Логотип exploitDog
source:"github"
Консоль
Логотип exploitDog

exploitDog

source:"github"

Количество 312 573

Количество 312 573

github логотип

GHSA-377f-vp77-9jq4

6 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: staging: gpib: fix unset padding field copy back to userspace The introduction of a padding field in the gpib_board_info_ioctl is showing up as initialized data on the stack frame being copyied back to userspace in function board_info_ioctl. The simplest fix is to initialize the entire struct to zero to ensure all unassigned padding fields are zero'd before being copied back to userspace.

CVSS3: 5.5
EPSS: Низкий
github логотип

GHSA-377c-pvc8-rpq3

больше 3 лет назад

** DISPUTED ** In Valve Steam Client for Windows through 2019-08-07, HKLM\SOFTWARE\Wow6432Node\Valve\Steam has explicit "Full control" for the Users group, which allows local users to gain NT AUTHORITY\SYSTEM access. NOTE: the vendor disputes the significance of this finding; the discoverer was reportedly told that the Steam threat model excludes "Attacks that require physical access to the user's device" and "Attacks that require the ability to drop files in arbitrary locations on the user's filesystem" (which might apply to the attacker's ability to create links under HKLM\SOFTWARE\Wow6432Node\Valve\Steam\Apps).

EPSS: Низкий
github логотип

GHSA-377c-8ghf-jp2m

около 2 лет назад

A vulnerability was found in Kashipara Billing Software 1.0 and classified as critical. This issue affects some unknown processing of the file item_list_edit.php of the component HTTP POST Request Handler. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-250601 was assigned to this vulnerability.

CVSS3: 6.3
EPSS: Низкий
github логотип

GHSA-3778-6qx9-fc4v

около 3 лет назад

Denial of service in MODEM due to reachable assertion while processing configuration from network in Snapdragon Mobile

CVSS3: 7.5
EPSS: Низкий
github логотип

GHSA-3777-fm87-36r8

больше 2 лет назад

A stored cross-site scripting (XSS) vulnerability in the Create Providers (/circuits/providers/) function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field.

CVSS3: 5.4
EPSS: Низкий
github логотип

GHSA-3776-jqqc-38j5

почти 4 года назад

Com21 DOXport 1100 series cable modem running firmware 2.1.1.106, and possibly other versions before 2.1.1.108.003, downloads a DOCSIS configuration file from a TFTP server running on the internal network, which allows local users to modify configuration of the modem via a malicious TFTP server.

EPSS: Низкий
github логотип

GHSA-3776-639q-72wg

больше 3 лет назад

BigProf Online Invoicing System (OIS) through 2.6 has XSS that can be leveraged for session hijacking. An attacker can exploit the XSS vulnerability, retrieve the session cookie from the administrator login, and take over the administrator account via the Name field in an Add New Client action.

EPSS: Низкий
github логотип

GHSA-3775-gcxp-8pxm

12 месяцев назад

Cross-Site Request Forgery (CSRF) vulnerability in Free plug in by SEO Roma Auto Tag Links allows Cross Site Request Forgery. This issue affects Auto Tag Links: from n/a through 1.0.13.

CVSS3: 4.3
EPSS: Низкий
github логотип

GHSA-3775-frgh-j3vc

больше 3 лет назад

An issue was discovered in Varnish Cache before 6.0.4 LTS, and 6.1.x and 6.2.x before 6.2.1. An HTTP/1 parsing failure allows a remote attacker to trigger an assert by sending crafted HTTP/1 requests. The assert will cause an automatic restart with a clean cache, which makes it a Denial of Service attack.

CVSS3: 7.5
EPSS: Низкий
github логотип

GHSA-3775-5x5j-8g3h

больше 3 лет назад

The Gmarket (aka com.ebay.kr.gmarket) application 5.1.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

EPSS: Низкий
github логотип

GHSA-3774-mw38-qfwj

больше 3 лет назад

Cisco Adaptive Security Appliance (ASA) Software 9.0 through 9.5.1 mishandles IPsec error processing, which allows remote authenticated users to cause a denial of service (memory consumption) via crafted (1) LAN-to-LAN or (2) Remote Access VPN tunnel packets, aka Bug ID CSCuv70576.

CVSS3: 6.5
EPSS: Низкий
github логотип

GHSA-3774-9hfm-h8pq

больше 3 лет назад

An issue was discovered in pdftools through 20200714. A NULL pointer dereference exists in the function Analyze::AnalyzeXref() located in analyze.cpp. It allows an attacker to cause Denial of Service.

EPSS: Низкий
github логотип

GHSA-3772-x29g-83r5

26 дней назад

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Avoid NULL pointer deref for evicted BOs It is possible for a BO to exist that is not currently associated with a resource, e.g. because it has been evicted. When devcoredump tries to read the contents of all BOs for dumping, we need to expect this as well -- in this case, ENODATA is recorded instead of the buffer contents.

EPSS: Низкий
github логотип

GHSA-3772-r33f-jvrg

больше 3 лет назад

Vidyo 02-09-/D allows clickjacking via the portal/ URI.

EPSS: Низкий
github логотип

GHSA-3772-9fgh-6937

почти 4 года назад

CRLF injection vulnerability in YaBB 1 Gold before 1.3.2 allows remote attackers to modify text file contents via the subject variable.

EPSS: Низкий
github логотип

GHSA-376x-7h8v-qf9q

больше 3 лет назад

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.

EPSS: Низкий
github логотип

GHSA-376x-5mmm-6vrc

больше 3 лет назад

Pending Intent hijacking vulnerability in NotiCenterUtils in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent.

CVSS3: 6.5
EPSS: Низкий
github логотип

GHSA-376w-gx8h-h6vg

больше 3 лет назад

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects SRK60 before 2.5.3.110, SRR60 before 2.5.3.110, and SRS60 before 2.5.3.110.

EPSS: Низкий
github логотип

GHSA-376v-xgjx-7mfr

больше 3 лет назад

fastify-bearer-auth vulnerable to Timing Attack Vector

CVSS3: 7.5
EPSS: Низкий
github логотип

GHSA-376v-j8mw-xh7g

больше 3 лет назад

drivers/hid/hid-steelseries.c in the Human Interface Device (HID) subsystem in the Linux kernel through 3.11, when CONFIG_HID_STEELSERIES is enabled, allows physically proximate attackers to cause a denial of service (heap-based out-of-bounds write) via a crafted device.

EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
github логотип
GHSA-377f-vp77-9jq4

In the Linux kernel, the following vulnerability has been resolved: staging: gpib: fix unset padding field copy back to userspace The introduction of a padding field in the gpib_board_info_ioctl is showing up as initialized data on the stack frame being copyied back to userspace in function board_info_ioctl. The simplest fix is to initialize the entire struct to zero to ensure all unassigned padding fields are zero'd before being copied back to userspace.

CVSS3: 5.5
0%
Низкий
6 месяцев назад
github логотип
GHSA-377c-pvc8-rpq3

** DISPUTED ** In Valve Steam Client for Windows through 2019-08-07, HKLM\SOFTWARE\Wow6432Node\Valve\Steam has explicit "Full control" for the Users group, which allows local users to gain NT AUTHORITY\SYSTEM access. NOTE: the vendor disputes the significance of this finding; the discoverer was reportedly told that the Steam threat model excludes "Attacks that require physical access to the user's device" and "Attacks that require the ability to drop files in arbitrary locations on the user's filesystem" (which might apply to the attacker's ability to create links under HKLM\SOFTWARE\Wow6432Node\Valve\Steam\Apps).

0%
Низкий
больше 3 лет назад
github логотип
GHSA-377c-8ghf-jp2m

A vulnerability was found in Kashipara Billing Software 1.0 and classified as critical. This issue affects some unknown processing of the file item_list_edit.php of the component HTTP POST Request Handler. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-250601 was assigned to this vulnerability.

CVSS3: 6.3
0%
Низкий
около 2 лет назад
github логотип
GHSA-3778-6qx9-fc4v

Denial of service in MODEM due to reachable assertion while processing configuration from network in Snapdragon Mobile

CVSS3: 7.5
0%
Низкий
около 3 лет назад
github логотип
GHSA-3777-fm87-36r8

A stored cross-site scripting (XSS) vulnerability in the Create Providers (/circuits/providers/) function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field.

CVSS3: 5.4
0%
Низкий
больше 2 лет назад
github логотип
GHSA-3776-jqqc-38j5

Com21 DOXport 1100 series cable modem running firmware 2.1.1.106, and possibly other versions before 2.1.1.108.003, downloads a DOCSIS configuration file from a TFTP server running on the internal network, which allows local users to modify configuration of the modem via a malicious TFTP server.

0%
Низкий
почти 4 года назад
github логотип
GHSA-3776-639q-72wg

BigProf Online Invoicing System (OIS) through 2.6 has XSS that can be leveraged for session hijacking. An attacker can exploit the XSS vulnerability, retrieve the session cookie from the administrator login, and take over the administrator account via the Name field in an Add New Client action.

0%
Низкий
больше 3 лет назад
github логотип
GHSA-3775-gcxp-8pxm

Cross-Site Request Forgery (CSRF) vulnerability in Free plug in by SEO Roma Auto Tag Links allows Cross Site Request Forgery. This issue affects Auto Tag Links: from n/a through 1.0.13.

CVSS3: 4.3
0%
Низкий
12 месяцев назад
github логотип
GHSA-3775-frgh-j3vc

An issue was discovered in Varnish Cache before 6.0.4 LTS, and 6.1.x and 6.2.x before 6.2.1. An HTTP/1 parsing failure allows a remote attacker to trigger an assert by sending crafted HTTP/1 requests. The assert will cause an automatic restart with a clean cache, which makes it a Denial of Service attack.

CVSS3: 7.5
6%
Низкий
больше 3 лет назад
github логотип
GHSA-3775-5x5j-8g3h

The Gmarket (aka com.ebay.kr.gmarket) application 5.1.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

0%
Низкий
больше 3 лет назад
github логотип
GHSA-3774-mw38-qfwj

Cisco Adaptive Security Appliance (ASA) Software 9.0 through 9.5.1 mishandles IPsec error processing, which allows remote authenticated users to cause a denial of service (memory consumption) via crafted (1) LAN-to-LAN or (2) Remote Access VPN tunnel packets, aka Bug ID CSCuv70576.

CVSS3: 6.5
1%
Низкий
больше 3 лет назад
github логотип
GHSA-3774-9hfm-h8pq

An issue was discovered in pdftools through 20200714. A NULL pointer dereference exists in the function Analyze::AnalyzeXref() located in analyze.cpp. It allows an attacker to cause Denial of Service.

0%
Низкий
больше 3 лет назад
github логотип
GHSA-3772-x29g-83r5

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Avoid NULL pointer deref for evicted BOs It is possible for a BO to exist that is not currently associated with a resource, e.g. because it has been evicted. When devcoredump tries to read the contents of all BOs for dumping, we need to expect this as well -- in this case, ENODATA is recorded instead of the buffer contents.

0%
Низкий
26 дней назад
github логотип
GHSA-3772-r33f-jvrg

Vidyo 02-09-/D allows clickjacking via the portal/ URI.

0%
Низкий
больше 3 лет назад
github логотип
GHSA-3772-9fgh-6937

CRLF injection vulnerability in YaBB 1 Gold before 1.3.2 allows remote attackers to modify text file contents via the subject variable.

0%
Низкий
почти 4 года назад
github логотип
GHSA-376x-7h8v-qf9q

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.

1%
Низкий
больше 3 лет назад
github логотип
GHSA-376x-5mmm-6vrc

Pending Intent hijacking vulnerability in NotiCenterUtils in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent.

CVSS3: 6.5
0%
Низкий
больше 3 лет назад
github логотип
GHSA-376w-gx8h-h6vg

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects SRK60 before 2.5.3.110, SRR60 before 2.5.3.110, and SRS60 before 2.5.3.110.

2%
Низкий
больше 3 лет назад
github логотип
GHSA-376v-xgjx-7mfr

fastify-bearer-auth vulnerable to Timing Attack Vector

CVSS3: 7.5
1%
Низкий
больше 3 лет назад
github логотип
GHSA-376v-j8mw-xh7g

drivers/hid/hid-steelseries.c in the Human Interface Device (HID) subsystem in the Linux kernel through 3.11, when CONFIG_HID_STEELSERIES is enabled, allows physically proximate attackers to cause a denial of service (heap-based out-of-bounds write) via a crafted device.

0%
Низкий
больше 3 лет назад

Уязвимостей на страницу