Information Disclosure

kernel is vulnerable to Information Disclosure. A local user is able to read random memory from the kernel space due to the way a user calls DMAFROMDEVICE...

Denial Of Service (DoS)

protobuf is vulnerable to Denial Of Service DoS. The vulnerability is due to multiple instances of non-repeated embedded message inputs with repeated or unknown fields which cause the objects to be converted back-n-forth between mutable and immutable forms, resulting in potentially long garbage...

Remote Code Execution (RCE)

GitPython is vulnerable to Remote Code Execution RCE. The vulnerability exists because the clonefrom function in base.py makes external calls to git without sufficient sanitization of input arguments, allowing an attacker to inject and execute a maliciously crafted remote URL into the clone comma...

Reflected File Download

sinatra is vulnerable to reflected file download. The vulnerability exists because of missing validations of attachment function in base.rb which allows an attacker to perform untrusted file downloads...

Remote Code Execution

yiisoft/yii is vulnerable to remote code execution. The vulnerability exists in the wakeup function of CDbCriteria.php, due to improper deserialization of untrusted user input, which allows the attacker to control the state or the flow of execution...

Information Disclosure

grafana is vulnerable to information disclosure. The vulnerability is due to the proxy endpoints leaking sensitive authentication tokens to some destination plugins which allows an attacker to gain access to HTTP header information...

Information Disclosure

squid is vulnerable to information disclosure. The vulnerability exits due to inconsistent handling of internal URIs, which allows an attacker to gain access to cache manager information in the file system via bypassing the manager ACL protection...

Privilege Escalation

linux is vulnerable to Privilege Escalation. The vulnerability exists in nftablesapi.c function in nftables cross-table in the linux kernel which will allow a local privileged attacker to cause a use-after-free problem at the time of table deletion...

Denial Of Service (DoS)

libtiff.so is vulnerable to denial of service. The vulnerability exists due to the stack buffer overflow in the main function of tiffcp.c, allowing an attacker to crash the application by providing a maliciously crafted TIFF file to the tiffcp tool...

Deserialization Of Untrusted Data

apache-geode is vulnerable to deserialization of untrusted data. The vulnerability exists because the serialization filtering is not properly configured for JMX/RMI which allows an attacker to to inject and execute arbitrary code through the untrusted data...

Denial Of Service (DoS)

chrome is vulnerable to denial of service. The vulnerability exists due to a use after free in WebGPU in Google Chrome allowing a remote attacker to potentially exploit heap corruption via a crafted HTML page...

Denial Of Service (DoS)

vim is vulnerable to denial of service. The vulnerability exists due to an Undefined Behavior allowing an attacker to crash the system via a maliciously crafted Input to API...

Information Disclosure

rocketchip2.12 is vulnerable to information disclosure. The vulnerability exists due to the insecure cryptographic algorithm used in RocketCore.scala, allowing an attacker to gain sensitive information through the malicious Zk extensions...

Arbitrary File Read

ruby-mysql is vulnerable to arbitrary file read. A malicious MySQL server can request local file content from a client without explicit authorization from the user if the filename specified by the server does not match with OPTLOADDATALOCALDIR...

Remote Code Execution (RCE)

aamiles is vulnerable to remote code execution. The use of the request package opens up a code execution backdoor, allowing an attacker to perform unauthorized actions and accesses to sensitive information and digital currency keys...

Denial Of Service (DoS)

MariaDB is vulnerable to denial of service. The vulnerability exists due to a deadlock indsxbstream.cc, crashing the system when an error occurs streamctxt-destfile == NULL while executing the method xbstreamopen...

Denial Of Service (DoS)

eap is vulnerable to denial of service. The vulnerability exists due to a flaw found in XNIO, specifically in the notifyReadClosed method allowing an attacker to crash the system via a flawed requests sent to a server, possibly causing log contention-related performance concerns or an unwanted di...

Unchecked Return Value

ntfs-3g is vulnerable to unchecked return value. The vulnerability exists due to an invalid return code in fusekernmount enables intercepting of libfuse-lite protocol traffic between NTFS-3G and the kernel in NTFS-3G when using libfuse-lite...

Denial Of Service (DoS)

.NET and Visual Studio are vulnerable to denial of service. The vulnerability exists due to a flaw in dotnet allowing an attacker to crash the system by applying MaxResponseHeadersLength limit for trailing headers to address a denial of service via excess memory allocations through the HttpClient...

Memory Corruption

firefox is vulnerable to memory corruption vulnerability. Crafted CMS messages are incorrectly processed, leading to invalid memory reads, and potentially further memory corruption...

Cross-Site Request Forgery (CSRF)

XXL Job Core is vulnerable to cross-site request forgery. The vulnerability exists in xxl-job-admin component due to less restrictions of user permissions which allows an attacker to perform unauthorized actions...

Remote Code Execution

laravel/laravel is vulnerable to remote code execution. Improper deserialization in destruct in GuzzleHttp\Cookie\FileCookieJar.php allows an attacker to upload and execute malicious code via an unserialized pop chain...

Denial Of Service (DoS)

spring-messaging is vulnerable to denial of service. The vulnerability exists because the handleMessageInternal function of SimpleBrokerMessageHandler.java does not properly handle to ignore the invalid STOMP frames, allowing an attacker to cause an application crash through the WebSocket endpoin...

Time-of-check To Time-of-Use (TOCTOU)

grunt is vulnerable to Time-of-check To Time-of-Use TOCTOU. The vulnerability exists in file.copy function in file.js because the permissions are not properly handled in both source and destination directories which allows an attacker to access and write arbitrary files...

XML External Entity (XXE) Injection

NiFi Standard Processors is vulnerable to xml external entity injection. The vulnerability exists in multiple components because EvaluateXPath, EvaluateXQuery and ValidateXml processors do not restrict XXE references when configured with default values which allows an attacker to send malicious X...

Privilege Escalation

libarchive is vulnerable to privilege escalation. The vulnerability exists due to a lack of validation of the access control list ACL when extracting a maliciously crafted link...

Improper Input Validation

httpx is vulnerable to improper input validation. The vulnerability exists in copywith function because the user inputs are not properly validated which allows an attacker to bypass url with wrong information...

Buffer Overflow

vim is vulnerable to denial of service. The vulnerability exists due to global heap buffer overflow in skiprange, allowing an attacker to crash the system...

Remote Code Execution (RCE)

jenkins-2-plugins is vulnerable to remote code execution. The vulnerability exists due to a sandbox bypass allowing attackers to execute arbitrary code on the system...

Denial Of Service (DoS)

Red Hat is vulnerable to denial of service. The deprecated compatibility function clntcreate in the sunrpc module of the GNU C Library aka glibc through 2.34 copies its hostname argument on the stack without validating its length, which may result in a buffer overflow, potentially resulting in a...

Buffer Overflow

glibc is vulnerable to buffer overflow. The vulnerability exists due to a memory corruption when the size of the buffer is exactly 1 which allows an attacker to control the input buffer and size passed to getcwd in a setuid program...

Denial Of Service (DoS)

firefox is vulnerable to denial of service. The vulnerability exists due to a lack of sanitization allowing an attacker to crash the system...

Denial Of Service (DoS)

Jenkins is vulnerable to denial of service. The vulnerability exists due to earlier defines custom XStream converters that have not been updated to apply the protections for the vulnerability CVE-2021-43859 and allow unconstrained resource usage...

Denial Of Service (DoS)

samba is vulnerable to information disclosure. The vulnerability exists due to a lack of sanitization of permission when adding service principals names SPNs to an account...

Buffer Overflow

mruby is vulnerable to Heap-based Buffer Overflow. The vulnerability exists due to a lack of sanitization...

Buffer Overflow

Slurm is vulnerable to buffer overflow. The vulnerability exists in the PMIx MPI plugin which causes a buffer overflow which leads to an application crash...

Denial Of Service (DoS)

Linux kernel is vulnerable to denial of service. The vulnerability exists due to the use-after-free in the NFC stack, allowing an attacker to crash the application...

Denial Of Service (DoS)

python3 is vulnerable to denial of service. The vulnerability exists because the ftplib is using the host from the PASV response which allows an attacker to cause an application crash...

Denial Of Service (DoS)

thunderbird and firefox are vulnerable to denial of service. The vulnerability exist due to an incorrect type conversion of sizes from 64bit to 32bit integers which allows an attacker to corrupt memory...

Information Disclosure

kernel is vulnerable to information disclosure. The vulnerability exists due to Insufficient control flow in certain data structures...

Denial Of Service (DoS)

linux kernal ipc is vulnerable to denial of service. The vulnerability exists due to a memory overflow in the memcg subsystem which allows a attacker to cause an application crash...

HTTP Request Smuggling (HRS)

nodejs is vulnerable to HTTP Request Smuggling HRS. The vulnerability exists due to an error related to a space in headers which allows an attacker to poison the web cache, bypassing the web application...

Prototype Pollution

aurelia-path is vulnerable to prototype pollution. An attacker is able to modify object class Object by tricking an application to parse the following URL: https://aurelia.io/blog/?protoasdf=asdf...

Man-In-The-Middle Attack (MitM)

curl is vulnerable to Man in the middle attack. The vulnerability exists due to a lack of clearing of previous cached responses, treating them as valid and authenticated...

Denial Of Service(DoS)

netty-codec is vulnerable to denial of service. The vulnerability exists due to lack of allocation size restriction on the decompressed output data in the Snappy frame decoder function, leading to an OOME...

Denial Of Service (DoS)

glib2 is vulnerable to denial of service. When gbytearraynewtake is called with a buffer of 4GB or more on a 64-bit platform, an integer overflow occurs as the length would be a truncated modulo 232, causing unintended length truncation...

Man In The Middle (MitM)

ruby2.7 is vulnerable to Man In the Middle Attack. An attacker may bypass the TLS protections by leveraging a network position between the client and the registry to block the StartTLS command, aka a “StartTLS stripping attack.”...

Privilege Escalation

kernel is vulnerable to privilege escalation. A refcount leak in llcpsockconnect results in a use-after-free bug which can lead to privilege escalation...

Privilege Escalation

kernel is vulnerable to privilege escalation. The vulnerability exists through sending ioctl commands to midi devices that could trigger a use-after-free issue where a write to this specific memory while freed...

Denial Of Service (DoS)

bind is vulnerable to denial of service. The vulnerability exists due to a buffer over-read...