Information Disclosure

org.jenkins-ci.plugins:teamconcert is vulnerable to Information Disclosure. A remote authenticated attacker is able to check for the existence of an attacker-specified file path on the Jenkins controller file system due to missing permission checks, resulting in disclosure of sensitive informatio...

SQL Injection

moodle/moodle is vulnerable to SQL Injection attacks. The vulnerability exists in getsubwikipages function of external.php due to lack of sanitization of user inputs which allows an attacker to inject and execute arbitrary sql queries...

Code Injection

go is vulnerable to Code Injection. The vulnerability causes CSS contexts to unexpectedly close if templates contains multiple actions separated by a '/' are included which could result in injections of unexpected HTML...

Denial Of Service (DoS)

libncurses.so is vulnerable to Denial Of Service DoS. The vulnerability exists via malformed data in a terminfo database file which allows an attacker to trigger a memory corruption causing an application crash...

Authentication Bypass

curl is vulnerable to Authentication Bypass. The library would reuse a previously created FTP connection even when one or more options had been changed, leading to wrong credentials. Several FTP settings were left out from configuration match checks, making them easily match...

Denial Of Service (DoS)

openssl is vulnerable to Denial Of Service DoS. The vulnerability exists because if a recipe cms recipient public key is invalid, the new filter bio is freed and the function returns a NULL result indicating a failure The public API function BIOnewNDEF is a helper function used for streaming ASN....

Denial Of Service (DoS)

linux-aws is vulnerable to denial of service. The vulnerability exists in nfnetlinkqueue.c because, in the case of an nfqueue not properly validate which allows an attacker to crash the application via malicious input...

Non-Responsive Delegation Attack' (NRDelegation Attack)

unbound:edge is vulnerable to non-responsive delegation attack. The attacker can cause a resolver to spend a lot of time/resources resolving records under a malicious delegation point where a considerable number of unresponsive NS records reside...

OS Command Injection

hadoop-common is vulnerable to OS Command Injection. The vulnerability exists due to lack of sanitization of input file name by FileUtil.unTarFile, File API before being passed to the shell, allowing an attacker to pass malicious file name and inject arbitrary commands...

Information Disclosure

intel-microcode, sid is vulnerable to information disclosure. An incomplete cleanup in specific special register write operations for some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access...

Remote Code Execution (RCE)

laravel/framework is vulnerable to remote code execution. The vulnerability exists in the destruct function in PendingBroadcast.php due to insecure deserialization of trusted data which allows an attacker to inject maliciously crafted script into the system...

Privilege Escalation

kernel is vulnerable to privilege escalation. The vulnerability exists due to an out of bounds write due to a missing bounds check...

Improper Access Control

github.com/golang/go is vulnerable to improper access control. A remote attacker is able to exploit the vulnerability by imposing as an actor who is supposed to be creating branches but not tags, then tricking the library to misinterpret branch names that falsely appear to be version tags...

Remote Code Execution (RCE)

samba is vulnerable to remote code execution. The vulnerability exists due to an Out-of-Bounds OOB Heap Read/Write allowing an attacker to inject maliciously crafted script into the system...

Denial Of Service (DoS)

qemu is vulnerable to Denial Of Service DoS. The vulnerability exists in the floppy disk emulator of QEMU allows privileged user to crash the QEMU...

Denial Of Service (DoS)

qemu is vulnerable to Denial Of Service DoS. The vulnerability exists due to a heap buffer overflow was found in the floppy disk emulator of QEMU in fdctrltransferhandler in hw/block/fdc.c while processing DMA read data transfers from the floppy drive to the guest system...

Use-After-Free

Linux kernel is vulnerable to use-after-free attacks. The vulnerability exists through inconsistency of drivers/tty/ttyio.c and drivers/tty/ttyjobctrl.c. An attacker could use this flaw to crash the system...

Denial Of Service (DoS)

apache2 is vulnerable to denial of service. The vulnerability exists due to a null pointer dereference during HTTP/2 request processing...

Symlink Attack

tar is vulnerable to Symlink Attack. An attacker is able to write files to arbitrary locations on the file system via a malicious tar file...

Remote Procedure Calls

linux kernel is vulnerable to remote procedure calls. The vulnerabilities exists due to fastrpcinternalinvoke in drivers/misc/fastrpc.c does not prevent user applications from sending kernel RPC messages...

Denial Of Service (DoS)

puma is vulnerable to denial of service DoS. The vulnerability exists as it was possible to monopolize a thread if the client does not reset and keeps requesting. This CVE exists due to an incomplete fix for CVE-2019-16770...

Privilege Escalation

kernel is vulnerable to privilege escalation. A use-after-free in doepollctl and eploopcheckproc of eventpoll.c allows an attacker to obtain additional execution privileges...

Prototype Pollution

handlebars is vulnerable to prototype pollution. An attacker is able to inject arbitrary properties into prototype constructs when selecting certain compiling options to compile templates which can lead to arbitrary code execution...

Information Disclosure

curl is vulnerable to information disclosure. The libcurl does not strip off user credentials from the URL when automatically populating the HTTP request header field in outgoing HTTP requests, allowing a malicious user to retrieve sensitive data from the server in second HTTP request...

Remote Code Execution (RCE)

webkit2gtk is vulnerable to remote code execution. Maliciously crafted web content may violate iframe sandboxing policy. This issue was addressed with improved iframe sandbox enforcement...

Server-Side Request Forgery (SSRF)

xstream is vulnerable to Server-Side Forgery Request. The processed stream at unmarshalling time contains information to recreate the formerly written objects, allowing an attacker to manipulate data streams referencing a resource in an intranet or the local host...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. The vulnerability exists due to a Heap Overflow was found in mwifiexsetwmmparams function of Marvell Wifi Driver which allows an attacker to crash the application via malicious input...

Denial Of Service (DoS)

linux is vulnerable to denial of service DoS. The vulnerability exists through a memory leak if PERFEVENTIOCSETFILTER is used...

Open Redirection

notebook is vulnerable to open redirection. An attacker may send a malicious link to a notebook server resulting in a redirection of users to third-party sites...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. A stack-based out-of-bounds write in mpolparsestr function in mm/mempolicy.c allows an attacker to crash the system or potentially execute arbitrary code...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. An invalid read location in vgaconinvertregion allows an attacker to crash the kernel and potentially obtain confidential information...

Denial Of Service (DoS)

linux is vulnerable to denial of service DoS. The vulnerability exists through a failure of the file system metadata validator in XFS, causing an inode with a valid, user-creatable extended attribute to be flagged as corrupt...

Denial Of Service (DoS)

linux is vulnerable to denial of service DoS. The vulnerability exists as the prbcalcretireblktmo function in net/packet/afpacket.c through parsing TPACKETV3...

Denial Of Service (DoS)

linux is vulnerable to denial of service DoS. The vulnerability exists through a use-after-free in cpia2exit in drivers/media/usb/cpia2/cpia2v4l.c...

Information Disclosure

Apache HTTP server is vulnerable to modproxyuwsgi info disclosure and possible RCE...

XML External Entities (XXE)

log4net is vulnerable to XML external entity attacks. External DTDs are enabled by default and allow attackers to perform XXE attacks using malicious XML data and documents...

Arbitrary Code Execution

busybox is vulnerable to arbitrary code execution. The vulnerability exists in the addmatch function in libbb/lineedit.c in BusyBox through 1.27.2, the tab autocomplete feature of the shell, used to get a list of filenames in a directory, does not sanitize filenames and results in executing any...

Unauthorized Reverse Proxy Connection

The Apache HTTP Server is a popular web server. It was discovered that the fix for CVE-2011-3368 did not completely address the problem. An attacker could bypass the fix and make a reverse proxy connect to an arbitrary server not directly accessible to the attacker by sending an HTTP version 0.9...

Arbitrary Code Execution

jboss-seam2 is vulnerable to arbitrary code execution. The vulnerability exists as an input sanitization flaw was found in the way JBoss Seam processed certain parametrized JBoss Expression Language EL expressions. A remote attacker could use this flaw to execute arbitrary code via a URL,...

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as a flaw was found in the Memory-mapped I/O MMIO instruction decoder in the Xen hypervisor implementation. An unprivileged guest user could use this flaw to trick the hypervisor into emulating a certain instruction, which...

Privilege Escalation

kernel is vulnerable to privilege escalation. The vulnerability exists as a flaw was found in the aacraid SCSI driver. This allowed a local user to make ioctl calls to the driver which should otherwise be restricted to privileged users...

Information Disclosure

Kernel is vulenrable to information disclosure. The vulnerability exists in KVM through exporting MSRIA32TSXCTRL to guest. This issue exists due to the an incomplete fix for TAA, CVE-2019-11135...

Denial Of Service (DoS)

Network Security Services NSS is vulnerable to denial of service DoS. It is possible due to out-of-bounds writes when passing an output buffer smaller than the block size to NSCEncryptUpdate...

Arbitrary File Overwrite

openssh is vulnerable to Arbitrary File Overwrite. Improper validation of object names allows a malicious server to overwrite files on the client-side via scp client...

Denial Of Service (DoS) Via Settings Flood

github.com/grpc/grpc-go is vulnerable to denial of service DoS attacks. The attack can be triggered by sending a flood of settings by a HTTP/2 peer, leading to an excessive data queue and causing high CPU and resource consumption...

Information Disclosure

php is vulnerable to information disclosure. A buffer over-read in PHAR reading functions allows an attacker is able to read past allocated buffer in the pharparsepharfile function in ext/phar/phar.c when parsing a .phar file...

Command Injection

nokogiri is vulnerable to command injection. The vulnerability exists as commands can be executed in a subprocess by Ruby's Kernel.open through Nokogiri::CSS::Tokenizerloadfile...

Information Disclosure

kernel is vulnerable to information disclosure. A Spectre gadget was found in the Linux kernel's implementation of system interrupts. An attacker with local access could use this information to reveal private data through a Spectre like side channel...

Remote Code Execution (RCE)

jackson-databind is vulnerable to remote code execution RCE. The attack is possible due to lack of proper handling of gadget type conversion when ehcache is used...

Denial Of Service (DoS)

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. T...