Authorization Bypass

actionpack is vulnerable to authorization bypass. An attacker is be able to execute any migrations that are pending for a Rails app running in production mode...

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS.It is possible because of brcmfmac frame validation bypass...

Denial Of Service (DoS)

unbound is vulnerable to Denial of Service DoS. The attack exists because of an Insufficient Control of Network Message Volume, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in NS records...

Denial Of Service (DoS)

apache2 is vulnerable to denial of service. The HTTP/2 handling code would sometimes access memory after it has been freed, potentially resulting in a crash when closing multiple connections...

Arbitrary Code Execution

qemu-kvm-rhev is vulnerable to arbitrary code execution. The vulnerability exists in slirp where an out of bounds OOB buffer access while emulating tcp protocols in tcpemu...

Man-in-the-Middle (MtiM)

keycloak-services is vulnerable to man-in-the-middle attack. The signatures on CRL are not validated, allowing a remote attacker to perform man-in-the-middle attacks to sniff and modify network traffic...

Man-in-the-Middle (MitM)

kenrel is vulnerable to man-in-the-middle attack. Certain ipv6 protocols are not encrypted over ipsec tunnel, allowing an attacker to intercept and modify network traffic...

Information Disclosure

openssl is vulnerable to information disclosure. It was discovered that the Datagram Transport Layer Security DTLS protocol implementation in OpenSSL leaked timing information when performing certain operations. A remote attacker could possibly use this flaw to retrieve plain text from the...

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as a flaw was found in the way CIFS shares with DFS referrals at their root were handled. An attacker on the local network who is able to deploy a malicious CIFS server could create a CIFS network share that, when mounted,...

Brute-force Attack

postgresql is vulnerable to brute-force attacks. The vulnerability exists as a signedness issue was found in the way the crypt function in the PostgreSQL pgcrypto module handled 8-bit characters in passwords when using Blowfish hashing. Up to three characters immediately preceding a non-ASCII...

Arbitrary Code Execution

thunderbird/firefox is vulnerable to arbitrary code execution. Several flaws were found in the processing of malformed HTML content. Malicious HTML content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird...

Arbitrary Code Execution

openoffice.org is vulnerable to arbitrary code execution. The vulnerability exists as a heap-based buffer overflow flaw and an array index error were found in the way OpenOffice.org parsed certain Microsoft Office Word documents. An attacker could use these flaws to create a specially-crafted...

Arbitrary Code Execution

openoffice.org is vulnerable to arbitrary code execution. The vulnerability exists as a heap-based buffer overflow flaw and an array index error were found in the way OpenOffice.org parsed certain Microsoft Office Word documents. An attacker could use these flaws to create a specially-crafted...

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as a heap overflow flaw in the Linux kernel's EFI GUID Partition Table GPT implementation could allow a local attacker to cause a denial of service by mounting a disk that contains specially-crafted partition tables...

Same Origin Policy Bypass

WebKitGTK+ is vulnerable to same origin policy bypass. It was found that WebKit did not correctly restrict read access to images created from the "canvas" element. Malicious web content could allow a remote attacker to bypass the same-origin policy and potentially access sensitive image data...

Arbitrary Code Execution

webkitgtk is vulnerable to arbitrary code execution. Multiple memory corruption flaws were found in WebKit. Malicious web content could cause an application using WebKitGTK+ to crash or, potentially, execute arbitrary code with the privileges of the user running the application...

Information Disclosure

kernel is vulnerable to information disclosure. Missing initialization flaws in the Linux kernel could lead to information leaks...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. A missing integer overflow check in sndctlnew in the Linux kernel's sound subsystem could allow a local, unprivileged user on a 32-bit system to cause a denial of service or escalate their privileges...

Arbitrary Code Execution

thunderbird is vulnerable to arbitrary code execution. A flaw was found in the script that launches Thunderbird. The LDLIBRARYPATH variable was appending a "." character, which could allow a local attacker to execute arbitrary code with the privileges of a different user running Thunderbird, if...

Arbitrary Code Execution

seamonkey is vulnerable to arbitrary code execution. The vulnerability exists through a race condition flaw was found in the way SeaMonkey handled Document Object Model DOM element properties. A web page containing malicious content could cause SeaMonkey to crash or, potentially, execute arbitrar...

Denial Of Service (DoS)

java is vulnerable to denial of service DoS. The vulnerability exists in in the IBM Java 2 Runtime Environment and the IBM Java 2 Software Development Kit...

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as an off-by-one underflow flaw was found in the eCryptfs subsystem. This could potentially cause a local denial of service when the readlink function returned an error...

Cross-site Scripting (XSS)

nss is vulnerable to cross-site scripting XSS. The vulnerability exists as a flaw was found in Firefox's CSS parser. A malicious web page could inject NULL characters into a CSS input string, possibly bypassing an application's script sanitization routines...

Arbitrary Code Execution

thunderbird is vulnerable to arbitrary code execution. Several flaws were found in the processing of malformed HTML mail content. An HTML mail message containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code as the user running Thunderbird...

Privilege Escalation

kernel is vulnerable to privilege escalation. The vulnerability exists as the absence of a protection mechanism when attempting to access a critical section of code, as well as a race condition, have been found in the Linux kernel file system event notifier, dnotify. This could allow a local...

Arbitrary Code Execution

firefox is vulnerable to arbitrary code execution. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox...

Arbitrary Code Execution

firefox is vulnerable to arbitrary code execution. Multiple flaws were found in the processing of malformed JavaScript content. A web page containing such malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox...

Arbitrary Code Execution

firefox is vulnerable to arbitrary code execution. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox...

Information Disclosure

firefox is vulnerable to information disclosure. The vulnerability exists as a flaw was found in the way Firefox handled certain command line URLs. If another application passed Firefox a malformed URL, it could result in Firefox executing local malicious content with chrome privileges...

Privilege Escalation

kernel is vulnerable to privilege escalation. A flaw in the ISDN CAPI subsystem that allowed a remote user to cause a denial of service or potential remote access. Exploitation would require the attacker to be able to send arbitrary frames over the ISDN network to the victim's machine...

Directory Traversal

github.com/containers/buildah is vulnerable to directory traversal. The image building process does not properly handle file path as well as symlinks. An attacker is able to exploit the vulnerability to overwrite arbitrary files on the file system and potentially escalation privileges by...

Information Disclosure

dnsmasq is vulnerable to information disclosure. An attacker-controlled DNS server is able to read beyond the buffer that is allocated for the packet, on a victim server, by sending malicious DNS packets to the DNS server. This vulnerability is different from CVE-2017-14491...

Denial Of Service (DoS)

ImageMagick is vulnerable to denial of service DoS. The attack exists because the function WriteTIFFImage of coders/tiff.c causes memory leaks in AcquireMagickMemory , allowing an attacker to input a malicious image file to trigger a heap-based buffer over-read...

Remote Code Execution

Microsoft Chakra Core is vulnerable to remote code execution RCE. The vulnerability exists because Yield or Await was allowed in parameter scope...

HTTP Request Smuggling

Node is vulnerable to HTTP request smuggling. Failure to validate malformed HTTP requests allows an attacker to smuggle HTTP requests using malicious Transfer-Encoding header...

Reflected File Download

spring-web is vulnerable to reflected file download. The filename attribute that is derived from the user-supplied Content-Disposition header is not validated and sanitized, potentially resulting in the downloaded content of the response to be saved and executed as a file by the user's browser...

Session Fixation

Apache Tomcat Catalina is vulnerable to session fixation attack. The vulnerability exists because there is a flaw in checking whether an authentication information authType and principal are cached for a session and the validity of a session token in request when cache==false, allowing an attacke...

Denial Of Service (DoS)

Mozilla firefox is vulnerable to denial of service DoS. The vulnerability exists due to ,emory safety bugs fixed in Firefox 71 and Firefox ESR 68.3...

Remote Code Execution (RCE)

solr-velocity is vulnerable to remote code execution RCE. The vulnerability can be caused by loading custom Velocity templates containing malicious code since the solr resource loader in VelocityResponseWriter.java was on by default...

Denial Of Service (DoS)

kernel is vulnerable to arbitrary code execution. Lack of size checks from the reading of extra descriptor in the function usbgetextradescriptor in drivers/usb/core/usb.c leads to an application crash, and potentially allows an attacker to exploit the vulnerability to execute arbitrary code in th...

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists through a heap overflow in mwifiexupdatebssdescwithie function in marvell/mwifiex/scan.c...

Use-after-Free

Kernel is vulnerable to use-after-free in blkdrainqueue function in block/blk-core.c...

Information Disclosure

php is vulnerable to information disclosure. An out-of-bounds read in the function base64decodexmlrpc in ext/xmlrpc/libxmlrpc/base64.c causes PHP to read memory outside of the allocated buffers...

Denial Of Service (Dos)

php is vulnerable to denial of service. An out-of-bounds read due to integer overflow in the function iconvmimedecodeheaders can lead to information disclosure or allow an attacker to crash the application...

Denial Of Service (DoS)

PHP is vulnerable to denial of service DoS. A NULL pointer dereference is possible due to mishandling of ldapgetdn return value, allowing DoS via malicious LDAP server reply...

Denial Of Service (DoS)

PHP is vulnerable to denial of service DoS. An infinite loop is possible in ext/iconv/iconv.c when streaming filter with convert.incov on invalid sequence, leading to an application crash...

Authorization Bypass

glibc is vulnerable to authorization bypass. Successful parsing of strings containing an IPv4 address appended with whitespace and arbitrary characters causes applications using glibc to parse incorrectly validated strings. This can potentially lead to circumvention of validation and authorizatio...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. The vulnerability exists in alarmtimernsleep function of alarmtimer.c due to an integer overflow which allows an attacker to crash the application via malicious input...

Denial Of Service (DoS)

libpng.so is vulnerable to denial of service. Failure to check the length of chunks against the user limit leads to a buffer overflow vulnerability that allows an attacker to crash the process or potentially execute arbitrary code on the system...

Denial Of Service (DoS)

Oracle MySQL is vulnerable to denial of service attacks. Remote authenticated attacker could exploit the vulnerable DDL component to cause a hang or frequently repeatable crash...