Lucene search

K
DebianDebian Linux

9135 matches found

CVE
CVE
added 2022/04/18 5:15 p.m.67 views

CVE-2020-28631

Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead to code execution. An attacker can provide malicious input to trigger any of ...

10CVSS9.2AI score0.00318EPSS
CVE
CVE
added 2020/12/10 8:15 a.m.67 views

CVE-2020-29668

Sympa before 6.2.59b.2 allows remote attackers to obtain full SOAP API access by sending any arbitrary string (except one from an expired cookie) as the cookie value to authenticateAndRun.

4.3CVSS4.3AI score0.01086EPSS
CVE
CVE
added 2021/07/22 6:15 p.m.67 views

CVE-2021-35063

Suricata before 5.0.7 and 6.x before 6.0.3 has a "critical evasion."

7.5CVSS7.3AI score0.00902EPSS
CVE
CVE
added 2022/01/04 3:15 p.m.67 views

CVE-2021-3842

nltk is vulnerable to Inefficient Regular Expression Complexity

7.5CVSS7.4AI score0.0033EPSS
CVE
CVE
added 2021/09/01 3:15 p.m.67 views

CVE-2021-39847

XMP Toolkit SDK version 2020.1 (and earlier) is affected by a stack-based buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted file.

9.3CVSS7.7AI score0.00507EPSS
CVE
CVE
added 2022/11/01 1:15 p.m.67 views

CVE-2022-42313

Xenstore: guests can let run xenstored out of memory T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Malicious guests can cause xenstored to allocate vast amounts of memory, eventually resulting in a Denial of Service ...

6.5CVSS7AI score0.00046EPSS
CVE
CVE
added 2022/12/23 11:3 p.m.67 views

CVE-2022-43592

An information disclosure vulnerability exists in the DPXOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to leaked heap data. An attacker can provide malicious input to trigger this vulnerability.

5.9CVSS6.8AI score0.002EPSS
CVE
CVE
added 2022/12/23 11:3 p.m.67 views

CVE-2022-43602

Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability a...

8.1CVSS9.1AI score0.00321EPSS
CVE
CVE
added 2023/01/14 1:15 a.m.67 views

CVE-2023-23589

The SafeSocks option in Tor before 0.4.7.13 has a logic error in which the unsafe SOCKS4 protocol can be used but not the safe SOCKS4a protocol, aka TROVE-2022-002.

6.5CVSS6.2AI score0.00169EPSS
CVE
CVE
added 2004/12/06 5:0 a.m.66 views

CVE-2004-0456

Stack-based buffer overflow in pavuk 0.9pl28, 0.9pl27, and possibly other versions allows remote web sites to execute arbitrary code via a long HTTP Location header.

7.6CVSS7.7AI score0.01293EPSS
CVE
CVE
added 2004/08/06 4:0 a.m.66 views

CVE-2004-0522

Gallery 1.4.3 and earlier allows remote attackers to bypass authentication and obtain Gallery administrator privileges.

10CVSS6.6AI score0.00545EPSS
CVE
CVE
added 2005/02/09 5:0 a.m.66 views

CVE-2004-0981

Buffer overflow in the EXIF parsing routine in ImageMagick before 6.1.0 allows remote attackers to execute arbitrary code via a certain image file.

10CVSS7.3AI score0.07221EPSS
CVE
CVE
added 2005/03/01 5:0 a.m.66 views

CVE-2004-1052

Buffer overflow in the getnickuserhost function in BNC 2.8.9, and possibly other versions, allows remote IRC servers to execute arbitrary code via an IRC server response that contains many (1) ! (exclamation) or (2) @ (at sign) characters.

10CVSS7.7AI score0.01472EPSS
CVE
CVE
added 2006/04/14 10:2 a.m.66 views

CVE-2006-1531

Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, and SeaMonkey before 1.0.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors related to DHTML. NOTE: due to the lack of sufficient public details from the ...

7.5CVSS7.4AI score0.30625EPSS
CVE
CVE
added 2007/12/18 12:46 a.m.66 views

CVE-2007-6418

The libdspam7-drv-mysql cron job in Debian GNU/Linux includes the MySQL dspam database password in a command line argument, which might allow local users to read the password by listing the process and its arguments.

2.1CVSS6.2AI score0.00057EPSS
CVE
CVE
added 2008/03/19 10:44 a.m.66 views

CVE-2008-0063

The Kerberos 4 support in KDC in MIT Kerberos 5 (krb5kdc) does not properly clear the unused portion of a buffer when generating an error message, which might allow remote attackers to obtain sensitive information, aka "Uninitialized stack values."

7.5CVSS8.6AI score0.04745EPSS
CVE
CVE
added 2008/09/11 1:13 a.m.66 views

CVE-2008-3912

libclamav in ClamAV before 0.94 allows attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors related to an out-of-memory condition.

5CVSS5.9AI score0.02924EPSS
CVE
CVE
added 2008/09/29 5:17 p.m.66 views

CVE-2008-4302

fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle a failure of the add_to_page_cache_lru function, and subsequently attempts to unlock a page that was not locked, which allows local users to cause a denial of service (kernel BUG and system crash), as d...

5.5CVSS5.1AI score0.00147EPSS
CVE
CVE
added 2010/10/21 7:0 p.m.66 views

CVE-2010-4040

Google Chrome before 7.0.517.41 does not properly handle animated GIF images, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted image.

7.8CVSS8.6AI score0.00599EPSS
CVE
CVE
added 2011/01/14 5:0 p.m.66 views

CVE-2011-0482

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast of an unspecified variable during handling of anchors, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted HTML document.

4.3CVSS9.2AI score0.0327EPSS
CVE
CVE
added 2012/04/22 6:55 p.m.66 views

CVE-2012-0216

The default configuration of the apache2 package in Debian GNU/Linux squeeze before 2.2.16-6+squeeze7, wheezy before 2.2.22-4, and sid before 2.2.22-4, when mod_php or mod_rivet is used, provides example scripts under the doc/ URI, which might allow local users to conduct cross-site scripting (XSS)...

4.4CVSS5.5AI score0.00052EPSS
CVE
CVE
added 2019/10/31 8:15 p.m.66 views

CVE-2013-2024

OS command injection vulnerability in the "qs" procedure from the "utils" module in Chicken before 4.9.0.

9CVSS8.9AI score0.03017EPSS
CVE
CVE
added 2013/06/05 12:55 a.m.66 views

CVE-2013-2860

Use-after-free vulnerability in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving access to a database API by a worker process.

7.5CVSS7AI score0.0061EPSS
CVE
CVE
added 2013/07/10 10:55 a.m.66 views

CVE-2013-2870

Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote servers to execute arbitrary code via crafted response traffic after a URL request.

9.3CVSS7.2AI score0.01324EPSS
CVE
CVE
added 2013/08/21 12:17 p.m.66 views

CVE-2013-2900

The FilePath::ReferencesParent function in files/file_path.cc in Google Chrome before 29.0.1547.57 on Windows does not properly handle pathname components composed entirely of . (dot) and whitespace characters, which allows remote attackers to conduct directory traversal attacks via a crafted direc...

7.5CVSS6AI score0.01773EPSS
CVE
CVE
added 2013/08/21 12:17 p.m.66 views

CVE-2013-2904

Use-after-free vulnerability in the Document::finishedParsing function in core/dom/Document.cpp in Blink, as used in Google Chrome before 29.0.1547.57, allows remote attackers to cause a denial of service or possibly have unspecified other impact via an onload event that changes an IFRAME element s...

7.5CVSS7AI score0.01018EPSS
CVE
CVE
added 2019/11/04 8:15 p.m.66 views

CVE-2013-4251

The scipy.weave component in SciPy before 0.12.1 creates insecure temporary directories.

7.8CVSS7.3AI score0.00086EPSS
CVE
CVE
added 2014/08/13 4:57 a.m.66 views

CVE-2014-3165

Use-after-free vulnerability in modules/websockets/WorkerThreadableWebSocketChannel.cpp in the Web Sockets implementation in Blink, as used in Google Chrome before 36.0.1985.143, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger ...

7.5CVSS7AI score0.01215EPSS
CVE
CVE
added 2014/08/27 1:55 a.m.66 views

CVE-2014-3169

Use-after-free vulnerability in core/dom/ContainerNode.cpp in the DOM implementation in Blink, as used in Google Chrome before 37.0.2062.94, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging script execution that occurs before notification ...

7.5CVSS7.1AI score0.03248EPSS
CVE
CVE
added 2015/03/12 2:59 p.m.66 views

CVE-2015-2045

The HYPERVISOR_xen_version hypercall in Xen 3.2.x through 4.5.x does not properly initialize data structures, which allows local guest users to obtain sensitive information via unspecified vectors.

2.1CVSS4.6AI score0.00076EPSS
CVE
CVE
added 2015/03/31 2:59 p.m.66 views

CVE-2015-2753

FreeXL before 1.0.0i allows remote attackers to cause a denial of service (stack corruption) or possibly execute arbitrary code via a crafted sector in a workbook.

6.8CVSS7.8AI score0.01918EPSS
CVE
CVE
added 2020/01/15 5:15 p.m.66 views

CVE-2015-5230

The DNS packet parsing/generation code in PowerDNS (aka pdns) Authoritative Server 3.4.x before 3.4.6 allows remote attackers to cause a denial of service (crash) via crafted query packets.

7.5CVSS7.2AI score0.00177EPSS
CVE
CVE
added 2015/08/03 2:59 p.m.66 views

CVE-2015-5623

WordPress before 4.2.3 does not properly verify the edit_posts capability, which allows remote authenticated users to bypass intended access restrictions and create drafts by leveraging the Subscriber role, as demonstrated by a post-quickdraft-save action to wp-admin/post.php.

4CVSS6AI score0.43067EPSS
Web
CVE
CVE
added 2016/02/12 5:59 a.m.66 views

CVE-2016-2326

Integer overflow in the asf_write_packet function in libavformat/asfenc.c in FFmpeg before 2.8.5 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PTS (aka presentation timestamp) value in a .mov file.

8.8CVSS8.8AI score0.01072EPSS
CVE
CVE
added 2016/05/13 4:59 p.m.66 views

CVE-2016-2860

The newEntry function in ptserver/ptprocs.c in OpenAFS before 1.6.17 allows remote authenticated users from foreign Kerberos realms to bypass intended access restrictions and create arbitrary groups as administrators by leveraging mishandling of the creator ID.

6.5CVSS6.2AI score0.00252EPSS
CVE
CVE
added 2016/06/14 2:59 p.m.66 views

CVE-2016-5238

The get_cmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) via vectors related to reading from the information transfer buffer in non-DMA mode.

4.4CVSS6.1AI score0.00071EPSS
CVE
CVE
added 2017/09/01 1:29 p.m.66 views

CVE-2017-12869

The multiauth module in SimpleSAMLphp 1.14.13 and earlier allows remote attackers to bypass authentication context restrictions and use an authentication source defined in config/authsources.php via vectors related to improper validation of user input.

7.5CVSS7.8AI score0.00418EPSS
CVE
CVE
added 2017/11/21 1:29 p.m.66 views

CVE-2017-16613

An issue was discovered in middleware.py in OpenStack Swauth through 1.2.0 when used with OpenStack Swift through 2.15.1. The Swift object store and proxy server are saving (unhashed) tokens retrieved from the Swauth middleware authentication mechanism to a log file as part of a GET URI. This allow...

9.8CVSS9.3AI score0.02345EPSS
CVE
CVE
added 2018/04/24 7:29 p.m.66 views

CVE-2017-2900

An exploitable integer overflow exists in the PNG loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.png' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. A...

8.8CVSS7.7AI score0.01064EPSS
CVE
CVE
added 2018/04/24 7:29 p.m.66 views

CVE-2017-2901

An exploitable integer overflow exists in the IRIS loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.iris' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application....

8.8CVSS7.7AI score0.01064EPSS
CVE
CVE
added 2017/02/24 4:59 a.m.66 views

CVE-2017-6304

An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "7 of 9. Out of Bounds read."

7.8CVSS7.3AI score0.00255EPSS
CVE
CVE
added 2017/04/14 4:59 a.m.66 views

CVE-2017-7865

FFmpeg before 2017-01-24 has an out-of-bounds write caused by a heap-based buffer overflow related to the ipvideo_decode_block_opcode_0xA function in libavcodec/interplayvideo.c and the avcodec_align_dimensions2 function in libavcodec/utils.c.

9.8CVSS9.5AI score0.01878EPSS
CVE
CVE
added 2018/10/04 8:29 p.m.66 views

CVE-2018-0505

Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains a flaw where BotPasswords can bypass CentralAuth's account lock

6.5CVSS5.7AI score0.00508EPSS
CVE
CVE
added 2018/05/26 8:29 p.m.66 views

CVE-2018-11496

In Long Range Zip (aka lrzip) 0.631, there is a use-after-free in read_stream in stream.c, because decompress_file in lrzip.c lacks certain size validation.

6.5CVSS6.7AI score0.00837EPSS
CVE
CVE
added 2018/08/29 1:29 p.m.66 views

CVE-2018-1318

Adding method ACLs in remap.config can cause a segfault when the user makes a carefully crafted request. This affects versions Apache Traffic Server (ATS) 6.0.0 to 6.2.2 and 7.0.0 to 7.1.3. To resolve this issue users running 6.x should upgrade to 6.2.3 or later versions and 7.x users should upgrad...

7.5CVSS7.2AI score0.12542EPSS
CVE
CVE
added 2018/07/17 3:29 p.m.66 views

CVE-2018-14346

GNU Libextractor before 1.7 has a stack-based buffer overflow in ec_read_file_func (unzip.c).

8.8CVSS8.6AI score0.00523EPSS
CVE
CVE
added 2018/09/13 4:29 p.m.66 views

CVE-2018-16741

An issue was discovered in mgetty before 1.2.1. In fax/faxq-helper.c, the function do_activate() does not properly sanitize shell metacharacters to prevent command injection. It is possible to use the ||, &&, or > characters within a file created by the "faxq-helper activate " command.

7.8CVSS7.7AI score0.00646EPSS
CVE
CVE
added 2019/02/06 11:29 p.m.66 views

CVE-2018-20760

In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_import.c in libgpac_static.a allows an out-of-bounds write because a certain -1 return value is mishandled.

7.8CVSS7.6AI score0.00253EPSS
CVE
CVE
added 2019/07/25 2:15 p.m.66 views

CVE-2019-1010174

CImg The CImg Library v.2.3.3 and earlier is affected by: command injection. The impact is: RCE. The component is: load_network() function. The attack vector is: Loading an image from a user-controllable url can lead to command injection, because no string sanitization is done on the url. The fixed...

9.8CVSS9.5AI score0.13115EPSS
CVE
CVE
added 2019/04/06 8:29 p.m.66 views

CVE-2019-10904

Roundup 1.6 allows XSS via the URI because frontends/roundup.cgi and roundup/cgi/wsgi_handler.py mishandle 404 errors.

6.1CVSS5.8AI score0.00631EPSS
Total number of security vulnerabilities9135