38153 matches found
Denial Of Service (DoS)
The kernel package is vulnerable to Denial Of Service DoS. A race condition was found in the mac80211 implementation, a framework used for writing drivers for wireless devices. An attacker could trigger this flaw by sending a Delete Block ACK DELBA packet to a target system, resulting in a remote...
Privilege Escalation
The kernel is vulnerable to Privilege Escalation.A system with SELinux enforced was more permissive in allowing local users in the unconfinedt domain to map low memory areas even if the mmapminaddr restriction was enabled. This could aid in the local exploitation of NULL pointer dereference bugs...
Arbitrary Code Execution
thunderbird is vulnerable to arbitrary code execution. Several flaws were found in the processing of malformed HTML mail content. An HTML mail message containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code as the user running Thunderbird...
Arbitrary Code Execution
firefox is vulnerable to arbitrary code execution. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox...
Arbitrary Code Execution
firefox is vulnerable to arbitrary code execution. Multiple flaws were found in the processing of malformed JavaScript content. A web page containing such malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox...
Arbitrary Code Execution
firefox is vulnerable to arbitrary code execution. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox...
Information Disclosure
firefox is vulnerable to information disclosure. The vulnerability exists as a flaw was found in the way Firefox handled certain command line URLs. If another application passed Firefox a malformed URL, it could result in Firefox executing local malicious content with chrome privileges...
Information Disclosure
dnsmasq is vulnerable to information disclosure. An attacker-controlled DNS server is able to read beyond the buffer that is allocated for the packet, on a victim server, by sending malicious DNS packets to the DNS server. This vulnerability is different from CVE-2017-14491...
Deserialization Of Untrusted Object
jackson-databind is vulnerable to deserialization of untrusted data. It was possible for an untrusted class, javax.swing.JEditorPane to be used as a serialization gadget through polymorphic typing, potentially allowing execution of arbitrary code...
Remote Code Execution (RCE)
jackson-databind is vulnerable to remote code execution RCE through deserialization of untrusted data. It is possible because the untrusted class, com.caucho.config.types.ResourceRef , was not filtered by default from the interaction between serialization gadgets and polymorphinc typing...
Remote Code Execution
Microsoft Chakra Core is vulnerable to remote code execution RCE. The vulnerability exists because Yield or Await was allowed in parameter scope...
Denial Of Service (DoS)
kernel is vulnerable to denial of service DoS. The vulnerability exists due to a use-after-free error in fs/xfs/xfssuper.c...
Session Fixation
Apache Tomcat Catalina is vulnerable to session fixation attack. The vulnerability exists because there is a flaw in checking whether an authentication information authType and principal are cached for a session and the validity of a session token in request when cache==false, allowing an attacke...
Denial Of Service (DoS)
Mozilla firefox is vulnerable to denial of service DoS. The vulnerability exists due to ,emory safety bugs fixed in Firefox 71 and Firefox ESR 68.3...
Denial Of Service (DoS)
kernel is vulnerable to arbitrary code execution. Lack of size checks from the reading of extra descriptor in the function usbgetextradescriptor in drivers/usb/core/usb.c leads to an application crash, and potentially allows an attacker to exploit the vulnerability to execute arbitrary code in th...
Denial Of Serivce (DoS)
Mozilla Firefox is vulnerable to denial of service DoS. It causes a Stack buffer overflow in HKDF output...
Denial Of Service (DoS)
openjdk is vulnerable to denial of service. An unexpected exception thrown by XPathParser processing malicious XPath expression allows an attacker to crash the application...
Denial Of Service (DoS)
kernel is vulnerable to denial of service DoS. The vulnerability exists through a heap overflow in mwifiexupdatebssdescwithie function in marvell/mwifiex/scan.c...
Use-after-Free
Kernel is vulnerable to use-after-free in blkdrainqueue function in block/blk-core.c...
Deserialization Of Untrusted Data
FasterXML jackson-databind is vulnerable to deserialization of untrusted data. It causes polymorphic typing because there are more than one association gadget types related to com.zaxxer.hikari.HikariDataSource by default. This vulnerability is different from CVE-2019-14540. A remote attacker can...
Denial Of Service (Dos)
libexpat.so is vulnerable to denial of service. A heap-based buffer overflow occurs when an attacker sends a malicious XML which switches the DTD parsing to document parsing immaturely, leading to repeated calls of XMLGetCurrentLineNumber or XMLGetCurrentColumnNumber function that results in an...
Denial Of Service (Dos)
php is vulnerable to denial of service. An out-of-bounds read due to integer overflow in the function iconvmimedecodeheaders can lead to information disclosure or allow an attacker to crash the application...
Denial Of Service (DoS)
PHP is vulnerable to denial of service DoS. A NULL pointer dereference is possible due to mishandling of ldapgetdn return value, allowing DoS via malicious LDAP server reply...
Denial Of Service (DoS)
PHP is vulnerable to denial of service DoS. An infinite loop is possible in ext/iconv/iconv.c when streaming filter with convert.incov on invalid sequence, leading to an application crash...
Authorization Bypass
glibc is vulnerable to authorization bypass. Successful parsing of strings containing an IPv4 address appended with whitespace and arbitrary characters causes applications using glibc to parse incorrectly validated strings. This can potentially lead to circumvention of validation and authorizatio...
Denial Of Service (DoS)
kernel is vulnerable to denial of service. The vulnerability exists in alarmtimernsleep function of alarmtimer.c due to an integer overflow which allows an attacker to crash the application via malicious input...
Unauthorised Access
github.com/kubernetes/kubernetes is vulnerable to unauthorised access to the resources. API server allows a user with access privilege to the custom resources in one namespace to create, view update or delete the cluster-scoped resources...
Privilege Escalation
kernel is vulnerable to privilege escalation. A use-after-free in the svcprocesscommon function allows an attacker to cause a host kernel memory corruption and a system panic, potentially resulting in a successful privilege escalation...
Denial Of Service (DoS)
libpng.so is vulnerable to denial of service. Failure to check the length of chunks against the user limit leads to a buffer overflow vulnerability that allows an attacker to crash the process or potentially execute arbitrary code on the system...
Information Disclosure
PHP is vulnerable to information disclosure vulnerability. This is because an error in the date extension's timelibmeridian handling of 'front of' and 'back of' directives could be used by attackers able to supply date strings to leak information from the interpreter, related to...
Denial Of Service (DoS)
PHP is vulnerable to denial of serviceDoS attacks. This occurs in the pharparsepharfile function in ext/phar/phar.c which allows remote attackers to cause a memory consumption or application crash via a truncated manifest entry in a PHAR archive...
Denial Of Service (DoS)
Apache HTTP Server is vulnerable to denial of serviceDoS attacks. A remote user could send a specially crafted HTTP/2 request to trigger a null pointer dereference in the modhttp2 component and cause the server process to crash...
Denial Of Service (DoS) Through Divide By Zero
QEMU is vulnerable to denial of serviceDoS through divide by zero attacks. This occurs in the cirrusdocopy function in hw/display/cirrusvga.c when cirrus graphics mode is VGA. Privileged users could cause divide-by-zero error and a process crash via vectors involving blit pitch values...
Arbitrary Code Execution
Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...
Denial Of Service (DoS)
HTTPS NIO Connector is vulnerable to Denial Of Service DoS attacks. The component Socket Handler's functionality is affected by opening a socket and not sending an SSL handshake which results in a read-timeout vulnerability...
Improper Access Control
Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird...
Denial Of Service (DoS)
MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and libraries. This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update...
Denial Of Service (DoS)
The unzip utility is used to list, test, or extract files from a zip archive. A buffer overflow was found in the way unzip uncompressed certain extra fields of a file. A specially crafted Zip archive could cause unzip to crash or, possibly, execute arbitrary code when the archive was tested with...
Arbitrary Code Execution
Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...
Information Disclosure
The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. A race condition leading to a use-after-free flaw was found in the way the Linux kernel's TCP/IP protocol suite implementation handled the addition of fragments to the LRU Last-Recently Used list under certai...
Arbitrary Code Execution
IBM Java SE version 6 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Detailed vulnerability descriptions are linked from the IBM Security...
Heap-based Out-Of-Bounds Write
The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. A flaw was found in the way IP packets with an Internet Header Length ihl of zero were processed in the skbflowdissect function in the Linux kernel. A remote attacker could use this flaw to trigger an infinit...
Denial Of Service (DOS)
The GNU Privacy Guard GnuPG or GPG is a tool for encrypting data and creating digital signatures, compliant with the proposed OpenPGP Internet standard and the S/MIME standard. It was found that GnuPG was vulnerable to the Yarom/Falkner flush+reload cache side-channel attack on the RSA secret...
Use-After-Free
Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...
Privilege Escalation
An attack technique against the W3C XML Encryption Standard when block ciphers were used in CBC mode could allow a remote attacker to conduct chosen-ciphertext attacks, leading to the recovery of the entire plain text of a particular cryptogram. CVE-2011-1096 JBoss Web Services leaked side-channe...
Arbitrary Code Execution
IBM Java SE version 6 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Detailed vulnerability descriptions are linked from the IBM Security...
Privilege Escalation
IBM Java SE version 6 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Detailed vulnerability descriptions are linked from the IBM Security...
Cross-Site Request Forgery (CSRF)
OpenShift Enterprise is a cloud computing Platform-as-a-Service PaaS solution from Red Hat, and is designed for on-premise or private cloud deployments. A flaw was found in the handling of paths provided to ruby193-rubygem-rack. A remote attacker could use this flaw to conduct a directory travers...
Remote Code Execution (RCE)
git us vulnerable to remote code execution. A remote attacker is able to execute arbitrary code during the processing of a recursive git clone of a superproject, when the .gitmodules file contains a URL field beginning with - character...
Denial Of Service (DoS)
kernel is vulnerable to denial of service DoS attacks. The vulnerability exists as the tcpdisconnect function in net/ipv4/tcp.c in the Linux kernel before 4.12 allows local users to cause a denial of service tcpselectwindow divide-by-zero error and system crash by triggering a disconnect within a...