Search CVE reports
131 – 140 of 36349 results
Orthanc versions before 1.12.10 are affected by an authorisation logic flaw in the application's HTTP Basic Authentication implementation. Successful exploitation could result in Privilege Escalation, potentially allowing full...
1 affected package
orthanc
| Package | 22.04 LTS |
|---|---|
| orthanc | Needs evaluation |
A critical vulnerability exists in the NLTK downloader component of nltk/nltk, affecting all versions. The _unzip_iter function in nltk/downloader.py uses zipfile.extractall() without performing path validation or security checks....
1 affected package
nltk
| Package | 22.04 LTS |
|---|---|
| nltk | Needs evaluation |
gSOAP 2.8 contains a directory traversal vulnerability that allows unauthenticated attackers to access system files by manipulating HTTP path traversal techniques. Attackers can retrieve sensitive files like /etc/passwd by sending...
1 affected package
gsoap
| Package | 22.04 LTS |
|---|---|
| gsoap | Needs evaluation |
insecure local cache file removal
1 affected package
evolution-data-server
| Package | 22.04 LTS |
|---|---|
| evolution-data-server | Fixed |
OOB Read in OpenSSL backend
1 affected package
glib-networking
| Package | 22.04 LTS |
|---|---|
| glib-networking | Not affected |
Improper Input Validation vulnerability in Apache Tomcat Native, Apache Tomcat. When using an OCSP responder, Tomcat Native (and Tomcat's FFM port of the Tomcat Native code) did not complete verification or freshness checks on the...
5 affected packages
tomcat6, tomcat7, tomcat8, tomcat9, tomcat10
| Package | 22.04 LTS |
|---|---|
| tomcat6 | Not in release |
| tomcat7 | Not in release |
| tomcat8 | Not in release |
| tomcat9 | Needs evaluation |
| tomcat10 | Not in release |
Improper Input Validation vulnerability in Apache Tomcat. Tomcat did not limit HTTP/0.9 requests to the GET method. If a security constraint was configured to allow HEAD requests to a URI but deny GET requests, the user could...
5 affected packages
tomcat6, tomcat7, tomcat8, tomcat9, tomcat10
| Package | 22.04 LTS |
|---|---|
| tomcat6 | Not in release |
| tomcat7 | Not in release |
| tomcat8 | Not in release |
| tomcat9 | Needs evaluation |
| tomcat10 | Not in release |
Improper Input Validation vulnerability. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.14, from 10.1.0-M1 through 10.1.49, from 9.0.0-M1 through 9.0.112. The following versions were EOL at the time the CVE was...
5 affected packages
tomcat6, tomcat7, tomcat8, tomcat9, tomcat10
| Package | 22.04 LTS |
|---|---|
| tomcat6 | Not in release |
| tomcat7 | Not in release |
| tomcat8 | Not in release |
| tomcat9 | Needs evaluation |
| tomcat10 | Not in release |
unsafe image resize operation
1 affected package
nova
| Package | 22.04 LTS |
|---|---|
| nova | Fixed |
[ZDI-CAN-28266: New Vulnerability Report at rgbe.c]
1 affected package
gegl
| Package | 22.04 LTS |
|---|---|
| gegl | Needs evaluation |