Arbitrary Command Execution

org.jupiter-rpc:jupiter-serialization-kryo is vulnerable to Arbitrary Command Execution. The vulnerability is due to improper configuration which allows remote class loading. The deserialization vulnerability allows an attacker to execute arbitrary commands via crafted RPC requests...

Improper Access Control

codeberg.org/forgejo/forgejo is vulnerable to Improper Access Control. The vulnerability exists because certain endpoints do not properly check permissions of the object passed to the repository. This allows remote attackers to read private issues, read private pull requests, delete issues, and...

Use After Free

Google Chrome is vulnerable to Use After Free. The vulnerability exists in libavif, potentially enabling an attacker to exploit heap corruption through a maliciously crafted AVIF file...

Use After Free

Google Chrome is vulnerable to Use After Free. The vulnerability exists in libavif, potentially enabling an attacker to exploit heap corruption through a maliciously crafted AVIF file...

Use After Free

Google Chrome is vulnerable to Use After Free. The vulnerability exists in WebAudio, potentially enabling an attacker to exploit heap corruption through a maliciously crafted HTML page...

Use After Free

Google Chrome is vulnerable to Use After Free. The vulnerability exists in Mojo, potentially enabling an attacker to exploit heap corruption through a maliciously crafted HTML page...

Integer Overflow

Google Chrome is vulnerable to Integer Overflow. The vulnerability exists in the Skia component of the library. An attacker who has compromised the renderer process may potentially perform a sandbox escape through a malicious file...

Type Confusion

Google Chrome is vulnerable to Type Confusion. The vulnerability exists in the Spellcheck component of the library. An attacker who has compromised the renderer process may potentially perform heap corruption via a crafted HTML page...

Side Channel Attack

libgnutls.so is vulnerable to a Side Channel Attack. The vulnerability exists due to inconsistent constant response times of ciphertexts with correct vs incorrect PKCS1 paddings, which allows an attacker to infer sensitive information...

CRLF Injection

aiohttp is vulnerable to CRLF Injection attack. The vulnerability arises due to improper HTTP version validation in aiohttp/clientreqrep.py. An attacker can preform CRLF injection if they have the ability to modify the HTTP version in the request header...

Regular Expression Denial Of Service (ReDoS)

@adobe/css-tools is vulnerable to Denial Of Service. The vulnerability is due to exponential regex backtracking when parsing CSS in the parse method of src/parse/index.ts, which can result in Denial of Service...

Memory Leak

libxml2.so is vulnerable to Memory Leak. The vulnerability is due to use-after-free in the xmlUnlinkNode function in tree.c. An attacker could submit a crafted XML document, which would result in Denial of Service...

SQL Injection

Apache Cocoon is vulnerable to SQL Injection. The vulnerability is due to the DatabaseCookieAuthenticatorAction class improperly sanitizing parameters used in an SQL command. This issue can be exploited by an attacker by injecting malicious SQL commands resulting in SQL injection...

Arbitrary Code Execution

JFinal is vulnerable to Arbitrary Code Execution. The vulnerability exists because the login.jsp page is not properly restricted which allows an attacker to access and modify the content to inject and execute arbitrary code into the system...

Unrestricted File Upload

microweber/microweber is vulnerable to Unrestricted File Upload. The vulnerability is due to missing validation for the files types being uploaded. This allows a remote attacker to upload files with potentially malicious content, such as JavaScript files and execute arbitrary code...

XML External Entity (XXE) Injection

Apache Cocoon is vulnerable to XML External Entity XXE Injection. The vulnerability is due to improper XML parsing configuration in the StreamGenerator class, which allows an attacker to submit a malicious XML document, resulting in XXE. An attacker can exploit this flaw to read arbitrary files o...

Missing Authorization

DolphinScheduler is is vulnerable to Missing Authorization. The vulnerability is due to insufficient permission checks for UDF function operations in the resource center. This allowed logged-in users to delete UDF functions without proper authorization...

Integer Overflow

gst-plugins-good is vulnerable to Integer Overflow. The vulnerability exists in the avidemux element within the gstavidemuxinvert function, allowing a heap overwrite during the parsing of AVI files. This poses a potential risk of arbitrary code execution through the heap overwrite...

Integer Overflow

gst-plugins-good is vulnerable to Integer Overflow. The vulnerability exists in the matroskademux element within the gstmatroskademuxaddwvpkheader function, allowing a heap overwrite during the parsing of Matroska files. This poses a potential risk of arbitrary code execution through the heap...

Denial Of Service (DoS)

gst-plugins-good is vulnerable to Denial Of Service DoS. The vulnerability arises from an integer overflow in the matroskademux element within the bzip decompression function, leading to a potential segmentation fault or the risk of a heap overwrite...

Denial Of Service (DoS)

gst-plugins-good is vulnerable to Denial Of Service DoS. The vulnerability arises from an integer overflow in the matroskademux element within the gstmatroskadecompressdata function, leading to a potential segmentation fault or the risk of a heap overwrite...

Denial Of Service (DoS)

gst-plugins-good is vulnerable to Denial Of Service DoS. The vulnerability stems from an integer overflow in the matroskademux element within the gstmatroskadecompressdata function, attributed to the absence of size checks. This issue results in a heap overwrite during MKV demuxing using...

Denial Of Service (DoS)

gst-plugins-good is vulnerable to Denial Of Service DoS. The vulnerability stems from an integer overflow in the matroskademux element within the LZO decompression function, potentially causing a segmentation fault or the risk of a heap overwrite during MKV demuxing using LZO decompression...

Path Traversal

nodejs-current is vulnerable to Path Traversal. The vulnerability occurs due to the implementation not adequately protecting itself against applications overwriting built-in utility functions with user-defined implementations resulting in malicious attackers to gain unauthorized access to sensiti...

Path Traversal

nodejs-current is vulnerable to Path Traversal. The vulnerability is due to there is no proper neutralization for special elements within the pathname that specifically within the handling of file system paths by various node:fs functions. This vulnerability is the result of the way Node.js handl...

Out-of-bounds Read

gst-plugins-base is vulnerable to Out-of-bounds Read. The vulnerability exists when handling certain ID3v2 tags, which allows an attacker to cause an application crash...

Denial Of Service (DoS)

xen is vulnerable to Denial Of Service DoS. The vulnerability exists because any guest PV or HVM utilizing Debug Masks for its own purposes can cause incorrect behavior in an unrelated HVM vCPU. This issue is likely to result in a guest crash...

Denial Of Service (DoS)

xen is vulnerable to Denial Of Service DoS. The vulnerability exists because a PV vCPU can place a breakpoint over the live GDT. This allows the PV vCPU to exploit and lock up the CPU entirely...

NULL Pointer Dereference

xen is vulnerable to NULL Pointer Dereference. The vulnerability is due to the incorrect assumption in C Xenstored that the quota cannot be negative. This leads to a crash when accounting temporarily goes negative, as assert checks fail when tools are built with default settings, which do not...

Buffer Overflow

xen is vulnerable to Buffer Overflow. The vulnerability exists because the libfsimage is utilized by pygrub to inspect guest disks, creating a potential avenue for an attacker to induce a stack buffer overflow in libfsimage, ultimately resulting in an application crash...

Denial Of Service (DoS)

xen is vulnerable to Denial Of Service DoS. The vulnerability exists due to incorrect caching invalidation guidelines in the AMD-Vi specification 48882—Rev 3.07-PUB—Oct 2022 on certain hardware. Updating specific fields of the DTE without flushing the IOMMU TLB can lead to device malfunctions e.g...

Buffer Overflow

optipng is vulnerable to Buffer Overflow. The vulnerability exists in the 'buffer' variable at gifread.c, allowing an attacker to cause an application crash...

Denial Of Service (DoS)

quickjs is vulnerable to Denial Of Service DoS. The vulnerability exists due to the stack-overflow in the jsproxyisArray component at quickjs.c, allowing an attacker to cause an application crash...

Denial Of Service (DoS)

openjdk is vulnerable to Denial of Service DoS. The vulnerability applies to Java deployments, primarily clients running sandboxed Java Web Start applications or applets, that load untrusted code e.g., code from the internet and rely on the Java sandbox for security. Successful exploitation can...

Improper Authorization

openjdk is vulnerable to Improper Authorization. An unauthenticated attacker with network access via multiple protocols is able to potentially compromise the system and gain unauthorized access to some data. This vulnerability requires human interaction and primarily affects Java deployments...

Improper Authorization

openjdk is vulnerable to Improper Authorization. An unauthenticated attacker with network access is able to potentially compromise affected systems and gain unauthorized access to data. This vulnerability can be exploited through APIs and applies to Java deployments relying on the Java sandbox fo...

Information Disclosure

openjdk is vulnerable to Information Disclosure. The vulnerability allows an unauthenticated attacker to potentially compromise the system and gain access to sensitive information...

Information Disclosure

openjdk is vulnerable to Information Disclosure. An unathenticated attacker with network access via multiple protocols is able to potentially compromise the system and gain unauthorized access, resulting in disclosure of sensitive information...

Privilege Escalation

ffmpeg is vulnerable to Privilege Escalation...

Denial Of Service (DoS)

openjdk is vulnerable to Denial Of Service DoS. An attacker can cause an application crash through the multiple protocols by providing a malicious input...

Improper Access Control

openjdk8 is vulnerable to Improper Access Control. An attacker can unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data via CORBA...

Use After Free

Vim is vulnerable to Heap Based Use After Free. The vulnerability is caused when executing a :s command for the very first time and using a sub-replace-special atom inside the substitution part causing a free-ing of the memory because of recursive :s call which may later be accessed by the initia...

Out-of-bounds Read

libXpm is vulnerable to Out-of-bounds Read. The vulnerability is caused due to a boundary condition that can be exploited to read contents of memory of the system. An attacker can trigger this out-of-bounds read error compromising confidentiality of the system...

Out-of-bounds Read

libxpm is vulnerable to Out-of-bounds Read. The vulnerability is due to insufficient validation, incorrect handling of input data of buffer sizes within XpmCreateXpmImageFromBuffer function. This flaw allows an attacker to trigger an out-of-bounds read error via specially crafted input and read t...

Denial Of Service (DoS)

faad2 is vulnerable to Denial Of Service DoS. The vulnerability exists due to the buffer overflow in the stcoin function of mp4read.c, allowing an attacker to inject and execute malicious code and cause application crash...

Use-After-Free

pjproject is vulnerable to Use-After-Free. The vulnerability is due to the mishandling of SRTP and media transports other than UDP, leading to potential memory corruption...

Denial Of Service (DoS)

vorbis-tools is vulnerable to Denial Of Service DoS. The vulnerability exists due to the buffer overflow in the library, which allows an attacker to execute arbitrary code and cause a denial of service during the conversion of wav files to ogg files...

Use-After-Free

xorg-server is vulnerable to Use-After-Free. The vulnerability is triggered by warping the pointer between screens during shutdown or reset which could allow attackers to escalate privileges or crash the server...

Code Injection

dotnet is vulnerable to Code Injection. The vulnerability is due to lack of adequate validation for untrusted URIs provided to System.Net.WebRequest.Create. This allows an attacker can provide a specially crafted URI to the WebRequest.Create method, that could potentially execute arbitrary comman...

Use After Free

xorg-server is vulnerable to Use After Free. The vulnerability is caused when using X server in Zaphod mode a multi-screen setup with multiple protocol screens when the pointer is warped from within a window on one screen to the root window of the other screen and if the original window is...