Denial Of Service (DoS)

openssl gitlab is vulnerable to Denial of Service DoS. An attacker could exploit this vulnerability by tricking a user into processing a specially crafted DH key or parameter. The vulnerable application would then attempt to generate or check the DH key or parameter, which would consume excessive...

Denial Of Service

libnbd is vulnerable to Denial of Service DoS. The vulnerability is due to a flaw in the handling of 64-bit extended headers in the NBD protocol when dealing with large flag values in the server's reply to the NBDCMDBLOCKSTATUS command...

Buffer Overflows

qemu is vulnerable to Buffer Overflows. A guest I/O address overflow vulnerability allows an attacker to overwrite arbitrary memory on the host system by exploiting a flaw in the way that QEMU handles guest I/O operations...

Cross-site Scripting (XSS)

chromium is vulnerable to Remote Code Execution RCE. The vulnerability exists due to the inappropriate implementation in Payments, which allows an attacker to bypass XSS preventions via a malicious file...

Domain Spoofing

chromium is vulnerable to Domain Spoofing. The vulnerability occurs due to incorrect security UI in Picture In Picture within google chrome which allows a remote malicious attacker to perform domain spoofing via a crafted local HTML page...

Information Disclosure

urllib3 is vulnerable to Information Disclosure. The vulnerability is due the http body not being removed after a redirect with a 301, 302, or 303 status. to An attacker could exploit this vulnerability by tricking a user into performing a POST request to a vulnerable application. The attacker...

Insecure Deserialization

Radisson is vulnerable to Insecure Deserialization. The vulnerability is due to the client deserializing objects without validation. If an attacker can gain control of the redis server, they can include crafted objects that lead to arbitrary code execution. Due to incomplete fix, its recommended...

Information Disclosure

tomcat-catalina is vulnerable to information disclosure. This vulnerability exists due to an improper request recycling mechanism, allowing an attacker to possibly access other requests...

Denial Of Service (DoS)

qemu is vulnerable to Denial of Service DoS. A Division by Zero vulnerability allows local attackers to crash QEMU and the guest operating system by sending a specially crafted SCSI command...

Denial Of Service (DoS)

wireshark is vulnerable to Denial of Service DoS. A memory leak in the RTPS dissector allows a remote attacker to cause a denial of service DoS attack by sending a specially crafted RTPS packet...

Denial Of Service (DoS)

ghostscript is vulnerable to Denial Of Service DoS. A divide-by-zero vulnerability in the epsprintpage function in gdevepsn.c allows a local attacker to cause a denial of service by opening a specially crafted PDF document...

Cross-Site Scripting (XSS)

html/template is vulnerable to Cross-Site Scripting XSS attacks. The vulnerability exists because the package does not properly handle HTML-like "" comment tokens, nor hashbang "!" comment tokens, in...

Remote Code Execution (RCE)

exim is vulnerable to Remote Code Execution RCE. The vulnerability arises from the absence of proper validation for user-supplied data in the SMTP service. This could result in a buffer overflow, enabling an attacker to inject and execute malicious code within the service account's context...

Insecure Temporary Files

org.jenkins-ci.main: jenkins-core is vulnerable to Insecure Temporary Files. The vulnerability is caused by not restricting permissions to the temporary file in the system temporary directory and leaving the newly created files with default permissions which are created by the Jenkins API...

HTTP Request Smuggling

Jetty is vulnerable to HTTP Request Smuggling. The vulnerability is due to accepting + character proceeding the content-length in the request. This vulnerability can be exploited by the attacker to possibly conduct request smuggling attacks...

Heap Buffer Overflow

various libraries that include webp are vulnerable to Heap Buffer Overflow. The vulnerability is caused by an out of bounds heap memory write in a function BuildHuffmanTable in file src/dec/vp8ldec.c in library libwebp. This can potentially overwrite adjacent memory and corrupt data and can be...

XML Injection

org.apache.ivy:ivy is vulnerable to XML Injection. The vulnerability exists due to improper external DTD XML restrictions. An attacker is able to exploit this vulnerability by parsing a specially crafted XML file, which allows the attacker to access sensitive information, such as passwords or oth...

Arbitrary Code Execution

langchain is vulnerable to Arbitrary Code Execution. The vulnerability exists in the frommathprompt function at langchain.chains.PALChain which allows an attacker to execute arbitrary codes through prompt injection...

Denial Of Service (DoS)

vim is vulnerable to Denial of Service DoS. The vulnerability exists due to a NULL Pointer Dereference which allows an attacker to cause an application crash...

Cross-Site Scripting (XSS)

firefox is vulnerable to Cross-Site Scripting XSS attacks. This vulnerability occurs due to a flaw in the way that Firefox handles data: URLs. An attacker can exploit this vulnerability to load a malicious document in the same process as a trusted document, bypassing the site-isolation protection...

Denial Of Service (DoS)

Magick is vulnerable to Denial of Service DoS attacks. Applications using the DHcheck, DHcheckex, or EVPPKEYparamcheck methods to check a DH key or DH parameters may encounter lengthy delays. If the key or parameters being verified have come from an unreliable source, this might result in a Denia...

Cross-Site Scripting (XSS)

github.com/golang/net is vulnerable to Cross-Site Scripting XSS attacks. The library does not properly escape user input in text nodes outside the HTML namespace, allowing an attacker to inject and execute malicious JavaScript on a victim's browser...

Denial Of Service (DoS)

libvirt.so is vulnerable to Denial of Service. The vulnerability exists in virStoragePoolObjListSearch of virstorageobj.c because it tries to lock the same item from another thread, which causes an application crash...

Argument Injection

go is vulnerable to Argument Injection. Running "go get" or any intrusted code on a malicious module may execute arbitrary code at build time...

Denial Of Service (DoS)

libbind9.so is vulnerable to Denial Of Service. The vulnerability exists due to improper memory management in the cache, which allows an attacker to effectively bypass the max-cache-size configuration statement...

Improper Certificate Validation

org.keycloak:keycloak-services is vulnerable to Improper Certificate Validation. The flaw relies on enabling Revalidate Client Certificate and not validating the reverse proxy before Keycloak. An attacker is able to choose the server-validated certificate, resulting in authentication bypass...

Path Traversal

pimcore/pimcore is vulnerable to Path Traversal. The vulnerability exists due to a lack of validation in the CustomReportController.php file, which allows an attacker to access files outside the expected directory and download arbitrary files...

Reflected File Download

github.com/gin-gonic/gin is vulnerable to Reflected File Download. The vulnerability exists because the FileAttachment function of context.go does not properly sanitize the filename parameter, which allows an attacker to modify the Content-Disposition header and replace the .txt file name suffix...

Use-After-Free

xen is vulnerable to Use-After-Free. The vulnerability allows established shadow page tables to be freed again immediately, while other code is still accessible on the assumption that they would remain allocated...

Denial Of Services (DoS)

Google Chrome is vulnerable to Denial Of Services DoS. The vulnerability exists due to the type confusion in V8, which allows an attacker to potentially exploit heap corruption via a crafted HTML page...

Arbitrary Code Execution

vm2 is vulnerable to Arbitrary Code Execution. The vulnerability exists because the transformer function of transformer.js allows remote attackers to bypass handleException and leak unsanitized host exceptions to escape the sandbox and run arbitrary code in the host context...

Denial Of Service (DoS)

docker is vulnerable to Denial of Service DoS attacks. The injection of arbitrary ethernet frames allow remote attackers to enable denial of service attacks, such as establishing a UDP or TCP connection or smuggling packets into the overlay network...

Prototype Pollution

matrix-js-sdk is vulnerable to Prototype Pollution. Events sent with special strings in key places may disrupt or impede the library from functioning properly, potentially impacting the consumer's ability to process data safely...

Denial Of Service (DoS)

openssl is vulnerable to Denial of Service DoS attacks. An attacker is able to create a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service DoS attack on affected systems...

Information Disclosure

jenkins-2-plugins is vulnerable to Information Disclosure. The webhook endpoint provides information about which jobs were triggered or scheduled for polling through its webhook endpoint, including jobs the user has no permission to access, resulting in disclosure of sensitive information...

Privilege Escalation

github.com/minio/minio is vulnerable to Privilege Escalation. The vulnerability exists in the AddUser and ImportIAM functions of admin-handlers-users.go because a user with consoleAdmin permissions can potentially create a user that matches the root credential accessKey. Once this user is created...

Denial Of Service (DoS)

Google Chrome is vulnerable to Denial Of Service DoS. The vulnerability exists due to the heap buffer overflow in the video, allowing an attacker to exploit heap corruption via a crafted HTML page, leading to an application crash...

Denial Of Service (DoS)

libtiff.so is vulnerable to Denial Of Service DoS. The vulnerability exists due to an out-of-bounds read causes by tiffcp in tiffcp.c which allows an attacker to cause an application crash via a crafted tiff file...

Information Disclosure

github.com/moby/buildkit is vulnerable to Information Disclosure. When a build request contains a Git URL with credentials, anyone with access to the build provenance attestation will be able to view the credentials issued. An attacker can use these Git credentials to access repositories...

Denial Of Service (DoS)

linux is vulnerable to Denial of Service DoS attacks. A malicious user is able to cause the application to crash via drivers/gpu/vmxgfx/vmxgfxkms.c in GPU component in the device file /dev/dri/renderD128...

Arbitrary Code Execution

elastic/elasticsearch is vulnerable to Arbitrary Code Execution. The vulnerability exists due to a redirect issue that leads to a user being redirected to an arbitrary website if they use a maliciously crafted kibana url...

Denial Of Service (DoS)

go is vulnerable to Denial of Service DoS attacks. Both clients and servers may send large TLS handshake records which cause servers and clients, respectively, to panic when attempting to construct responses...

Improper Signature Validation

Zip4j is vulnerable to Improper Signature Validation. The vulnerability is due to improper AES Message Authentication Code MAC validation when the MAC signature got corrupted in an encrypted ZIP archive. This flaw can result in an attacker modifying the archive without the library detecting the...

Type Confusion

openssl is vulnerable to type confusion. The vulnerability exists because it may allow an attacker to pass arbitrary pointers to a memcmp call, enabling them to read memory content...

LDAP Injection

sssd is vulnerable to LDAP Injection. The vulnerability exists because the libssscertmap fails to sanitize certificate data used in LDAP filters...

Denial Of Service (DoS)

bind is vulnerable to Denial of Service DoS. The vulnerability exists because named configured to answer from stale cache may terminate unexpectedly at recursive-clients soft quota causing an application crash...

Denial Of Service (DoS)

kernel is vulnerable to Denial of Service DoS attacks. A race condition may lead to a NULL pointer dereference and general protection fault via VTRESIZEX ioctl, resulting in an application crash...

Denial Of Service (DoS)

openjdk is vulnerable to Denial of Service DoS. A remote attacker is able to cause a partial denial of service conditions resulting in application crashes...

Remote Code Execution(RCE)

libxpm is vulnerable to Remote Code ExecutionRCE. When processing .Z or .gz file extensions, the library calls external programs to compress and uncompress files. This could allow a malicious user to execute other programs by manipulating the PATH environment variable...

Privilege Escalation

samba is vulnerable to Privilege Escalation. The Netlogon RPC implementations uses the rc4-hmac encryption algorithm, which is considered weak and should be avoided even if the client supports more modern encryption types, which allows an attacker who knows the plain text content communicated...