Use-after-free

kernel is vulnerable to use-after-free. It is possible due to a flaw in ext4putsuper...

Denial Of Service (DoS)

mariadb is vulnerable to denial of service. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatabl...

Remote Code Execution

telerik is vulnerable to remote code execution. A .NET JavaScriptSerializer Deserialization vulnerability through RadAsyncUpload allows an attacker to execute malicious code on the server in the context of the w3wp.exe process...

Information Disclosure

firefox is vulnerable to information disclosure. The vulnerability exists as an attacker could create a malicious web page that, when viewed by a victim, could steal private data from a different website the victim has loaded with Firefox...

Arbitrary Code Execution

seamonkey is vulnerable to arbitrary code execution. The vulnerability exists as a webpage containing malicious content could cause SeaMonkey to crash, or potentially execute arbitrary code as the user running SeaMonkey...

Denial Of Service (DoS)

IBM Java SE version 8 is vulnerable to denial of service DoS fixed by slow conversion of BigDecimal to long...

Code Injection

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. T...

Arbitrary Code Execution

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. T...

Remote Code Execution

jackson-databind is vulnerable to remote code execution. The vulnerability exists because it does not restrict the data sources for the Jodd-db object type, leading to deserialisation of arbitrary data from external untrusted sources which would allow an attacker to execute arbitrary code...

Directory Traversal And Information Disclosure

actionview gem is vulnerable to directory traversal and information disclosure. This vulnerability affects applications which pass user input directly into the 'render' method in an action view controller without verification. Using this vulnerability, attackers can render files from outside the...

Cross-site Scripting (XSS)

catalina is vulnerable to cross-site scripting XSS attacks. The vulnerability exists due to the lack of sanitization on the message argument sent to the HttpServletResponse.sendError method, allowing XSS attacks...

Remote Code Execution (RCE)

log4j is vulnerable to remote code execution RCE. A malicious user can pass a malicious binary to the system that when deserialized, executes arbitrary code. This only affects applications that are using the TCP socket server or the UDP socket server to receive log events from another application...

Vulnerable Through Use Of C Library

Nokogiri is vulnerable to denial of service DoS attacks. These attacks are possible through the use and inclusion of the C library libxml2. This library is vulnerable to CVE-2016-4483. It might also be a duplicate of CVE-2016-3627...

Padding Oracle Attack

OpenSSL is vulnerable to padding oracle attacks. The library does not check if there is enough data in both the MAC hash and padding bytes, allowing an attacker to recover the plain text by using the server as a padding oracle. Note: This vulnerability exists because of an incorrect fix for...

Improper Verification Of Cryptographic Signature

browserify-sign is vulnerable to Improper Verification Of Cryptographic Signature. An upper bound check issue in DSA verification allows an attacker to construct signatures that can be successfully verified by any public key, which leads to a signature forgery attack. The attacker could exploit...

Information Disclosure

postgresql is vulnerable to Information Disclosure. The vulnerability relates to a issue in function inlining where role specific policies can be executed other roles resulting in an incorrect policy which may permit a user to complete otherwise-forbidden reads and modifications...

Sandbox Restrictions Bypass

github.com/opencontainers/runc is vulnerable to Privilege Escalation. The vulnerability exists because the prepareRootfs function in rootfslinux.go does not properly validate the root config, which allows an attacker to obtain the host root when spawning two containers with custom volume-mount...

Information Disclosure

sequelize is vulnerable to Information Disclosure. A remote unauthenticated attacker is able to inject malicious queries due to improper input filtering, resulting in the disclosure of sensitive information...

HTTP Response Splitting

apache2 is vulnerable to HTTP Response Splitting. A malicious backend may cause the response headers to be truncated early, resulting in some headers being incorporated into the response body. If the later headers have any security purpose, they will not be interpreted by the client...

Cross-site Scripting (XSS)

graphite-web is vulnerable to cross-site scripting. The vulnerability exists because the updateTimeRange function of dashboard.js does not properly escape the Absolute Time Range values before being rendered, allowing an attacker to inject and execute malicious JavaScript...

Denial Of Service (DoS)

snakeyaml is vulnerable to Denial Of Service DoS. The vulnerability exists because the Composer function of Composer.java does not properly restrict the nested depth limitation for collections, allowing an attacker to crash the application...

Denial Of Service (DoS)

zlib is vulnerable Denial Of Service DoS. The vulnerability exists due to a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field...

Denial Of Service (DoS)

mbedtls is vulnerable to denial of service. The vulnerability exists through a buffer overread when the dtls server with MBEDTLSSSLDTLSCLIENTPORTREUSE in use receives a ClientHello message with a cookie whose declared length exceeds the end of the allocated buffer which allows an attacker to caus...

Information Disclosure

openssl is vulnerable to information disclosure. The vulnerability exists due to a failed AES OCB encryption which allows an attacker to gain access to sensitive information...

Privilege Escalation

openjdk is vulnerable to privilege escalation. The vulnerability exists due to a lack of validation of authorization allowing an attacker to gain unauthorized access to critical data or complete access to all Oracle Java SE...

Prototype Pollution

async is vulnerable to prototype pollution. An attacker is able to inject malicious property types via mapValues method and gain unintended privileges due to prototype pollution vulnerability...

Denial Of Service (DoS)

libexpat.so is vulnerable to denial of service. when using the default configuration, an attacker can crash the application through the integer overflow in the storeRawNames function of xmlparse.c...

Denial Of Service (DoS)

apache2 is vulnerable to denial of service. An attacker is able to crash the system by sending a maliciously crafted URI sent to httpd configured as a forward proxy ProxyRequests on...

Side-channel Attack

kernel is vulnerable to side-channel attack. kernel/bpf/verifier.c performs undesirable out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory...

Packet Injection

kernel is vulnerable to packet injection. The vulnerability exists due to a flaw in Linux kernel's WiFi implementation which allows an attacker within the wireless range to abuse a logic flaw in the WiFi implementation by reassembling packets from multiple fragments under different keys, treating...

Denial Of Service (DoS)

Kernel is vulnerable to denial of service. The vulnerability exists due to an Out-of-bounds Write Due To A Heap Buffer Overflow In hidinputchangeresolutionmultipliers Of Hid-input.c...

Denial Of Service (DoS)

unbound is vulnerable to denial of service. The vulnerability exists due to an integer overflow in regionalalloc function may lead to a buffer overflow of the allocated buffer if the size can be controlled by an attacker and can be big enough...

Remote Code Execution

tomcat-catalina is vulnerable to remote code execution. If a remote attacker knows and is able to control the contents and name of a file, remote code execution can be achieved if the server is configured to use PersistenceManager with a FileStore and the PersistenceManager is configured with the...

Use-after-free

kernel is vulnerable to use-after-free. drivers/tty/ttyjobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b. A locking vulnerability was found in the tty subsystem of the Linux kernel in drivers/tty/ttyjobctrl.c. This flaw allows a local attacker to possibly corrupt...

Integer Overflow

Linux kernel is vulnerable to Integer Overflow. A child process could send arbitrary signals to a privileged suidroot parent process which interferes with donotifyparent protection mechanism...

Out Of Bound Writes (OOB)

kernel-rt is vulnerable to out of bound writes attacks. A user or process able to access the /dev/kvm device could use this flaw to crash the system, resulting in a denial of service...

Remote Code Execution (RCE)

github.com/go-gitea/gitea is vulnerable to remote code execution RCE. The vulnerability exists through git hooks which are enabled by default...

Denial Of Service (DoS)

The kernel is vulnerable to denial of service in arch/powerpc/kernel/signal32.c and arch/powerpc/kernel/signal64.c via sigreturn system call...

Denial Of Service (DoS)

The JSON gem is vulnerable to denial of service. An attacker is able to create arbitrary objects in the target system using malicious JSON document that triggers the creation of arbitrary Ruby symbols or certain internal objects. This can potentially result in a denial of service condition. This...

Remote Code Execution (RCE)

jackson-databind is vulnerable to remote code execution RCE. The vulnerability exists as it does not stop classes from the p6spy package from being used as deserialization gadgets...

Arbitrary Code Execution

php is vulnerable to arbitrary code execution. A heap-based buffer overflow in the function gdImageColorMatch in gdcolormatch.c allows an attacker to execute arbitrary code on the system...

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as vhostnet has an infinite loop while receiving packets leads to DoS...

Information Disclosure

kernel is vulnerablbe to information disclosure. The vulnerability exists as fs/ext4/extents.c leads to information disclosure...

Stack-Based Buffer Overflow

Wireshark, previously known as Ethereal, is a network protocol analyzer, which is used to capture and browse the traffic running on a computer network. Several denial of service flaws were found in Wireshark. Wireshark could crash or stop responding if it read a malformed packet off a network, or...

Authentication Bypass

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Multiple flaws were discovered in the CORBA, Libraries, RMI, Serialization, and 2D components in OpenJDK. An untrusted Java application or applet could use these flaws t...

Remote Code Execution (RCE)

php is vulnerable to remote code execution RCE attacks. The vulnerability exists as the asn1timetotimet function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, and 5.5.x before 5.5.7 does not properly parse 1 notBefore and 2 notAfter timestamps in X.509 certificates, which...

Denial Of Service (DoS) Through Memory Consumption

OpenSSL is vulnerable to denial of service DoS attacks. These attacks are possible because there is a memory leak in d1srtp.c which allows remote attackers to consume all the memory through a handshake message...

Remote Code Execution

.NET is vulnerable to Remote Code Execution RCE. The vulnerability exists in Microsoft.DiaSymReader.Native.amd64.dll when reading a corrupted PDB file which may lead to RCE...

Remote Code Execution (RCE)

craftcms/cms is vulnerable to Remote Code Execution. The vulnerability is due to a lack of file protocol removal in FileHelper.php which allows an attacker to upload and execute malicious PHP code into the system...

HTTP Request Smuggling

puma is vulnerable to HTTP Request Smuggling. The vulnerability exists due to processing zero-length content-Length headers and chunked transfer encoding bodies in client.rb, allowing an attacker to smuggle HTTP requests...