Search CVE reports
11 – 20 of 32373 results
CVE-2024-46981
Medium priorityRedis is an open source, in-memory database that persists on disk. An authenticated user may use a specially crafted Lua script to manipulate the garbage collector and potentially lead to remote code execution. The problem is...
3 affected packages
redict, redis, valkey
| Package | 18.04 LTS |
|---|---|
| redict | — |
| redis | Needs evaluation |
| valkey | — |
CVE-2023-6605
Medium priorityA flaw was found in FFmpeg's DASH playlist support. This vulnerability allows arbitrary HTTP GET requests to be made on behalf of the machine running FFmpeg via a crafted DASH playlist containing malicious URLs.
2 affected packages
ffmpeg, libav
| Package | 18.04 LTS |
|---|---|
| ffmpeg | Needs evaluation |
| libav | — |
CVE-2023-6604
Medium priorityA flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted...
2 affected packages
ffmpeg, libav
| Package | 18.04 LTS |
|---|---|
| ffmpeg | Needs evaluation |
| libav | — |
CVE-2023-6601
Medium priorityA flaw was found in FFmpeg's HLS demuxer. This vulnerability allows bypassing unsafe file extension checks and triggering arbitrary demuxers via base64-encoded data URIs appended with specific file extensions.
2 affected packages
ffmpeg, libav
| Package | 18.04 LTS |
|---|---|
| ffmpeg | Needs evaluation |
| libav | — |
CVE-2025-22376
Medium priorityIn Net::OAuth::Client in the Net::OAuth package before 0.29 for Perl, the default nonce is a 32-bit integer generated from the built-in rand() function, which is not cryptographically strong.
1 affected package
libnet-oauth-perl
| Package | 18.04 LTS |
|---|---|
| libnet-oauth-perl | Needs evaluation |
CVE-2024-6542
Medium priorityImproper neutralization of livestatus command delimiters in mknotifyd in Checkmk <= 2.0.0p39, < 2.1.0p47, < 2.2.0p32 and < 2.3.0p11 allows arbitrary livestatus command execution.Improper neutralization of livestatus...
1 affected package
check-mk
| Package | 18.04 LTS |
|---|---|
| check-mk | Needs evaluation |
CVE-2024-6485
Medium priorityA security vulnerability has been discovered in bootstrap that could enable Cross-Site Scripting (XSS) attacks. The vulnerability is associated with the data-loading-text attribute within the button plugin. This vulnerability...
1 affected package
twitter-bootstrap3
| Package | 18.04 LTS |
|---|---|
| twitter-bootstrap3 | Needs evaluation |
CVE-2024-54534
Medium priority5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
| Package | 18.04 LTS |
|---|---|
| qtwebkit-opensource-src | Ignored |
| qtwebkit-source | Ignored |
| webkit2gtk | Ignored |
| webkitgtk | Ignored |
| wpewebkit | — |
CVE-2024-54508
Medium priority5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
| Package | 18.04 LTS |
|---|---|
| qtwebkit-opensource-src | Ignored |
| qtwebkit-source | Ignored |
| webkit2gtk | Ignored |
| webkitgtk | Ignored |
| wpewebkit | — |
CVE-2024-54505
Medium priority5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
| Package | 18.04 LTS |
|---|---|
| qtwebkit-opensource-src | Ignored |
| qtwebkit-source | Ignored |
| webkit2gtk | Ignored |
| webkitgtk | Ignored |
| wpewebkit | — |