Remote Code Execution (RCE)

jackson-databind is vulnerable to remote code execution RCE. The vulnerability exists as it does not stop classes from the p6spy package from being used as deserialization gadgets...

Arbitrary Code Execution

php is vulnerable to arbitrary code execution. A heap-based buffer overflow in the function gdImageColorMatch in gdcolormatch.c allows an attacker to execute arbitrary code on the system...

Denial Of Service (DoS)

IBM Java SE version 8 is vulnerable to denial of service DoS fixed by slow conversion of BigDecimal to long...

Denial Of Service (DoS)

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. T...

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists in sound/core/control.c as it does not ensure possession of a read/write lock...

Privilege Escalation

An attack technique against the W3C XML Encryption Standard when block ciphers were used in CBC mode could allow a remote attacker to conduct chosen-ciphertext attacks, leading to the recovery of the entire plain text of a particular cryptogram. CVE-2011-1096 JBoss Web Services leaked side-channe...

Use-after-free

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

Directory Traversal And Information Disclosure

actionview gem is vulnerable to directory traversal and information disclosure. This vulnerability affects applications which pass user input directly into the 'render' method in an action view controller without verification. Using this vulnerability, attackers can render files from outside the...

Remote Code Execution (RCE)

php is vulnerable to remote code execution RCE attacks. The vulnerability exists as the asn1timetotimet function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, and 5.5.x before 5.5.7 does not properly parse 1 notBefore and 2 notAfter timestamps in X.509 certificates, which...

Remote Code Execution (RCE)

Microsoft ChakraCore is vulnerable to remote code execution. This is due to how the scripting engine handles objects in memory, which allows a remote attacker to execute arbitrary code in the context of the user. This CVE ID is different from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836,...

Vulnerable Through Use Of C Library

Nokogiri is vulnerable to denial of service DoS attacks. These attacks are possible through the use and inclusion of the C library libxml2. This library is vulnerable to CVE-2016-4483. It might also be a duplicate of CVE-2016-3627...

Denial Of Service (DoS) Through Memory Consumption

OpenSSL is vulnerable to denial of service DoS attacks. These attacks are possible because there is a memory leak in d1srtp.c which allows remote attackers to consume all the memory through a handshake message...

Information Disclosure

umbracocms.identityextensions is vulnerable to Information Disclosure. A remote unauthenticated attacker is able to gain access to unauthorized endpoints because access tokens directly returns in the URL fragments, resulting in disclosure of sensitive information...

Sandbox Restrictions Bypass

github.com/opencontainers/runc is vulnerable to Privilege Escalation. The vulnerability exists because the prepareRootfs function in rootfslinux.go does not properly validate the root config, which allows an attacker to obtain the host root when spawning two containers with custom volume-mount...

Information Disclosure

sequelize is vulnerable to Information Disclosure. A remote unauthenticated attacker is able to inject malicious queries due to improper input filtering, resulting in the disclosure of sensitive information...

HTTP Response Splitting

apache2 is vulnerable to HTTP Response Splitting. A malicious backend may cause the response headers to be truncated early, resulting in some headers being incorporated into the response body. If the later headers have any security purpose, they will not be interpreted by the client...

Cross-site Scripting (XSS)

graphite-web is vulnerable to cross-site scripting. The vulnerability exists because the updateTimeRange function of dashboard.js does not properly escape the Absolute Time Range values before being rendered, allowing an attacker to inject and execute malicious JavaScript...

Denial Of Service (DoS)

nginx is vulnerable to denial of service. The module ngxhttpmp4module allows a local attacker to cause a worker process to crash, trigger a memory disclosure by using a specially crafted audio or video file...

Authentication Bypass

python-jwt is vulnerable to authentication bypass. An attacker can spoof the other user's identities and hijack their sessions by obtaining the JWT token and arbitrarily forging its contents without knowing the secret key through the verifyjwt function of init.py...

Denial Of Service

kernel is vulnerable to denial of service. The vulnerability exists due to a race condition in perfeventopen which allows an attacker to gain root privileges and execute arbitrary codes and crash the system...

Integer Overflow

MariaDB before 10.6.5 has a sqllex.cc integer overflow, leading to an application crash...

Buffer Overflow

The BPF subsystem in the Linux kernel is vulnerable to buffer overflow. The vulnerability exists in kernel/bpf/core.c and kernel/bpf/core.c because of mishandling situations with a long jump over an instruction sequence where inner instructions require substantial expansions into multiple BPF...

Denial Of Service (DoS)

...

Denial Of Service (DoS)

apache2 is vulnerable to denial of service. An attacker is able to crash the system by sending a maliciously crafted URI sent to httpd configured as a forward proxy ProxyRequests on...

Information Disclosure

kernel is vulnerable to information disclosure. The vulnerability exists in the transparent inter-process communication functionality in net/tipc/crypto.c, allowing an attacker to exploit insufficient validation of user-supplied sizes for the MSGCRYPTO message type...

Packet Injection

kernel is vulnerable to packet injection. The vulnerability exists due to a flaw in Linux kernel's WiFi implementation which allows an attacker within the wireless range to abuse a logic flaw in the WiFi implementation by reassembling packets from multiple fragments under different keys, treating...

Remote Code Execution (RCE)

ntfs-3g is vulnerable to Remote Code Execution RCE. The vulnerability exists due to a heap buffer overflow...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. A race condition getoldroot in fs/btrfs/ctree.c allows attackers to cause a denial of service due to the lack of locking on an extent buffer before a cloning operation...

Cross Site Scripting (XSS)

vmd is vulnerable to cross site scripting. An attacker is able to inject malicious script via on Windows and macOS...

HTTP Request Smuggling

netty-codec-http2 is vulnerable to HTTP request smuggling. The Content-Length header is not validated and allows an attacker to smuggle requests as requests are downgraded from HTTP/2 to HTTP/1.1...

Cross-Site Scripting (XSS)

acs-aem-commons is vulnerable to cross-site scripting XSS. A remote attacker is able to inject and execute arbitrary Javascript in a user's browser due to insecure handling of invalid JCR characters...

Remote Code Execution (RCE)

github.com/go-gitea/gitea is vulnerable to remote code execution RCE. The vulnerability exists through git hooks which are enabled by default...

Unauthorized Read

Openjdk 7 is vulnerable to unauthorised read. It is difficult to exploit vulnerability but it allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker...

Arbitrary Code Execution

kernel is vulnerable to arbitrary code execution. The vulnerability exists through a use-after-free caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver...

Cross-Site Scripting (XSS)

python2 is vulnerable to cross-site scripting. A remote attacker is able to inject and execute arbitrary Javascript via in a user's browser via the servertitle field...

Insecure TLS Configuration

openssl uses an insecure TLS configuration. A ciphersuite downgrade flaw was found in the OpenSSL SSL/TLS server code. A remote attacker could possibly use this flaw to change the ciphersuite associated with a cached session stored on the server, if the server enabled the...

Information Disclosure

JMX-console is vulnerable to information disclosure. The JMX Console configuration only specified an authentication requirement for requests that used the GET and POST HTTP "verbs". A remote attacker could create an HTTP request that does not specify GET or POST, causing it to be executed by the...

Arbitrary Code Execution

cups is vulnerable to arbitrary code execution. An integer overflow flaw leading to a heap buffer overflow was discovered in the Text-to-PostScript "texttops" filter. An attacker could create a malicious text file that could, possibly, execute arbitrary code as the "lp" user if the file was print...

CRLF Injection

Python is vulnerable to CRLF Injection. Remote unauthenticated attacker could exploit the flaw by controling a url parameter, as demonstrated by the first argument to urllib.request.urlopen with \r\n specifically in the path component of a URL that lacks a ? character followed by an HTTP header o...

Denial Of Service (DoS)

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. T...

Authentication Bypass

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Multiple flaws were discovered in the CORBA, Libraries, RMI, Serialization, and 2D components in OpenJDK. An untrusted Java application or applet could use these flaws t...

Denial Of Service (DoS)

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. A buffer overflow flaw was found in the Exif extension. A specially crafted JPEG or TIFF file could cause a PHP application using the exifthumbnail function to crash or, possibly, execute arbitrary code...

Denial Of Service (DoS)

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. A buffer overflow flaw was found in the Exif extension. A specially crafted JPEG or TIFF file could cause a PHP application using the exifthumbnail function to crash or, possibly, execute arbitrary code...

Denial Of Service (DoS)

V8 is Google's open source JavaScript engine. It was discovered that V8 did not properly check the stack size limit in certain cases. A remote attacker able to send a request that caused a script executed by V8 to use deep recursion could trigger a stack overflow, leading to a crash of an...

Authentication Bypass

The sudo superuser do utility allows system administrators to give certain users the ability to run commands as root. A flaw was found in the way sudo handled time stamp files. An attacker able to run code as a local user and with the ability to control the system clock could possibly gain...

Protection Mechanism Failure

dotnet is vulnerable to Protection Mechanism Failure. The vulnerability is due to improper validation of X.509 certificates, allowing an attacker to submit a certificate containing a malformed signature which returns an incorrect failure code. While the certificate will be correctly rejected, an...

Remote Code Execution

.NET is vulnerable to Remote Code Execution RCE. The vulnerability exists in Microsoft.DiaSymReader.Native.amd64.dll when reading a corrupted PDB file which may lead to RCE...

Remote Code Execution (RCE)

craftcms/cms is vulnerable to Remote Code Execution. The vulnerability is due to a lack of file protocol removal in FileHelper.php which allows an attacker to upload and execute malicious PHP code into the system...

Remote Code Execution (RCE)

Microsoft.NET.Build.Containers is vulnerable to Remote Code Execution RCE. The vulnerability exists when some dotnet commands are used in directories with weaker permissions, which allows an attacker to inject and execute malicious code...

Improper Certificate Validation

libcurl.so is vulnerable to Improper Certificate Validation. In place of a library's built-in name matching function, Curl may utilize its own name matching function for TLS. IDN hosts could be mismatched by this private wildcard matching function since they are rendered in a weak form before...