38333 matches found
Unauthorised Data Deletion
webkit2gtk is vulnerable to unauthorised data deletion. A user may be unable to fully delete browsing history. “Clear History and Website Data” did not clear the history in some circumstances...
Arbitrary Code Execution
chromium is vulnerable to arbitrary code execution. A use-after-free in Blink allows a remote attacker to exploit a heap corruption via a malicious HTML page...
Denial Of Service (DoS)
openldap is vulnerable to denial of service. An assertion in certificateListValidate function in servers/slapd/schemainit.c allows an attacker to crash the application with malicious input...
HTTP Request Smuggling
nginx is vulnerable to HTTP request smuggling. A remote attacker is able to smuggle HTTP requests via the ngx.location.capture API...
Denial Of Service (DoS)
firefox is vulnerable to denial of service DoS. The vulnerability exists when the Compact method was called on an nsTArray, allowing the array to be reallocated without updating other pointers...
Denial Of Service (DoS)
kernel is vulnerable denial of service DoS. It mishandles invalid descriptors in drivers/media/usb/gspca/xirlinkcit.c...
Use-after-free
kernel is vulnerable to use-after-free. Unprivileged users are able to create RAW sockets in AFIEEE802154 network protocol...
Heap Buffer Overflow
FreeType is vulnerable to heap-based buffer overflow due to integer truncation in LoadSBitPng...
Remote Code Execution (RCE)
github.com/gogs/gogs is vulnerable to remote code execution RCE. The vulnerability exists through git hooks which are enabled by default...
Denial Of Service (DoS)
kernel-rt is vulnerable to denial of service. The vulnerability exists because of an incorrect way of handling connection tracking functionality on ipv6 port 1720, allowing an attacker to cause an application crash through the out-of-bounds memory write...
Arbitrary Code Execution
SQLite is vulnerable to arbitrary code execution. A stack-based buffer overflow and integer overflow in the sqlite3VXPrintf function in printf.c allows an attacker to execute arbitrary code on the host OS due to improperly handling of precision and width values during floating-point conversions...
Arbitrary Code Execution
gdb is vulnerable to arbitrary code execution. The vulnerability exists through a stack buffer overflow when printing bad bytes in Intel Hex objects...
Denial Of Service (DoS)
linux is vulnerable to denial of service DoS. The vulnerability exists in through a malicious USB device in the drivers/usb/class/cdc-acm.c driver...
Authentication Bypass
shiro-web is vulnerable to authentication bypass. An ArrayIndexOutOfBoundsException in Base64decode causes an invalid session cookie to be parsed as valid...
Denial Of Service (DoS)
clamav is vulnerable to denial of service DoS. The vulnerability exists through a null pointer dereference. An attacker could exploit this vulnerability by sending a crafted EGG file to an affected device...
Insecure Direct Object Reference
telerik.web.ui is vulnerable to insecure direct object reference. User input is not validated and used directly by RadAsyncUpload without modification or validation. This can potentially result in arbitrary file uploads and executino of arbitrary code...
Remote Code Execution
jackson-databind is vulnerable to remote code execution. It was possible to use the org.jsecurity gadget type as a serialization gadget through polymorphic typing and execute arbitrary code on the system...
Denial Of Service (DoS)
Mozilla Firefox is vulnerable to denial of service attacks. It happens due to memory safety bugs fixed in Firefox...
Denial Of Service (DoS)
php is vulnerable to denial of service DoS. The vulnerability exists as an insufficient input validation flaw, leading to a buffer over-read, was found in the PHP exif extension. A specially-crafted image file could cause the PHP interpreter to crash when a PHP script tries to extract Exchangeabl...
Remote Code Execution (RCE)
Perl is vulnerable to Remote Code Execution RCE. The Safe module did not properly restrict the code of implicitly called methods such as DESTROY and AUTOLOAD on implicitly blessed objects returned as a result of unsafe code evaluation. These methods could have been executed unrestricted by Safe...
Information Disclosure
xen is vulnerable to privilege escalation. A guest operating system could issue a block device request and read or write arbitrary memory locations, which could lead to privilege escalation...
Arbitrary Code Execution
seamonkey is vulnerable to arbitrary code execution. The vulnerability exists as a web page containing malicious content could cause SeaMonkey to crash or, potentially, execute arbitrary code as the user running SeaMonkey...
Arbitrary Code Execution
xorg-x11-server is vulnerable to arbitrary code execution. The vulnerability exists as two integer overflow flaws were found in the X.Org server's EVI and MIT-SHM modules. A malicious authorized client could exploit these issues to cause a denial of service crash, or potentially execute arbitrary...
HTTP Request Smuggling
tomcat-coyote is vulnerable to HTTP request smuggling. The vulnerability exists as the HTTP headers are improper parsed in Http11Processor...
Remote Code Execution (RCE)
pyyaml is vulnerable to remote code execution RCE attacks. The application uses the unsafe function yaml.load, allowing a malicious user to inject and execute arbitrary code by passing a yaml file. This vulnerability exists due to an incomplete fix for CVE-2017-18342...
HTTP Request Smuggling
github.com/kubernetes/ingress-nginx is vulnerable to HTTP request smuggling. The library does not use a named location for authSignURL, allowing a malicious user to read unauthorized web pages in environments where NGINX is being fronted by a load balancer...
Denial Of Service (DoS)
kernel is vulnerable to denial of service DoS. The vulnerability exists through an out-of-bound oob memory read in hsoprobe in drivers/net/usb/hso.c...
XML External Entity (XXE)
Apache Poi is vulnerable to XML external entity XXE. During the use of XSSFExportToXml tool to convert user-provided Microsoft Excel documents, it is possible for an attacker to parse a malicious Microsoft Excel document containing a reference to an external entity and perform requests on behalf ...
Privilege Escalation
Mozilla Firefox is vulnerable to privilege escalation. It allows an unintended access to a privileged JSONView object...
Denial Of Service (DoS)
The kernel is vulnerable to denial of service. The attack exists because it causes heap-based buffer overflow in the function mwifiexuapparsetailies in drivers/net/wireless/marvell/mwifiex/ie.c, leading to a memory corruption and other consequences...
Cross Origin Access
firefox is vulnerable to cross-origin access. The vulnerability exists due to not the adhering to the W3C's Navigation-Timing Level 2 which allows an attacker to do potential cross-origin information exposure of history via timing side-channel attacks...
Buffer Under-read
PHP is vulnerable to buffer under-read. The attack is possible in phpstreamurlwraphttpex in httpfopenwrapper.c when parsing HTTP response, subsequently copying a large string...
Denial Of Service (DoS)
kernel is vulnerable to denial of service. A NULL pointer dereference due to an anomalized NFS message sequence allows an attacker to cause a panic in the system and deny access to the NFS server...
Authorization Bypass
openjdk is vulnerable to authorization bypass. An input validation flaw was found in the URL class implementation in the Networking component of OpenJDK which allows a remote attacker to perform unauthorized read, update, insert or delete actions...
Denial Of Service
Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for ...
Denial Of Service (DoS)
PHP is vulnerable to denial of serviceDoS attacks. An attacker could exploit a flaw in the PHAR archive handler by supplying a malicious archive file which may leads to crash the PHP interpreter or potentially disclose information due to a buffer over-read in the pharparsepharfile function in...
Information Disclosure
Oracle Java SE is vulnerable to information disclosure attacks. This is because the JGSS component of OpenJDK ignores the value of the javax.security.auth.useSubjectCredsOnly property when using HTTP/SPNEGO authentication and always uses global credentials. A local attacker could possibly use thi...
Buffer Overflow
PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. T...
XML External Entity (XXE)
PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. T...
Buffer Overflow
Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...
Denial Of Service (DoS)
PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. A flaw was found in the way the PHP module for the Apache httpd web server handled pipelined requests. A remote attacker could use this flaw to trigger the execution of a PHP script in a deinitialized interprete...
Cross-Site Scripting (XSS)
PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The php54 packages provide a recent stable release of PHP with the PEAR 1.9.4, APC 3.1.15, and memcache 3.0.8 PECL extensions, and a number of additional utilities. The php54 packages have been upgraded to...
Privilege Escalation
PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The php55 packages provide a recent stable release of PHP with the PEAR 1.9.4, memcache 3.0.8, and mongo 1.4.5 PECL extensions, and a number of additional utilities. The php55 packages have been upgraded to...
Information Disclosure
IBM Java SE is vulnerable to information disclosure. The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the...
Authentication Bypass
openssh is vulnerable to authentication bypass. The OpenSSH client did not correctly handle failures to generate authentication cookies for untrusted X11 forwarding. A malicious or compromised remote X application could possibly use this flaw to establish a trusted connection to the local X serve...
Arbitrary Code Execution
PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Multiple flaws were discovered in the way PHP performed object unserialization. Specially crafted input processed by the unserialize function could cause a PHP application to crash or, possibly, execute arbitrar...
Out-Of-Bounds Read
Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...
Cross-site Scripting (XSS)
jenkins is vulnerable to cross-site scripting XSS. A remote attacker is able to inject arbitrary Javascript into victim's browser to steal session tokens or perform unwanted actions on behalf of the user...
Denial Of Service (DoS)
squid is vulnerable to denial of service DoS. The vulnerability exists in the HttpHdrRange.cc where range headers with unidentifiable byte-range values could cause DoS...
Authorization Bypass
jenkins is vulnerable to authorization bypass. The vulnerability exists as remotely authenticated users with Job/CONFIGURE permission can bypass intended restrictions to create or destroy arbitrary jobs...