CVE Tools

joyent

Operating SystemsUScommercial

12

Cumulative CVEs

5

Monthly snapshots

#29

Peak rank

Top products

http-signature1 sshpk1

Latest CVEs

The 15 most recently published vulnerabilities affecting joyent.

CVE-2021-43395An issue was discovered in illumos before f859e7171bb5db34321e45585839c6c3200ebb90, OmniOS Community Edition r151038, OpenIndiana Hipster 2021.04, and SmartOS 20210923. A local unprivileged user ca...5.5Dec 26, 2022
CVE-2020-27678An issue was discovered in illumos before 2020-10-22, as used in OmniOS before r151030by, r151032ay, and r151034y and SmartOS before 20201022. There is a buffer overflow in parse_user_name in lib/l...9.8Oct 23, 2020
CVE-2020-7712Command Injection7.2Aug 30, 2020
CVE-2016-9040An exploitable denial of service exists in the the Joyent SmartOS OS 20161110T013148Z Hyprlofs file system. The vulnerability is present in the Ioctl system call with the command HYPRLOFSADDENTRIES...5.5Sep 7, 2018
CVE-2018-3737sshpk is vulnerable to ReDoS when parsing crafted invalid public keys.7.5Jun 7, 2018
CVE-2017-16005Http-signature is a "Reference implementation of Joyent's HTTP Signature Scheme". In versions <=0.9.11, http-signature signs only the header values, but not the header names. This makes http-signat...7.5Jun 4, 2018
CVE-2018-1171This vulnerability allows local attackers to escalate privileges on vulnerable installations of Joyent SmartOS release-20170803-20170803T064301Z. An attacker must first obtain the ability to execut...7.0Mar 19, 2018
CVE-2018-1166This vulnerability allows local attackers to escalate privileges on vulnerable installations of Joyent SmartOS release-20170803-20170803T064301Z. An attacker must first obtain the ability to execut...7.8Feb 21, 2018
CVE-2018-1165This vulnerability allows local attackers to escalate privileges on vulnerable installations of Joyent SmartOS release-20170803-20170803T064301Z. An attacker must first obtain the ability to execut...7.0Feb 21, 2018
CVE-2017-10940This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Joyent Smart Data Center prior to agentsshar@1.0.0-release-20160901-20160901T051624Z-g3fd5adf (e4...8.8Oct 31, 2017
CVE-2016-9039An exploitable denial of service exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file system. The vulnerability is present in the Ioctl system call with the command HYPRLOFS_ADD_ENTRIES. An ...6.2Jan 31, 2017
CVE-2016-8733An exploitable integer overflow exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file system. The vulnerability is present in the Ioctl system call with the command HYPRLOFS_ADD_ENTRIES when ...8.8Dec 14, 2016
CVE-2016-9035An exploitable buffer overflow exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file system. The vulnerability is present in the Ioctl system call with the command HYPRLOFS_ADD_ENTRIES when d...7.0Dec 14, 2016
CVE-2016-9034An exploitable buffer overflow exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file system. The vulnerability is present in the Ioctl system call with the command HYPRLOFS_ADD_ENTRIES when d...7.0Dec 14, 2016
CVE-2016-9033An exploitable buffer overflow exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file system. The vulnerability is present in the Ioctl system call with the command HYPRLOFS_ADD_ENTRIES when d...7.0Dec 14, 2016