Lucene search

K
FedoraprojectFedora

5307 matches found

CVE
CVE
added 2015/06/17 6:59 p.m.58 views

CVE-2015-2665

Cross-site scripting (XSS) vulnerability in Cacti before 0.8.8d allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS7AI score0.00432EPSS
CVE
CVE
added 2017/09/19 3:29 p.m.58 views

CVE-2015-3420

The ssl-proxy-openssl.c function in Dovecot before 2.2.17, when SSLv3 is disabled, allow remote attackers to cause a denial of service (login process crash) via vectors related to handshake failures.

5.9CVSS5.6AI score0.09152EPSS
CVE
CVE
added 2015/08/12 2:59 p.m.58 views

CVE-2015-5166

Use-after-free vulnerability in QEMU in Xen 4.5.x and earlier does not completely unplug emulated block devices, which allows local HVM guest users to gain privileges by unplugging a block device twice.

7.2CVSS6.3AI score0.00072EPSS
CVE
CVE
added 2015/10/09 2:59 p.m.58 views

CVE-2015-5234

IcedTea-Web before 1.5.3 and 1.6.x before 1.6.1 does not properly sanitize applet URLs, which allows remote attackers to inject applets into the .appletTrustSettings configuration file and bypass user approval to execute the applet via a crafted web page, possibly related to line breaks.

6.8CVSS6.8AI score0.0092EPSS
CVE
CVE
added 2015/11/24 8:59 p.m.58 views

CVE-2015-7496

GNOME Display Manager (gdm) before 3.18.2 allows physically proximate attackers to bypass the lock screen by holding the Escape key.

7.2CVSS6.3AI score0.00079EPSS
CVE
CVE
added 2017/06/06 6:29 p.m.58 views

CVE-2016-9960

game-music-emu before 0.6.1 allows local users to cause a denial of service (divide by zero and process crash).

5.5CVSS6.5AI score0.00102EPSS
CVE
CVE
added 2017/08/29 6:29 a.m.58 views

CVE-2017-13749

There is a reachable assertion abort in the function jpc_pi_nextrpcl() in jpc/jpc_t2cod.c in JasPer 2.0.12 that will lead to a remote denial of service attack.

7.5CVSS7.1AI score0.0101EPSS
CVE
CVE
added 2018/06/18 2:29 p.m.58 views

CVE-2018-1090

In Pulp before version 2.16.2, secrets are passed into override_config when triggering a task and then become readable to all users with read access on the distributor/importer. An attacker with API access can then view these secrets.

7.5CVSS7.3AI score0.00289EPSS
CVE
CVE
added 2018/04/16 4:29 p.m.58 views

CVE-2018-3849

In the ffghtb function in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potentially gain code execution.

8.8CVSS8.8AI score0.01389EPSS
CVE
CVE
added 2019/12/31 3:15 p.m.58 views

CVE-2019-20176

In Pure-FTPd 1.0.49, a stack exhaustion issue was discovered in the listdir function in ls.c.

7.5CVSS7.3AI score0.00445EPSS
CVE
CVE
added 2020/04/27 2:15 p.m.58 views

CVE-2019-20790

OpenDMARC through 1.3.2 and 1.4.x, when used with pypolicyd-spf 2.0.2, allows attacks that bypass SPF and DMARC authentication in situations where the HELO field is inconsistent with the MAIL FROM field.

9.8CVSS9.4AI score0.00226EPSS
CVE
CVE
added 2019/03/21 4:1 p.m.58 views

CVE-2019-5885

Matrix Synapse before 0.34.0.1, when the macaroon_secret_key authentication parameter is not set, uses a predictable value to derive a secret key and other secrets which could allow remote attackers to impersonate users.

7.5CVSS7.5AI score0.008EPSS
CVE
CVE
added 2020/06/15 4:15 p.m.58 views

CVE-2020-13999

ScaleViewPortExtEx in libemf.cpp in libEMF (aka ECMA-234 Metafile Library) 1.0.12 allows an integer overflow and denial of service via a crafted EMF file.

5.5CVSS5.2AI score0.00106EPSS
CVE
CVE
added 2021/03/03 6:15 p.m.58 views

CVE-2021-22877

A missing user check in Nextcloud prior to 20.0.6 inadvertently populates a user's own credentials for other users external storage configuration when not already configured yet.

6.5CVSS6.5AI score0.00463EPSS
CVE
CVE
added 2022/08/10 6:15 a.m.58 views

CVE-2021-37150

Improper Input Validation vulnerability in header parsing of Apache Traffic Server allows an attacker to request secure resources. This issue affects Apache Traffic Server 8.0.0 to 9.1.2.

7.5CVSS7.3AI score0.00235EPSS
CVE
CVE
added 2021/09/17 8:15 p.m.58 views

CVE-2021-39216

Wasmtime is an open source runtime for WebAssembly & WASI. In Wasmtime from version 0.19.0 and before version 0.30.0 there was a use-after-free bug when passing externrefs from the host to guest Wasm content. To trigger the bug, you have to explicitly pass multiple externrefs from the host to a Was...

6.3CVSS6.4AI score0.00074EPSS
CVE
CVE
added 2021/12/24 2:15 a.m.58 views

CVE-2021-45474

In MediaWiki through 1.37, the Special:ImportFile URI (aka FileImporter) allows XSS, as demonstrated by the clientUrl parameter.

6.1CVSS6.1AI score0.00329EPSS
CVE
CVE
added 2023/04/03 10:15 p.m.58 views

CVE-2023-26916

libyang from v2.0.164 to v2.1.30 was discovered to contain a NULL pointer dereference via the function lys_parse_mem at lys_parse_mem.c.

5.3CVSS5.4AI score0.00058EPSS
CVE
CVE
added 2023/07/10 6:15 p.m.58 views

CVE-2023-32627

A floating point exception vulnerability was found in sox, in the read_samples function at sox/src/voc.c:334:18. This flaw can lead to a denial of service.

6.2CVSS5.8AI score0.00064EPSS
CVE
CVE
added 2023/08/29 4:15 a.m.58 views

CVE-2023-41359

An issue was discovered in FRRouting FRR through 9.0. There is an out-of-bounds read in bgp_attr_aigp_valid in bgpd/bgp_attr.c because there is no check for the availability of two bytes during AIGP validation.

9.1CVSS8.9AI score0.00245EPSS
CVE
CVE
added 2024/02/08 1:15 p.m.58 views

CVE-2024-1312

A use-after-free flaw was found in the Linux kernel's Memory Management subsystem when a user wins two races at the same time with a fail in the mas_prev_slot function. This issue could allow a local user to crash the system.

5.1CVSS4.5AI score0.00022EPSS
CVE
CVE
added 2024/02/20 4:15 p.m.58 views

CVE-2024-23809

A double-free vulnerability exists in the BrainVision ASCII Header Parsing functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111). A specially crafted .vdhr file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

9.8CVSS9.4AI score0.00317EPSS
CVE
CVE
added 2024/05/14 3:17 p.m.58 views

CVE-2024-29894

Cacti provides an operational monitoring and fault management framework. Versions of Cacti prior to 1.2.27 contain a residual cross-site scripting vulnerability caused by an incomplete fix for CVE-2023-50250. raise_message_javascript from lib/functions.php now uses purify.js to fix CVE-2023-50250 (...

5.4CVSS6.1AI score0.01999EPSS
CVE
CVE
added 2007/07/27 10:30 p.m.57 views

CVE-2007-4045

The CUPS service, as used in SUSE Linux before 20070720 and other Linux distributions, allows remote attackers to cause a denial of service via unspecified vectors related to an incomplete fix for CVE-2007-0720 that introduced a different denial of service problem in SSL negotiation.

5CVSS7.4AI score0.16602EPSS
CVE
CVE
added 2008/07/18 4:41 p.m.57 views

CVE-2008-3219

The Drupal filter_xss_admin function in 5.x before 5.8 and 6.x before 6.3 does not "prevent use of the object HTML tag in administrator input," which has unknown impact and attack vectors, probably related to an insufficient cross-site scripting (XSS) protection mechanism.

4.3CVSS5.3AI score0.00665EPSS
CVE
CVE
added 2009/05/11 4:30 p.m.57 views

CVE-2009-1603

src/tools/pkcs11-tool.c in pkcs11-tool in OpenSC 0.11.7, when used with unspecified third-party PKCS#11 modules, generates RSA keys with incorrect public exponents, which allows attackers to read the cleartext form of messages that were intended to be encrypted.

7.5CVSS7.2AI score0.0105EPSS
CVE
CVE
added 2010/11/06 12:0 a.m.57 views

CVE-2010-4197

Use-after-free vulnerability in WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk before 1.2.6, and other products, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving text editing.

9.8CVSS9.4AI score0.06283EPSS
CVE
CVE
added 2019/11/20 3:15 p.m.57 views

CVE-2012-6136

tuned 2.10.0 creates its PID file with insecure permissions which allows local users to kill arbitrary processes.

5.5CVSS5.4AI score0.00026EPSS
CVE
CVE
added 2019/12/11 1:15 p.m.57 views

CVE-2013-4158

smokeping before 2.6.9 has XSS (incomplete fix for CVE-2012-0790)

6.1CVSS5.8AI score0.00631EPSS
CVE
CVE
added 2014/04/30 10:49 a.m.57 views

CVE-2014-1526

The XrayWrapper implementation in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site that is visited in the debugger, leading to unwrapping operations and calls to DOM methods on the unwrapped obj...

6.8CVSS8.9AI score0.007EPSS
CVE
CVE
added 2015/03/10 2:59 p.m.57 views

CVE-2014-8105

389 Directory Server before 1.3.2.27 and 1.3.3.x before 1.3.3.9 does not properly restrict access to the "cn=changelog" LDAP sub-tree, which allows remote attackers to obtain sensitive information from the changelog via unspecified vectors.

5CVSS6AI score0.00435EPSS
CVE
CVE
added 2015/10/26 7:59 p.m.57 views

CVE-2015-4625

Integer overflow in the authentication_agent_new_cookie function in PolicyKit (aka polkit) before 0.113 allows local users to gain privileges by creating a large number of connections, which triggers the issuance of a duplicate cookie value.

4.6CVSS4.7AI score0.00105EPSS
CVE
CVE
added 2017/09/26 2:29 p.m.57 views

CVE-2015-5070

The (1) filesystem::get_wml_location function in filesystem.cpp and (2) is_legal_file function in filesystem_boost.cpp in Battle for Wesnoth before 1.12.4 and 1.13.x before 1.13.1, when a case-insensitive filesystem is used, allow remote attackers to obtain sensitive information via vectors related...

3.5CVSS4AI score0.0078EPSS
CVE
CVE
added 2017/08/22 6:29 p.m.57 views

CVE-2015-5258

Cross-site request forgery (CSRF) vulnerability in springframework-social before 1.1.3.

8.8CVSS8.7AI score0.00167EPSS
CVE
CVE
added 2018/09/16 2:29 a.m.57 views

CVE-2018-17075

The html package (aka x/net/html) before 2018-07-13 in Go mishandles "in frameset" insertion mode, leading to a "panic: runtime error" for html.Parse of , , or . This is related to HTMLTreeBuilder.cpp in WebKit.

7.5CVSS7.2AI score0.00745EPSS
CVE
CVE
added 2020/05/20 2:15 p.m.57 views

CVE-2020-13231

In Cacti before 1.2.11, auth_profile.php?action=edit allows CSRF for an admin email change.

6.5CVSS6.5AI score0.00456EPSS
CVE
CVE
added 2020/11/19 5:15 p.m.57 views

CVE-2020-25700

In moodle, some database module web services allowed students to add entries within groups they did not belong to. Versions affected: 3.9 to 3.9.2, 3.8 to 3.8.5, 3.7 to 3.7.8, 3.5 to 3.5.14 and earlier unsupported versions. This is fixed in moodle 3.8.6, 3.7.9, 3.5.15, and 3.10.

6.5CVSS6.2AI score0.00392EPSS
CVE
CVE
added 2021/03/03 6:15 p.m.57 views

CVE-2021-22878

Nextcloud Server prior to 20.0.6 is vulnerable to reflected cross-site scripting (XSS) due to lack of sanitization in OC.Notification.show.

4.8CVSS5.1AI score0.00368EPSS
CVE
CVE
added 2021/02/09 9:15 a.m.57 views

CVE-2021-26925

Roundcube before 1.4.11 allows XSS via crafted Cascading Style Sheets (CSS) token sequences during HTML email rendering.

5.4CVSS5AI score0.00259EPSS
CVE
CVE
added 2021/12/24 2:15 a.m.57 views

CVE-2021-45473

In MediaWiki through 1.37, Wikibase item descriptions allow XSS, which is triggered upon a visit to an action=info URL (aka a page-information sidebar).

6.1CVSS6AI score0.00326EPSS
CVE
CVE
added 2023/01/10 8:15 a.m.57 views

CVE-2023-22909

An issue was discovered in MediaWiki before 1.35.9, 1.36.x through 1.38.x before 1.38.5, and 1.39.x before 1.39.1. SpecialMobileHistory allows remote attackers to cause a denial of service because database queries are slow.

5.3CVSS5AI score0.00203EPSS
CVE
CVE
added 2023/07/10 6:15 p.m.57 views

CVE-2023-26590

A floating point exception vulnerability was found in sox, in the lsx_aiffstartwrite function at sox/src/aiff.c:622:58. This flaw can lead to a denial of service.

6.2CVSS5.8AI score0.00035EPSS
CVE
CVE
added 2023/06/27 3:15 p.m.57 views

CVE-2023-3432

Server-Side Request Forgery (SSRF) in GitHub repository plantuml/plantuml prior to 1.2023.9.

10CVSS8.2AI score0.00134EPSS
CVE
CVE
added 2023/06/16 8:15 p.m.57 views

CVE-2023-34475

A heap use after free issue was discovered in ImageMagick's ReplaceXmpValue() function in MagickCore/profile.c. An attacker could trick user to open a specially crafted file to convert, triggering an heap-use-after-free write error, allowing an application to crash, resulting in a denial of service...

5.5CVSS5.5AI score0.00023EPSS
CVE
CVE
added 2023/09/05 10:15 p.m.57 views

CVE-2023-39364

Cacti is an open source operational monitoring and fault management framework. In Cacti 1.2.24, users with console access can be redirected to an arbitrary website after a change password performed via a specifically crafted URL. The auth_changepassword.php file accepts ref as a URL parameter and r...

5.4CVSS6.6AI score0.00166EPSS
CVE
CVE
added 2024/04/17 7:15 p.m.57 views

CVE-2024-31582

FFmpeg version n6.1 was discovered to contain a heap buffer overflow vulnerability in the draw_block_rectangle function of libavfilter/vf_codecview.c. This vulnerability allows attackers to cause undefined behavior or a Denial of Service (DoS) via crafted input.

7.8CVSS9.1AI score0.00017EPSS
CVE
CVE
added 2019/11/13 9:15 p.m.56 views

CVE-2010-4661

udisks before 1.0.3 allows a local user to load arbitrary Linux kernel modules.

7.8CVSS7.3AI score0.00152EPSS
CVE
CVE
added 2014/12/12 3:59 p.m.56 views

CVE-2014-8124

OpenStack Dashboard (Horizon) before 2014.1.3 and 2014.2.x before 2014.2.1 does not properly handle session records when using a db or memcached session engine, which allows remote attackers to cause a denial of service via a large number of requests to the login page.

5CVSS6.6AI score0.00949EPSS
CVE
CVE
added 2015/03/09 2:59 p.m.56 views

CVE-2014-9472

The email gateway in RT (aka Request Tracker) 3.0.0 through 4.x before 4.0.23 and 4.2.x before 4.2.10 allows remote attackers to cause a denial of service (CPU and disk consumption) via a crafted email.

7.1CVSS8AI score0.00875EPSS
CVE
CVE
added 2015/01/23 3:59 p.m.56 views

CVE-2014-9639

Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (crash) via a crafted number of channels in a WAV file, which triggers an out-of-bounds memory access.

5CVSS6.5AI score0.0136EPSS
Total number of security vulnerabilities5307