Skip to main content

Kilo

2 CVEs product

Monthly

CVE-2019-16096 HIGH POC This Week

Kilo 0.0.1 has a heap-based buffer overflow because there is an integer overflow in a calculation involving the number of tabs in one row. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow Buffer Overflow Kilo
NVD GitHub VulDB
CVSS 3.1
7.5
EPSS
2.4%
CVE-2015-1851 PyPI MEDIUM PATCH This Month

OpenStack Cinder before 2014.1.5 (icehouse), 2014.2.x before 2014.2.4 (juno), and 2015.1.x before 2015.1.1 (kilo) allows remote authenticated users to read arbitrary files via a crafted qcow2. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Ubuntu Linux Icehouse Juno Kilo
NVD
CVSS 2.0
6.8
EPSS
0.5%
EPSS 2% CVSS 7.5
HIGH POC This Week

Kilo 0.0.1 has a heap-based buffer overflow because there is an integer overflow in a calculation involving the number of tabs in one row. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow Buffer Overflow Kilo
NVD GitHub VulDB
EPSS 1% CVSS 6.8
MEDIUM PATCH This Month

OpenStack Cinder before 2014.1.5 (icehouse), 2014.2.x before 2014.2.4 (juno), and 2015.1.x before 2015.1.1 (kilo) allows remote authenticated users to read arbitrary files via a crafted qcow2. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Ubuntu Linux Icehouse +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy