38332 matches found
Denial Of Service (DoS)
ImageMagick is vulnerable to denial of service DoS. A flaw in MagickWand/mogrify.c causes memory leaks, allowing an attacker to input a malicious image file to trigger an application crash...
Prototype Pollution
yargs-parser is vulnerable to prototype pollution. The attack exists as it does not properly sanitize the key value provided by users, allowing the malicious properties of Object.prototype to be parsed or modified using a proto payload...
Remote Code Execution
chakracore is vulnerable to remote code execution RCE. This is due to how the scripting engine handles objects in memory, allowing a remote attacker to execute arbitrary code in the context of the current user. This CVE ID is different from CVE-2020-0768, CVE-2020-0823, CVE-2020-0825,...
Remote Code Execution
pyyaml is vulnerable to arbitrary code execution. The vulnerability exists as .yaml files are parsed by FullLoader uses the unsafe yaml.load by default...
Information Disclosure
ansible is vulnerable to information disclosure. Another user on the same computer can read the old and new secret during execution of ansible-vault edit due to overly permissive permissions...
Remote Code Execution (RCE)
jsreport is vulnerable to remote code execution RCE. Of a variety of packages it consists, the Script-manager utilized for running user's scripts in a sandbox has an unintended require vulnerability and Puppeteer utilized for turning user's HTML into pdf files has SSRF Server Side Request Forgery...
Certificate Spoofing
github.com/golang/go is vulnerable to certificate spoofing. A Windows vulnerability allows attackers to spoof valid certificate chains when the system root store is in use...
Remote Code Execution
.NET software is vulnerable to remote code execution. Failure to validate the source markup of a file allows an attacker to execute code in the context of the application upon successful exploitation of the vulnerability. This CVE ID is different from CVE-2020-0605...
Information Disclosure
Apache Kafka connect-runtime is vulnerable to information disclosure. Improper usage of regex matching in the Connect REST API exposes plaintext secrets through the tasks endpoint if the config value contains additional characters...
Denial Of Service (DoS)
ecstatic is vulnerable to a denial of service DoS. When an attacker provides a URL parameter with symbols such as \x0c, it leads to a redirection from /existing-dir-name?\x0cfoo to /existing-dir-name/?\x0cfoo and causes TypeError: The header content contains invalid characters error, possibly...
Insecure Random Generator
github.com/miekg/dns uses an insecure random generation for transaction IDs. The default Id function uses an insecure math/rand function, resulting in predictable output and allowing an attacker to exploit the vulnerability to forge responses without being on path...
Arbitrary Code Execution
libssh.so is vulnerable to arbitrary code execution. When SCP client connects to a server, the function sshscpnew executed unsanitized scp-location parameter provided by the user, allowing a malicious user to inject arbitrary command through it...
Denial Of Service (DoS)
Mozilla firefox is vulnerable to denial of service DoS. The vulnerability exists through a use-after-free error when performing device orientation checks...
Remote Code Execution
jackson-databind is vulnerable to remote code execution. The application does not block the commons-configuration and commons-configuration2 classes during deserialization, which would allow a remote attacker to leverage the vulnerability to execute arbitrary code...
Authorization Bypass
infinispan is vulnerable to authorization bypass. The vulnerability exists as the invokeAccessibly method in the ReflectionUtil class allows the invokation of any private methods with Infinispan's privileges...
Remote Code Execution
Microsoft.ChakraCore is vulnerable to remote code execution. This is due to the way the ChakraCore scripting engine handles objects in memory which could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. This CVE ID is different from...
Denial Of Service (DoS)
kernel is vulnerable to denial of service DoS. The vulnerability exists through a use-after-free in arch/x86/lib/insn-eval.c...
Arbitrary File Overwrite
github.com/containers/libpod is vulnerable to arbitrary file overwrite. The vulnerability exists as it does not properly perform symlink processing and wild-card characters parsing, allowing for overwriting of existing files when an undesired glob operation occurs...
Denial Of Service (DoS)
OpenJDK is vulnerable to denial of service DoS. The vulnerability exists it is possible to cause excessive memory allocation in CMap when reading TrueType font...
Use-After-Free
firefox is vulnerable to use-after-free. The vulnerability exists due to the manipulating video elements which allows an attacker to do a potentially exploitable crash in the application...
Information Disclosure
PHP is vulnerable to Information disclosure. When an attacker supplies malicious data, it causes the funciton gdImageCreateFromXbm to use the value of uninitialized variable...
Buffer Overflow
libpng is vulnerable to buffer overflow. The attack exists because of a flaw in PNM decoding which causes a stack overflow in the function gettoken in pnm2png.c in pnm2png...
Denial Of Service (DoS)
openjdk is vulnerable to denial of service. It was discovered that the implementation of the Throwable class in the Utilities component of OpenJDK did not sufficiently validate serial stream before deserializing suppressed exceptions. A specially-crafted input could cause a Java application to...
Authorization Bypass
python is vulnerable to authorization bypass. The localfile: scheme allows for remote attackers to bypass protection mechanisms that blacklist file: URIs, as demonstrated by triggering a urllib.urlopen'localfile:///etc/passwd' call...
Buffer Overflow
QEMU is vulnerable to buffer overflows. A remote, unauthenticated attacker could cause a system crash due to device tree size manipulation before buffer allocation leading to denial of service conditions. Affected by this issue is the function loadimage of the file devicetree.c...
Denial Of Service (DoS)
imagemagick is vulnerable to denial of service. A use of uninitialized value flaw in the function ReadCUTImage in coders/cut.c allows an attacker to crash the application...
Unsafe Deserialization
jackson-databind is vulnerable to arbitrary code execution via unsafe deserrialization. Lack of object validation before deserialization allows an attacker to execute arbitrary code using polymorphic deserialization of a malicious gadget type...
Buffer Overflow
Mozilla Thunderbird is vulnerable to buffer overflow. It does not use correct alias information in IonMonkey JIT compiler for MArraySlice in Array.prototype.slice method...
Denial Of Service (DoS)
IBM SDK is vulnerable to denial of service DoS attacks. The vulnerability exists in the java.math component in IBM SDK. An attacker could cause a denial of service condition with specially crafted String data...
Denial Of Service (DoS)
Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 3.11.82. See the following advisory for the container...
Privilege Escalation
PostgreSQL is vulnerable to privilege escalation vulnerability. This is because INSERT ... ON CONFLICT DO UPDATE commands in PostgreSQL. A low privileged attacker without full read access but with both INSERT and UPDATE access could read the sensitive information of the table contents...
Denial Of Service (DoS)
Linux kernel is vulnerable to denial of service DoS attacks. The vulnerability exists in an unknown code block in the library fs/xfs/libxfs/xfsattr.c of the component XFS File System because xfsattrshortformaddname in fs/xfs/libxfs/xfsattr.c mishandles ATTRREPLACE operations with conversion of an...
Privilege Escalation
Linux kernel is vulnerable to privilege escalation vulnerability. This exists in the function inodeinitowner of the file fs/inode.c. Local users could create files with an unintended group ownership and SGID permission bits set, when a directory is SGID and belongs to a certain group and is...
Denial Of Service (DoS)
Linux kernel is vulnerable to denial of serviceDoS attacks. The xfsdinodeverify function in fs/xfs/libxfs/xfsinodebuf.c in the Linux kernel could cause a NULL pointer dereference in xfsilockattrmapshared function. An attacker could exploit this by mounting a crafted xfs filesystem image to cause ...
Memory Corruption
Linux kernel is vulnerable to memory corruption vulnerability. This is because the ALSA sequencer core initializes the event pool on demand by invoking sndseqpoolinit when the first write happens and the pool is empty. A user can reset the pool size manually via ioctl concurrently causing an...
Information Disclosure
Java SE is vulnerable to information disclosure. A remote attacker could exploit the flawed JavaFX component to partially access data resulting in disclosure of sensitive information...
Use After Free
PHP is vulnerable to use after free vulnerability. The vulnerability exists in the wddxstackdestroy function in ext/wddx/wddx.c in PHP. Remote attackers could cause a denial of service or possibly have unspecified other impact via a wddxPacket XML document that lacks an end-tag for a recordset...
Out-Of-Bounds Read
PHP is vulnerable to out-of-bounds read attacks. This exists in the phpwddxpushelement function in ext/wddx/wddx.c which allows remote attackers to cause a denial of service or possibly have unspecified other impact via an empty boolean element in a wddxPacket XML document...
Denial Of Service (DoS)
Oracle Java SE is vulnerable to denial of service DoS attacks. The vulnerability exists in an unknown function of the component Security. An unauthenticated attacker with network access via multiple protocols could compromise Java SE, Java SE Embedded, JRockit causing a parital denial of service...
Arbitrary Code Execution
Linux kernel is vulnerable to buffer overflow vulnerability. This is due to a lack of input filtering of incoming fragmented datagrams was found in the IP-over-1394 driver firewire-net in a fragment handling code in the Linux kernel. Remote attackers could execute arbitrary code via crafted...
Privilege Escalation
RubyGems is vulnerable to privilege escalation attacks. A remote, unauthenticated attacker could elevate their privileges by interacting with the terminal via the use of escape sequences with a specifically crafted gem. Improper sanitization of gems' specification text enables the attacker to...
Denial Of Service (DoS)
Oracle MySQL is vulnerable to denial of serviceDoS attacks. A remote user could exploit a flaw in the Server: Pluggable Auth component which allows unauthorized attackers to cause frequently repeatable crash on the target system...
Denial Of Service (DoS)
QEMU is vulnerable to denial of service attacks. A remote attacker could cause memory exhaustion resulting in denial of service. The vulnerability exists in the file audio/audio.c of the component Audio Capture and exploitable via repeatedly starting and stopping audio capture...
Denial Of Service (DoS) Through Divide By Zero
QEMU is vulnerable to denial of serviceDoS through divide by zero attacks. The vulnerability occurs while copying VGA data when cirrus graphics mode was set to be VGA. A privileged user inside guest could use this flaw to crash the Qemu process instance on the host, resulting in an application...
Denial Of Service (DoS)
QEMU is vulnerable to denial of serviceDoS attacks. This occurs in the xhciringfetch function in hw/usb/hcd-xhci.c which allows local guest OS administrators to cause a denial of service condition by leveraging failure to limit the number of link Transfer Request Blocks TRB to process...
Denial Of Service (DOS)
Linux kernel is vulnerable to the Linux kernel since 3.6-rc1 with 'net.ipv4.tcpfastopen' set to 1 can hit BUG statement in tcpcollapse function after making a number of certain syscalls. Local users could cause an application crash via a crafted application that makes sendto system calls, related...
Privilege Escalation
Java SE, Java SE Embedded and JRockit are vulnerable to privilege escalation attacks. A remote, unauthenticated attacker could submit malicious input leading to the exploitation of the flawed Security component to gain elevated privileges. Successful attacks could result in takeover of Java SE,...
Denial Of Service
Java SE and Java SE Embedded are vulnerable to denial of serviceDoS attacks. A remote user can exploit a flaw in the Serialization component to cause application crash resulting in partial denial of service conditions...
Denial Of Service (DOS)
Linux Kernel is vulnerable to denial of service DOS attacks. This is because Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack...
NULL Pointer Dereference
JasPer is vulnerable to NULL pointer dereference. A remote attacker could cause denial of service via a crafted BMP image in an imginfo command. This issue affects the function bmpgetdata of the file libjasper/bmp/bmpdec.c of the component imginfo...