Filter
AND

Opensuse Libzypp-plugin-appdatalibzypp-plugin-appdata: potential arbitrary code execution via shell injection due to `os.system` calls

7.8
First published (updated )

openSUSE Factory watchmanwatchman: chown in watchman@.socket unit allows symlink attack

7.8
First published (updated )

SaltStack Saltsalt-api unauthenticated remote code execution

First published (updated )

redhat/grub2GRUB2 contained integer overflows when handling the initrd command, leading to a heap-based buffer overflow.

First published (updated )

redhat/grub2GRUB2 contains a race condition leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing.

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

redhat/grub2GRUB2: avoid loading unsigned kernels when GRUB is booted directly under secureboot without shim

First published (updated )

Fedoraproject FedoraUse After Free

8.8
First published (updated )

Fedoraproject FedoraUse After Free

8.8
First published (updated )

Fedoraproject FedoraUse After Free

8.8
First published (updated )

Fedoraproject FedoraUse After Free

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Fedoraproject FedoraUse After Free

8.8
First published (updated )

Fedoraproject FedoraInappropriate implementation in V8 in Google Chrome prior to 80.0.3987.149 allowed a remote attacker…

First published (updated )

Fedoraproject FedoraUse After Free

8.8
First published (updated )

Nextcloud Nextcloud ServerInput Validation

First published (updated )

Suse Obs-service-tar Scmobs-service-extract_file's outfilename parameter allows to write files outside of package directory

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Yast2-rmt Project Yast2-rmtyast2-rmt exposes CA private key passhrase in log-file

First published (updated )

Opensuse Libzypplibzypp stores cookies world readable

First published (updated )

Opensuse MungeLocal privilege escalation from user munge to root

7.8
First published (updated )

Suse Trouserstrousers: Local privilege escalation from tss to root

7.8
First published (updated )

composer/phpmyadmin/phpmyadminSQL Injection

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Microfocus FilrLocal privilege escalation in Filr famtd

7.8
First published (updated )

Microfocus FilrPath traversal vulnerability in Filr web application

First published (updated )

Nodejs Node.jsNode.js: All versions prior to Node.js 6.15.0 and 8.14.0: HTTP request splitting: If Node.js can be …

7.5
First published (updated )

redhat/nodejsNode.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11.3.0: Slowloris HTTP Denial of …

7.5
First published (updated )

Libwpd Project LibwpdNull Pointer Dereference

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

SUSE SUSE Linux Enterprise ServerPath Traversal

7.5
First published (updated )

Linuxcontainers LxcThe lxc-user-nic component of LXC allows unprivileged users to open arbitrary files

3.3
First published (updated )

Redhat Ansible EngineLast updated 24 July 2024

7.8
First published (updated )

Dell EMC iDRAC Service ModuleiSM: Dell EMC iDRAC Service Module Improper File Permission Vulnerability

First published (updated )

SUSE SUSE Linux Enterprise ServerMissing verification of host key for kdump server

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203