gentoo

178 tracked vulnerabilities.

CVE-2024-12084 CRITICAL
rsync - Heap-based Buffer Overflow via Checksum Length Handling
Jan 15, 2025
CVSS 9.8
EPSS 0.03
CVE-2024-12088 MEDIUM
rsync < 3.3.0 - Path Traversal and Arbitrary File Write via Symbolic Link Verification Bypass
Jan 14, 2025
CVSS 6.5
EPSS 0.03
CVE-2024-12087 MEDIUM
rsync < 3.3.0 - Path Traversal via --inc-recursive Symlink Handling
Jan 14, 2025
CVSS 6.5
EPSS 0.03
CVE-2024-12086 MEDIUM
rsync < 3.3.0 - Arbitrary File Read via Checksum Manipulation
Jan 14, 2025
CVSS 6.1
EPSS 0.01
CVE-2024-12085 HIGH
rsync < 3.3.0 - Information Disclosure via Checksum Length Manipulation
Jan 14, 2025
CVSS 7.5
EPSS 0.19
CVE-2023-48795 MEDIUM NUCLEI
OpenSSH <9.6 - Open Redirect
Dec 18, 2023
CVSS 5.9
EPSS 0.53
CVE-2023-28424 CRITICAL
Soko < 1.0.2 - Unauthenticated SQL Injection via Search q Parameter
Mar 20, 2023
CVSS 9.1
EPSS 0.01
CVE-2023-26033 HIGH
Gentoo soko < 1.0.1 - SQL Injection via search_history Cookie
Feb 25, 2023
CVSS 7.5
EPSS 0.01
CVE-2020-36770 CRITICAL
Gentoo Slurm <22.05.3 - Privilege Escalation
Jan 15, 2024
CVSS 9.8
EPSS 0.00
CVE-2019-20384 MEDIUM
Gentoo Portage < 2.3.84 - Race Condition in Plugin Directory Ownership
Jan 21, 2020
CVSS 5.5
EPSS 0.00
CVE-2017-14484 HIGH
Gentoo sci-mathematics/gimps <28.10-r1 - Privilege Escalation
Sep 15, 2017
CVSS 7.3
EPSS 0.00
CVE-2017-14483 MEDIUM
Gentoo dev-python/flower <0.9.1-r1 - Privilege Escalation
Sep 15, 2017
CVSS 5.5
EPSS 0.00
CVE-2016-20021 CRITICAL
Gentoo Portage <3.0.47 - Info Disclosure
Jan 12, 2024
CVSS 9.8
EPSS 0.00
CVE-2014-9622
xdg-utils 1.1.0 RC1 - Code Injection
Jan 21, 2015
EPSS 0.02
CVE-2014-4909
Transmission <2.84 - RCE/DoS
Jul 29, 2014
EPSS 0.09
CVE-2013-2100
Gentoo Portage < 2.1.12.2 - Man-in-the-Middle Attack via Unverified X.509 Certificates
Sep 29, 2014
EPSS 0.00
CVE-2013-4223
Gentoo Nullmailer - Unprotected Credentials Exposure via World-Readable Configuration File
May 23, 2014
EPSS 0.00
CVE-2013-0348
sthttpd < 2.26.4 - Sensitive Information Exposure via World-Readable Log File
Dec 13, 2013
EPSS 0.00
CVE-2013-2032
MediaWiki < 1.19.6 and 1.20.x < 1.20.5 - Unauthenticated Password Change Restriction Bypass
Nov 18, 2013
EPSS 0.01
CVE-2013-2031
Gentoo Linux < 1.19.5 - XSS
Nov 18, 2013
EPSS 0.02
CVE-2012-4893
Webmin < 1.590 - Cross-Site Request Forgery via file/show.cgi
Sep 11, 2012
EPSS 0.01
CVE-2012-2983
Webmin < 1.590 - Unauthenticated Arbitrary File Read via file/edit_html.cgi
Sep 11, 2012
EPSS 0.54
CVE-2012-2982
Webmin < 1.590 - Authenticated Remote Command Execution via Invalid Pathname Character
Sep 11, 2012
EPSS 0.80
CVE-2012-2981
Webmin < 1.590 - Authenticated Remote Code Execution via Monitor Type Name Parameter
Sep 11, 2012
EPSS 0.01
CVE-2011-1550
logrotate on SUSE openSUSE Factory - Info Disclosure
Mar 30, 2011
EPSS 0.00
Products
linux 136 portage 7 logrotate 6 webmin 5 cman 2 fence 2 soko 2 xdg-utils 2 xnview 2 app-crypt_pinentry 1 dev-python-flower 1 ebuild_for_slurm 1 file 1 glibc 1 linux_eix 1 linux_webapp-config 1 media-libs_jpeg 1 mirrorselect 1 mldonkey_ebuild 1 nullmailer 1 nvclock 1 nview 1 php_toolkit 1 poppassd_pam 1 qt-unixodbc 1 rootkit_hunter 1 sci-mathematics-gimps 1 security 1 syslinux 1
Quick Filters
Critical CVEs With Exploits In CISA KEV