CVE-2023-50868

CVE-2023-50868 is a DNSSEC-related denial of service issue (NSEC3 Closest Encloser proof) that can cause CPU exhaustion. The connected documents confirm impact on DNS implementations such as Unbound and BIND/BIND9 and describe the root cause as processors performing thousands of hash iterations f...

CVE-2024-6387

CVE-2024-6387 is a remote code-execution vulnerability in OpenSSH’s server (sshd) caused by a race condition in a signal handler that may run after a client fails to authenticate within LoginGraceTime. The issue is exploitable by an unauthenticated, remote attacker on glibc-based Linux systems, p...

CVE-2023-29483

CVE-2023-29483 affects dnspython (used with eventlet) and enables a remote attacker to interfere with DNS name resolution by sending an invalid UDP packet before a valid one (a TuDoor attack). Affected combo: eventlet before 0.35.2 used in dnspython before 2.6.0. The note indicates 2.6.0 is unusa...

CVE-2023-4911

CVE-2023-4911 is a buffer overflow in the GNU C Library ld.so when processing GLIBC_TUNABLES, enabling local privilege escalation via malicious GLIBC_TUNABLES values when launching binaries with SUID. Affected: glibc, with versions older than 2.38-6 (per CBLMARINER:34733) and older listings notin...

CVE-2022-2068

The Connected documents corroborate CVE-2022-2068 as a real OpenSSL issue: c_rehash can pass certificate filenames to shell commands, enabling local command execution. Fixed in OpenSSL 3.0.4 (affecting 3.0.0–3.0.3), in OpenSSL 1.1.1p (affecting 1.1.1–1.1.1o), and in OpenSSL 1.0.2zf (affecting 1.0...

CVE-2025-24813

Summary of CVE-2025-24813 : A path equivalence issue in Apache Tomcat’s Default Servlet can allow remote code execution and/or information disclosure via uploaded files when writes are enabled and PUT support is misused. Affected are Tomcat 11.0.0-M1–11.0.2, 10.1.0-M1–10.1.34, and 9.0.0.M1–9.0.98...

CVE-2024-50379

CVE-2024-50379 is a TOCTOU race condition in JSP compilation on Apache Tomcat that can lead to RCE when the default servlet is writable on case-insensitive file systems. Affected lines include Tomcat 11.0.0-M1–11.0.1, 10.1.0-M1–10.1.33, and 9.0.0.M1–9.0.97 (also some older EOL versions). The issu...

CVE-2024-56337

TOCTOU Race Condition in Apache Tomcat (CVE-2024-56337) affects 11.0.0-M1–11.0.1, 10.1.0-M1–10.1.33, and 9.0.0.M1–9.0.97. The issue stems from TOCTOU vulnerability during JSP compilation/default servlet write on case-insensitive file systems. Incomplete mitigation previously for CVE-2024-50379; g...

CVE-2025-21502

CVE-2025-21502 affects Oracle Java SE and related GraalVM packages (Hotspot) across multiple supported versions (Java SE 8u431-perf, 11.0.25, 17.0.13, 21.0.5, 23.0.1; GraalVM JDK 17.0.13/21.0.5/23.0.1; GraalVM EE 20.3.16/21.3.12). The described vulnerability allows an unauthenticated, network-acc...

CVE-2022-0492

CVE-2022-0492 is a Linux kernel local-privilege-escalation flaw in the cgroups v1 release_agent handling (function cgroup_release_agent_write in kernel/cgroup/cgroup-v1.c). The issue arises because releasing the release_agent does not enforce proper capabilities, enabling a local attacker to esca...

CVE-2020-12888

CVE-2020-12888 affects the Linux kernel VFIO PCI driver (through 5.6.13) and arises from improper handling of accesses to disabled MMIO space. A local attacker or a guest VM with VFIO access could trigger a denial of service or crash by exploiting writes/reads to disabled memory regions. Connecte...

CVE-2022-45061

CVE-2022-45061 affects Python’s IDNA decoder; an unnecessary quadratic path may cause CPU DoS when processing long hostnames (e.g., in Location headers). Affects Python before 3.11.1; the fix is planned/has been released in 3.11.1, 3.10.9, 3.9.16, 3.8.16, and 3.7.16. Affected advisories (e.g., AL...

CVE-2022-35252

CVE-2022-35252 affects curl’s handling of cookies containing control codes; when such cookies are echoed back to a server, the server may return 400 responses, effectively enabling a “sister site” to deny service to other siblings. Public advisories confirm this is fixed in curl updates across se...

CVE-2019-17498

CVE-2019-17498 is an integer overflow in libssh2’s SSH_MSG_DISCONNECT bounds check (packet.c) on v1.9.0 and earlier. This can let a crafted SSH server cause an out-of-bounds memory read, enabling information disclosure or denial of service on the client. Public advisories confirm patches/upgrades...

CVE-2020-12770

CVE-2020-12770 arises from the Linux kernel sg_write path in the SCSI generic (sg) driver not releasing internal resources in a specific error path because sg_remove_request is not called. This root cause is cited in multiple sources (e.g., ALAS2KERNEL-5.4-2022-012) and is described as a local-ac...

CVE-2022-23308

CVE-2022-23308 affects libxml2 before 2.9.13, caused by a use-after-free in ID/IDREF attributes in valid.c. The NVD data shows a CVSS 3.1 base score of 7.5 (NETWORK, PR:N, UI:N, S:U, C:N/I:N/A:H) and CVSS 2.0 base score of 4.3 (NETWORK, A:P). Connected advisories confirm the same flaw and referen...

CVE-2022-21476

CVE-2022-21476 affects Oracle Java SE and Oracle GraalVM Enterprise Edition. Vulnerable components include Libraries, JAXP, ImageIO, 2D, JNDI, and serialization-related paths, with exploitation achievable by unauthenticated network access and potentially leading to data confidentiality breach or ...

CVE-2024-21147

The CVE-2024-21147 entry describes a vulnerability in Oracle Java SE, Oracle GraalVM for JDK, and Oracle GraalVM Enterprise Edition (Hotspot component) affecting multiple supported versions: Java SE 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; GraalVM for JDK 17.0.11, 21.0.3, 22.0.1; Graa...

CVE-2024-2398

CVE-2024-2398 affects curl/libcurl: when an application enables HTTP/2 server push and the received push headers exceed a limit (1000), libcurl aborts the server push and leaks previously allocated headers, causing memory leaks and a silent condition that can be hard to detect. The CVSS in the en...

CVE-2024-6119

OpenSSL CVE-2024-6119 causes a denial of service when applications perform certificate name checks (e.g., TLS server name validation). The issue stems from reading an invalid memory address during name comparison (e.g., otherName in X.509) and may terminate the process. Multiple connected advisor...

CVE-2024-11053

CVE-2024-11053 affects curl. When both a .netrc credential file and HTTP redirects are used, curl could leak the password for the initial host to the redirected host if the netrc entry matches the redirect target and omits login/password. The issue is triggered under specific netrc/redirect condi...

CVE-2020-13143

CVE-2020-13143 affects the Linux kernel USB gadget/configfs (drivers/usb/gadget/configfs.c) from 3.16 to 5.6.13. The flaw arises when gadget_dev_desc_UDC_store uses kstrdup and may encounter an internal NUL value, leading to potential out-of-bounds memory access (reported as heap out-of-bounds wr...

CVE-2025-0665

CVE-2025-0665 affects libcurl; the flaw is libcurl would close the same eventfd file descriptor twice when tearing down a connection channel after threaded name resolution. This is the root cause described in multiple sources. The CVSS 3.1 base score is 9.8 (NETWORK, HIGH impact to confidentialit...

CVE-2024-21140

CVE-2024-21140 affects Oracle Java SE and Oracle GraalVM products (Hotspot, 2D, Networking, Serialization, Concurrency). Affects multiple supported Java runtimes (e.g., Java SE 8u411/11.0.23/17.0.11/22.0.1; GraalVM JDK 17.0.11/21.0.3/22.0.1; GraalVM EE 20.3.14/21.3.10). Described as remotely expl...

CVE-2024-2466

CVE-2024-2466 affects libcurl when built with mbedTLS: if a host is given as an IP address, the set hostname function is bypassed, causing TLS certificate validation to be skipped for TLS-based protocols (HTTPS, FTPS, IMAPS, SMTPS, etc.). AIX curl advisories and SANnav security notices mention th...

CVE-2021-4203

CVE-2021-4203 is a Linux kernel use-after-free read flaw in sock_getsockopt() triggered by a race between SO_PEERCRED/SO_PEERGROUPS and listen()/connect(). An authenticated local attacker could crash the system or leak kernel information. The connected IBM advisories document affected products (I...

CVE-2024-8096

The CVE-2024-8096 issue affects curl’s TLS OCSP stapling verification, where an OCSP response that signals an error other than revoked (e.g., unauthorized) may be treated as valid. This can allow invalid certificates to be accepted when curl uses OCSP stapling, depending on the TLS backend (notab...

CVE-2022-21496

CVE-2022-21496 affects Oracle Java SE and Oracle GraalVM Enterprise Edition across multiple components (JNDI, JAXP, Libraries, Hotspot) with listed affected versions. The vulnerability enables network-accessible, unauthenticated attackers to modify or access data (integrity/availability impacts) ...

CVE-2024-43374

Vim (open source editor) prior to version 9.1.0678 contains a use-after-free in argument list handling. When adding a new file to the argument list, Buf* autocommands may open a buffer that is subsequently closed, freeing the window structure that references the argument list being modified. Afte...

CVE-2024-2004

CVE-2024-2004 affects curl/libcurl: a logic error in protocol selection fails to remove all explicitly disabled protocols, leaving the default protocol set active. This could allow using a disabled protocol in certain requests (e.g., curl --proto -all,-http). Concrete details appear across multip...

CVE-2022-21443

CVE-2022-21443 is an Oracle Java SE/GraalVM EE vulnerability affecting the Libraries component. Affected: Oracle Java SE 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM EE 20.3.5, 21.3.1, 22.0.0.2. Exploitation is network-based and can lead to a partial denial of service, with unauthenticated a...

CVE-2025-0167

The CVE-2025-0167 issue affects curl (libcurl) and arises when both using a .netrc for credentials and following HTTP redirects. The root cause, as described across connected documents, is that the netrc entry can omit login and password (or a default entry omits both), which may allow the passwo...

CVE-2024-43398

REXML DoS in Ruby: the vulnerability CVE-2024-43398 affects the REXML gem when parsing XMLs with many deep elements that have the same local name attributes. It is exploitable via tree parser usage (e.g., REXML::Document.new); stream parser and SAX2 APIs are not affected. Versions prior to 3.3.6 ...

CVE-2024-2379

CVE-2024-2379: Affected product is libcurl’s QUIC implementation when built with wolfSSL. The root cause is an error path that, under certain conditions involving unknown/bad cipher or curve, returns OK and skips certificate verification, effectively bypassing TLS certificate validation. This lea...

CVE-2024-39908

REXML (Ruby) DoS vulnerabilities (CVE-2024-39908) affect the Ruby REXML gem prior to versions 3.3.1, with issues when parsing XML containing specific characters such as . Patches are in 3.3.2 and later; upgrades to 3.3.2+ are advised. If upgrading is not possible, avoid parsing untrusted XML stri...

CVE-2024-43790

Vim (editors) vulnerable to CVE-2024-43790: when using search with shm+=S and rl enabled, Vim allocates a reversed buffer for the search pattern; if the pattern contains ASCII NULs, strlen() stops early, causing a buffer size mismatch and an out-of-bounds read/write in msgbuf. Newer Vim patches f...

CVE-2024-47814

CVE-2024-47814 affects Vim (vims) with a use-after-free when closing a buffer in a window if a BufWinLeave autocommand reopens the same buffer in a new split. Affected versions are Vim

CVE-2022-32206

CVE-2022-32206 affects curl

CVE-2024-9823

CVE-2024-9823 involves Jetty's DosFilter. The provided documents confirm a remote DoS via crafted requests that trigger OutOfMemory and exhaust server memory, as described under the Jetty DosFilter entry (CWE-400: Uncontrolled Resource Consumption). No specific remediation or affected versions ar...

CVE-2022-32208

CVE-2022-32208 affects curl when performing FTP transfers secured by krb5 prior to version 7.84.0. The vulnerability arises from how message verification failures are handled during krb5-secured FTP transfers, enabling a man-in-the-middle to go unnoticed and potentially inject data to the client....

CVE-2022-32207

CVE-2022-32207 affects curl: when saving cookies, alt-svc and HSTS data, the final rename can widen target file permissions, exposing updates to more users. Affected versions are curl before 7.84.0; remediation is to upgrade to 7.84.0 or newer (as indicated by multiple advisories).

CVE-2021-3753

CVE-2021-3753 describes a race in the Linux kernel’s vt_k_ioctl() (vt_ioctl.c) that may cause an out-of-bounds read in vt as vc_mode write access is not protected by a lock. Impact is listed as data confidentiality; exploitation details are not provided in the supplied documents. Connected source...

CVE-2020-36516

CVE-2020-36516 : Linux kernel (through 5.16.11) contains a flaw in the mixed IPID assignment method with a hash-based IPID policy that allows an off-path attacker to inject data into or terminate a victim’s TCP session. The issue affects the kernel’s TCP/IP handling and is documented in multiple ...

CVE-2020-11884

CVE-2020-11884 affects the Linux kernel on s390x (versions 4.19–5.6.7). The issue is a race in enable_sacf_uaccess (arch/s390/lib/uaccess.c) that fails to protect against a concurrent page table upgrade (CID-3f777e19d171), potentially allowing code execution or a crash. The initial documents do n...

CVE-2022-22576

CVE-2022-22576 is an improper authentication vulnerability in curl 7.33.0 through 7.82.0 that may allow reuse of OAuth2-authenticated connections without confirming the credentials used for the transfer, affecting SASL-enabled protocols (SMPTP(S), IMAP(S), POP3(S), LDAP(S) via OpenLDAP). The root...

CVE-2025-30691

CVE-2025-30691 affects Oracle Java SE (Compiler) and Oracle GraalVM for JDK, with affected Oracle Java SE versions 21.0.6 and 24 and GraalVM JDK 21.0.6 and 24. The issue can be exploited remotely over network via multiple protocols and through APIs that supply data to the APIs; successful attacks...

CVE-2021-36086

Summary: CVE-2021-36086 concerns the libsepol component used by SELinux, stemming from a use-after-free in the CIL compiler’s class-permission handling. The published records consistently describe the vulnerability as occurring in the CIL code path (cil_reset_classpermission) and related helper c...

CVE-2024-54677

CVE-2024-54677 describes an Uncontrolled Resource Consumption vulnerability in the Tomcat examples web application that can lead to denial of service. Affected products and versions include Tomcat 9.x (9.0.0.M1–9.9.97), 10.x (10.1.0-M1–10.1.33), and 11.x (11.0.0-M1–11.0.1), with older EOL release...

CVE-2024-32487

CVE-2024-32487 affects the less utility. The issue allows OS command execution via a newline character in a file name due to faulty quoting in filename.c (affecting versions up to 653). Exploitation typically requires attacker-controlled file names (e.g., from an untrusted archive) and the LESSOP...

CVE-2025-1215

CVE-2025-1215 affects vim up to 9.1.1096, with memory corruption caused by manipulation of the --log argument in an unspecified code path of src/main.c. Exploitation is described as a local attack (attack vector: LOCAL) and could impact confidentiality, integrity, and availability as indicated by...