Information Disclosure

libvirt is vulnerable to information disclosure. An attacker is able to access files of other users when the system generates SELiinux MCS category pairs for VMs' dynamic labels...

Arbitrary Code Execution

htmldoc is vulnerable to arbitrary code execution. A double-free in the function pspdfexport in ps-pdf.cxx may result in a write-what-where condition, allowing an attacker to execute arbitrary code and denial of service...

Remote Code Execution (RCE)

chromium is vulnerable to remote code execution. The vulnerability exists due to a boundary error when processing untrusted HTML content in Autofill...

Denial Of Service (DoS)

linux kernel is vulnerable to denial of service. The vulnerability exists due to a NULL pointer dereference flaw was found in the Linux kernel's GPU Nouveau driver functionality...

Arbitrary Code Execution

unbound is vulnerable to arbitrary code execution. An integer overflow in the regional allocator via the ALIGNUP macro allows an attacker to execute arbitrary code on the host OS...

Denial Of Service (DoS)

trousers is vulnerable to denial of service. The vulnerability exists when daemon is started with root privileges, the creation of the system.data file is prone to symlink attacks which allows the tss user to create or corrupt existing files, which could possibly lead to a DoS attack...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. A NULL pointer dereference in drivers/tty/serial/8250/8250core.c:serial8250isainitports allows local users to cause a denial of service by using the p-serialin pointer which is uninitialized...

Denial Of Service (DoS)

glib:edge is vulnerable to denial of service. The function gbytesnew has an integer overflow on 64-bit platforms due to an implicit cast from 64 bits to 32 bits. The overflow could potentially lead to memory corruption...

Denial Of Service (DoS)

lz4 is vulnerable to denial of service. An integer overflow occurs when one of the memmove arguments is set to negative, resulting in an application crash...

Denial Of Service (DoS)

exim is vulnerable to denial of service. The vulnerability exists due to a Use After Free in smtpreset in certain situations that may be common for builds with OpenSSL...

Information Disclosure

chromium is vulnerable to information disclosure. The vulnerability exists due to insufficient data validation that allows a remote attacker to leak cross-origin data via a crafted HTML page...

Remote Code Execution (RCE)

laminas/laminas-http is vulnerable to remote code execution. An attacker is able to input malicious data as it does not verify the type of the file name as string before unlinking...

Denial Of Service (DoS)

github.com/containers/storage/commit is vulnerable to Denial Of Service DoS. The decompression functionality allows an attacker to crash the application by pulling in malicious tools that resembles podman or cri-o during container image pulls...

Regular Expression Denial Of Service (ReDoS)

hosted-git-info is vulnerable to regular expression denial of service ReDoS. An attacker can provide a malicious string via shortcutMatch in the function fromUrl in index.js to crash the application...

Regular Expression Denial Of Service (ReDos)

xstream is vulnerable to regular expression denial of service. A remote attacker is able to occupy a thread that consumes excessive CPU resources for long period of time...

Denial Of Service (DoS)

json-smart is vulnerable to denial of service DoS attacks. An unhandled NumberFormatException thrown from the function extractFloat in JSONParserBase.java allows a remote attacker to crash programs or leak sensitive information...

Cross-Site Scripting (XSS)

pki-core is vulnerable to cross-site scripting XSS. An attacker is able to inject and execute arbitrary Javascript in a user's browser via the request search page...

Denial Of Service (DoS)

LibTIFF is vulnerable to denial of service. When a crafted TIFF document is sent, a memory malloc failure in tifpixarlog.c causes an abort, resulting in a remote denial of service attack...

Remote Code Execution (RCE)

xstream is vulnerable to remote code execution. An attacker is able to manipulate the processed input stream and replace or inject objects which would result in the execution of arbitrary code loaded from a remote server...

Out-of-Bounds Access

openjpeg is vulnerable to out-of-bounds write. An attacker is able to inject a malicious input during conversion and encoding, causing an out-of-bounds write...

Denial Of Service (DoS)

ImageMagick is vulnerable to denial of service DoS. An attacker is able to send a malicious file to trigger undefined behavior in the form of math division by zero...

Information Disclosure

Python is vulnerable to information disclosure. The vulnerability exists because Lib/test/multibytecodecsupport.py CJK codec tests call eval on content retrieved via HTTP...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. An incorrect umask configuration during file or directory modification in the way user create and delete object using NFSv4.2 or newer, if both simultaneously accessing the NFS by the other process that is not using new NFSv4.2, allows a user with access...

Arbitrary Code Execution

chromium is vulnerable to arbitrary code execution. A use-after-free error in the Fonts component allows a remote attacker to execute arbitrary code on the target system when the victim visits a malicious web page...

Arbitrary Code Execution

github.com/golang/go is vulnerable to arbitrary code execution. The go command may execute arbitrary code at build time when users have “.” listed explicitly in their PATH and are running “go get” or build commands outside of a module or with module mode disabled...

DNS Cache Poisoning

dnsmasq is vulnerable to DNS cache poisoning. The vulnerability exists when getting a reply from a forwarded query, dnsmasq checks in forward.c:replyquery, which is the forwarded query that matches the reply, by only using a weak CRC32 hash of the query name...

Denial Of Service (DoS)

imagemagick is vulnerable to denial of service DoS. The vulnerability exists through the TIFFSetProfiles function in coders/tiff.c where TIFFGetField return values imply that data validation has occurred...

Remote Code Execution (RCE)

firefox is vulnerable to remote code execution. The vulnerability exists due to a use-after-free error when processing COOKIE-ECHO chunk in a SCTP packet. An attacker can inject malicious data to the browser, triggering a use-after-free error and execute arbitrary code on the system...

Denial Of Service (DoS)

open-iscsi is vulnerable to denial of service DoS. The vulnerability exists through an Out-of-Bounds read in the uIP TCP/IP Stack component when calculating the checksums for IP packets in upperlayerchksum in net/ipv4/uip.c...

Insecure XML Parsing

github.com/crewjam/saml does not perform secure XML parsing. An attacker is able to forge part of a signed XML document due to a lack of validation...

Denial Of Service (DoS)

imagemagick is vulnerable to denial of service DoS. The vulnerability exists in the ReadBMPImage function of the coders/bmp.c due to the infinite loop, allowing a malicious user to crash the application via a crafted bmp file...

Denial Of Service (DoS)

Artifex Software GhostScript is vulnerable to denial of service attacks. A remote attacker could cause buffer overflows in mjcolorcorrect in contrib/japanese/gdevmjc.c via a crafted PDF file resulting in denial of service conditions...

Arbitrary Code Execution

openexr is vulnerable to arbitrary code execution. An invalid write of size 8 in the storeSSE function in ImfOptimizedPixelReading.h could cause the application to crash or execute arbitrary code...

DNS Rebinding Attack

firefox is vulnerable to DNS rebinding attack. The vulnerability exists as DNS over HTTPS intentionally filters RFC1918 and related IP ranges from the responses as these do not make sense coming from a DoH resolver, and when a IPv4 address was mapped through IPv6...

Remote Code Execution (RCE)

XStream is vulnerable to remote code execution RCE. The processed stream at unmarshalling time contains type information to recreate the formerly written objects, and new instances are created based on these type information. The vulnerability allows an attacker to manipulate the processed input...

Information Disclosure

Linux kernel is vulnerable to Information Disclosure. The vulnerability exists due to insufficient access control in the Linux kernel driver for some IntelR Processors. This flaw may allow an authenticated user to potentially enable information disclosure through local access...

Arbitrary Code Execution

kernel is vulnerable to arbitrary code execution. A user-after-free occurs in trymergefreespace in fs/btrfs/free-space-cache.c when mounting malicious btrfs filesystem image and subsequently making a syncfs system call. This could potentially lead to arbitrary code execution on the OS...

Information Disclosure

WebKitGTK+ is vulnerable to information disclosure. Processing maliciously crafted web content may result in the disclosure of process memory...

Out-of-bounds (OOB) Read/Write

OpenEXR is vulnerable to out-of-bounds read/write. It is possible via std::vector out-of-bounds read and write in ImfTileOffsets.cpp...

Format String Attack

tensorflow is vulnerable to format string attacks. The vulnerability exists as the fill argument of tf.strings.asstring reaches a printf call without sanitization...

Denial Of Service (DoS)

wireshark is vulnerable to denial of service. An attacker is able to crash the MIME Multipart dissector by injecting a malformed packet onto the wire or by convincing a user to read a malicious packet trace file...

Arbitrary Code Execution

graphicsmagick is vulnerable to arbitrary code execution. The vulnerability exists through a NULL pointer dereference in the WritePCLImage function in coders/pcl.c during writes of monochrome images...

Denial Of Service (DoS)

qemu is vulnerable to denial of service DoS. The vulnerability exists through a race condition during file renaming, through v9fswstat in hw/9pfs/9p.c...

Denial Of Service (DoS)

graphicsmagick:xenial is vulnerable to denial of service DoS. A NULL pointer dereference vulnerability was found in the function ReadEnhMetaFile in coders/emf.c, which allows attackers to cause a denial of service via a crafted file...

Denial Of Service (DoS)

binutils:bionic is vulnerable to denial of service DoS. An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils. There is a heap-based buffer over-read in bfddoprnt in bfd.c because elfobjectp in elfcode.h mishandles an eshstrndx section of typ...

Man-in-the-Middle (MitM)

activemq-broker is vulnerable to man-in-the-middleMitM attack. It binds the server to jmxrmi entry after creating JMX RMI registry using LocateRegistry.createRegistry, leading to the connection to the registry without authentication and allowing rebinding of jmxrmi to any other entity. Therefore,...

Session Fixation

symphonycms/symphony-2 is vulnerable to session fixation. The vulnerability exists as it does not regenerate the user's PHPSESSID cookie value upon a successful authentication. If a user's PHPSESSID cookie value can be modified by means of application logic or another vulnerability, an attacker...

Denial Of Service (DoS)

SQLite is vulnerable to denial of service. An attacker is able to cause a denial of service segmentation fault condition via a malicious window-function query due to a mishandling during the AggInfo object's initialization...

Denial Of Service (DoS)

github.com/etcd-io/etcd is vulnerable to denial of service. An attacker is able to cause a panic in the decodeRecord method and a denial of service condition in a RAFT participant when decoding the WAL by forging a large frame size...

Information Disclosure

kernel is vulnerable to information disclosure. The prctl function can be used to enable indirect branch speculation even after it has been disabled. This same call will incorrectly report it being 'force disabled' when it is not...