38133 matches found
Authorization Bypass
java is vulnerable to Authorization Bypass. A difficult to exploit vulnerability allows unauthenticated attacker with network access to affect intgrity of the system. The attack requires human interaction from a person other than the attacker...
Remote Code Execution (RCE)
chromium is vulnerable to remote code execution. The vulnerability exists due to an Out of bounds read in IPC. These vulnerabilities can be exploited if a user visits, or is redirected to, a specially crafted web page...
Denial Of Service (DoS)
etcd is vulnerable to denial of service. A panic occurs in decodeRecord method when a large slice is processed due to a lack of validation on the size of record...
Denial Of Service (DoS)
chromium is vulnerable to denial of service. An out-of-bounds read in sctploadaddressesfrominit in usrsctp allows an attacker to crash the application...
Remote Code Execution
bind9 is vulnerable to remote code execution. A buffer overflow in GSSAPI security policy negotiation can result in remote code execution...
Information Disclosure
postgresql-13 is vulnerable to information disclosure. An attacker may be able to acquire denied-column values from an error message...
Privilege Escalation
kernel is vulnerable to privilege escalation. An attacker may exploit a use-after-free in the ALSA driver by supplying a malicious USB Sound device with zero interfaces that is mishandled in usbaudioprobe in sound/usb/card.c...
Remote Code Execution
Apache Druid is vulnerable to remote code execution. An attacker is able to execute arbitrary JavaScript code that is embedded in certain types of requests. This functionality is however disabled by default...
Arbitrary Code Execution
lighttpd is vulnerable to arbitrary code execution. A signed integer overflow allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code on the host OS malicious HTTP GET request due to mishandling of /%2F? in burlnormalize2Ftoslashfix in burl.c...
Arbitrary Code Execution
chromium is vulnerable to arbitrary code execution. Incorrect optimization assumptions in V8 allows a remote attacker to execute arbitrary code inside a sandbox via a malicious HTML page...
Information Disclosure
php is vulnerable to information disclosure in exifreaddata...
Privilege Escalation
kernel is vulnerable to privilege escalation. A use-after-free flaw was found in the way the Linux kernel's filesystem subsystem handled a race condition in the cdevget of chardev.c function.This flaw allows a privileged local user to starve the resources, causing potentially escalating their...
Cross-Site Scripting (XSS)
dompurify is vulnerable to cross-site scripting XSS. A mutation XSS vulnerability exists as a serialize-parse roundtrip does not return the original DOM tree, causing a namespace change from HTML to MathML via FORM elements...
Arbitrary Code Execution
webkitgtk4 is vulnerable to arbitrary code execution. The vulnerabiltiy exists through memory errors...
Arbitrary Code Execution
glibc is vulnerable to arbitary code execution.It is possible because LDPREFERMAP32BITEXEC doe not ignore in setuid binaries...
Information Disclosure
linux is vulnerable to information disclosure. The vulnerability exists as through the internal state of the network RNG via drivers/char/random.c and kernel/time/timer.c...
Privilege Escalation
android kernel is vulnerable to privilege escalation. A use-after-free in the video driver allows an attacker to obtain higher privileges...
Open Redirection
Squid is vulnerable to Open Redirection. When certain web browsers are used, HTML in the hostname parameter is mishandled to cachemgr.cgi...
Arbitrary Code Execution
firefox is vulnerable to arbitrary code execution. The vulnerability exists through memory safety bugs...
Arbitrary Code Execution
kernel is vulnerable to arbitrary code execution. A heap-based buffer overflow in the lbsibssjoinexisting function in drivers/net/wireless/marvell/libertas/cfg.c allows an attacker to execute arbitrary code on the host OS...
Information Disclosure
php7 is vulnerable to information disclosure. The vulnerability exists while parsing EXIF data with exifreaddata function, it is possible for malicious data to cause PHP to read one byte of uninitialized memory...
Sandbox Restrictions Bypass
openjdk is vulnerable to sandbox restrictions bypass. Bypass of boundary checks in nio.Buffer via concurrent access allows an attacker to escape the sandbox and obtain higher privileges...
SQL Injection
Apache SkyWalking is vulnerable to SQL injection. The function getLinearIntValues in H2MetricsQueryDAO.java does not sanitize the user-provided ID parameter to the SQL query StringBuilder when H2/MySQL/TiDB is used as storage, allowing an attacker to provide arbitrary string to construct maliciou...
Authorization Bypass
actionpack is vulnerable to authorization bypass. An attacker is be able to execute any migrations that are pending for a Rails app running in production mode...
Denial Of Service (DoS)
kernel is vulnerable to denial of service DoS.It is possible because of brcmfmac frame validation bypass...
Server Side Request Forgery (SSRF)
github.com/kubernetes/kubernetes is vulnerable to Server Side Request Forgery SSRF. An attacker with a privilege to create a pod with certain built-in Volume types GlusterFS, Quobyte, StorageFS, ScaleIO or to create a StorageClass can cause an authenticated user to leak the resources from the...
Denial Of Service (DoS)
apache2 is vulnerable to denial of service. The HTTP/2 handling code would sometimes access memory after it has been freed, potentially resulting in a crash when closing multiple connections...
Remote Code Execution (RCE)
Microsoft Chakracore is vulnerable to remote code execution RCE. It does not properly handle the JIT bails out when there is an object marked as temporary during an implicit call, allowing objects stored on the stack to be used outside of the function during the DeadStore pass of GlobOpt...
Man-in-the-Middle (MtiM)
keycloak-services is vulnerable to man-in-the-middle attack. The signatures on CRL are not validated, allowing a remote attacker to perform man-in-the-middle attacks to sniff and modify network traffic...
Remote Code Execution (RCE)
ncurses is vulnerable to denial of service. Due to a flaw, there is a format string vulnerability in the fmtentry function. A crafted input will lead to a remote arbitrary code execution attack...
Remote Code Execution (RCE)
udp.c in the Linux kernel is vulnerable Remote Code Execution RCE. It allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSGPEEK flag...
Man-in-the-Middle (MitM)
kenrel is vulnerable to man-in-the-middle attack. Certain ipv6 protocols are not encrypted over ipsec tunnel, allowing an attacker to intercept and modify network traffic...
Denial Of Service (DoS)
openjdk is vulnerable to regex denial of service. A regular expression DoS in Scanner allows an attacker to crash the application...
Man-in-the-Middle (MitM)
httpd is vulnerable to man-in-the-middle MiTM. The vulnerability exists as it was discovered that the fix for CVE-2011-3368 released via RHSA-2011:1391 did not completely address the problem. An attacker could bypass the fix and make a reverse proxy connect to an arbitrary server not directly...
Information Disclosure
openssl is vulnerable to information disclosure. It was discovered that the Datagram Transport Layer Security DTLS protocol implementation in OpenSSL leaked timing information when performing certain operations. A remote attacker could possibly use this flaw to retrieve plain text from the...
Arbitrary Code Execution
httpha-invoker is vulnerable to arbitrary code execution. The vulnerability exists as it was found that the invoker servlets, deployed by default via httpha-invoker, only performed access control on the HTTP GET and POST methods, allowing remote attackers to make unauthenticated requests by using...
Arbitrary Code Execution
thunderbird/firefox is vulnerable to arbitrary code execution. Several flaws were found in the processing of malformed HTML content. Malicious HTML content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird...
Arbitrary Code Execution
openoffice.org is vulnerable to arbitrary code execution. The vulnerability exists as a heap-based buffer overflow flaw and an array index error were found in the way OpenOffice.org parsed certain Microsoft Office Word documents. An attacker could use these flaws to create a specially-crafted...
Arbitrary Code Execution
openoffice.org is vulnerable to arbitrary code execution. The vulnerability exists as a heap-based buffer overflow flaw and an array index error were found in the way OpenOffice.org parsed certain Microsoft Office Word documents. An attacker could use these flaws to create a specially-crafted...
Denial Of Service (DoS)
kernel is vulnerable to denial of service DoS. The vulnerability exists as a heap overflow flaw in the Linux kernel's EFI GUID Partition Table GPT implementation could allow a local attacker to cause a denial of service by mounting a disk that contains specially-crafted partition tables...
Information Disclosure
kernel is vulnerable to information disclosure. The vulnerability exists as a buffer overflow flaw in the DEC Alpha OSF partition implementation in the Linux kernel could allow a local attacker to cause an information leak by mounting a disk that contains specially-crafted partition tables...
Denial Of Service (DoS)
Kernel is vulnerable to denial of service DoS. The attack is possible due to a missing validation of a null-terminated string data structure element in the bnepsockioctl function, allowing a local user to cause an information leak or a denial of service...
Arbitrary Code Execution
webkitgtk is vulnerable to arbitrary code execution. Multiple memory corruption flaws were found in WebKit. Malicious web content could cause an application using WebKitGTK+ to crash or, potentially, execute arbitrary code with the privileges of the user running the application...
Denial Of Service (DoS)
kernel is vulnerable to denial of service. A missing integer overflow check in sndctlnew in the Linux kernel's sound subsystem could allow a local, unprivileged user on a 32-bit system to cause a denial of service or escalate their privileges...
Arbitrary Code Execution
thunderbird is vulnerable to arbitrary code execution. A flaw was found in the script that launches Thunderbird. The LDLIBRARYPATH variable was appending a "." character, which could allow a local attacker to execute arbitrary code with the privileges of a different user running Thunderbird, if...
Arbitrary Code Execution
seamonkey is vulnerable to arbitrary code execution. The vulnerability exists through a race condition flaw was found in the way SeaMonkey handled Document Object Model DOM element properties. A web page containing malicious content could cause SeaMonkey to crash or, potentially, execute arbitrar...
Privilege Escalation
The kernel is vulnerable to Privilege Escalation.A system with SELinux enforced was more permissive in allowing local users in the unconfinedt domain to map low memory areas even if the mmapminaddr restriction was enabled. This could aid in the local exploitation of NULL pointer dereference bugs...
Denial Of Service (DoS)
kernel is vulnerable to denial of service DoS. The vulnerability exists as an off-by-one underflow flaw was found in the eCryptfs subsystem. This could potentially cause a local denial of service when the readlink function returned an error...
Cross-site Scripting (XSS)
nss is vulnerable to cross-site scripting XSS. The vulnerability exists as a flaw was found in Firefox's CSS parser. A malicious web page could inject NULL characters into a CSS input string, possibly bypassing an application's script sanitization routines...
Arbitrary Code Execution
thunderbird is vulnerable to arbitrary code execution. Several flaws were found in the processing of malformed HTML mail content. An HTML mail message containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code as the user running Thunderbird...