Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
debian debian linux 1.3.1 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-16786
Waitress through version 1.3.1 would parse the Transfer-Encoding header and only look for a single string value, if that value was not chunked it would fall through and use the Content-Length header instead. According to the HTTP standard Transfer-Encoding should be a comma separ...
Agendaless Waitress
Oracle Communications Cloud Native Core Network Function Cloud Native Environment 1.10.0
Debian Debian Linux 9.0
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Redhat Openstack 15
5
CVSSv2
CVE-2016-10746
libvirt-domain.c in libvirt prior to 1.3.1 supports virDomainGetTime API calls by guest agents with an RO connection, even though an RW connection was supposed to be required, a different vulnerability than CVE-2019-3886.
Redhat Libvirt
Debian Debian Linux 8.0
5
CVSSv2
CVE-2017-18076
In strategy.rb in OmniAuth prior to 1.3.2, the authenticity_token value is improperly protected because POST (in addition to GET) parameters are stored in the session and become available in the environment of the callback phase.
Omniauth Omniauth
Debian Debian Linux 9.0
Debian Debian Linux 8.0
5
CVSSv2
CVE-2014-4911
The ssl_decrypt_buf function in library/ssl_tls.c in PolarSSL prior to 1.2.11 and 1.3.x prior to 1.3.8 allows remote malicious users to cause a denial of service (crash) via vectors related to the GCM ciphersuites, as demonstrated using the Codenomicon Defensics toolkit.
Polarssl Polarssl 1.3.6
Polarssl Polarssl 1.3.4
Polarssl Polarssl 1.3.7
Polarssl Polarssl 1.3.2
Polarssl Polarssl 1.3.0
Polarssl Polarssl 1.3.5
Polarssl Polarssl 1.3.3
Polarssl Polarssl 1.3.1
Polarssl Polarssl 1.2.0
Polarssl Polarssl 1.2.7
Polarssl Polarssl 1.2.9
Polarssl Polarssl 1.2.1
Polarssl Polarssl 1.2.2
Polarssl Polarssl 1.2.3
Polarssl Polarssl 1.2.4
Polarssl Polarssl 1.2.5
Polarssl Polarssl
Polarssl Polarssl 1.2.6
Polarssl Polarssl 1.2.8
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 6.0
5
CVSSv2
CVE-2014-4617
The do_uncompress function in g10/compress.c in GnuPG 1.x prior to 1.4.17 and 2.x prior to 2.0.24 allows context-dependent malicious users to cause a denial of service (infinite loop) via malformed compressed packets, as demonstrated by an a3 01 5b ff byte sequence.
Gnupg Gnupg 2.0.1
Gnupg Gnupg 2.0.7
Gnupg Gnupg 2.0.15
Gnupg Gnupg 2.0.8
Gnupg Gnupg 2.0.11
Gnupg Gnupg 2.0.6
Gnupg Gnupg 2.0.10
Gnupg Gnupg 2.0.13
Gnupg Gnupg 2.0
Gnupg Gnupg 2.0.5
Gnupg Gnupg 2.0.17
Gnupg Gnupg 2.0.12
Gnupg Gnupg 2.0.18
Gnupg Gnupg 2.0.16
Gnupg Gnupg 2.0.21
Gnupg Gnupg 2.0.14
Gnupg Gnupg 2.0.4
Gnupg Gnupg 2.0.3
Gnupg Gnupg 2.0.22
Gnupg Gnupg 2.0.19
Gnupg Gnupg 2.0.20
Gnupg Gnupg 2.0.23
1 Github repository
5
CVSSv2
CVE-2012-2351
The default configuration of the auth/saml plugin in Mahara prior to 1.4.2 sets the "Match username attribute to Remote username" option to false, which allows remote SAML IdP servers to spoof users of other SAML IdP servers by using the same internal username.
Debian Debian Linux 6.0
Mahara Mahara 1.4
Mahara Mahara 1.3.3
Mahara Mahara 1.2.6
Mahara Mahara 1.2.0
Mahara Mahara 1.1.1
Mahara Mahara 1.1.0
Mahara Mahara 1.1.7
Mahara Mahara 1.1.8
Mahara Mahara 1.1
Mahara Mahara 1.0.9
Mahara Mahara 1.0.6
Mahara Mahara 1.0.14
Mahara Mahara 1.0.15
Mahara Mahara 0.9.1
Mahara Mahara 0.9.2
Mahara Mahara 1.3.0
Mahara Mahara 1.3.1
Mahara Mahara 1.2.2
Mahara Mahara 1.1.6
Mahara Mahara 1.0.0
Mahara Mahara 1.0.4
4.6
CVSSv2
CVE-2022-1785
Out-of-bounds Write in GitHub repository vim/vim before 8.2.4977.
Vim Vim
Debian Debian Linux 10.0
4.6
CVSSv2
CVE-2017-16651
Roundcube Webmail prior to 1.1.10, 1.2.x prior to 1.2.7, and 1.3.x prior to 1.3.3 allows unauthorized access to arbitrary files on the host's filesystem, including configuration files, as exploited in the wild in November 2017. The attacker must be able to authenticate at th...
Roundcube Webmail 1.3.0
Roundcube Webmail 1.2.5
Roundcube Webmail
Roundcube Webmail 1.3.2
Roundcube Webmail 1.2.3
Roundcube Webmail 1.2.2
Roundcube Webmail 1.2.1
Roundcube Webmail 1.2.0
Roundcube Webmail 1.3.1
Roundcube Webmail 1.2.6
Roundcube Webmail 1.2.4
Debian Debian Linux 9.0
Debian Debian Linux 7.0
2 Github repositories
4.6
CVSSv2
CVE-2004-0643
Double free vulnerability in the krb5_rd_cred function for MIT Kerberos 5 (krb5) 1.3.1 and previous versions may allow local users to execute arbitrary code.
Mit Kerberos 5
Debian Debian Linux 3.0
Redhat Enterprise Linux Desktop 3.0
Redhat Enterprise Linux Server 3.0
Redhat Enterprise Linux Workstation 3.0
4.6
CVSSv2
CVE-1999-1048
Buffer overflow in bash 2.0.0, 1.4.17, and other versions allows local malicious users to gain privileges by creating an extremely large directory name, which is inserted into the password prompt via the \w option in the PS1 environmental variable when another user changes into t...
Redhat Linux 4.2
Debian Debian Linux 1.3.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »