Information Exposure

Tinyproxy is vulnerable to information exposure.The vulnerability exists in processrequest function due to the lack of processing of the HTTP request lines which allows attackers to exploit this vulnerability to access sensitive information at system runtime...

Denial Of Service (DoS)

snakeyaml is vulnerable to denial of service. The vulnerability exists in the Composer function of Composer.java as it does not properly restrict the nested depth limitation for collections which allows an attacker to crash the application through the stack overflow by providing malicious yaml...

Denial Of Service (DoS)

snakeyaml is vulnerable to Denial Of Service DoS. The vulnerability exists in the Composer function of Composer.java as it does not properly restrict the nested depth limitation for collections, allowing an attacker to crash the application through the stack overflow by providing malicious yaml...

Out-of-Bounds Read

vim is vulnerable to out-of-bound reads. Vulnerability exists in the msgouttransspecial function in message.c to cause an out-of-bounds read that can crash the application...

Cross-site Scripting (XSS)

keycloak-core is vulnerable to cross-site scripting. An attacker can inject and execute malicious javascript through the SAML protocol mapper when the UPLOADSCRIPTS feature is disabled...

Remote Code Execution (RCE)

activerecord is vulnerable to Remote Code Execution RCE. Active Record uses YAML.unsafeload to convert the YAML data in to Ruby objects allowing an attacker who can manipulate data in the database to execute malicious code remotely...

HTTP Request Smuggling

llhttp is vulnerable to HTTP request smuggling. The vulnerability exists because the http.js does not properly handle the CRLF sequence, allowing an attacker to smuggle HTTP requests by submitting LF characters without CR...

XML External Entity (XXE) Injection

WSO2 Identity Application Management Component is vulnerable to XML external entity attacks. The vulnerability exists in unmarshalSP function in ApplicationManagementServiceImpl.java because the SP file content is not parsed securely during unmarshalling which allows an attacker to gain access to...

Server-side Request Forgery (SSRF)

github.com/hoppscotch/proxyscotch is vulnerable to server-side request forgery. When the interceptor mode is set to proxy, An attacker can make HTTP requests to untrusted URLs through the main function of server.go and gain access to sensitive information...

Information Disclosure

xen is vulnerable to Information Disclosure. The vulnerability exists due to a shared branch history in the Branch History Buffer BHB allowing an attacker to influence mispredicted branches...

Privilege Escalation

virtualbox is vulnerable privilege escalation. The vulnerability exists due to a lack of validation of authentication...

Arbitrary File Upload

express-fileupload is vulnerable to arbitrary file upload. It does not restrict an attacker from uploading a malicious PHP file to execute arbitrary code...

Authorization Bypass

url-parse is vulnerable to authorization bypass. The use of User-Controlled Key allows an attacker to transform original invalid URL into a valid one with url.pathname as host...

Denial Of Service (DoS)

webkit2gtk:edge is vulnerable denial of service...

Information Disclosure

kernel is vulnerable to information disclosure. The vulnerability exists due to the XFS filesystem allowing for size increase of files with unaligned size allowing an attacker to leak data on the XFS filesystem...

Information Disclosure

node-fetch is vulnerable to information disclosure. The vulnerability exists due to the cookie header being leaked to third party site which allows an attacker to gain access to sensitive information...

Denial Of Service (DoS)

libexpat.so is vulnerable to denial of service. The vulnerability exists due to the integer overflow in the mgroupSize of xmlparse.c, allowing an attacker to cause an application crash...

Remote Code Execution (RCE)

thunderbird and firefox are vulnerable to remote code execution. The vulnerability exists due to a lack of sanitization of the sandbox's script allowing embedding of additional content...

Remote Code Execution (RCE)

nss is vulnerable to remote code execution. The vulnerability exists due to a flaw in the way NSS verifies certificates allowing an attacker to pose as an SSL/TLS server to trigger this issue in a client application compiled with NSS when it tries to initiate an SSL/TLS connection...

Information Disclosure

chromium is vulnerable to information disclosure. The vulnerability exists due to the side-channel information leakage in DevTools...

Denial Of Service (DoS)

ntfs-3g:sid is vulnerable to denial of service. A crafted NTFS image can cause a heap-based buffer overflow in ntfsinodelookupbyname in NTFS-3G 2021.8.22...

Remote Code Execution (RCE)

xstream is vulnerable to remote code execution. The vulnerability exists due to the usage of an insecure default blacklist which does not cover all the excluded XStream security framework...

Remote Code Execution (RCE)

xstream is vulnerable to remote code execution. The vulnerability exists due to the usage of an insecure default blacklist which does not cover all the excluded XStream security framework...

Remote Code Execution (RCE)

virtualbox:sid is vulnerable to remote code execution.Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox...

Insecure TLS Configuration

maven uses insecure TLS configurations. Non-SSL repository references are allowed by default and would potentially allow for man-in-the-middle attacks...

Insecure Session ID

org.eclipse.jetty, jetty-server has Insecure Session ID. The vulnerability exists due the SessionListenersessionDestroyed not validating the session ID if an exception is thrown...

Denial Of Service (DoS)

linux is vulnerable to denial of service. An issue was discovered in fs/fuse/fusei.h in the Linux kernel. A "stall on CPU" can occur because a retry loop continually finds the same bad inode, aka CID-775c5033a0d1...

Privilege Escalation

linux is vulnerable to privilege escalation. The vulnerability exists due to a refcount leak in llcpsockbind causing use-after-free...

Denial Of Service (DoS)

go is vulnerable to denial of service. The vulnerability exists due to the SetString and UnmarshalText methods of math/big.Rat may cause the system to hang if it is passed with a very large exponent input...

Denial Of Service (DoS)

linux kernel is vulnerable to denial of service. The vulnerability exists due to a memory leak when a webcam device exists...

Access Restriction Bypass

Google Chrome is vulnerable to access restriction bypass. Insufficient policy enforcement in extensions in Google Chrome allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension...

Man-in-the-middle (MitM)

apache-maven is vulnerable to Man-in-the-middle MitM. The vulnerability exists because it allows downloading code from external repositories via HTTP by default, resulting in a potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to preten...

Spoofable Secure Lock Icon

firefox:sid is using spoofable Secure Lock icon. Through complicated navigations with new windows, an HTTP page could have inherited a secure lock icon from an HTTPS page...

Remote Code Execution

xstream is vulnerable to remote code execution. A remote attacker with sufficient rights is able to execute arbitrary code by manipulating the processed input stream...

Denial Of Service (DoS)

pillow is vulnerable to denial of service DoS. The vulnerability exists through a heap-based buffer overflow during the decoding of a malicious YCbCr file in RGBA mode. This CVE is due to an incomplete fix for CVE-2020-35654...

Denial Of Service (DoS)

openssl is vulnerable to denial of service. Calls to EVPCipherUpdate, EVPEncryptUpdate and EVPDecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from t...

Denial Of Service (DoS)

openssl is vulnerable to denial of service DoS. The vulnerability exists through a NULL pointer dereference issue when both GENERALNAMEs contain an EDIPARTYNAME...

Arbitrary Code Execution

Bazaar is vulnerable to Arbitrary Code Execution. An attacker is able to execute arbitrary commands via a bzr+ssh URL with an initial dash character in the hostname...

Man-in-the-Middle (MitM)

linux kernel is vulnerable to man-in-the-middle MitM attack. An insecure and unencrypted channel between two Geneve endpoints is used when IPsec is configured to encrypt traffic...

Denial Of Service (DoS)

qemu is vulnerable to denial of service DoS. The vulnerability exists through a reachable assertion issue was found in the USB EHCI emulation code of QEMU, allows an privileged user to send bogus USB requests and crash the QEMU process on the host...

Remote Code Execution (RCE)

drupal is vulnerable to remote code execution RCE. The vulnerability exists as it does not properly sanitize certain filenames on uploaded files, which can lead to files being interpreted as the incorrect extension and served as the wrong MIME type or executed as PHP for certain hosting...

Privilege Escalation

moodle/moodle is vulnerable to privilege escalation. The vulnerability exists when an enrollment method that did not exist, or was disabled, would be enabled if it was deleted, allowing unintended users access to the course...

Arbitrary Code Execution

glibc is vulnerable to arbitrary code execution. A use-after-free in the glob function when expanding user allows an attacker to execute arbitrary code on the host OS...

Denial Of Service (DoS)

kernel is vulnerable to Denial Of Service DoS. The vulnerability exists through a memory leak in the ipmibmcregister function in drivers/char/ipmi/ipmimsghandler.c allowing an attacker to cause a denial of service memory consumption by triggering idasimpleget failure...

Arbitrary Code Execution

pyyaml is vulnerable to arbitrary code execution. The .yaml files that are parsed by FullLoader uses the unsafe yaml.load by default. This vulnerability exists due to a bypass of the fix for CVE-2020-1747...

SQL Injection

phpmyadmin/phpmyadmin is vulnerable to SQL injection. An attacker is able to inject and execute arbitrary SQL statements on the database via the search feature, due to inadequate validation...

Privilege Escalation

webkitgtk4 is vulnerable to privilege escalation. The vulnerability exists through the lack of restrictions that allows a logic issue when processing file URLs...

Cross-site Scripting (XSS)

WebKitGTK+ is vulnerable to cross site scripting. Processing maliciously crafted web content may lead to universal cross site scripting...

Arbitrary Code Execution

WebKitGTK+ is vulnerable to arbitrary code execution. Processing maliciously crafted web content may lead to arbitrary code execution...

Arbitrry Code Execution

BusyBox is vulnerable to arbitrary code execution. A buffer overflow vulnerability in Busybox wget allows an attacker to execute arbitrary code on the host OS...