24 matches found
CVE-2021-3426
CVE-2021-3426 corresponds to a vulnerability in Python’s pydoc where the getfile feature could be abused to read arbitrary files. The linked sources confirm the issue affects Python versions prior to specific releases (e.g., Python before 3.8.9, 3.9.3, and 3.10.0a7 per the CVE description) and no...
CVE-2021-4104
CVE-2021-4104 affects JMSAppender in Log4j 1.2 when it is explicitly configured to use JMSAppender. A deserialization of untrusted data can occur if an attacker can write Log4j configuration and supply TopicBindingName and TopicConnectionFactoryBindingName, causing JMSAppender to perform JNDI req...
CVE-2023-2454
CVE-2023-2454 concerns PostgreSQL; a flaw in schema_element defeats protective search_path changes could allow an authenticated user with database-level privileges to run arbitrary code. This has been observed in multiple advisories (including Astra Linux and Amazon Linux 2 notes) and is linked t...
CVE-2023-0056
CVE-2023-0056 affects HAProxy and is described in connected advisories as an uncontrolled resource consumption DoS that can crash the service, including a scenario where an authenticated remote attacker could trigger a crafted server in an OpenShift cluster. The issue is associated with HAProxy’s...
CVE-2020-10735
CVE-2020-10735 affects Python’s integer parsing with non-binary bases, where int("text") on very long digit strings can cause a CPU DoS, impacting availability. The flaw is present in Python’s PyLong_FromString path and manifests in quadratic-time scenarios when parsing large decimal-like strings...
CVE-2021-4189
CVE-2021-4189 affects Python’s FTP (ftplib) client: in PASV mode it trusts the host from the PASV response by default, enabling a malicious FTP server to trick clients into connecting back to an attacker-specified IP/port (potential port scanning). Debian LTS postings and other advisories explici...
CVE-2023-2455
CVE-2023-2455 describes a vulnerability in PostgreSQL row-level security where policies can be misapplied when a query plan is reused across different roles (e.g., security definer, or a common user plan executed under multiple SET ROLEs). The issue arises when policy evaluation depends on the in...
CVE-2021-32027
CVE-2021-32027 is documented across multiple connected advisories as a PostgreSQL flaw in which, on versions prior to 13.3, 12.7, 11.12, 10.17, and 9.6.22, authenticated database users could write arbitrary bytes into server memory while modifying certain SQL array values due to missing bounds ch...
CVE-2021-41819
CVE-2021-41819 affects Ruby and the CGI::Cookie.parse function; Ruby up to 2.6.8 (and CGI gem up to 0.3.0) mishandle security prefixes in cookie names, enabling cookie-prefix spoofing. Public advisories confirm this and list affected Ruby versions across multiple distributions (AL2, AL2 Ruby3.0 e...
CVE-2021-3393
CVE-2021-3393 affects PostgreSQL: information leakage where a user with UPDATE but not SELECT permission on a column could cause error messages to reveal values from that column. Versions affected are before 13.2, before 12.6, and before 11.11. Fixes are available by upgrading to PostgreSQL 13.2+...
CVE-2020-1720
CVE-2020-1720 discusses a PostgreSQL flaw in ALTER ... DEPENDS ON EXTENSION where sub-commands did not perform authorization checks. An authenticated attacker could, in certain configurations, drop objects (functions, triggers, etc.) causing database corruption. Affected versions are PostgreSQL p...
CVE-2021-41817
CVE-2021-41817 is a Ruby-related ReDoS in Date parsing. The vulnerability affects Ruby’s date parsing pathways (notably date parsing methods) up to versions around 3.2.0, enabling denial-of-service via crafted date strings. The fixed releases cited in the sources are 3.2.1, 3.1.2, 3.0.2, and 2.0....
CVE-2020-27783
The CVE-2020-27783 issue is a XSS vulnerability in python-lxml's HTML Cleaner. The Cleaner’s parser did not sufficiently emulate browsers, causing mismatches between sanitization and the rendered page. This can allow a remote attacker to run arbitrary HTML/JS in a victim’s browser. Affected produ...
CVE-2022-4904
CVE-2022-4904 affects the c-ares library. The issue stems from missing input validation in ares_set_sortlist, enabling an arbitrary-length stack overflow and potentially causing denial of service with limited impacts to confidentiality and integrity. Connected advisories indicate this vulnerabili...
CVE-2014-4650
CVE-2014-4650 affects the CGIHTTPServer module in Python 2.7.5 and 3.3.4, where URL-encoded path separators (e.g., %2f) can allow remote attackers to read CGI script sources, traverse directories, or execute unintended code. Connected advisories document this vulnerability alongside related Pytho...
CVE-2021-3656
CVE-2021-3656 describes a flaw in the KVM hypervisor for AMD processors where the L1 guest can provide a VMCB with an improperly validated virt_ext field, allowing the L1 to disable VMLOAD/VMSAVE intercepts and VLS for the L2 guest. This enables the L2 guest to read/write portions of the host’s p...
CVE-2023-39417
CVE-2023-39417 concerns a SQL injection in PostgreSQL extension scripting substitutions (@extowner@/@extschema@ inside quotes) that can, with administrator-installed vulnerable non-bundled extensions and database CREATE privilege, allow arbitrary code execution as the bootstrap superuser. Affecte...
CVE-2021-20270
CVE-2021-20270 describes an infinite loop in Pygments’ SMLLexer, affecting Pygments 1.5–2.7.3, which can cause DoS during syntax highlighting of StandardML sources (e.g., input containing only the keyword “exception”). Connected advisories confirm affected distributions (e.g., Debian, AlmaLinux, ...
CVE-2021-32672
Redis contains CVE-2021-32672, a vulnerability in the Redis Lua Debugger where the protocol parser can read data beyond the actual buffer when handling malformed requests. This affects Redis builds that include Lua debugging support (3.2+). The issue is mitigated by upgrading to patched releases:...
CVE-2022-0711
HAProxy is affected by CVE-2022-0711 due to a flaw in processing HTTP responses with the Set-Cookie2 header, which can cause an infinite loop and a denial-of-service condition (availability impact). The vulnerability is observable across multiple advisories and vendor pages, including Debian secu...
CVE-2021-20229
CVE-2021-20229 – Summary (based on provided sources): PostgreSQL versions before 13.2 are vulnerable to a confidentiality flaw where a user with SELECT privilege on a single column can craft a query that returns all columns in a table. The issue is discussed across multiple advisories (IBM Securi...
CVE-2022-4900
CVE-2022-4900 is a PHP heap-buffer overflow caused by setting PHP_CLI_SERVER_WORKERS to a large value. From connected sources, IBM Storage Sentinel Anomaly Scan Engine 1.1 and Debian/IBM advisories confirm the issue affects PHP and can enable a local denial-of-service condition. Remediation in th...
CVE-2019-10196
The CVE-2019-10196 entry affects the http-proxy-agent package before version 2.1.0. The root cause is that the auth option is passed to the Buffer constructor without proper sanitization, enabling a Denial of Service that can consume all CPU resources, and potential data exposure due to an uninit...
CVE-2013-5123
The CVE-2013-5123 issue affects Python-pip prior to 1.5, where the mirroring support (-M/--use-mirrors) performs insecure DNS queries and lacks proper authenticity checks, enabling MITM-like download tampering. Connected advisories confirm this vulnerability and describe the fix as removing the m...