Filter
AND
Versions
Oracle Communications Cloud Native Core Network Repository Functioncurl. Multiple issues were addressed by updating to curl version 7.79.1.
7.5
First published (updated )
Oracle GraalVMUNIX Symbolic Link (Symlink) Following in @npmcli/arborist
8.2
First published (updated )
Oracle GraalVMUNIX Symbolic Link (Symlink) Following in @npmcli/arborist
8.2
First published (updated )
Npmjs TarArbitrary File Creation/Overwrite on Windows via insufficient relative path sanitization
8.6
First published (updated )
Npmjs TarArbitrary File Creation/Overwrite via insufficient symlink protection due to directory cache poisoning using symbolic links
8.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Npmjs TarArbitrary File Creation/Overwrite via insufficient symlink protection due to directory cache poisoning using symbolic links
8.6
First published (updated )
McAfee ePolicy OrchestratorRead buffer overruns processing ASN.1 strings
7.4
First published (updated )
Oracle PeopleSoft Enterprise PeopleToolslibcurl-using applications can ask for a specific client certificate to be used in a transfer. This …
7.5
First published (updated )
Tar Project TarArbitrary File Creation/Overwrite due to insufficient absolute path sanitization
8.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Tar Project TarArbitrary File Creation/Overwrite via insufficient symlink protection due to directory cache poisoning
8.2
First published (updated )
Nodejs Node.jsNode.js could allow a local attacker to gain elevated privileges on the system, caused by improper c…
7.8
First published (updated )
ISC BINDAn assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nodejs Node.jsNULL pointer deref in signature_algorithms processing
7.5
First published (updated )
IBM Cloud Pak for Security (CP4S)Regular Expression Denial of Service (ReDoS)
7.5
First published (updated )
npm/ssriA flaw was found in ssri package. A malicious string provided by an attacker may lead to Regular Exp…
7.5
First published (updated )
IBM Cloud Pak for Security (CP4S)Node.js is vulnerable to a denial of service, caused by a file descriptor leak. By making multiple a…
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ISC BINDISC BIND TKEY Query Heap-based Buffer Overflow Remote Code Execution Vulnerability
8.1
First published (updated )
Apple Mac OS Xcurl. This issue was addressed with improved checks.
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fujitsu M10-1 Firmwarecurl 7.20.0 through 7.70.0 is vulnerable to improper restriction of names for files and other resour…
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.