQL runner...

5.4CVSS5.9AI score0.00391EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2026/01/09 10:15 a.m.•2 views

CVE-2025-3950

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 10.3 before 18.5.5, 18.6 before 18.6.3, and 18.7 before 18.7.1 that could have allowed a user to leak certain information by referencing specially crafted images that bypass asset proxy protection...

3.5CVSS5.9AI score0.00226EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2026/01/09 10:15 a.m.•3 views

CVE-2025-10569

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.3 before 18.5.5, 18.6 before 18.6.3, and 18.7 before 18.7.1 that could have allowed an authenticated user to create a denial of service condition by providing crafted responses to external API calls...

6.5CVSS5.9AI score0.00479EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2026/01/09 8:15 a.m.•5 views

CVE-2025-69195

A flaw was found in GNU Wget2. This vulnerability, a stack-based buffer overflow, occurs in the filename sanitization logic when processing attacker-controlled URL paths, particularly when filename restriction options are active. A remote attacker can exploit this by providing a specially crafted...

8.8CVSS6AI score0.00291EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2026/01/09 8:15 a.m.•5 views

CVE-2025-69194

A security issue was discovered in GNU Wget2 when handling Metalink documents. The application fails to properly validate file paths provided in Metalink elements. An attacker can abuse this behavior to write files to unintended locations on the system. This can lead to data loss or potentially...

9.8CVSS6.1AI score0.00707EPSS
Exploits1References1
UbuntuCve
UbuntuCve
•added 2026/01/08 9:15 p.m.•3 views

CVE-2025-14505

The ECDSA implementation of the Elliptic package generates incorrect signatures if an interim value of 'k' as computed based on step 3.2 of RFC 6979 https://datatracker.ietf.org/doc/html/rfc6979 has leading zeros and is susceptible to cryptanalysis, which can lead to secret key exposure. This...

5.6CVSS5.9AI score0.00161EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/01/08 7:15 p.m.•3 views

CVE-2026-21860

Werkzeug is a comprehensive WSGI web application library. Prior to version 3.1.5, Werkzeug's safejoin function allows path segments with Windows device names that have file extensions or trailing spaces. On Windows, there are special device names such as CON, AUX, etc that are implicitly present...

6.3CVSS6.4AI score0.00424EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/01/08 6:15 p.m.•3 views

CVE-2025-68158

Authlib is a Python library which builds OAuth and OpenID Connect servers. In versions 1.0.0 through 1.6.5, cache-backed state/request-token storage is not tied to the initiating user session, so CSRF is possible for any attacker that has a valid state easily obtainable via an attacker-initiated...

8.8CVSS5.7AI score0.00237EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2026/01/08 3:15 p.m.•1 views

CVE-2025-66003

An External Control of File Name or Path vulnerability in smb4k allowsl ocal users to perform a local root exploit via smb4k mounthelper if they can access and control the contents of a Samba shareThis issue affects smb4k: from ? before 4.0.5...

7.3CVSS5.9AI score0.00111EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/01/08 3:15 p.m.•6 views

CVE-2026-22028

Preact, a lightweight web development framework, JSON serialization protection to prevent Virtual DOM elements from being constructed from arbitrary JSON. A regression introduced in Preact 10.26.5 caused this protection to be softened. In applications where values from JSON payloads are assumed t...

9.2CVSS6.1AI score0.00227EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2026/01/08 3:15 p.m.•5 views

CVE-2025-66002

An Improper Neutralization of Argument Delimiters in a Command 'Argument Injection' vulnerability allows local users ton perform arbitrary unmounts via smb4k mount helper...

6.9CVSS7.2AI score0.00144EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/01/08 2:15 p.m.•10 views

CVE-2026-21876

The OWASP core rule set CRS is a set of generic attack detection rules for use with compatible web application firewalls. Prior to versions 4.22.0 and 3.3.8, the current rule 922110 has a bug when processing multipart requests with multiple parts. When the first rule in a chain iterates over a...

9.3CVSS6AI score0.13124EPSS
Exploits4References6
UbuntuCve
UbuntuCve
•added 2026/01/08 2:15 p.m.•6 views

CVE-2026-21895

The rsa crate is an RSA implementation written in rust. Prior to version 0.9.10, when creating a RSA private key from its components, the construction panics instead of returning an error when one of the primes is 1. Version 0.9.10 fixes the issue...

6.9CVSS5.9AI score0.00405EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/01/08 2:15 p.m.•5 views

CVE-2026-21892

Parsl is a Python parallel scripting library. A SQL Injection vulnerability exists in the parsl-visualize component of versions prior to 2026.01.05. The application constructs SQL queries using unsafe string formatting Python % operator with user-supplied input workflowid directly from URL routes...

7.3CVSS6AI score0.00235EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2026/01/08 2:15 p.m.•5 views

CVE-2026-21885

Miniflux 2 is an open source feed reader. Prior to version 2.2.16, Miniflux's media proxy endpoint GET /proxy/encodedDigest/encodedURL can be abused to perform Server-Side Request Forgery SSRF. An authenticated user can cause Miniflux to generate a signed proxy URL for attacker-chosen media URLs...

6.5CVSS5.8AI score0.00258EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2026/01/08 1:15 p.m.•4 views

CVE-2026-0719

A flaw was identified in the NTLM authentication handling of the libsoup HTTP library, used by GNOME and other applications for network communication. When processing extremely long passwords, an internal size calculation can overflow due to improper use of signed integers. This results in...

8.6CVSS6.7AI score0.00557EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/01/08 12:16 a.m.•4 views

CVE-2026-21869

llama.cpp is an inference of several LLM models in C/C++. In commits 55d4206c8 and prior, the ndiscard parameter is parsed directly from JSON input in the llama.cpp server's completion endpoints without validation to ensure it's non-negative. When a negative value is supplied and the context fill...

9.8CVSS6.1AI score0.00438EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2026/01/08 12:0 a.m.•1 views

CVE-2025-67603

A Improper Authorization vulnerability in Foomuuri llows arbitrary users to influence the firewall configuration.This issue affects Foomuuri: from ? before 0.31...

5.1CVSS5.9AI score0.00148EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/01/08 12:0 a.m.•4 views

CVE-2025-13151

Stack-based buffer overflow in libtasn1 version: v4.20.0. The function fails to validate the size of input data resulting in a buffer overflow in asn1expendoctetstring...

7.5CVSS6.5AI score0.01109EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2026/01/08 12:0 a.m.•3 views

CVE-2025-67858

A Improper Neutralization of Argument Delimiters vulnerability in Foomuuri can lead to integrity loss of the firewall configuration or further unspecified impact by manipulating the JSON configuration passed to nft. This issue affects Foomuuri: from ? before 0.31...

7CVSS5.9AI score0.00171EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/01/08 12:0 a.m.•2 views

CVE-2026-21441

urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loading the entire response body into memory at once. urllib3 can perform decoding or decompression based on the HTTP...

8.9CVSS6.8AI score0.02667EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2026/01/08 12:0 a.m.•5 views

CVE-2025-14017

When doing multi-threaded LDAPS transfers LDAP over TLS with libcurl, changing TLS options in one thread would inadvertently change them globally and therefore possibly also affect other concurrently setup transfers. Disabling certificate verification for a specific transfer could unintentionally...

6.3CVSS6.1AI score0.00106EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/01/07 9:16 p.m.•10 views

CVE-2026-22184

zlib versions up to and including 1.3.1.2 include a global buffer overflow in the untgz utility located under contrib/untgz. The vulnerability is limited to the standalone demonstration utility and does not affect the core zlib compression library. The flaw occurs when a user executes the untgz...

7.8CVSS6.2AI score0.0035EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2026/01/07 9:16 p.m.•4 views

CVE-2026-22185

OpenLDAP Lightning Memory-Mapped Database LMDB versions up to and including 0.9.14, prior to commit 8e1fda8, contain a heap buffer underflow in the readline function of mdbload. When processing malformed input containing an embedded NUL byte, an unsigned offset calculation can underflow and cause...

4.6CVSS6AI score0.00127EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/01/07 5:15 p.m.•5 views

CVE-2025-12543

A flaw was found in the Undertow HTTP server core, which is used in WildFly, JBoss EAP, and other Java applications. The Undertow library fails to properly validate the Host header in incoming HTTP requests.As a result, requests containing malformed or malicious Host headers are processed without...

9.6CVSS7.3AI score0.01179EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2026/01/06 7:0 a.m.•5 views

CVE-2025-15224

When doing SSH-based transfers using either SCP or SFTP, and asked to do public key authentication, curl would wrongly still ask and authenticate using a locally running SSH agent...

3.1CVSS6AI score0.00413EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2026/01/06 7:0 a.m.•4 views

CVE-2025-13034

When using CURLOPTPINNEDPUBLICKEY option with libcurl or --pinnedpubkey with the curl tool,curl should check the public key of the server certificate to verify the peer. This check was skipped in a certain condition that would then make curl allow the connection without performing the proper chec...

5.9CVSS6AI score0.00227EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/01/06 7:0 a.m.•2 views

CVE-2025-14819

When doing TLS related transfers with reused easy or multi handles and altering the CURLSSLOPTNOPARTIALCHAIN option, libcurl could accidentally reuse a CA store cached in memory for which the partial chain option was reversed. Contrary to the user's wishes and expectations. This could make libcur...

5.3CVSS6.1AI score0.00679EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/01/06 7:0 a.m.•4 views

CVE-2025-14524

When an OAuth2 bearer token is used for an HTTPS transfer, and that transfer performs a cross-protocol redirect to a second URL that uses an IMAP, LDAP, POP3 or SMTP scheme, curl might wrongly pass on the bearer token to the new target host...

5.3CVSS6.1AI score0.00611EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2026/01/06 7:0 a.m.•6 views

CVE-2025-15079

When doing SSH-based transfers using either SCP or SFTP, and setting the knownhosts file, libcurl could still mistakenly accept connecting to hosts not present in the specified file if they were added as recognized in the libssh global knownhosts file...

5.3CVSS6.1AI score0.00457EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2026/01/06 12:0 a.m.•3 views

CVE-2025-69225

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below contain parser logic which allows non-ASCII decimals to be present in the Range header. There is no known impact, but there is the possibility that there's a method to exploit a request...

6.9CVSS7AI score0.00236EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/01/06 12:0 a.m.•3 views

CVE-2025-69228

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below allow a request to be crafted in such a way that an AIOHTTP server's memory fills up uncontrollably during processing. If an application includes a handler that uses the Request.post method, ...

8.7CVSS7AI score0.00347EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/01/06 12:0 a.m.•4 views

CVE-2025-69229

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. In versions 3.13.2 and below, handling of chunked messages can result in excessive blocking CPU usage when receiving a large number of chunks. If an application makes use of the request.read method in an endpoint, it...

8.7CVSS7AI score0.00338EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2026/01/06 12:0 a.m.•10 views

CVE-2025-69230

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. In versions 3.13.2 and below, reading multiple invalid cookies can lead to a logging storm. If the cookies attribute is accessed in an application, then an attacker may be able to trigger a storm of warning-level logs...

6.9CVSS7AI score0.00332EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/01/06 12:0 a.m.•3 views

CVE-2025-69227

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below allow for an infinite loop to occur when assert statements are bypassed, resulting in a DoS attack when processing a POST body. If optimizations are enabled -O or PYTHONOPTIMIZE=1, and the...

8.7CVSS7.1AI score0.00337EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/01/05 11:15 p.m.•6 views

CVE-2025-69224

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below of the Python HTTP parser may allow a request smuggling attack with the presence of non-ASCII characters. If a pure Python version of AIOHTTP is installed i.e. without the usual C extensions ...

6.5CVSS7.2AI score0.00213EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2026/01/05 11:15 p.m.•5 views

CVE-2025-69226

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below enable an attacker to ascertain the existence of absolute path components through the path normalization logic for static files meant to prevent path traversal. If an application uses...

6.3CVSS7AI score0.00313EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/01/05 10:15 p.m.•3 views

CVE-2025-65110

Vega is a visualization grammar, a declarative format for creating, saving, and sharing interactive visualization designs. Prior to versions 6.1.2 and 5.6.3, applications meeting two conditions are at risk of arbitrary JavaScript code execution, even if "safe mode" expressionInterpreter is used...

9.3CVSS7.4AI score0.00452EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2026/01/05 10:15 p.m.•4 views

CVE-2025-69223

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below allow a zip bomb to be used to execute a DoS against the AIOHTTP server. An attacker may be able to send a compressed request that when decompressed by AIOHTTP could exhaust the host's memory...

7.5CVSS6.9AI score0.00487EPSS
Exploits0References4
Total number of security vulnerabilities68528