Information Disclosure

rh-mysql80-mysql is vulnerable to information disclosure. The vulnerability exists in the Server: Logging component, allowing an attacker to access critical data or complete access to all MySQL Server accessible data through the multiple protocol...

Authentication Bypass

kernel is vulnerable to authentication bypass. An attacker can hijack return instructions to achieve arbitrary speculative code execution under certain microarchitecture-dependent conditions...

Denial Of Service (DoS)

github.com/cloudflare/cfrpki is vulnerable to denial of service. The vulnerability exists because the validationLoop function in octorpki.go exceeds the max iterations parameter when creating long chains of CAs, allowing an attacker to crash the application...

Cross-Site Scripting (XSS)

twisted is vulnerable to cross-site scripting. The vulnerability is due to the function getResourceForRequest in vhost.py. When the host header does not match the configured twisted.web.vhost.NameVirtualHost, the 404 page will render the header allowing an attacker to inject and execute HTML and...

Denial Of Service (DoS)

libtiff.so is vulnerable to denial of service DoS attacks. The vulnerability is due to.the TIFFmemcpy function in libtiff/tifunix.c allowing a remote attacker to cause an out-of-bounds write via a crafted tiff file, resulting in denial of service conditions...

Prototype Pollution

uglify-js is vulnerable to prototype pollution. The vulnerability exists in DEFNODE function of ast.js via the name variable which allows an attacker to inject malicious property resulting in prototype pollution...

Denial Of Service (DoS)

linux-lts is vulnerable to denial of service. The vulnerability exists in ieee80211bssinfoupdate function of net/mac80211/scan.c due to a buffer overflow which allows an attacker to crash the application via WLAN frames...

Privilege Escalation

NuGet Client is vulnerable to Privilege Escalation. The vulnerability exists because the library does not properly handle a world-writable cache directory, allowing an attacker to inject and execute malicious code, resulting in the elevation of privilege...

Arbitrary File Write

Jenkins Pipeline is vulnerable to Arbitrary File Write. The vulnerability exists because of using parameter name without sanitization as a relative path inside a build-related directory which allows an attacker to configure Pipelines to create or replace arbitrary files on the Jenkins controller...

Spring Expression Language (SpEL) Injection

com.nepxion:discovery-common is vulnerable to spring expression language injection. The vulnerability exists because eval method in DiscoveryExpressionResolver.java is evaluating expression with a StandardEvaluationContext, allowing an attacker to inject and execute malicious SpEL, leading to...

Server-side Request Forgery (SSRF)

discovery-plugin-admin-center-starter is vulnerable to server-side request forgery. The vulnerability exists in the routerRestTemplate.getForEntity functionality in the getRouterEntityList function of RouterResourceImpl.java, allowing an attacker to gain sensitive information through the URLs...

Heap-buffer-overflow

binutils, edge is vulnerable to a heap buffer overflow. The vulnerability exists in bfdgetl32 function when called from the stripmain function in strip-new via a malicious file...

Denial Of Service (DoS)

xstream is vulnerable to Denial Of Service DoS. The vulnerability exists due to the stack overflow in the processConverterAnnotations function of AnnotationMapper.java, allowing an attacker to cause an application crash by providing malicious input through the parser...

Denial Of Services (DoS)

graphql-java is vulnerable to denial-of-service. The vulnerability exists because ANTLR lexing and parsing code is taking proportionally longer to get to the max token state which allows a remote attacker to send a malicious GraphQL query that consumes CPU resources resulting in an application...

Denial Of Service (DoS)

libsox.so is vulnerable to denial of service. The vulnerability exists due to a floating point exception in startread function in wav.c which allows an attacker to send a crafted wav file causing an application crash...

Privilege Escalation

libuv.so is vulnerable to privilege escalation. The vulnerability exists in the uvprocesschildinit function in process.c due to improper configurations of group privilege downgrade which allows an attacker to gain privileges via unspecified vectors...

Remote Code Execution (RCE)

chrome is vulnerable to remote code execution. The vulnerability exists due to a lack of sanitization allowing an attacker to inject maliciously crafted script into the system...

Remote Code Execution

drupal/core is vulnerable to remote code execution. A remote attacker is able to bypass protections provided in sanitizeName function because the filenames with .htaccess extension are not properly sanitized, which allows the attacker to upload and execute malicious code on the system under attac...

Denial Of Service (DoS)

go is vulnerable to Denial Of Service DoS. The vulnerability exists in Glob function in match.go due to stack exhaustion because having a large number of path separators in Glob which allows an attacker to cause an application crash...

Out-Of-Bounds Write

net-snmp is vulnerable to out of bounds write. The vulnerability exists due to a boundary error in a SET request to SNMP-VIEW-BASED-ACM-MIB::vacmAccessTable. A remote user is able to pass a malformed OID in a SET request, trigger an out-of-bounds write and execute arbitrary code on the target...

Denial Of Service (DoS)

sqlite3 is vulnerable to Denial Of Service DoS. The vulnerability exists because the whereKeyStats routine is unable to cope with row-value comparisons against the primary key index of a WITHOUT ROWID table which allows an attacker to cause an application crash...

Authorization Bypass

Apache Hive is vulnerable to authorization bypass. The vulnerability exists in the CREATE/DROP operations due to improper restrictions of users privileges which allows an attacker to create and drop UDFs...

SQL Injection

oliverklee/seminars is vulnerable to SQL injection. Lack of sufficient sanitisation of input query to EventBagBuilder::limitToOrganizers and EventBagBuilder::limitToCategories allows an attacker to inject malicious SQL query...

Denial Of Service (DoS)

aiohttp is vulnerable to denial of service. An attacker can crash the application by providing invalid IPv6 URLs to the parsemessage function of httpparser.py...

Use After Free

chrome is vulnerable to Use after free. The vulnerability exists due to a use after free in WebGPU allowing a remote attacker to potentially exploit heap corruption via a crafted HTML page...

Use After Free

chrome is vulnerable to use after free. The vulnerability exists due to a memory corruption in ANGLE which allows an attacker to potentially exploit heap corruption via a malicious HTML page...

XML External Entity (XXE)

Drools Compiler is vulnerable to xml external entity. The vulnerability exists in validate function in KieModuleMarshaller.java due to incorrect use of Validator class which allows an attacker to submit a malicious XML document to perform requests on behalf of the server...

Denial Of Service (DoS)

grub2 is vulnerable to denial of service. The vulnerability exists due to out-of-bounds write when handling split HTTP headers which allows an attacker to crash the application via malicious input...

Remote Code Execution (RCE)

grub2 is vulnerable to remote code execution. The vulnerability exists due to a heap out-of-bounds write that happen during the handling of Huffman tables in the PNG reader allowing an attacker to inject malicious code into the system via a crafted PNG image...

Privilege Escalation

xen is vulnerable to privilege escalation. The vulnerability exists due to non-coherent mappings allowing an attacker to control the whole system because the system safety logic doesn't account for CPU-induced cache...

Incorrect Logic

x86 pv is using an incorrect logic. The vulnerability exists due to insufficient care with non-coherent mappings which allows an attacker to perform unwanted actions...

Denial Of Service (DoS)

github.com/containerd/containerd is vulnerable to denial of service. The vulnerability exists in the ExecSync function in containerexecsync.go due to a lack of validation in memory consumption which allows an attacker to crash the application via memory exhaustion...

Remote Code Execution (RCE)

chrome is vulnerable to remote code execution. The vulnerability exists due to an Inappropriate implementation in Web Cursor...

Cross-Site Scripting (XSS)

Keycloak Core is vulnerable to reflected cross-site scripting. The vulnerability exists via the POST http requests due to lack of escaping which allows a malicious attacker to inject and execute arbitrary javascript...

Denial Of Service (DoS)

Go-Ethereum is vulnerable to denial of service. An attacker is able to exploit the vulnerability and crash the system by sending an excessive amount of messages to a node...

Cross-site Scripting (XSS)

@braintree/sanitize-url is vulnerable to cross-site scripting. The vulnerability exists due to a lack of validating HTML encoding...

Buffer Overflow

vim is vulnerable to buffer overflow. The vulnerability exists due to the use of Out-of-range Pointer Offset...

Denial Of Service (DoS)

libexpat.so is vulnerable to denial of service. An attacker can trigger stack exhaustion in the buildmodel function of xmlparse.c via a large nesting depth in the DTD element, leading to an application crash...

Denial Of Service (DoS)

libexpat.so is vulnerable to denial of service. The vulnerability exists due to the integer overflow in the copyString function of xmlparse.c as it is only used for encoding strings supplied by the library user, allowing an attacker to cause an application crash...

Authorization Bypass

url-parse is vulnerable to authorization bypass. The vulnerability exists in Url function of index.js because the user name and password are not properly handled which allows a malicious user to modify user information...

Denial Of Service (DoS)

xrdp is vulnerable to denial of service. In affected versions an integer underflow leading to a heap overflow in the sesman server allows any unauthenticated attacker which is able to locally access a sesman server to execute code as root...

Remote Code Execution (RCE)

github.com/git-lfs/git-lfs is vulnerable to remote code execution. The vulnerability exists in 'ExecCommand' function of subprocesswindows.go which allows an attacker to inject and execute codes in the root directory of a malicious repository by simply adding an executable files...

Cross Site Scripting (XSS)

github.com/go-gitea/gitea is vulnerable to cross-site scripting XSS. The vulnerability exists due to the lack of sanitization in the repository settings in the setting.go file allows the attacker to inject and execute arbitrary Javascript via the URL field in the external wiki/issue tracker...

Denial Of Service (DoS)

tensorflow is vulnerable to denial of service. The vulnerability exists in TensorByteSize function of attrvalueutil.cc because of the check failure in TensorShape which leads to an application crash...

Remote Code Execution (RCE)

firefox is vulnerable to remote code execution. The vulnerability when a worker is shutdown, it was possible to cause script to run late in the lifecycle, at a point after where it should not be possible...

Path Traversal

org.neo4j.procedure:apoc is vulnerable to path traversal. A remote attacker is able to retrieve and download files from outside the authorized directory and under some circumstances to also create files on the affected server resulting in path traversal vulnerability...

Denial Of Service (DoS)

libpng is vulnerable to denial of service. The vulnerability exists due to an absolute path in the export script that crashes when reading multiple zTXT chunks...

Denial Of Service (DoS)

openjdk is vulnerable to denial of service. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to...

Denial Of Service (DoS)

vim is vulnerable to denial of service. The vulnerability exists due to a heap-based Buffer Overflow allowing an attacker to crash the system...

Arbitrary Code Execution

nodejs is vulnerable to arbitrary code execution. An attacker can inject and execute malicious name constraints When the library use string format to check the validity of the peer certificates against hostname...