38333 matches found
Denial Of Service (DoS)
vim is vulnerable to Denial Of Service DoS. The vulnerability exists due to the null pointer dereference in the library, which allows an attacker to cause an application crash...
Denial Of Service (DoS)
sofia-sip is vulnerable to Denial of Service DoS attacks. An attacker is able to send a message with evil sdp to FreeSWITCH, which may cause an application crash with the use of a URL ending with %...
Authentication Bypass
curl is vulnerable to Authentication Bypass. The vulnerability exists because the SSH connection is too eager to reuse still since it keeps previously used connections in a connection pool for subsequent transfers to reuse if one of them matches the setup...
Denial Of Service (DoS)
vim is vulnerable to Denial Of Service DoS. The vulnerability exists due to the heap-based buffer overflow in the library, which allows an attacker to cause an application crash...
Denial Of Service (DoS)
Google Chrome is vulnerable to Denial Of Service DoS. The vulnerability exists due to the use after free in the Web Payments API, which allows an attacker to compromise the renderer process to potentially exploit heap corruption via a crafted HTML page, leading to an application crash...
Denial Of Service (DoS)
Google Chrome is vulnerable to Denial Of Service DoS. The vulnerability exists due to the use after free in the SwiftShader, which allows an attacker to potentially exploit heap corruption via a crafted HTML page, leading to an application crash...
Denial Of Service (DoS)
Linux kernel is vulnerable to Denial Of Service DoS. The vulnerability exists due to the use after free in the SGI GRU driver because of the way the first grufileunlockedioctl function is called by the user, where a failed pass occurs in the grucheckchipletassignment function, allowing an attacke...
Use-After-Free
Linux Kernel is vulnerable to Use-After-Free. A bug available in 'icskulpdata' of 'inetconnectionsock'. If 'CONFIGTLS' is enabled, an attacker could install a tls context leading to privilege escalation...
Denial Of Service (DoS)
Linux Kernel is vulnerable to Denial Of Service DoS. The vulnerability exists because an attacker can cause race condition on followpagepte function of gup.c, leading to an application crash...
Privilege Escalation
firefox is vulnerable to Privilege Escalation. An attacker is able to change their resource allocations, promote containers to privileged mode, or potentially add ssh authorized keys to a remote shell on the target machine by creating new files on the host system. In order for an attacker to...
LDAP Injection
ldap-backend is vulnerable to LDAP Injection. The vulnerability exists because the doGetIdentity function in LdapIdentityBackend.java does not properly filter the object class, allowing an attacker to inject and execute malicious LDAP query's through the principalName parameter...
Arbitrary Code Execution
MongoDB.Bson is vulnerable to Arbitrary Code Execution. The vulnerability exists because the library does not properly filter AllowedTypes when deserializing an object, allowing a privileged attacker to inject and execute malicious code through the ObjectSerializer in specific situtations. The...
Heap-Based Buffer Overflow
libtiff.so is vulnerable to Heap-Based Buffer Overflow. An attacker is able to trigger buffer overflows by parsing a specially crafted TIFF image in the processCropSelections function of tools/tiffcrop.c...
Denial Of Service (DoS)
net-snmp is vulnerable to Denial Of ServiceDoS. The vulnerability exists in handleipDefaultTTL in agent/mibgroup/ip-mib/ipscalars.c via a NULL Pointer Exception bug that which could be used by a remote attacker to cause the instance to crash via a crafted UDP packet...
Remote Code Execution (RCE)
dubbo-cluster is vulnerable to remote code execution. The vulnerability exists in the doInvoke function of BroadcastClusterInvoker.java as it does not properly handle FastJson when invoking the invoke handler and later processes in PojoUtils.realize, allowing an attacker to instantiate arbitrary...
Security Restrictions Bypass
sqlite is vulnerable to security restrictions bypass. When relying on --safe for execution of an untrusted CLI script, it does not properly implement the azProhibitedFunctions protection mechanism, and instead allows UDF functions such as WRITEFILE...
Arbitrary Code Execution
webkitgtk is vulnerable to Arbitrary Code Execution. Processing maliciously crafted web content may lead to arbitrary code execution due to improper input validation, which allows an attacker with network access to pass specially crafted web content files, causing an application to halt, crash, o...
Reverse Tabnabbing
texthelpers is vulnerable to reverse tabnabbing. The vulnerability exists in multiple functions in translation.rb due to lack of proper regular expression which allows an attacker to use web links to untrusted targets with window.opener access...
Denial Of Service (DoS)
loofah is vulnerable to denial of service. The vulnerability exists due to uncontrolled recursion used in the CDATA sections of the library, which allows an attacker to cause an application crash through malicious input...
Privilege Escalation
DSInternals is vulnerable to privilege escalation. The vulnerability exists in the save function of RoamedCredential.cs because invalid characters are not properly parsed in windows roaming credential service which allows an attacker to write files on the file system with elevate privileges...
Denial Of Service (DoS)
xen is vulnerable to denial of service. The vulnerability exists because a missing cleanup call was inserted on an error handling path which allows an attacker to cause an application crash...
Denial Of Service (DoS)
xen is vulnerable to denial of service DoS attacks. P2M pool freeing may take excessively long te P2M pool backing second level address translation for guests may be of significant size. Therefore its freeing may take more time than is reasonable without intermediate preemption checks resulting i...
Cross-site Scripting (XSS)
moodle/moodle is vulnerable to cross-site scripting. The vulnerability exists due to a lack of validation in the user-supplied data policy tool in the validateUrlSyntax parameter of moodlelib.php which allows a remote attacker to inject and execute malicious JavaScript into the system...
Denial Of Service (DoS)
xen is vulnerable to denial of service. The vulnerability exists due to excessive memory allocation which allows an attacker to cause an application crash due to overflows...
Denial Of Service (DoS)
protobuf is vulnerable to denial of service. The vulnerability exists because of the unchecked call in the proto file's name during the generation of the resulting error message, allowing an attacker to cause an application crash by passing the incorrect symbol...
Use After Free
chromium is vulnerable to use-after-free. The vulnerability exists in Skia in Google Chrome which allows a remote attacker to potentially exploit heap corruption via a crafted HTML page...
Integer Overflow
libtiff.so is vulnerable to integer overflow. The vulnerability is due to memory corruption in tifgetimage.c, which allows the remote attacker to crash the application...
Privilege Escalation
github.com/grafana/grafana, is vulnerable to privilege escalation. The vulnerability exists due to the race condition in the authentication middlewares logic, allowing an attacker to query an administration endpoint under a heavy load...
Denial Of Service (DoS)
rh-mysql80-mysql is vulnerable to denial of service. An attacker can crash the application by providing a maliciously crafted input through the multiple protocols...
Denial Of Service (DoS)
rh-mysql80-mysql is vulnerable to denial of service. The vulnerability exists in the InnoDB component, allowing an attacker to cause an application crash through the multiple protocols...
Path Traversal
apache ivy is vulnerable to path traversal. The vulnerability exists due to lack of file path pattern checks in the getCachedDataFile function of DefaultRepositoryCacheManager.java, allowing an attacker to overwrite files outside of the local cache by using ../ in artifact coordinates...
Information Disclosure
samba is vulnerable to information disclosure. The vulnerability exists because the symlinks in user space with the intent doesn't properly check symlink targets to stay within the share that was configured by the administrator which allows an attacker to get access to all of the server's file...
Cross-Site Scripting (XSS)
apacheairflow is vulnerable to cross-site scripting. The vulnerability is due to the origin query argument in the getsafeurl function of views.py which allows an attacker to inject and execute arbitrary scripts...
Denial Of Service (DoS)
libtiff.so is vulnerable to denial of service DoS attacks. The vulnerability is due to.the TIFFmemcpy function in libtiff/tifunix.c allowing a remote attacker to cause an out-of-bounds write via a crafted tiff file, resulting in denial of service conditions...
Prototype Pollution
uglify-js is vulnerable to prototype pollution. The vulnerability exists in DEFNODE function of ast.js via the name variable which allows an attacker to inject malicious property resulting in prototype pollution...
Cross-Site Scripting (XSS)
github.com/go-gitea/gitea is vulnerable to cross-site scripting. The vulnerability is due to arguments in command.go given to git commands not being properly handled which allows an attacker to inject and execute arbitrary scripts...
Information Disclosure
grafana is vulnerable to information disclosure. The vulnerability exists in multiple functions due to forwarding login cookies in outgoing requests resulting in an attacker gaining access to cookies required to perform unauthorized actions...
HTTP Request Smuggling
Go is vulnerable to HTTP request smuggling. The vulnerability is due to a lack of sanitizations in the query parameter for ReverseProxy. Remote attackers can cause query parameter smuggling when a go proxy forwards a parameter with an unparseable value...
Remote Code Execution
HyperSQL Database is vulnerable to remote code execution. The vulnerability exists in the supportsJavaMethod function of HsqlDatabaseProperties.java due to the untrusted input process allowing an attacker to execute remote codes in the system...
Authorization Bypass
modsecurity-crs:sid is vulnerable to authorization bypass. The vulnerability exists due to encoded payload bypass detection, allowing an attacker to cause a specially malicious HTTP Content-Type header field...
Improper Access Control
chromium is vulnerable to improper access control. The vulnerability is because of an incorrect security ui due to a flaw found in the Full Screen of the Chromium browser which allows an attacker to perform unauthorized actions...
Arbitrary Code Execution
chromium is vulnerable to arbitrary code execution. The vulnerability exists due to use after free in logging which allows an attacker to inject and execute malicious codes in to the system...
Denial Of Service (DOS)
Bind9 is vulnerable to denial of service. The vulnerability is due to malformed EdDSA signatures, which result in memory leaks. An attacker can continuously spoof the target resolver, leading to denial of service...
Information Disclosure
spring-data-rest-webmvc is vulnerable to information disclosure. The vulnerability exists due to the improper implementation of the JSON patch in the library, allowing an attacker to get information about the hidden entity attributes through maliciously crafted HTTP requests...
Denial Of Service (DoS)
xstream is vulnerable to Denial Of Service DoS. The vulnerability exists due to the stack overflow in the processConverterAnnotations function of AnnotationMapper.java, allowing an attacker to cause an application crash by providing malicious input through the parser...
Denial Of Service (DoS)
sdk-server is vulnerable to denial of service. The vulnerability exists because the maximum number of monitored items per session does not properly configure in the getMaxMonitoredItems function of OpcUaServerConfigLimits.java, allowing an attacker to cause an application crash by sending multipl...
Denial Of Service (DoS)
github.com/helm/helm is vulnerable to denial of service DoS attacks. A remote authenticated attacker is able to cause an out of memory panic by supplying malicious string inputs to functions in the strvals package, resulting in denial of service conditions...
Use-After-Free
podman is vulnerable to use-after-free. An attacker could possibly crash or cause potential code execution in the system, under certain conditions, during the GPG signature verification...
Denial Of Service (DoS)
vim is vulnerable to remote code execution. The vulnerability exists due to a use after free allowing an attacker to crash the system via memory corruption...
Denial Of Service (DoS)
ImageMagick is vulnerable to Denial Of Service DoS. The vulnerability exists due to an integer overflow via the ExportIndexQuantum function, which then calls to the GetPixelIndex function, resulting in values outside the representable range being assigned for the unsigned char variables, leading ...