Denial Of Service (DoS)

Envoy is vulnerable to denial of service. The vulnerability exists due to a segmentation fault in the GrpcHealthCheckerImpl allowing an attacker to crash the system by controlling an upstream host and also controlling the service discovery of that host via DNS, the EDS API, etc. and forcing the...

Remote Code Execution (RCE)

grub2 is vulnerable to remote code execution. The vulnerability exists due to a use-after-free vulnerability in grubcmdchainloader function which allows an attacker to gain access to restricted data...

Denial Of Service (DoS)

firefox is vulnerable to denial of service. The vulnerability exists due to incorrect assembly generation on arm64 leading to a register allocation problem which causes an application crash...

Privilege Escalation

Slurm is vulnerable to Privilege Escalation. The vulnerability exists due to an Incorrect Access Control allowing an attacker to bypass the authorization to gain higher access...

Authentication Bypass

ngxhttpluamodule is vulnerable to authentication bypass. The vulnerability exists because it doesn't properly restrict the user inputs which allows an attacker to insert unsafe characters in an argument when using the API to mutate a URI, or a request or response header...

Cross-site Scripting (XSS)

privatebin is vulnerable to cross-site scripting. No sanitization in handling Attachment before sending for preview in SVG in AttachmentViewer allows malicious script execution in instance context...

Remote Code Execution

Gzip is vulnerable to remote code execution. Insufficient validations when processing filenames with two or more newlines allow remote attackers to force zgrep or xzgrep to write arbitrary files on the system...

HTTP Request Smuggling (HRS)

twisted is vulnerable to http request smuggling. The vulnerability exists in twisted.web due to inconsistent interpretation of http requests which allows a remote attacker to conduct HTTP request smuggling attacks via a crafted request...

Denial Of Service (DoS)

.NET and Visual Studio are vulnerable to denial of service. The vulnerability exists due to a lack of sanitization allowing an attacker to crash the system...

Spoofing Attack

swagger-ui-react is vulnerable to spoofing attack. The vulnerability allows remote attackers to acquire remote OpenAPI definitions by persuading the victim to open a specifically crafted URL...

Information Disclosure

hashicorp-vault-plugin is vulnerable to information disclosure. Remote unauthenticated attackers are able to gain access to sensitive information by controlling agent processes to obtain Vault secrets via an attacker-specified path and key...

Buffer Overflow

Slurm is vulnerable to buffer overflow. The vulnerability exists in the PMIx MPI plugin which causes a buffer overflow which leads to an application crash...

Information Disclosure

microsoft.aspnetcore.authentication.jwtbearer is vulnerable to information disclosure. The vulnerability exists due to an insecure JWT token that is logged if it cannot be parsed...

Privilege Escalation

linux-gkeop is vulnerable to privilege escalation. The overlayfs implementation in the linux kernel did not properly validate with respect to user namespaces the setting of file capabilities on files in an underlying file system. Due to the combination of unprivileged user namespaces along with a...

Information Disclosure

jetty-servlets is vulnerable to information disclosure. Lack of proper handling of requests to the ConcatServlet with a doubly encoded path allows an attacker to access protected resources within the WEB-INF directory. For example, sending /concat?/%2557EB-INF/web.xml can retrieve the web.xml fil...

Arbitrary Values

go has arbitrary values. The vulnerability exists due to arbitrary values retrieved from DNS which is not sanitized before including in HTML...

Remote Code Execution (RCE)

gsoap is vulnerable to remote code execution. An attacker can send a malicious SOAP HTTP that can lead to a remote code execution...

Remote Code Execution (RCE)

chromium is vulnerable to remote code execution. The vulnerability exists due to an Out of bounds read in IPC. These vulnerabilities can be exploited if a user visits, or is redirected to, a specially crafted web page...

Arbitrary Code Execution

Linux kernel is vulnerable to arbitrary code execution. Due to a flaw in mwifiexcmd80211adhocstart in drivers/net/wireless/marvell/mwifiex/join.c in the Linux kernel, it allows remote attackers to execute arbitrary code via a long SSID value, aka CID-5c455c5ab332...

Heap Buffer Overflow

Google Chrome is vulnerable to heap buffer overflow in tab groups. It allows a remote attacker to potentially exploit heap corruption via a crafted HTML page...

Denial Of Service(DoS)

chromium:sid is vulnerable to a denial-of-service vulnerability. An attacker can use a malicious HTTP page to trigger this vulnerability...

Arbitrary Code Execution

facade/ignition is vulnerable to arbitrary code execution. The vulnerability exists through stream wrappers in files that do not end of .blade.php in MakeViewVariableOptionalSolution...

Denial Of Service (DoS)

libopenjpeg.so is vulnerable to denial of service. The vulnerability exists in opjdwtcalcexplicitstepsizes function of dwt.c due to buffer overflow which allows an attacker to crash the application via malicious input...

Unintended Write Access

An issue was discovered in splithugepmd in mm/hugememory.c in the Linux kernel before 5.7.5. The copy-on-write implementation can grant unintended write access because of a race condition in a THP mapcount check, aka CID-c444eb564fb1...

Denial Of Service (DoS)

linux kernel is vulnerable to denial of service. An infinite loop related to improper interaction between a resampler and edge triggering in ioapiclazyupdateeoi in arch/x86/kvm/ioapic.c results in an application crash...

Information Disclosure

firefox is vulnerable to information disclosure. The vulnerability exists due to the way software keyboards are handled by the Firefox. Some websites have a feature "Show Password" where clicking a button will change a password field into a textbook field, revealing the typed password.If and when...

Out Of Bound Reads (OOB)

kernel-rt is vulnerable to out-of-bound OOB reads. The vulnerability exists in the vcdoresize function in drivers/tty/vt/vt.c allowing an attacker to perform a UAF read...

Privilege Escalation

kernel is vulnerable to privilege escalation. A use-after-free flaw was found in the way the Linux kernel's filesystem subsystem handled a race condition in the cdevget of chardev.c function.This flaw allows a privileged local user to starve the resources, causing potentially escalating their...

Out-Of-Bounds Write

Linux kernel is vulnerable to an out-of-bounds write. Crafted keycode table in drivers/input/input.c enables the possibility of an attack...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. A null pointer dereference in drivers/scsi/qla2xxx/qlaos.c allows an attacker to crash the kernel...

Use-after-free

kernel is vulnerable to use-after-free vulnerability. It is possible due to a flaw in the function mdiobusregister in drivers/net/phy/mdiobus.c...

Authorization Bypass

kernel is vulnerable to authorization bypass. The vulnerability exists in net bluetooth through type confusion while processing AMP packets...

Arbitrary Code Execution

webkitgtk4 is vulnerable to arbitrary code execution. The vulnerabiltiy exists through memory errors...

Arbitrary Code Execution

webkitgtk4 is vulnerable to arbitrary code execution. The vulnerabiltiy exists through memory errors...

Arbitrary Code Execution

GraphicsMagick is vulnerable to arbitrary code execution. A heap-based buffer overflow in the "Display visual image directory" feature of the DescribeImage function in magick/describe.c file allows an attacker to execute arbitrary code on the host OS via a malicious MIFF format file with the...

Information Disclosure

busybox is vulnerable to information disclosure. An out of bounds read in the udhcp components allows a remote attacker to leak confidential information from the stack by sending malicious DHCP messages...

Arbitrary Code Execution

kernel is vulnerable to arbitrary code execution. A heap-based buffer overflow in the lbsibssjoinexisting function in drivers/net/wireless/marvell/libertas/cfg.c allows an attacker to execute arbitrary code on the host OS...

Denial Of Service (DoS)

github.com/golang/go is vulnerable to denial of service. An infinite read loop in ReadUvarint and ReadVarint allows an attacker to create a denial of service condition via malicious input...

Denial Of Service (DoS)

apache2 is vulnerable to denial of service DoS. The vulnerability exists when trace/debug was enabled for the HTTP/2 module and on certain traffic edge patterns, logging statements were made on the wrong connection, causing concurrent use of memory pools. Configuring the LogLevel of modhttp2 abov...

Dictionary Attacks

samba is vulnerable to dictionary attacks. The vulnerability exists in the way it handles a user password change or a new password for a samba user. The Samba Active Directory Domain Controller can be configured to use a custom script to check for password complexity. This configuration can fail ...

Denial Of Service (DoS)

samba is vulnerable to denial of service. Due to the way samba handles certain requests as an Active Directory Domain Controller LDAP server, an attacker is able to cause a stack overflow leading to an application crash...

Arbitrary Code Execution

webkit2gtk is vulnerable to arbitrary code execution. The vulnerability exists as there was a logic issue that did not adhere to restrictions...

Injection Vulnerabilities

chromium-browser is vulnerable to injection vulnerabilities. The vulnerability exists through an inappropriate implementation in WebRTC...

Arbitrary Code Execution

grub2 is vulnerable to arbitrary code execution. The vulnerability exists through a crafted grub.cfg file during boot process...

HTTP Header Injection

ceph is vulnerable to HTTP header injection. The vulnerability exists in radosgw through the CORS ExposeHeader tag...

Signature Verification Bypass

libfwupd.so is vulnerable to signature verification bypass. It does not validate the return value from the function gpgmeopverify when PGP signature is verified, causing a FuKeyringResult return with no timestamp and an empty authority that subsequently allows an installation of unsigned firmware...

Denial Of Service (DoS)

ghostscript is vulnerable to denial of service DoS. The vulnerability exists as the memgetbitsrectangle function in base/gdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted file...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. A use-after-free vulnerability in blkaddtrace in kernel/trace/blktrace.c allows an attacker to crash the system...

Insecure Password Reset Mechanism

wordpress uses an insecure password reset mechanism. A user's password reset link does not become invalidated upon a successful password change. This would allow an attacker to reset the user's password again if the password reset link was discovered...

Information Disclosure

kernel is vulnerable to information disclosure. The vulnerability exists as the I/O statistics from the taskstats subsystem could be read without any restrictions. A local, unprivileged user could use this flaw to gather confidential information, such as the length of a password used in a process...