38355 matches found
Sandbox Escape
chrome is vulnerable to sandbox escape. The vulnerability exists due to a heap buffer overflow...
Denial Of Service (DoS)
linux-oracle:hirsute is vulnerable to denial of service. The decodedata function in drivers/net/hamradio/6pack.c in the Linux kernel has a slab out-of-bounds write. Input from a process that has the CAPNETADMIN capability can lead to root access...
Denial Of Service (DoS)
Redis is vulnerable to denial of service. The vulnerability exists due to the debuggers protocol parser to read data beyond the actual buffer...
Denial Of Service (DoS)
chromium:edge is vulnerable to denial of service. Use after free in Extensions API in Google Chrome allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
Privilege Escalation
matrixsynapse is vulnerable to privilege escalation. An unauthorised user knowing Room ID of a private room and setting room's history visibility to shared is allowed to enumerate the room's members, including their display names...
Denial Of Service
qemu is vulnerable to denial of service. The vulnerability exists when dropping packets during a bulk transfer from a SPICE client due to the packet queue being full, a malicious SPICE client could use this flaw to make QEMU call free with faked heap chunk metadata, resulting in a crash of QEMU...
Remote Code Execution
libencode is vulnerable to remote code execution. Encode.pm loads code from outside...
Information Disclosure
webkit2gtk is vulnerable to information disclosure. The vulnerability exists due to a use-after-free in Webkits GraphicsContext...
Remote Code Execution (RCE)
java openjdk is vulnerable to remote code execution. It has a flaw was found in the way the Hotspot component of OpenJDK performed range check elimination. An untrusted Java application or applet could use this flaw to bypass Java sandbox restrictions...
Denial Of Service
Linux kernel is vulnerable to denial of service. Linux fair scheduler has a use-after-free in shownumastats because NUMA fault statistics are inappropriately freed. A flaw was found in the Linux kernels implementation of displaying NUMA statistics, where displaying the scheduler statistics could...
Insecure SSL Configuration
curl uses insecure SSL configurations. The curlsslconfigmatches attempts to compare whether two SSL connections have identical SSL security options and could potentially reuse a connection that is less secure or uses different security options such as capath, cainfo or certificate/issuer pinning...
Wrong Content
curl:edge shows wrong content via metalink as it is not discarded...
Authentication Bypass
libcurl.so is vulnerable to authentication bypass. Insecure re-use of NTLM-authenticated proxy connections allow an attacker to authenticate as other users via a malicious request...
Denial Of Service (DoS)
pdfbox is vulnerable to denial of service. An attacker is able to cause an infinite loop by submitting a malicious PDF file...
Denial Of Service (DoS)
chromium:edge is vulnerable to denial of service...
Arbtirary Code Execution
chromium is vulnerable to arbitrary code execution. An out-of-bounds write in Angle allows an attacker to execute arbtirary code on the host OS...
Denial Of Service(DoS)
Apache HTTP Server is vulnerable to denial of service.A specially crafted Cookie header handled by modsession can cause a NULL pointer dereference and crash, leading to a possible Denial Of Service...
Remote Code Execution (RCE)
zope is vulnerable to remote code execution. The vulnerability exists due to untrusted modules available indirectly through Python modules...
Denial Of Service (DoS)
golang is vulnerable to . Due to a pre-allocation optimization in zip.NewReader, an attacker can cause a denial of service condition using a malicious archive which would result in a panic or memory exhaustion...
Denial Of Service (DoS)
linux-aws:groovy is vulnerable to denial of service. eBPF implementation in the Linux kernel did not properly verify that a BPF program only reserved as much memory for a ring buffer as was allocated. A local attacker could use this to cause a denial of service system crash or execute arbitrary...
Denial Of Service (DoS)
usbsgcancel in drivers/usb/core/message.c in the Linux kernel has a use-after-free because a transfer occurs without a reference, aka CID-056ad39ee925. A use-after-free flaw was found in usbsgcancel in drivers/usb/core/message.c in the USB core subsystem. This flaw allows a local attacker with a...
Denial Of Service (DoS)
Unbound is vulnerable to denial of service. It allows an assertion failure and denial of service in dnamepktcopy via an invalid packet. A flaw was found in unbound. A reachable assertion in the dnamepktcopy function can be triggered by sending invalid packets to the server...
Denial Of Service (DoS)
sqlite is vulnerable to denial of service. The vulnerability exists due to select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation...
Information Disclosure
samba is vulnerable to information disclosure. The vulnerability exists due to a flaw that could allow an attacker to read data beyond the end of the array...
Arbitrary Code Execution
exim4 is vulnerable to arbitrary code execution. An integer overflow in receiveaddrecipient could potentially allow an attacker to execute arbitrary code on the host OS...
Remote Code Execution (RCE)
cacti is vulnerable to remote code injection. The vulnerability exists due to cacti allows an admin to inject SQL via the filter parameter...
Remote Code Execution (RCE)
webkit2gtk is vulnerable to remote code execution, the vulnerability exists due to an out-of-bounds write issue...
Denial Of Service (DoS)
chromium is vulnerable to denial of service. An out-of-bounds memory access in V8 allows an attacker to crash the application, and potentially obtain confidential information...
Heap Buffer Overflow
A heap buffer overflow security issue was found in the TabStrip component of the Chromium browser...
Privilege Escalation
linux is vulnerable to privilege escalation. RM Memory Management Double Free Privilege Escalation Vulnerability...
Cross-site Scripting (XSS)
lxml is vulnerable to cross-site scripting XSS. An attacker is able to inject and execute arbitrary script via HTML action attribute into defs.linkattrs in html/defs.py...
Regular Expression Denial Of Service (ReDoS)
ua-parser-js is vulnerable to regular expression denial of service. An attacker is able to exploit the vulnerability by sending a malicious User-Agent header under the device type causing the system to process the header for an extended period of time...
Cross-site Scripting (XSS)
pki-core is vulnerable to cross-site scripting XSS. An attacker could inject a specially crafted value that will be executed on the victim's browser if an attacker has a valid nonce...
Denial Of Service (DoS)
Linux kernel is vulnerable to denial of service DoS. It is possible because of a NULL-ptr deref in the spkttyioreceivebuf2 function in spkttyio.c...
Denial Of Service (DoS)
linux is vulnerable to denial of service DoS. The vulnerability exists through a use after free in the Linux kernel infiniband hfi1 driver, found in the way user calls Ioctl after open dev file and fork...
Heap Buffer Overflow
BusyBox is vulnerable to heap-based buffer overflow in the DHCP client udhcpc. It allows remote attackers to have unspecified impact via vectors involving OPTION6RD parsing...
Denial Of Service (DoS)
mariadb is vulnerable to denial of service. A difficult to exploit vulnerability allows an attacker to crash the application...
Arbitrary Code Execution
kernel is vulnerable to arbitrary code execution. The vulnerability exists through an out-of-bounds access in the function buildaudioprocunit in the file sound/usb/mixer.c...
Denial Of Service (DoS)
openjpeg2 is vulnerable to denial of service. Excessive iterations in the opjt1encodecblks function in openjp2/t1.c allows remote attackers to cause a denial of service via a malicious bmp file...
Denial Of Service (DoS)
dotnet is vulnerable to denial of service DoS. The vulnerability exists through ASP.NET Core Callbacks outside of locks cause Krestel deadlock when using HTTP2...
Directory Traversal
flink-runtime in vulnerable to Directory Traversal. An attacker is able to read any file accessible by the JobManager process on the local filesystem of the JobManager through the RES interface of the JobManager process...
Use After Free
chromium, sid is vulnerable to Use after free in printing in Google Chrome. It allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...
Denial Of Service (DoS)
crypto/ssh in github.com/golang/go is vulnerable to Denial Of Service DoS. The vulnerability is possible because of a nil pointer dereference in the component...
Phishing Attacks
curl is vulnerable to phishing attacks. malicious server can redirect FTP to malicious host via PASV reponse...
Authorization Bypass
curl is vulnerable to authorization bypass. The vulnerability is present only if OpenSSL is the designated TLS backend. OCSP stapling is not enabled by default by libcurl, it needs to be explicitly enabled by the application to get used...
Denial Of Service (DoS)
Qemu is vulnerable to denial of service. The vulnerability exist because of an infinite loop via an RX descriptor with a NULL buffer address...
Buffer Overflow
Buffer overflow in the listfiles function in list.c in Info-Zip UnZip 6.0 allows remote attackers to cause a denial of service crash via vectors related to the compression method...
Arbitrary Code Injection
Apache SpamAssassin is vulnerable to arbitrary code injection. A local user is able to inject arbitrary code in the meta rule syntax...
Arbitrary Code Execution
imagemagick is vulnerable to arbitrary code execution. A heap-based buffer overflow in WriteOnePNGImage in coders/png.c allows an attacker to execute arbitrary code via a malicious file...
Cross Site Request Forgery (CSRF)
GnuPG is vulnerable to Cross Site Request Forgery CSRF, Information Disclosure and DoS. The attack is possible when a victim performs a web key directory request...