Remote Code Execution (RCE)

pyyaml is vulnerable to remote code execution RCE attacks. The application uses the unsafe function yaml.load, allowing a malicious user to inject and execute arbitrary code by passing a yaml file. This vulnerability exists due to an incomplete fix for CVE-2017-18342...

HTTP Request Smuggling

github.com/kubernetes/ingress-nginx is vulnerable to HTTP request smuggling. The library does not use a named location for authSignURL, allowing a malicious user to read unauthorized web pages in environments where NGINX is being fronted by a load balancer...

Information Disclosure

rack is vulnerable to information disclosure. The vulnerability exists due to the insecure comparison of session IDs. A remote attacker is able to perform timing attacks by analyzing the response time of the server when performing the comparison of session IDs...

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists through an out-of-bound oob memory read in hsoprobe in drivers/net/usb/hso.c...

Denial Of Service (DoS)

The kernel is vulnerable to denial of service. The attack exists because it causes heap-based buffer overflow in the function mwifiexuapparsetailies in drivers/net/wireless/marvell/mwifiex/ie.c, leading to a memory corruption and other consequences...

Denial Of Service (DoS) Via Reset Signal Floods

github.com/grpc/grpc-go is vulnerable to denial of service DoS attacks. The attack can be triggered by sending a flood of reset signals by a HTTP/2 peer, leading to an excessive data queue and causing high CPU and resource consumption...

Denial Of Service (DoS) Via Ping Floods

github.com/grpc/grpc-go is vulnerable to denial of service DoS attacks. The attack can be triggered by sending a flood of pings by a HTTP/2 peer, leading to an excessive data queue and causing high CPU and resource consumption...

Buffer Under-read

PHP is vulnerable to buffer under-read. The attack is possible in phpstreamurlwraphttpex in httpfopenwrapper.c when parsing HTTP response, subsequently copying a large string...

Authorization Bypass

httpd is vulnerable to authorization bypass. The vulnerability exists through URL normalization inconsistency...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. A NULL pointer dereference due to an anomalized NFS message sequence allows an attacker to cause a panic in the system and deny access to the NFS server...

Command Injection

github.com/moby/moby is vulnerable to Command Injection. Misintepretation of the git ref command as a flag allows an attacker to execute arbitrary code remotely if there is control over the build path issued to the docker build...

Information Disclosure

Dnn.Platform is vulnerable to information disclosure. The vulnerability is due to the incomplete fix of CVE-2018-15811 where it encrypts the input parameters using a weak encryption algorithm during the installation...

Wrong And Predictable Encryption

github.com/golang/crypto is vulnerable to predictable encryption. In the keystream generation of more than 256 GiB in the amd64 implementation of golang.org/x/crypto/salsa20 and golang.org/x/crypto/salsa20/salsa, it can first generate incorrect output and finally cycling back to the previously...

Deserialization Of Untrusted Object

jackson-databind is vulnerable to deserialization of untrusted object. The attack exists because it does not validate the gadget type before performing deserialization of polymorphic types with no limits...

Denial Of Service

Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for ...

Denial Of Service (DoS)

Linux kernel is vulnerable to denial of service vulnerability. The vulnerability exists in Linux kernel built with KVM virtualisationCONFIGKVM support with Virtual Function I/O feature CONFIGVFIO enabled. A malicious guest device could send a virtual interrupt guest IRQ with a larger 1024 index...

Information Disclosure

Oracle Java SE is vulnerable to information disclosure attacks. This is because the JGSS component of OpenJDK ignores the value of the javax.security.auth.useSubjectCredsOnly property when using HTTP/SPNEGO authentication and always uses global credentials. A local attacker could possibly use thi...

Denial Of Service (DoS)

Linux kernel is vulnerable denial of service DOS attacks. This occurs if an L2 guest was to throw an exception which is not handled by an L1 guest. Guest OS users could cause a system crash by declining to handle an exception thrown by an L2 guest...

Buffer Overflow

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. T...

Denial Of Service (DoS) Through Memory Corruption

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. T...

Denial Of Service (DoS)

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. T...

Arbitrary Code Execution

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. T...

Denial Of Service (DoS)

Linux kernel is vulnerable to denial of serviceDoS attacks. A race condition flaw occurs in the ioctlsendfib function in the Linux kernel's aacraid implementation. This allows a local user to cause out-of-bound access and crash the system by changing a certain size value...

Denial Of Service (DoS)

Linux kernel is vulnerable to denial of service attacks. An attacker can cause a crash by triggering the use of GRO path for packets with tunnel stacking...

Buffer Overflow

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

Denial Of Service (DoS)

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. A flaw was found in the way the PHP module for the Apache httpd web server handled pipelined requests. A remote attacker could use this flaw to trigger the execution of a PHP script in a deinitialized interprete...

Cross-Site Scripting (XSS)

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The php54 packages provide a recent stable release of PHP with the PEAR 1.9.4, APC 3.1.15, and memcache 3.0.8 PECL extensions, and a number of additional utilities. The php54 packages have been upgraded to...

Privilege Escalation

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The php55 packages provide a recent stable release of PHP with the PEAR 1.9.4, memcache 3.0.8, and mongo 1.4.5 PECL extensions, and a number of additional utilities. The php55 packages have been upgraded to...

Authentication Bypass

openssh is vulnerable to authentication bypass. The OpenSSH client did not correctly handle failures to generate authentication cookies for untrusted X11 forwarding. A malicious or compromised remote X application could possibly use this flaw to establish a trusted connection to the local X serve...

Denial Of Service (DoS)

CUPS provides a portable printing layer for Linux, UNIX, and similar operating systems. A string reference count bug was found in cupsd, causing premature freeing of string objects. An attacker can submit a malicious print job that exploits this flaw to dismantle ACLs protecting privileged...

Denial Of Service (DoS)

squid is vulnerable to denial of service DoS. The vulnerability exists in the HttpHdrRange.cc where range headers with unidentifiable byte-range values could cause DoS...

Authorization Bypass

jenkins is vulnerable to authorization bypass. The vulnerability exists as remotely authenticated users with Job/CONFIGURE permission can bypass intended restrictions to create or destroy arbitrary jobs...

Carriage Return And Line Feed (CRLF) Injection

Red Hat OpenShift Enterprise is a cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud deployments. Refer to the Red Hat OpenShift Enterprise 1.1 Release Notes for information about the changes in this release. The Release Notes will be available shortly fr...

Denial Of Service (DoS)

The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues: A heap-based buffer overflow flaw was found in the Linux kernel's iSCSI target subsystem. A remote attacker could use a specially-crafted iSCSI request to caus...

Cross Site Scripting (XSS)

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

Remote Code Execution (RCE)

kernel is vulnerable to remote code execution RCE attacks. The vulnerability exists as the Linux kernel version 3.3-rc1 and later is affected by a vulnerability lies in the processing of incoming L2CAP commands - ConfigRequest, and ConfigResponse messages. This info leak is a result of...

Information Disclosure

java-1.7.0-openjdk is vulnerable to information disclosure attacks. The vulnerability exists as a vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131...

Padding Oracle Attack

httpd is vulnerable to padding oracle attack. It was discovered that the modsessioncrypto module of httpd did not use any mechanisms to verify integrity of the encrypted session data stored in the user's browser. A remote attacker could use this flaw to decrypt and modify session data using a...

Denial Of Service (DoS)

ntp is vulnerable to denial of service. It was discovered that ntpd as a client did not correctly check timestamps in Kiss-of-Death packets. A remote attacker could use this flaw to send a crafted Kiss-of-Death packet to an ntpd client that would increase the client's polling interval value, and...

Buffer Overflow

php is vulnerable to denial of service DoS attacks. The vulnerability exists as an integer overflow in the objectcustom function in ext/standard/varunserializer.c in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 allows remote attackers to cause a denial of service application cra...

Denial Of Service (DoS)

bind is vulnerable to denial of service DoS attacks. The vulnerability exists as ISC BIND 9.x before 9.7.6-P1, 9.8.x before 9.8.3-P1, 9.9.x before 9.9.1-P1, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P1 does not properly handle resource records with a zero-length RDATA section, which allows remote...

Database-query Authentication Bypass

actionpack/lib/actiondispatch/http/request.rb in Ruby on Rails before 3.0.13, 3.1.x before 3.1.5, and 3.2.x before 3.2.4 does not properly consider differences in parameter handling between the Active Record component and the Rack interface, which allows remote attackers to bypass intended...

Remote Code Execution (RCE)

jackson-databind is vulnerable to remote code execution. The application does not block the blaze-ds-opt and blaze-ds-core classes from polymorphic deserialization, which would allow a remote attacker to leverage this vulnerability to execute arbitrary code. This vulnerability is due to an...

Timing Attack

openssl is vulnerable to Timing Attack. An attacker with access to mount a local timing attack during the ECDSA signature generation is able to exploit the vulnerability in the ECC scalar mmultiplication to recover the private key...

HTTP Request Smuggling

jetty-http is vulnerable to HTTP request smuggling attacks. The HTTP parser accepts request headers when the HTTP/0.9 protocol specifically has none, allowing a malicious user to conduct HTTP request smuggling attacks...

Cross-site Scripting (XSS)

bootstrap is vulnerable to cross-site scripting XSS attacks. The library does not properly sanitize the data-container variable in tooltip.js, allowing a malicious user to inject and execute arbitrary Javascript...

Directory Traversal

wildfly-undertow is vulnerable to directory traversal attacks. The application does not handle pathing properly, allowing a malicious user to pass a URL to gain access to sensitive information on the system...

Information Disclosure

tomcat-catalina is vulnerable to information disclosure. When a VirtualDirContext is being used, a malicious user can make a request to the application and view the source code of JSP files that exist in that directory and bypass security constraints...

Remote Code Execution (RCE)

PHPMailer is vulnerable to remote code execution RCE attacks. A malicious user can inject and execute arbitrary code by passing extra parameters to the mail command. This is due to the improper interaction with the library's escapeshellarg function and internal escaping function performed in PHP...

Denial Of Service (DoS) Via Infinite Loop

tomcat-coyote is vulnerable to denial of service DoS attacks. The vulnerability is a result of backporting a fix for CVE-2016-6816 but not backporting the fix for the Tomcat bug 57544 which fails to handle an exceptional condition check for pos while processing HTTPS requests in the Apache Tomcat...