Lucene search
K

130 matches found

NVD
NVD
added 2022/03/11 6:15 p.m.18 views

CVE-2022-0907

Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f2b656e2...

5.5CVSS0.0127EPSS
Exploits1References8
UbuntuCve
UbuntuCve
added 2022/03/11 6:15 p.m.26 views

CVE-2022-0907

Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f2b656e2...

5.5CVSS6.8AI score0.0127EPSS
Exploits1References7
AlpineLinux
AlpineLinux
added 2022/03/11 12:0 a.m.33 views

CVE-2022-0907

Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f2b656e2...

5.5CVSS6AI score0.0127EPSS
Exploits1
Cvelist
Cvelist
added 2022/03/11 12:0 a.m.22 views

CVE-2022-0907

Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f2b656e2...

5.5CVSS6.3AI score0.0127EPSS
Exploits1References8
Debian CVE
Debian CVE
added 2022/03/11 12:0 a.m.58 views

CVE-2022-0907

Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f2b656e2...

5.5CVSS6.5AI score0.0127EPSS
Exploits1
CVE
CVE
added 2022/03/11 12:0 a.m.180 views

CVE-2022-0907

The CVE-2022-0907 entry concerns LibTIFF (libtiff) 4.3.0, where tiffcrop may dereference a NULL pointer due to an unchecked return value, enabling denial of service via a crafted TIFF file. The issue is rooted in a NULL pointer dereference in tiffcrop (and related paths handling TIFF data). For u...

5.5CVSS5.7AI score0.0127EPSS
Exploits1References8Affected Software1
OSV
OSV
added 2022/03/11 12:0 a.m.32 views

CVE-2022-0907

Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f2b656e2...

5.5CVSS4.8AI score0.0127EPSS
Exploits1References10
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2018:0907-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.5AI score0.12054EPSS
Exploits3References6
OSV
OSV
added 2020/04/15 3:15 p.m.1 views

CVE-2020-0907

A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Remote Code Execution Vulnerability'...

7.8CVSS7.7AI score0.11685EPSS
Exploits0References1
CVE
CVE
added 2020/04/15 3:12 p.m.103 views

CVE-2020-0907

CVE-2020-0907 is described as a remote code execution vulnerability in how Microsoft Graphics Components handles objects in memory. The connected MS KB and vendor feeds confirm this CVE is among a set of Windows updates (KB4549951 family) addressing multiple issues, but the provided documents do ...

9.3CVSS8.3AI score0.11685EPSS
Exploits0References1Affected Software8
CVE
CVE
added 2019/06/12 1:49 p.m.136 views

CVE-2019-0907

The CVE-2019-0907 issue concerns the Windows Jet Database Engine and a remote code execution vulnerability caused by improper handling of objects in memory. An attacker could entice a user to open a specially crafted file to trigger arbitrary code execution on the victim’s system. Microsoft’s upd...

9.3CVSS8.1AI score0.04071EPSS
Exploits0References2Affected Software8
OpenVAS
OpenVAS
added 2019/06/12 12:0 a.m.137 views

Microsoft Windows Multiple Vulnerabilities (KB4503291)

This host is missing a critical security update according to Microsoft KB4503291 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

9.3CVSS7.4AI score0.48043EPSS
Exploits15References3
Symantec
Symantec
added 2019/06/11 12:0 a.m.65 views

Microsoft Windows JET Database Engine CVE-2019-0907 Remote Code Execution Vulnerability

Description Microsoft Windows JET Database Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...

0.7AI score0.04071EPSS
Exploits0Affected Software3
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 1:25 a.m.31 views

Security Bulletin: Security vulnerability has been identified in IBM Systems Director, IBM Tivoli Monitoring shipped with IBM System Director Editions. (CVE-2014-0907)

Summary IBM Systems Director, IBM Tivoli Monitoring are shipped as components of IBM System Director Editions. Information about the security vulnerability affecting these components has been published in the security bulletin. Vulnerability Details Abstract IBM Systems Director, IBM Tivoli...

0.5AI score0.00658EPSS
Exploits0Affected Software5
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/30 8:35 a.m.34 views

Security Bulletin: IBM Systems Director is affected by elevated privileges vulnerability (CVE-2014-0907)

Summary Vulnerability found in IBM Systems Director could allow a local user to gain elevated privilege. Vulnerability Details Abstract Vulnerability found in IBM Systems Director could allow a local user to gain elevated privilege. Content Vulnerability Details: CVE-ID: CVE-2014-0907 Description...

7.2CVSS0.9AI score0.00658EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 2:46 p.m.25 views

Security Bulletin: TSM client SetUID elevation of privilege (CVE-2014-0907)

Summary A vulnerability in the IBM Tivoli Storage Manager TSM AIX and HP-UX clients could allow a local user to gain elevated privilege. Vulnerability Details CVE ID: CVE-2014-0907 DESCRIPTION: The IBM Tivoli Storage Manager TSM AIX and HP-UX client binaries have been compiled in an insecure way....

7.2CVSS0.7AI score0.00658EPSS
Exploits0Affected Software4
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 2:42 p.m.25 views

Security Bulletin: IBM Tivoli Composite Application Manager for Transactions is affected by a Local escalation of privilege vulnerability (CVE-2014-0907)

Summary A vulnerability in IBM Tivoli Composite Application Manager for Transactions on Linux, Solaris and AIX could allow a local user to gain elevated privilege. Vulnerability Details CVE-ID: CVE-2014-0907 DESCRIPTION: The IBM Tivoli Composite Application Manager for Transactions products liste...

7.2CVSS1.9AI score0.00658EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 1:5 p.m.15 views

Security Bulletin: Local escalation of privilege vulnerability in IBM® DB2® (CVE-2014-0907).

Summary A vulnerability in IBM DB2 for Linux, Unix and Windows could allow a local user to gain elevated privilege. Vulnerability Details CVE ID: CVE-2014-0907 DESCRIPTION: The IBM DB2 products listed below contain a security vulnerability which allows a malicious user to gain root privilege. Thi...

7.2CVSS0.6AI score0.00658EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:0 a.m.28 views

Security Bulletin: Security vulnerabilities have been identified in IBM DB2 shipped with WebSphere Remote Server (CVE-2014-0907)

Summary IBM DB2 is shipped as a component of WebSphere Remote Server. Information about security vulnerabilities affecting IBM DB2 has been published in a security bulletin. Vulnerability Details For vulnerability details, see the Local escalation of privilege vulnerability in IBM DB2 CVE-2014-09...

7.2CVSS2.3AI score0.00658EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2018/03/14 5:0 p.m.35 views

CVE-2018-0907

Microsoft Excel 2007 SP3, Microsoft Excel 2010 SP2, Microsoft Excel 2013 SP1, Microsoft Excel 2016, Microsoft Office 2016 Click-to-Run and Microsoft Office 2016 for Mac allow a security feature bypass vulnerability due to how macro settings are enforced, aka "Microsoft Office Excel Security Featu...

7.6AI score0.06094EPSS
Exploits0References3
Rows per page
Query Builder