38332 matches found
Denial Of Service (DoS)
asterisk is vulnerable to denial of service DoS. A respjsipsession crash was discovered in Asterisk Open Source. Upon receiving a new SIP Invite, Asterisk did not return the created dialog locked or referenced. This caused a gap between the creation of the dialog object, and its next use by the...
Denial Of Service (DoS)
subversion is vulnerable to denial of service. An unauthenticated remote attacker attacker is able to crash the application via the modauthzsvn module by requesting for a non-existing repository URL, if the server is using in-repository authz rules with the AuthzSVNReposRelativeAccessFile option...
Information Disclosure
firefox is vulnerable to information disclosure. The vulnerability exists by combining the slipstream research combined with a malicious webpage could have exposed both an internal network's hosts as well as services running on the user's local machine...
Privilege Escalation
xen is vulnerable to privilege escalation. The vulnerability exists through a data leak caused by an AMD IOMMU page-table entry that can be half-updated...
Prototype Pollution
gsap is vulnerable to prototype pollution. An attacker is able to exploit the vulnerability to inject arbitrary properties into existing construct prototypes and modify attributes such as proto, constructor and prototype...
Regular Expression Denial Of Service (ReDoS)
jquery-validation is vulnerable to regular expression denial of service. An insecure use of a regular expression to parse URLs allows an attacker to cause a denial of service condition via a malicious URL...
Arbitrary Code Execution
jasper is vulnerable to arbitrary code execution. An out-of-bounds write vulnerability in the jpc encoder allows an attacker to execute arbitrary code on the host OS via a malicious input...
Denial Of Service (DoS)
xen is vulnerable to denial of service DoS. The vulnerability exists in oxenstored, where a owner could give a node away, causing guest can run out of quota, or create an unbounded number of nodes owned by dom0, thus running xenstored out of memory...
Denial Of Service (DoS)
open-iscsi is vulnerable to denial of service DoS. The vulnerability exists through an Out-of-Bounds read in the uIP TCP/IP Stack component when calculating the checksums for IP packets in upperlayerchksum in net/ipv4/uip.c...
Denial Of Service (DoS)
openjpeg is vulnerable to denial of service. It is possible due to a heap-buffer-overflow in lib/openjp2/mqc.c which allows an attacker to cause an application crash...
Insecure XML Parsing
github.com/crewjam/saml does not perform secure XML parsing. An attacker is able to forge part of a signed XML document due to a lack of validation...
Denial Of Service(DoS)
chromium, sid is vulnerable to Denial of ServiceDoS. Inappropriate implementation in V8 in Google Chrome allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
Command Injection
node-notifier is vulnerable to remote code execution RCE. An attacker can send malicious commands via options params as it is not sanitized when being passed as an array...
Denial Of Service (DoS)
QEMU is vulnerable to denial of service attacks. An unauthenticated remote attacker could kill the QEMU process on the host due to an assertion failure in the network packet processing, resulting in a denial of service condition in nettxpktaddrawfragment in hw/net/nettxpkt.c...
Denial Of Service (DoS)
OpenEXR is vulnerabile to denial of service and arbitrary code execution. The vulnerability exist when an invalid write of size 1 in the bufferedReadPixels function could cause the application to crash or execute arbitrary code...
Denial Of Service (DoS)
ImageMagick is vulnerable to denial of service. An attacker is allowed to send an input value which is outside the range of representable values of type 'unsigned long' at MagickCore/statistic.c to trigger an application crash...
Regular Expression Denial Of Service (ReDoS)
Handlebars is vulnerable to Regular Expression Denial of Service. The attacker is able to force the parser into an endless loop through maliciously crafted templates...
XML External Entity (XXE)
typo3/cms-core is vulnerable to XML external entities XXE. The vulnerability exists as the libxml object in getRssItems of RssWidget.php does not disable external entities...
Remote Code Execution
unomi-plugins-base is vulnerable to arbitrary code execution. An insufficient fix for CVE-2020-11975 allows an attacker to bypass the allowlist and blocklist and remotely execute arbitrary code...
Cross-site Scripting (XSS)
typo3/fluid is vulnerable to cross-site scripting XSS. An attacker is able to inject and execute malicious script in a user's browser via 1 additionalAttributes arrays 2 ViewHelpers 3 Subclasses of AbstractConditionViewHelper...
Remote Code Execution (RCE)
XStream is vulnerable to remote code execution RCE. The processed stream at unmarshalling time contains type information to recreate the formerly written objects, and new instances are created based on these type information. The vulnerability allows an attacker to manipulate the processed input...
Information Disclosure
Linux kernel is vulnerable to Information Disclosure. The vulnerability exists due to insufficient access control in the Linux kernel driver for some IntelR Processors. This flaw may allow an authenticated user to potentially enable information disclosure through local access...
Denial Of Service (DoS)
github.com/hashicorp/consul is vulnerable to denial of service DoS. Incorrect use of namespaces in comparisons allow an attacker to send infinite Raft writes to cause a namespace replication bug, leading to a resource exhaustion and an application crash...
Arbitrary File Overwrite
libreoffice is vulnerable to arbitrary file overwrite. Forms allowed to be submitted to any URI could result in local file overwrite...
Denial Of Service (DoS)
qt5-qtwebsockets is vulnerable to denial of service. An insecure websocket implementation allows only limited size for frames and messages and allows an attacker to cause a denial of service...
Denial Of Service (DoS)
kernel is vulnerable to denial of service DoS.Two memory leaks in the rtlusbprobe function in 'drivers/net/wireless/realtek/rtlwifi/usb.c' allows an attacker to crash the application...
Privilege Escalation
wordpress is vulnerable to privilege escalation. Using XML-RPC allows an unprivileged user to comment on a post as wp-includes/class-wp-xmlrpc-server.php does not enforce the permission to restrict it...
Cross-site Scripting (XSS)
react-native-webview is vulnerable to cross-site scripting XSS. The vulnerability exists through the lack of policy enforcement that allows cross-origin iframes to execute arbitrary JavaScript in the top-level document. The vulnerability exists on all applications running on systems with an Andro...
Arbitrary Code Execution
webkitgtk4 is vulnerable to arbitrary code execution. The vulnerability exists through memory corruption...
Arbitrary Code Execution
webkitgtk4 is vulnerable to arbitrary code execution. The vulnerability exists through a use-after-free issue in the WebKit component...
Opren Redirect
modauthopenidc is vulnerable to open redirect. Open redirect in logout url when using URLs with leading slashes...
Out-of-bounds (OOB) Read/Write
OpenEXR is vulnerable to out-of-bounds read/write. It is possible via std::vector out-of-bounds read and write in ImfTileOffsets.cpp...
Denial Of Service (DoS)
brotli is vulnerable to denial of service. A buffer overflow vulnerability exists where an attacker can crash the application by controlling the input length of a one-shot decompression request to a script. This happens when copying over chunks of data larger than 2 GiB...
Buffer Overflow
The implementation of realpath used within Node.js incorrectly determined the buffer size which can result in a buffer overflow if the resolved path is longer than 256 bytes...
Denial Of Service (DoS)
wireshark is vulnerable to denial of service DoS. The vulnerability exists due to insufficient validation of user-supplied input within the BLIP dissector in Wireshark...
Denial Of Service (DoS)
sqlite3 is vulnerable to denial of service DoS. The vulnerability exists as the WITH stack continues to unwind even after a parsing error in selectExpander in select.c...
Denial Of Service (DoS)
linux is vulnerable to denial of service DoS. The vulnerability exists as aufs improperly managed inode reference counts in the vfsubdentryopen method...
Denial Of Service (DoS)
qemu is vulnerable to denial of service DoS. The vulnerability exists through a race condition during file renaming, through v9fswstat in hw/9pfs/9p.c...
Information Disclosure
squid3 is vulnerable to information disclosure. The vulnerability exists due to incorrect data management when processing HTTP Digest Authentication where nonce tokens that contain the raw byte value of a pointer that sits within heap memory allocation, reducing ASLR protections...
Remote Code Execution (RCE)
php7.0 is vulnerable to remote code execution RCE. University of Washington IMAP Toolkit 2007f on UNIX, as used in imapopen in PHP and other products, launches an rsh command by means of the imaprimap function in c-client/imap4r1.c and the tcpaopen function in osdep/unix/tcpunix.c without...
Denial Of Service (DoS)
graphicsmagick:xenial is vulnerable to denial of service DoS. The DrawImage function in magick/render.c in GraphicsMagick does not properly look for pop keywords that are associated with push keywords, which allows remote attackers to cause a denial of service negative strncpy and application cra...
Privilege Escalation
linux is vulnerable to privilege escalation. The vulnerability exists as a reference count is mishandled in rxqueueaddkobject and netdevqueueaddkobject in net/core/net-sysfs.c...
Denial Of Service (DoS)
QEMU is vulnerable to denial of service DoS. es1370transferaudio in hw/audio/es1370.c does not properly validate the frame count, which allows guest OS users to trigger an out-of-bounds access during an es1370write operation...
Information Disclosure
thunderbird is vulnerable to information disclosure. The vulnerability exists as the S/MIME specification allows a Cipher Block Chaining CBC malleability-gadget attack that can indirectly lead to plaintext exfiltration...
Arbitrary Code Execution
GraphicsMagick is vulnerable to arbitrary code execution. A heap-based buffer over-read in ReadOneJNGImage in coders/png.c allows an attacker to execute arbitrary code on the host OS...
Denial Of Service (DoS)
qemu:xenial is vulnerable to denial of service DoS.The 1 v9fscreate and 2 v9fslcreate functions in hw/9pfs/9p.c in QEMU aka Quick Emulator allow local guest OS privileged users to cause a denial of service file descriptor or memory consumption via vectors related to an already in-use fid...
Remote Code Execution (RCE)
ojdbc7 is vulnerable to remote code execution RCE. The vulnerability exists in the JDBC component of the Oracle Database Server...
SQL Injection
hibernate-core is vulnerable to SQL injection. The vulnerability exists in Hibernate ORM...
Arbitrary Code Execution
WebKitGTK is vulnerable to arbitrary code execution. A memory corruption issue use-after-free allows an attacker to execute arbitrary code...
Denial Of Service (DoS)
Perl is vulnerable to denial of service DoS. It allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow...