Server Side Request Forgery (SSRF)

torchserve is vulnerable to Server Side Request Forgery SSRF. The vulnerability is caused by a missing input validation check in the default configuration for the property value of allowedurls, which is used to restrict URLs used to load the PyTorch model in the application. This can lead to an...

Information Disclosure

openjdk8 is vulnerable to Information Disclosure. An attacker can access the vulnerable library through the multiple network and gain read access to the subset of Oracle Java SE, Oracle GraalVM Enterprise Edition and Oracle GraalVM...

Improper Input Validation

chromium is vulnerable to Improper Input Validation. The vulnerability exists due to inappropriate implementation in Autofill in Google Chrome which allows a remote attacker to bypass navigation restrictions via a crafted HTML page...

Information Disclosure

gitlab is vulnerable to Information Disclosure. The vulnerability allows a project maintainer to access the DataDog integration API key from webhook logs resulting in disclosure of sensitive information...

Improper Filename Validation

Thunderbird is vulnerable to Improper Filename Validation. the vulnerability is due to a lack of preventing text direction override unicode characters in filename attachments. This can allow an attacker to attach an executable file, without the extension displayed as such...

Remote Code Execution (RCE)

org.apache.jena:jena is vulnerable to Remote Code Execution RCE. Lack of proper checking for user permissions in script functions allows an attacker to upload and execute malicious code on the system via a SPARQL query...

Denial Of Service (DoS)

johnzon-mapper is vulnerable to Denial Of Service DoS. The vulnerability exists because it does not validate JSON user input for large numbers, which allows an attacker to inject a large number which will then be parsed by BigDecimal, resulting in Denial of Service...

Type Confusion

qt5-qtwebengine is vulnerable to Type Confusion. A malicious attacker could remotely exploit heap corruption via a crafted HTML page...

Denial Of Service (DoS)

ImageMagick is vulnerable to Denial Of Service DoS. The vulnerability exists due to a stack-based buffer overflow in tiff.c which allows an attacker to cause an application crash...

Improper Input Validation

gitlab is vulnerable to Improper Input Validation. The vulnerability allows a malicious attacker to steal environment variables through the :sendmail delivery method via maliciously crafted email addresses...

Denial Of Service (DoS)

.NET is vulnerable to Denial of Service DoS attacks. The vulnerability is due to processing X.509 certificates, which allows a malicious user is to trigger an application crash by passing a crafted certificate...

Denial Of Service (DoS)

Struts 2 Core is vulnerable to Denial Of Service DoS. The vulnerability exists when a multipart request has non-file form fields which allows an attacker to cause an application crash...

Denial Of Services (DoS)

libssh.so is vulnerable to Denial Of Services DoS. The vulnerability exists due to a null pointer dereference during rekeying with algorithm guessing, which allows an attacker to cause an application crash when the client initiates rekeying with the firstkexpacketfollows flag in the KEXINIT messa...

SQL Injection

prestashop/prestashop is vulnerable to SQL injection. The vulnerability is due to improper sql sanitization in Db.php which allows an attacker to inject and execute malicious SQL queries...

Use After Free

ffmpeg is vulnerable to Use After Free. vulnerability occurs in 'libavcodec/pthreadframe.c' due to stale hwaccel state in worker threads which allows an attacker to trigger use after free...

Out-of-bounds Write

binutils is vulnerable to Out-of-bounds Write. This vulnerability results in a heap based buffer overflow within 'binutils-gdb/bfd/libbfd.c' in 'bfdgetl64'...

Privilege Escalation

virtualbox is vulnerable to Privilege Escalation. The vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability can result in unauthorized update, insert or delete...

Double Free

libxml2.so is vulnerable to Double Free. The initial byte of an empty string is used by xmlDictComputeFastKey to calculate a hash value, which is typically null-terminated but may be random if the string is a part of a bigger buffer, resulting in logic and memory errors, such as a double free...

Denial Of Service (DoS)

vim is vulnerable to Denial Of Service DoS. The vulnerability exists due to the null pointer dereference in the library, which allows an attacker to cause an application crash...

Denial Of Service (DoS)

Google Chrome is vulnerable to Denial Of Service DoS. The vulnerability exists due to the use after free in the Web Payments API, which allows an attacker to compromise the renderer process to potentially exploit heap corruption via a crafted HTML page, leading to an application crash...

Use-After-Free

Linux Kernel is vulnerable to Use-After-Free. A bug available in 'icskulpdata' of 'inetconnectionsock'. If 'CONFIGTLS' is enabled, an attacker could install a tls context leading to privilege escalation...

Privilege Escalation

haproxy, buster is vulnerable to Privilege Escalation. An attacker is able to change their resource allocations, promote containers to privileged mode, or potentially add ssh authorized keys to a remote shell on the target machine by creating new files on the host system. In order for an attacker...

Man-in-the-Middle (MitM)

gnutls is vulnerable to Man-in-the-Middle MitM. The vulnerability exists due to an error in the TLS RSA key exchange and allows remote attacker to decrypt the information...

NULL Pointer Dereference

openssl is vulnerable to NULL Pointer Dereference. The vulnerability exists because it can be triggered when an application tries to load malformed PKCS7 data which can lead to an application crash...

Heap-Based Buffer Overflow

libtiff.so is vulnerable to Heap-Based Buffer Overflow. An attacker is able to trigger buffer overflows by parsing a specially crafted TIFF image in the processCropSelections function of tools/tiffcrop.c...

Privilege Escalation

sudo is vulnerable to Privilege Escalation. The vulnerability exists due to mishandled extra arguments passed in the user-provided environment variables. which allows to attacker to append arbitrary entries to the list of files to process, leading to accessing user information...

Denial Of Service (DoS)

Linux Kernel is vulnerable to Denial Of Service DoS. The vulnerability exists in the i740 driver because the Userspace program could pass any values to the driver through the ioctl interface, which doesn't check the value of pixclock, causing a divide by zero error...

Security Restrictions Bypass

sqlite is vulnerable to security restrictions bypass. When relying on --safe for execution of an untrusted CLI script, it does not properly implement the azProhibitedFunctions protection mechanism, and instead allows UDF functions such as WRITEFILE...

Arbitrary Code Execution

webkitgtk is vulnerable to Arbitrary Code Execution. Processing maliciously crafted web content may lead to arbitrary code execution due to improper input validation, which allows an attacker with network access to pass specially crafted web content files, causing an application to halt, crash, o...

Arbitrary Code Execution

webkitgtk is vulnerable to Arbitrary Code Execution. Processing maliciously crafted web content may lead to code execution due to improper input validation, leading to memory corruption which allows an attacker with network access to pass specially crafted web content files, causing an applicatio...

Heap-Based Buffer Overflow

libpjsip.so is vulnerable to heap-based buffer overflow. An attacker is able to cause buffer overread by parsing a specially crafted STUN message with unknown attribute via multiple functions. This only affects applications using STUN including PJNATH and PJSUA-LIB...

Out-of-bounds Write

chromium is vulnerable to out of bounds write. The vulnerability exists in Lacros of the chromium browser which allows a remote attacker to perform an out of bounds memory write via a malicious HTML page, leading to arbitrary code execution on the target system...

Insufficient Policy Enforcement

chromium is vulnerable to insufficient policy enforcement. The vulnerability exists because of the file system api in google chrome which allows attackers to bypass file system restrictions via a crafted HTML page...

Privilege Escalation

DSInternals is vulnerable to privilege escalation. The vulnerability exists in the save function of RoamedCredential.cs because invalid characters are not properly parsed in windows roaming credential service which allows an attacker to write files on the file system with elevate privileges...

Denial Of Service (DoS)

github.com/containerd/containerd is vulnerable to denial of service. The vulnerability exists in the CRI stream server of httpstream.go due to exhausted memory on the host, which allows an attacker to cause an application crash via issuing a faulty command...

Improper Certificate Validation

nextcloud-desktop is vulnerable to improper certificate validation. The vulnerability exists due to man in the middle attacks in invalid TLS certificates which allows an attacker to take control of a machine between the client and the server...

SQL Injection

github.com/owncast/owncast is vulnerable to SQL Injection. A specifically crafted attack statement through the input parameters of persistence.go allows a malicious user to inject and execute arbitrary SQL queries on the target system...

Regular Expression Denial Of Service (ReDoS)

minimatch is vulnerable to Regular Expression Denial Of Service ReDoS. The vulnerability exists when calling the braceExpand function of minimatch.js with specific arguments, resulting in a denial of service...

Denial Of Service (DoS)

rh-mysql80-mysql is vulnerable to denial of service. The vulnerability exists in the InnoDB component, allowing an attacker to cause an application crash through the multiple protocols...

Denial Of Service (DoS)

rh-mysql80-mysql is vulnerable to denial of service. The vulnerability exists in the Server: Options component, allowing an attacker to cause an application crash and modify some MySQL Server accessible data through the multiple protocols...

Path Traversal

apache ivy is vulnerable to path traversal. The vulnerability exists due to lack of file path pattern checks in the getCachedDataFile function of DefaultRepositoryCacheManager.java, allowing an attacker to overwrite files outside of the local cache by using ../ in artifact coordinates...

Information Disclosure

samba is vulnerable to information disclosure. The vulnerability exists because the symlinks in user space with the intent doesn't properly check symlink targets to stay within the share that was configured by the administrator which allows an attacker to get access to all of the server's file...

Cross-Site Scripting (XSS)

apacheairflow is vulnerable to cross-site scripting. The vulnerability is due to the origin query argument in the getsafeurl function of views.py which allows an attacker to inject and execute arbitrary scripts...

Denial Of Service (DoS)

Linux kernel is vulnerable to denial of service. The vulnerability exists in mac80211 stack when parsing a multi-BSSID element which allows an attacker to execute arbitrary codes and crash the system...

HTTP Request Smuggling

Go is vulnerable to HTTP request smuggling. The vulnerability is due to a lack of sanitizations in the query parameter for ReverseProxy. Remote attackers can cause query parameter smuggling when a go proxy forwards a parameter with an unparseable value...

Prototype Pollution

mockery is vulnerable to prototype pollution. An attacker is able to pollute any future object creations by passing a crafted malicious payload to enable function in mockery.js via the key variable...

Denial Of Service (DoS)

lighttpd is vulnerable to denial of service. The vulnerability exists in gwbackend.c where there is a resource leak which will lead to a connection slot exhaustion after a large amount of anomalous TCP behavior causing an application crash...

Remote Code Execution

HyperSQL Database is vulnerable to remote code execution. The vulnerability exists in the supportsJavaMethod function of HsqlDatabaseProperties.java due to the untrusted input process allowing an attacker to execute remote codes in the system...

Authorization Bypass

modsecurity-crs:sid is vulnerable to authorization bypass. The vulnerability exists due to encoded payload bypass detection, allowing an attacker to cause a specially malicious HTTP Content-Type header field...

Arbitrary Code Execution

chromium is vulnerable to arbitrary code execution. The vulnerability exists due to use after free in logging which allows an attacker to inject and execute malicious codes in to the system...