CVE-2022-24785
- EPSS 0.61%
- Published 04.04.2022 17:15:07
- Last modified 21.11.2024 06:51:05
Moment.js is a JavaScript date library for parsing, validating, manipulating, and formatting dates. A path traversal vulnerability impacts npm (server) users of Moment.js between versions 1.0.1 and 2.29.1, especially if a user-provided locale string ...
- EPSS 0.05%
- Published 23.04.2019 22:29:05
- Last modified 21.11.2024 04:21:10
The Siemens R3964 line discipline driver in drivers/tty/n_r3964.c in the Linux kernel before 5.0.8 has multiple race conditions.
CVE-2019-3462
- EPSS 7.37%
- Published 28.01.2019 21:29:00
- Last modified 21.11.2024 04:42:05
Incorrect sanitation of the 302 redirect field in HTTP transport method of apt versions 1.4.8 and earlier can lead to content injection by a MITM attacker, potentially leading to remote code execution on the target machine.
CVE-2018-1000656
- EPSS 0.43%
- Published 20.08.2018 19:31:45
- Last modified 21.11.2024 03:40:20
The Pallets Project flask version Before 0.12.3 contains a CWE-20: Improper Input Validation vulnerability in flask that can result in Large amount of memory usage possibly leading to denial of service. This attack appear to be exploitable via Attack...