Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
debian vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2017-12379
ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition or potentially execute arbitrary code on an affected device. The vulnerability is due to improper in...
Debian Debian Linux 7.0
Clamav Clamav
890
VMScore
CVE-2017-17458
In Mercurial prior to 4.4.1, it is possible that a specially malformed repository can cause Git subrepositories to run arbitrary code in the form of a .git/hooks/post-update script checked into the repository. Typical use of Mercurial prevents construction of such repositories, b...
Mercurial Mercurial
Debian Debian Linux 8.0
Debian Debian Linux 7.0
890
VMScore
CVE-2016-1253
The most package in Debian wheezy prior to 5.0.0a-2.2, in Debian jessie prior to 5.0.0a-2.3+deb8u1, and in Debian unstable prior to 5.0.0a-3 allows remote malicious users to execute arbitrary commands via shell metacharacters in the name of an LZMA-compressed file.
Debian Most
890
VMScore
CVE-2014-9906
Use-after-free vulnerability in DBD::mysql prior to 4.029 allows malicious users to cause a denial of service (program crash) or possibly execute arbitrary code via vectors related to a lost server connection.
Debian Debian Linux 8.0
Dbd-mysql Project Dbd-mysql
890
VMScore
CVE-2016-3955
The usbip_recv_xbuff function in drivers/usb/usbip/usbip_common.c in the Linux kernel prior to 4.5.3 allows remote malicious users to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via a crafted length value in a USB/IP packet.
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Linux Linux Kernel
Debian Debian Linux 8.0
1 Github repository
890
VMScore
CVE-2016-2099
Use-after-free vulnerability in validators/DTD/DTDScanner.cpp in Apache Xerces C++ 3.1.3 and previous versions allows context-dependent malicious users to have unspecified impact via an invalid character in an XML document.
Apache Xerces-c++
Opensuse Opensuse 13.2
890
VMScore
CVE-2016-2195
Integer overflow in the PointGFp constructor in Botan prior to 1.10.11 and 1.11.x prior to 1.11.27 allows remote malicious users to overwrite memory and possibly execute arbitrary code via a crafted ECC point, which triggers a heap-based buffer overflow.
Botan Project Botan 1.11.18
Botan Project Botan 1.11.0
Botan Project Botan 1.11.21
Botan Project Botan 1.11.26
Botan Project Botan 1.11.19
Botan Project Botan
Botan Project Botan 1.11.12
Botan Project Botan 1.11.3
Botan Project Botan 1.11.17
Botan Project Botan 1.11.10
Botan Project Botan 1.11.14
Botan Project Botan 1.11.1
Botan Project Botan 1.11.6
Botan Project Botan 1.11.25
Botan Project Botan 1.11.11
Botan Project Botan 1.11.24
Botan Project Botan 1.11.4
Botan Project Botan 1.11.7
Botan Project Botan 1.11.5
Botan Project Botan 1.11.20
Botan Project Botan 1.11.8
Botan Project Botan 1.11.13
890
VMScore
CVE-2016-4422
The pam_sm_authenticate function in pam_sshauth.c in libpam-sshauth might allow context-dependent malicious users to bypass authentication or gain privileges via a system user account.
Libpam-sshauth Project Libpam-sshauth -
Debian Debian Linux 8.0
890
VMScore
CVE-2015-0857
Cool Projects TarDiff allows remote malicious users to execute arbitrary commands via shell metacharacters in the name of a (1) tar file or (2) file within a tar file.
Tardiff Project Tardiff -
Debian Debian Linux 8.0
890
VMScore
CVE-2014-8873
A .desktop file in the Debian openjdk-7 package 7u79-2.5.5-1~deb8u1 includes a MIME type registration that is added to /etc/mailcap by mime-support, which allows remote malicious users to execute arbitrary code via a JAR file.
Oracle Openjdk 1.7.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »