VIR Vulnerability Intelligence Relay

Search

Found 3,836 results in 2082ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2018-17480 critical 10.0 KEVFIX arch archdebian debian 4y ago Google Chromium V8 Engine contains out-of-bounds write vulnerability that allows a remote attacker to execute code inside a sandbox via a crafted HTML page. This vulnerability could affect multiple w…
CVE-2022-1802 critical 9.5 FIX arch arch rhel sles 4y ago If an attacker was able to corrupt the methods of an Array object in JavaScript via prototype pollution, they could have achieved execution of attacker-controlled JavaScript code in a privileged cont…
CVE-2022-1529 critical 9.5 FIX arch arch rhel sles 4y ago An attacker could have sent a message to the parent process where the contents were used to double-index into a JavaScript object, leading to prototype pollution and ultimately attacker-controlled Ja…
CVE-2020-22083 low 2.5 arch archdebian debian 4y ago ** DISPUTED ** jsonpickle through 1.4.1 allows remote code execution during deserialization of a malicious payload through the decode() function. Note: It has been argued that this is expected and cl…
CVE-2019-5815 critical 9.5 FIX arch archdebian debian 4y ago Type confusion in xsltNumberFormatGetMultipleLevel prior to libxslt 1.1.33 could allow attackers to potentially exploit heap corruption via crafted XML data.
CVE-2019-13720 critical 10.0 KEVEXPFIX arch archdebian debian 4y ago Google Chrome WebAudio contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2019-11707 critical 10.0 KEVEXPFIX arch arch slesdebian debian 4y ago Mozilla Firefox and Thunderbird contain a type confusion vulnerability that can occur when manipulating JavaScript objects due to issues in Array.pop, allowing for an exploitable crash.
CVE-2011-4617 low 1.2 FIX debian debian python 4y ago virtualenv.py in virtualenv before 1.5 allows local users to overwrite arbitrary files via a symlink attack on a certain file in /tmp/.
CVE-2013-4278 low 3.5 FIX debian debian openstack 4y ago The "create an instance" API in OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not properly enforce the os-flavor-access:is_public property, which allows remote authenticated users to boot…
CVE-2014-1948 low 2.6 FIX debian debian openstack 4y ago OpenStack Image Registry and Delivery Service (Glance) 2013.2 through 2013.2.1 and Icehouse before icehouse-2 logs a URL containing the Swift store backend password when authentication fails and WARN…
CVE-2014-0056 low 2.1 FIX ubuntu ubuntudebian debian openstack 4y ago The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tenant id when creating ports, which allows remote authenticated users to plug ports into the routers of arbitrary tenants …
CVE-2013-4463 low 2.1 FIX debian debian openstack 4y ago OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not properly verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (host file system disk consumpti…
CVE-2013-4469 low 1.9 FIX debian debian openstack 4y ago OpenStack Compute (Nova) Folsom, Grizzly, and Havana, when use_cow_images is set to False, does not verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (ho…
CVE-2014-1624 low 3.3 FIX slesdebian debian python 4y ago Race condition in the xdg.BaseDirectory.get_runtime_dir function in python-xdg 0.25 allows local users to overwrite arbitrary files by pre-creating /tmp/pyxdg-runtime-dir-fallback-victim to point to …
CVE-2015-8914 critical 9.1 9.1 FIX slesdebian debian openstack 4y ago The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended ICMPv6-spoofing protection mechanism and consequently cause a denial of s…
CVE-2014-1934 low 3.3 FIX debian debiansuse suse travis_shirk 4y ago tag.py in eyeD3 (aka python-eyed3) 7.0.3, 0.6.18, and earlier for Python allows local users to modify arbitrary files via a symlink attack on a temporary file.
CVE-2018-5158 critical 9.5 FIX arch archdebian debian 4y ago The PDF viewer does not sufficiently sanitize PostScript calculator functions, allowing malicious JavaScript to be injected through a crafted PDF file. This JavaScript can then be run with the permis…
CVE-2017-3590 low 3.3 3.3 FIX debian debian oracle 4y ago Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/Python). Supported versions that are affected are 2.1.5 and earlier. Easily "exploitable" vulnerability allows…
CVE-2017-1000116 critical 9.8 9.8 FIX arch arch slesdebian debian mercurial 4y ago Mercurial prior to 4.3 did not adequately sanitize hostnames passed to ssh, leading to possible shell-injection attacks.
CVE-2017-17458 critical 9.8 9.8 FIX slesdebian debian mercurial 4y ago In Mercurial before 4.4.1, it is possible that a specially malformed repository can cause Git subrepositories to run arbitrary code in the form of a .git/hooks/post-update script checked into the rep…
CVE-2014-8991 low 2.1 FIX slesdebian debian pypa 4y ago pip 1.3 through 1.5.6 allows local users to cause a denial of service (prevention of package installation) by creating a /tmp/pip-build-* file for another user.
CVE-2013-1888 low 2.1 FIX fedora fedoradebian debian pypa 4y ago pip before 1.3 allows local users to overwrite arbitrary files via a symlink attack on a file in the /tmp/pip-build temporary directory.
CVE-2017-7550 critical 9.8 9.8 FIX debian debian sles rhel redhat 4y ago A flaw was found in the way Ansible (2.3.x before 2.3.3, and 2.4.x before 2.4.1) passed certain parameters to the jenkins_plugin module. Remote attackers could use this flaw to expose sensitive infor…
CVE-2021-3981 low 2.5 FIX sles rockydebian debian 4y ago RHSA-2022:2110: grub2 security, bug fix, and enhancement update (Low)
CVE-2021-3634 low 2.5 FIX arch arch sles rocky 4y ago RHSA-2022:2031: libssh security, bug fix, and enhancement update (Low)
CVE-2021-3802 low 2.5 FIX sles rockydebian debian 4y ago RHSA-2022:1820: udisks2 security and bug fix update (Low)
CVE-2021-41229 low 2.5 FIX debian debianarch arch sles 4y ago RHSA-2022:2081: bluez security update (Low)
CVE-2021-23222 low 2.5 FIX arch arch sles rocky 4y ago RHSA-2022:1891: libpq security update (Low)
CVE-2020-17489 low 2.5 FIX slesdebian debian rocky 4y ago RHSA-2022:1814: gnome-shell security and bug fix update (Low)
CVE-2019-8506 low 5.0 KEVEXPFIX rockydebian debian rhel 4y ago A type confusion issue affecting multiple Apple products allows processing of maliciously crafted web content, leading to arbitrary code execution.
CVE-2010-0156 low 3.3 FIX debian debian puppet 4y ago Puppet 0.24.x before 0.24.9 and 0.25.x before 0.25.2 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/daemonout, (2) /tmp/puppetdoc.txt, (3) /tmp/puppetdoc.tex, or…
CVE-2021-41945 critical 9.5 FIX arch archdebian debian 4y ago Encode OSS httpx <=1.0.0.beta0 is affected by improper input validation in `httpx.URL`, `httpx.Client` and some functions using `httpx.URL.copy_with`.
CVE-2017-9841 critical 10.0 KEVEXPFIX arch archdebian debian 4y ago Util/PHP/eval-stdin.php in PHPUnit before 4.8.28 and 5.x before 5.6.3 allows remote attackers to execute arbitrary PHP code via HTTP POST data beginning with a "<?php " substring, as demonstrated by …
CVE-2020-7247 critical 10.0 KEVEXPFIX arch archdebian debian 4y ago smtp_mailaddr in smtp_session.c in OpenSMTPD, as used in OpenBSD and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session.
CVE-2021-29607 critical 9.5 FIX arch archdebian debian 4y ago TensorFlow is an end-to-end open source platform for machine learning. Incomplete validation in `SparseAdd` results in allowing attackers to exploit undefined behavior (dereferencing null pointers) a…
CVE-2021-4091 low 2.5 FIX debian debian sles rocky 4y ago RHSA-2022:0889: 389-ds:1.4 security and bug fix update (Low)
CVE-2021-36368 low 3.7 3.7 FIX slesdebian debian openbsd 4y ago An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to…
CVE-2019-16928 critical 10.0 KEVFIX arch archdebian debian 4y ago Exim 4.92 through 4.92.2 allows remote code execution, a different vulnerability than CVE-2019-15846. There is a heap-based buffer overflow in string_vformat in string.c involving a long EHLO command.
CVE-2020-8562 low 2.2 2.2 FIX arch arch slesdebian debian kubernetes 4y ago As mitigations to a report from 2019 and CVE-2020-8555, Kubernetes attempts to prevent proxied connections from accessing link-local or localhost networks when making user-driven connections to Servi…
CVE-2021-44142 critical 9.5 FIX arch arch sles rocky 4y ago RHSA-2022:0332: samba security and bug fix update (Critical)
CVE-2022-23305 critical 9.8 9.8 FIX debian debian sles rocky apachenetappbroadcom 4y ago RHSA-2022:0290: parfait:0.5 security update (Important)
CVE-2019-10149 critical 10.0 KEVEXPFIX arch archdebian debian 5y ago A flaw was found in Exim versions 4.87 to 4.91 (inclusive). Improper validation of recipient address in deliver_message() function in /src/deliver.c may lead to remote command execution.
CVE-2021-3930 low 2.5 FIX sles rockydebian debian 5y ago An off-by-one error was found in the SCSI device emulation in QEMU. It could occur while processing MODE SELECT commands in mode_sense_page() if the 'page' argument was set to MODE_PAGE_ALLS (0x3f). …
CVE-2021-20257 low 2.5 FIX sles rockydebian debian 5y ago An infinite loop flaw was found in the e1000 NIC emulator of the QEMU. This issue occurs while processing transmits (tx) descriptors in process_tx_desc if various descriptor fields are initialized wi…
CVE-2021-44732 critical 9.8 9.8 FIX debian debian armtrustedfirmware 5y ago Mbed TLS before 3.0.1 has a double free in certain out-of-memory conditions, as demonstrated by an mbedtls_ssl_set_session() failure.
CVE-2021-4102 critical 10.0 KEVFIX arch archdebian debian 5y ago Google Chromium V8 Engine contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multipl…
CVE-2020-25717 critical 9.5 FIX arch arch sles rocky 5y ago RHSA-2022:0332: samba security and bug fix update (Critical)
CVE-2021-44228 critical 10.0 KEVEXPFIX arch archdebian debian sles 5y ago Apache Log4j2 contains a vulnerability where JNDI features do not protect against attacker-controlled JNDI-related endpoints, allowing for remote code execution.
CVE-2021-43527 critical 9.5 FIX arch arch sles rocky 5y ago NSS (Network Security Services) versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatu…
CVE-2021-3572 low 2.5 FIX arch arch sles rocky 5y ago A flaw was found in python-pip in the way it handled Unicode separators in git references. A remote attacker could possibly use this issue to install a different revision on a repository. The highest…
CVE-2020-24370 low 2.5 FIX sles rockydebian debian 5y ago RHSA-2021:4510: lua security update (Low)
CVE-2021-20266 low 2.5 FIX sles rockydebian debian 5y ago RHSA-2021:4489: rpm security, bug fix, and enhancement update (Low)
CVE-2021-3200 low 2.5 FIX sles rockydebian debian 5y ago Buffer overflow vulnerability in libsolv 2020-12-13 via the Solver * testcase_read(Pool *pool, FILE *fp, const char *testcase, Queue *job, char **resultp, int *resultflagsp function at src/testcase.c…
CVE-2020-16135 low 2.5 FIX sles rockydebian debian 5y ago RHSA-2021:4387: libssh security update (Low)
CVE-2018-20673 low 2.5 debian debian sles rocky 5y ago RHSA-2021:4386: gcc security and bug fix update (Low)
CVE-2020-14155 low 2.5 FIX sles rockydebian debian 5y ago RHSA-2021:4373: pcre security update (Low)
CVE-2019-20838 low 2.5 sles rockydebian debian 5y ago RHSA-2021:4373: pcre security update (Low)
CVE-2020-18442 low 2.5 FIX sles rockydebian debian 5y ago RHSA-2021:4316: zziplib security update (Low)
CVE-2020-8037 low 2.5 FIX sles rockydebian debian 5y ago RHSA-2021:4236: tcpdump security and bug fix update (Low)
CVE-2020-36314 low 2.5 FIX arch arch slesdebian debian 5y ago RHSA-2021:4179: file-roller security update (Low)
CVE-2021-43566 low 2.5 FIX sles rockydebian debian 5y ago RHBA-2021:4438: samba bug fix and enhancement update (Low)
CVE-2021-20269 low 2.5 FIX arch arch sles rocky 5y ago RHSA-2021:4404: kexec-tools security, bug fix, and enhancement update (Low)
CVE-2020-13987 low 2.5 FIX slesdebian debian rhel 5y ago RHBA-2021:4446: iscsi-initiator-utils bug fix and enhancement update (Low)
CVE-2021-42013 critical 10.0 KEVEXPFIX arch archdebian debian 5y ago It was found that the fix for CVE-2021-41773 in Apache HTTP Server 2.4.50 was insufficient. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Al…
CVE-2021-30551 critical 10.0 KEVFIX arch archdebian debian sles 5y ago Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multipl…
CVE-2021-21148 critical 10.0 KEVFIX arch archdebian debian sles 5y ago Google Chromium V8 Engine contains a heap buffer overflow vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect m…
CVE-2020-6820 critical 10.0 KEVFIX arch arch slesdebian debian 5y ago Mozilla Firefox and Thunderbird contain a race condition vulnerability when handling a ReadableStream under certain conditions. The race condition creates a use-after-free vulnerability, causing unsp…
CVE-2020-6819 critical 10.0 KEVFIX arch arch slesdebian debian 5y ago Mozilla Firefox and Thunderbird contain a race condition vulnerability when running the nsDocShell destructor under certain conditions. The race condition creates a use-after-free vulnerability, caus…
CVE-2019-17026 critical 10.0 KEVEXPFIX arch archdebian debian rhel 5y ago Mozilla Firefox and Thunderbird contain a type confusion vulnerability due to incorrect alias information in the IonMonkey JIT compiler when setting array elements.
CVE-2021-3828 low 2.5 FIX arch archdebian debian 5y ago nltk is vulnerable to Inefficient Regular Expression Complexity
CVE-2021-25740 low 3.1 3.1 FIX arch arch slesdebian debian kubernetes 5y ago A security issue was discovered with Kubernetes that could enable users to send network traffic to locations they would otherwise not have access to via a confused deputy attack.
CVE-2021-40839 low 2.5 FIX arch archdebian debian 5y ago The rencode package through 1.0.6 for Python allows an infinite loop in typecode decoding (such as via ;\x2f\x7f), enabling a remote attack that consumes CPU and memory.
CVE-2021-25737 low 2.5 FIX arch arch slesdebian debian 5y ago A security issue was discovered in Kubernetes where a user may be able to redirect pod traffic to private networks on a Node. Kubernetes already prevents creation of Endpoint IPs in the localhost or …
CVE-2021-23437 low 2.5 FIX arch arch slesdebian debian 5y ago The package pillow from 0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function.
CVE-2021-37635 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of sparse reduction operations in TensorFlow can trigger accesses outside of bounds of h…
CVE-2021-37636 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of `tf.raw_ops.SparseDenseCwiseDiv` is vulnerable to a division by 0 error. The [impleme…
CVE-2021-37637 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. It is possible to trigger a null pointer dereference in TensorFlow by passing an invalid input to `tf.raw_ops.CompressElement`. …
CVE-2021-37638 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. Sending invalid argument for `row_partition_types` of `tf.raw_ops.RaggedTensorToTensor` API results in a null pointer dereferenc…
CVE-2021-37639 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. When restoring tensors via raw APIs, if the tensor name is not provided, TensorFlow can be tricked into dereferencing a null poi…
CVE-2021-37640 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of `tf.raw_ops.SparseReshape` can be made to trigger an integral division by 0 exception…
CVE-2021-37641 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions if the arguments to `tf.raw_ops.RaggedGather` don't determine a valid ragged tensor code can trigger a read…
CVE-2021-37642 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of `tf.raw_ops.ResourceScatterDiv` is vulnerable to a division by 0 error. The [implemen…
CVE-2021-37643 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. If a user does not provide a valid padding value to `tf.raw_ops.MatrixDiagPartOp`, then the code triggers a null pointer derefer…
CVE-2021-37644 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions providing a negative element to `num_elements` list argument of `tf.raw_ops.TensorListReserve` causes the r…
CVE-2021-37645 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of `tf.raw_ops.QuantizeAndDequantizeV4Grad` is vulnerable to an integer overflow issue c…
CVE-2021-37646 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of `tf.raw_ops.StringNGrams` is vulnerable to an integer overflow issue caused by conver…
CVE-2021-37647 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. When a user does not supply arguments that determine a valid sparse tensor, `tf.raw_ops.SparseTensorSliceDataset` implementation…
CVE-2021-37648 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions the code for `tf.raw_ops.SaveV2` does not properly validate the inputs and an attacker can trigger a null p…
CVE-2021-37649 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. The code for `tf.raw_ops.UncompressElement` can be made to trigger a null pointer dereference. The [implementation](https://gith…
CVE-2021-37650 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation for `tf.raw_ops.ExperimentalDatasetToTFRecord` and `tf.raw_ops.DatasetToTFRecord` can tr…
CVE-2021-37651 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation for `tf.raw_ops.FractionalAvgPoolGrad` can be tricked into accessing data outside of bou…
CVE-2021-37652 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation for `tf.raw_ops.BoostedTreesCreateEnsemble` can result in a use after free error if an a…
CVE-2021-37653 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can trigger a crash via a floating point exception in `tf.raw_ops.ResourceGather`. The [impleme…
CVE-2021-37654 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can trigger a crash via a `CHECK`-fail in debug builds of TensorFlow using `tf.raw_ops.Resource…
CVE-2021-37655 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can trigger a read from outside of bounds of heap allocated data by sending invalid arguments t…
CVE-2021-37656 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in `tf.raw_ops.RaggedTenso…
CVE-2021-37657 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in all operations of type …
CVE-2021-37658 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in all operations of type …
CVE-2021-37659 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in all binary cwise operat…
CVE-2021-37660 critical 9.5 FIX arch archdebian debian 5y ago TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause a floating point exception by calling inplace operations with crafted arguments that …