Denial Of Service (DoS)

Struts 2 Core is vulnerable to Denial Of Service DoS. The vulnerability exists when a multipart request has non-file form fields which allows an attacker to cause an application crash...

Remote Code Execution (RCE)

System.Drawing.Common is vulnerable to Remote Code Execution RCE. The vulnerability exists because the library does not add the reference count to the graphics metafiles, which allows an attacker to inject and execute malicious code by providing maliciously crafted graphic files. This vulnerabili...

Denial Of Services (DoS)

libssh.so is vulnerable to Denial Of Services DoS. The vulnerability exists due to a null pointer dereference during rekeying with algorithm guessing, which allows an attacker to cause an application crash when the client initiates rekeying with the firstkexpacketfollows flag in the KEXINIT messa...

Directory Traversal

n8n is vulnerable to Directory Traversal. Improper input validation for the credentialType argument of the getCredentialTranslationPath function allows directory traversal via the /rest/credential-translation endpoint, resulting in file disclosure...

SQL Injection

prestashop/prestashop is vulnerable to SQL injection. The vulnerability is due to improper sql sanitization in Db.php which allows an attacker to inject and execute malicious SQL queries...

Information Disclosure

virtualbox is vulnerable to Information Disclosure. A high priviledged attacker with logon capabilities to the infrastructure,can comprimize virtualbox leading to information disclosure...

Use After Free

ffmpeg is vulnerable to Use After Free. vulnerability occurs in 'libavcodec/pthreadframe.c' due to stale hwaccel state in worker threads which allows an attacker to trigger use after free...

Denial Of Service (DoS)

frr is vulnerable to Denial of Service DoS. The vulnerability relies on a reachable assertion found within 'peekforas4capability' function. A malicious attacker may use this to construct and send BGP open packets to BGP peers causing a denial of serivce...

Out-of-bounds Write

binutils is vulnerable to Out-of-bounds Write. This vulnerability results in a heap based buffer overflow within 'binutils-gdb/bfd/libbfd.c' in 'bfdgetl64'...

Information Disclosure

samba is vulnerable to Information Disclosure. An attacker is able to obtain confidential BitLocker recovery keys from a samba AD DC, because confidential attribute disclosure vi LDAP filters was insufficient...

Information Exposure

github.com/minio/minio-go, is vulnerable to Sensitive Information Exposure. The vulnerability exists during cluster deployment due to a lack of sensitive environment variable masking in the MINIOSECRETKEY and MINIOROOTPASSWORD, allowing an attacker to exfiltrate sensitive tokens from the system...

Information Disclosure

Google Chrome is vulnerable to Information Disclosure. The vulnerability exists due to the inappropriate implementation in Paint, which allows an attacker to leak cross-origin data outside an iframe via a crafted HTML page...

Cross-site Scripting (XSS)

WordPress is vulnerable to Cross-site Scripting XSS. An authenticated attacker can inject and execute malicious javascript in to the system...

Denial Of Service (DoS)

vim is vulnerable to Denial Of Service DoS. The vulnerability exists due to the heap-based buffer overflow in the library, which allows an attacker to cause an application crash...

Denial Of Service (DoS)

Google Chrome is vulnerable to Denial Of Service DoS. The vulnerability exists due to the use after free in the Web Payments API, which allows an attacker to compromise the renderer process to potentially exploit heap corruption via a crafted HTML page, leading to an application crash...

Denial Of Service (DoS)

Google Chrome is vulnerable to Denial Of Service DoS. The vulnerability exists due to the use after free in the SwiftShader, which allows an attacker to potentially exploit heap corruption via a crafted HTML page, leading to an application crash...

Denial Of Service (DoS)

log4j:log4j is vulnerable to Denial of Service DoS attacks. The vulnerability is due to the Chainsaw or SocketAppender components processing a logging entry with either a deeply nested hashmap or hashtable, which can lead to memory exhaustion when the object is deserialized. An attacker can submi...

Use-After-Free

Linux Kernel is vulnerable to Use-After-Free. A bug available in 'icskulpdata' of 'inetconnectionsock'. If 'CONFIGTLS' is enabled, an attacker could install a tls context leading to privilege escalation...

Denial Of Service (DoS)

Linux kernel is vulnerable to Denial Of Service DoS. The vulnerability exists due to the null pointer dereference bug in the traffic control subsystem, allowing an attacker to cause an application crash via a crafted traffic control configuration that is set up with "tc qdisc" and "tc class"...

Privilege Escalation

haproxy, buster is vulnerable to Privilege Escalation. An attacker is able to change their resource allocations, promote containers to privileged mode, or potentially add ssh authorized keys to a remote shell on the target machine by creating new files on the host system. In order for an attacker...

Man-in-the-Middle (MitM)

gnutls is vulnerable to Man-in-the-Middle MitM. The vulnerability exists due to an error in the TLS RSA key exchange and allows remote attacker to decrypt the information...

Use-after-free

kernel is vulnerable to Use-after-free. A race condition between the VTDISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free resulting in an application crash...

Heap-Based Buffer Overflow

libtiff.so is vulnerable to Heap-Based Buffer Overflow. An attacker is able to trigger buffer overflows by parsing a specially crafted TIFF image in the processCropSelections function of tools/tiffcrop.c...

Denial Of Service (DoS)

Linux Kernel is vulnerable to Denial Of Service DoS. The vulnerability exists in the i740 driver because the Userspace program could pass any values to the driver through the ioctl interface, which doesn't check the value of pixclock, causing a divide by zero error...

Security Restrictions Bypass

sqlite is vulnerable to security restrictions bypass. When relying on --safe for execution of an untrusted CLI script, it does not properly implement the azProhibitedFunctions protection mechanism, and instead allows UDF functions such as WRITEFILE...

Arbitrary Code Execution

webkitgtk is vulnerable to Arbitrary Code Execution. Processing maliciously crafted web content may lead to arbitrary code execution due to improper input validation, which allows an attacker with network access to pass specially crafted web content files, causing an application to halt, crash, o...

Heap-Based Buffer Overflow

libpjsip.so is vulnerable to heap-based buffer overflow. An attacker is able to cause buffer overread by parsing a specially crafted STUN message with unknown attribute via multiple functions. This only affects applications using STUN including PJNATH and PJSUA-LIB...

Privilege Escalation

DSInternals is vulnerable to privilege escalation. The vulnerability exists in the save function of RoamedCredential.cs because invalid characters are not properly parsed in windows roaming credential service which allows an attacker to write files on the file system with elevate privileges...

Regular Expression Denial Of Service (ReDoS)

minimatch is vulnerable to Regular Expression Denial Of Service ReDoS. The vulnerability exists when calling the braceExpand function of minimatch.js with specific arguments, resulting in a denial of service...

Path Traversal

apache ivy is vulnerable to path traversal. The vulnerability exists due to lack of file path pattern checks in the getCachedDataFile function of DefaultRepositoryCacheManager.java, allowing an attacker to overwrite files outside of the local cache by using ../ in artifact coordinates...

Cross-Site Scripting (XSS)

apacheairflow is vulnerable to cross-site scripting. The vulnerability is due to the origin query argument in the getsafeurl function of views.py which allows an attacker to inject and execute arbitrary scripts...

Denial Of Service (DoS)

Linux kernel is vulnerable to denial of service. The vulnerability exists in mac80211 stack when parsing a multi-BSSID element which allows an attacker to execute arbitrary codes and crash the system...

HTTP Request Smuggling

Go is vulnerable to HTTP request smuggling. The vulnerability is due to a lack of sanitizations in the query parameter for ReverseProxy. Remote attackers can cause query parameter smuggling when a go proxy forwards a parameter with an unparseable value...

Prototype Pollution

mockery is vulnerable to prototype pollution. An attacker is able to pollute any future object creations by passing a crafted malicious payload to enable function in mockery.js via the key variable...

Authorization Bypass

modsecurity-crs:sid is vulnerable to authorization bypass. The vulnerability exists due to encoded payload bypass detection, allowing an attacker to cause a specially malicious HTTP Content-Type header field...

Arbitrary Code Execution

chromium is vulnerable to arbitrary code execution. The vulnerability exists due to use after free in logging which allows an attacker to inject and execute malicious codes in to the system...

Arbitrary File Write

postgresql-jdbc is vulnerable to arbitrary file writes. The vulnerability exists because the connection properties for configuring a pgjdbc connection are exposed which allows an attacker to specify arbitrary connection properties could lead to a compromise of a system...

Denial Of Service (DoS)

com.fasterxml.jackson.core:jackson-databind is vulnerable to Denial Of Service DoS. The vulnerability exists in deserializeWrappedValue function in StdDeserializer.java, which allows an attacker to cause denial of service conditions via a maliciously crafted input, due to the resource exhaustion...

Denial Of Service (DOS)

Bind9 is vulnerable to denial of service. The vulnerability is due to malformed EdDSA signatures, which result in memory leaks. An attacker can continuously spoof the target resolver, leading to denial of service...

Denial Of Service (DoS)

binutils is vulnerable to denial of service. The vulnerability exists due to an assertion fail in the displaydebugnames function in binutils/dwarf.c allowing an attacker to crash the system...

Denial Of Service (DoS)

sdk-server is vulnerable to denial of service. The vulnerability exists because the maximum number of monitored items per session does not properly configure in the getMaxMonitoredItems function of OpcUaServerConfigLimits.java, allowing an attacker to cause an application crash by sending multipl...

Denial Of Service (DoS)

github.com/helm/helm is vulnerable to denial of service DoS attacks. A remote authenticated attacker is able to cause an out of memory panic by supplying malicious string inputs to functions in the strvals package, resulting in denial of service conditions...

Authorization Bypass

chromium, sid is vulnerable to authorization bypass. The vulnerability exists due to an inappropriate implementation flaw was found in the extensions API component of the chromium browser...

Denial Of Service (DoS)

vim is vulnerable to remote code execution. The vulnerability exists due to a use after free allowing an attacker to crash the system via memory corruption...

Denial Of Service (DoS)

ImageMagick is vulnerable to Denial Of Service DoS. The vulnerability exists due to an integer overflow via the ExportIndexQuantum function, which then calls to the GetPixelIndex function, resulting in values outside the representable range being assigned for the unsigned char variables, leading ...

Denial Of Service (DoS)

vim/vim is vulnerable to denial of service. The vulnerability exists due to a null pointer dereference when deleting buffers in diff mode which allows an attacker to cause an application crash...

Out-of-bounds Write

vim is vulnerable to out-of-bounds write. The vulnerability exists due to invalid memory access after diff buffer manipulations in 1diffmarkadjusttp function in diff.c...

Cross-site Scripting (XSS)

core.wcm.components.core is vulnerable to cross-site scripting. The vulnerability exists because the stream function of AdaptiveImageServlet.java does not properly encode the imageName attribute, allowing an attacker to inject and execute malicious javascript through the crafted SVG image...

Denial Of Service (DoS)

unzip is vulnerable to denial of service. The vulnerability exists due to a heap of out-of-bound write during the conversion of a wide string to a local string allowing an attacker to crash the system via a maliciosuly crafted zip file...

Double Free

Linux kernel is vulnerable to double free. The vulnerability exists in usb8devstartxmit in drivers/net/can/usb/usb8dev.c because is no need to call devkfreeskb when usbsubmiturb fails because canputechoskb deletes original skb and canfreeechoskb deletes the cloned skb causing a double free...