Man-in-the-Middle (MitM)

curl is vulnerable to man-in-the-middle attacks. The vulnerability exists due to the lack of message verification in krb5, allowing an attacker to inject data to the client...

Denial Of Service (DoS)

MariaDB is vulnerable to denial of service. The vulnerability exists due to a deadlock indsxbstream.cc, crashing the system when an error occurs streamctxt-destfile == NULL while executing the method xbstreamopen...

Authentication Bypass

Linux kernel is vulnerable to authentication bypass. The vulnerability exists because the users have access to some less privileged process that are controlled by cgroups and have higher privileged parent process which allows an attacker to escalate their privileges and crash the system...

Unchecked Return Value

ntfs-3g is vulnerable to unchecked return value. The vulnerability exists due to an invalid return code in fusekernmount enables intercepting of libfuse-lite protocol traffic between NTFS-3G and the kernel in NTFS-3G when using libfuse-lite...

Denial Of Service (DoS)

.NET and Visual Studio are vulnerable to denial of service. The vulnerability exists due to a flaw in dotnet allowing an attacker to crash the system by applying MaxResponseHeadersLength limit for trailing headers to address a denial of service via excess memory allocations through the HttpClient...

Improper Access Control

github.com/awake1t/linglong is vulnerable to access control bypass. The vulnerability exists in the jwt.go due to the hard coded jwt token which allows an attacker to craft a malicious cookie and gain access to the system...

Information Disclosure

moodle is vulnerable to information disclosure. The vulnerability exists due to the $hiddenfields not properly set in user/profile.php and in user/view.php allowing the description user field to be seen even when it is set to hidden...

XML External Entity (XXE) Injection

NiFi Standard Processors is vulnerable to xml external entity injection. The vulnerability exists in multiple components because EvaluateXPath, EvaluateXQuery and ValidateXml processors do not restrict XXE references when configured with default values which allows an attacker to send malicious X...

Cross-Site Scripting (XSS)

Liferay Layout SEO Web is vulnerable to stored cross-site scripting. The vulnerability exists in getOpenGraphTag function in OpenGraphTopHeadDynamicInclude.java due to lack of html escaping which allows an attacker to inject and execute arbitrary javascript...

Remote Code Execution (RCE)

jenkins-2-plugins is vulnerable to remote code execution. The vulnerability exists due to a sandbox bypass allowing attackers to execute arbitrary code on the system...

Denial Of Service (DoS)

Red Hat Product Security has rated this issue as having Moderate security impact and the issue is not currently planned to be addressed in future updates for Red Hat Enterprise Linux 6 and 7, hence, marked as Out-of-Support-Scope. For additional information, refer to the Issue Severity...

Privilege Escalation

kernel is vulnerable to privilege escalation. The vulnerability exists due to the lack of sanitization of access to the i915 Intel GPU...

Denial Of Service (DoS)

firefox is vulnerable to denial of service. The vulnerability exists due to a lack of sanitization allowing an attacker to crash the system...

Remote Code Execution (RCE)

codeigniter4/framework is vulnerable to remote code execution. The vulnerability exists due to the improper input validation in the library, allowing an attacker to execute CLI routes via an HTTP request...

Use After Free

chromium is vulnerable to use after free. The vulnerability exists in Optimization Guide which allows an attacker to cause a memory corruption...

Denial Of Service (DoS)

microsoft.aspnetcore.http.features is vulnerable to denial of service. The vulnerability exists in NET 6.0 and .NET 5.0 when kestrel web server processes certain HTTP requests causing an application crash...

Cross-site Scripting (XSS)

WordPress is vulnerable to cross site scripting. The vulnerability exists due to an Inappropriate implementation allowed a remote privileged authenticated users to abuse content security policy...

Authorization Bypass

Google Chrome is vulnerable to authorization bypass. This is because the insufficient policy enforcement in background fetch in prior to 96.0.4664.45 allows a remote attacker to bypass same origin policy via a crafted HTML page...

Cross-site Scripting (XSS)

mermaid is vulnerable to cross-site scripting. The vulnerability exists in the sanitizeUrl function in the svgDraw.js, allowing an attacker to inject and execute malicious javascript through the malicious diagrams...

Denial Of Service (DoS)

linux-oracle:hirsute is vulnerable to denial of service. A memory leak in the ccprunaesgcmcmdfunction in drivers/crypto/ccp/ccp-ops.c in the Linux kernel allows attackers to cause an application crash...

Denial Of Service (DoS)

thunderbird and firefox are vulnerable to denial of service. The vulnerability exist due to an incorrect type conversion of sizes from 64bit to 32bit integers which allows an attacker to corrupt memory...

Information Disclosure

kernel is vulnerable to information disclosure. The vulnerability exists due to Insufficient control flow in certain data structures...

Denial Of Service (DoS)

linux kernal ipc is vulnerable to denial of service. The vulnerability exists due to a memory overflow in the memcg subsystem which allows a attacker to cause an application crash...

Cross-Site Scripting (XSS)

OWASP Java HTML Sanitizer is vulnerable to cross-site scripting. The vulnerability exists due to a lack of proper enforcement of policies which allows an attacker to inject maliciously crafted code via the SELECT, STYLE, and OPTION tag...

HTTP Request Smuggling (HRS)

nodejs is vulnerable to HTTP Request Smuggling HRS. The vulnerability exists due to an error related to a space in headers which allows an attacker to poison the web cache, bypassing the web application...

Arbitrary Code Execution

crossbeam-deque is vulnerable to remote code execution. The vulnerability exists due to a race condition in the "Stealer::steal", "Stealer::stealbatch" and "Stealer::stealbatchandpop" functions. A remote attacker can exploit the race and gain unauthorized access to sensitive information...

Denial Of Service (DoS)

qemu:sid is vulnerable to denial of service. The vulnerability exists because the numbuffers being set after the virtqueue elem has been unmapped, allowing an attacker to crash the application through the use after free...

Man-In-The-Middle Attack (MitM)

curl is vulnerable to Man in the middle attack. The vulnerability exists due to a lack of clearing of previous cached responses, treating them as valid and authenticated...

Denial Of Service(DoS)

netty-codec is vulnerable to denial of service. The vulnerability exists due to lack of allocation size restriction on the decompressed output data in the Snappy frame decoder function, leading to an OOME...

Arbitrary Code Execution

chakracore is vulnerable to arbitrary code execution. A memory corruption vulnerability allows an attacker to execute arbitrary code on the host OS. This CVE ID is different from CVE-2020-17054...

Information Disclosure

jetty-http is vulnerable to information disclosure. Insecure parsing of encoded characters allow an attacker to bypass security constraints and potentially access private files within the WEB-INF directory...

Privilege Escalation

kernel is vulnerable to privilege escalation. A refcount leak in llcpsockconnect results in a use-after-free bug which can lead to privilege escalation...

Directory Traversal

django is vulnerable to Directory Traversal. Lack of path sanitation allows checking of existence of arbitrary files via the use of admindocs TemplateDetailView view by any staff members. Moreover, the default admindocs templates allows developers to customize in such a way that reveals the conte...

Denial Of Service (DoS)

github.com/go-gitea/gitea and x/net/html of github.com/golang/go are vulnerable to Denial Of Service DoS. An infinite loop is caused when an attacker sends a malicious input to ParseFragment...

Billion Laugh Attack

libxml2:sid is vulnerable to billion laugh attack via parameter entities expansion and following the line of the billion laugh attack...

Information Disclosure

postgresql is vulnerable to information disclosure. An attacker can read arbitrary bytes of server memory using the UPDATE ... RETURNING statements on a purpose-crafted partitioned table...

Information Disclosure

postgresql is vulnerable to information disclosure. The vulnerability exists through the use of an INSERT ... ON CONFLICT ... DO UPDATE command on a purpose-crafted table, allowing arbitrary bytes of server memory to be read. The CREATE and TEMPORARY privileges on all databases and the CREATE...

Denial Of Service (DoS)

bind is vulnerable to denial of service. The vulnerability exists due to a buffer over-read...

Authorization Bypass

java is vulnerable to Authorization Bypass. A difficult to exploit vulnerability allows unauthenticated attacker with network access to affect intgrity of the system. The attack requires human interaction from a person other than the attacker...

Padding Oracle Attack

jose is vulnerable to padding oracle attack. A possible observable difference in timing when padding error occurs while decrypting the ciphertext allows an attacker to obtain the plaintext data without knowledge of the decryption key...

Denial Of Service (DoS)

etcd is vulnerable to denial of service. A panic occurs in decodeRecord method when a large slice is processed due to a lack of validation on the size of record...

Denial Of Service (DoS)

github.com/golang/go is vulnerable to denial of service. An infinite loop occurs when using xml.NewTokenDecoder with a custom TokenReader...

Privilege Escalation

grub2 is vulnerable to privilege escalation. The vulnerability exists as variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with ...

Denial Of Service(DoS)

Jetty is vulnerable to denial of service DoS. The use of multiple Accept headers with a large number of quality causes a high CPU usage, resulting in long durations of CPU processing and crashing of the application...

Information Disclosure

postgresql-13 is vulnerable to information disclosure. An attacker may be able to acquire denied-column values from an error message...

Privilege Escalation

kernel is vulnerable to privilege escalation. An attacker may exploit a use-after-free in the ALSA driver by supplying a malicious USB Sound device with zero interfaces that is mishandled in usbaudioprobe in sound/usb/card.c...

Remote Code Execution

Apache Druid is vulnerable to remote code execution. An attacker is able to execute arbitrary JavaScript code that is embedded in certain types of requests. This functionality is however disabled by default...

Buffer Overflow

github.com/python/cpython is vulnerable to buffer overflow. The vulnerability exists because of the use sprintf which does not sanitize the input and its boundaries...

Sandbox Restrictions Bypass

chromium is vulnerable to sandbox restrictions bypass. A use-after-free in payments allows a remote attacker who has compromised the renderer process to perform a sandbox escape via a malicious HTML page...

Arbitrary File Deletion

xstream is vulnerable to arbitrary file deletion. XStream's default blacklist of the Security Framework does not blacklist the internal JAX-WS type ReadAllStream.FileStream and therefore, allows the deserialization of XML containing those untrusted type, subsequently leading to an arbitrary file...