Search CVE reports
1 – 4 of 4 results
CVE-2022-38792
Low priorityThe exotel (aka exotel-py) package in PyPI as of 0.1.6 includes a code execution backdoor inserted by a third party.
1 affected package
python-exotel
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| python-exotel | — | Not affected | Not affected | Not affected | Not in release |
CVE-2022-32278
Medium prioritySome fixes available 5 of 11
XFCE 4.16 allows attackers to execute arbitrary code because xdg-open can execute a .desktop file on an attacker-controlled FTP server.
1 affected package
exo
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| exo | Needs evaluation | Fixed | Fixed | Fixed | Fixed |
CVE-2021-32611
Medium priorityA NULL pointer dereference vulnerability exists in eXcall_api.c in Antisip eXosip2 through 5.2.0 when handling certain 3xx redirect responses.
1 affected package
libexosip2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libexosip2 | Not in release | Not in release | Not in release | Needs evaluation | Needs evaluation |
CVE-2014-10375
Medium priorityhandle_messages in eXtl_tls.c in eXosip before 5.0.0 mishandles a negative value in a content-length header.
1 affected package
libexosip2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libexosip2 | Not in release | Not in release | Not in release | Needs evaluation | Needs evaluation |