CVE-2019-11553

In Code42 for Enterprise through 6.8.4, an administrator without web restore permission but with the ability to manage users in an organization can impersonate a user with web restore permission. When requesting the token to do a web restore, an administrator with permission to manage a user coul...

Linux Distros Unpatched Vulnerability : CVE-2017-11553

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is an illegal address access in the extendaliastable function in localealias.c of Exiv2 0.26. A crafted input will lead to remote denial of service...

CVE-2024-11553

IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page ...

CVE-2024-11553

creationtimestamp| type| source ---|---|--- 2024-11-21 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1554/...

Mageia: Security Advisory (MGASA-2017-0391)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-11553

creationtimestamp| type| source ---|---|--- 2020-04-14 11:14:09+00:00| seen| https://t.me/cibsecurity/11208...

CVE-2020-11553

An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. There is pervasive CSRF...

CVE-2020-11553

Castle Rock SNMPc Online 12.10.10 (before 2020-01-28) is affected by a cross-site request forgery (CSRF) flaw in its web application. The vulnerability stems from insufficient validation that requests originate from a trusted user, allowing an attacker to trick an authenticated user into sending ...

CVE-2019-11553

Code42 for Enterprise up to version 6.8.4 is affected by CVE-2019-11553. An administrator who can manage users in an organization, but lacks web restore permission, can impersonate a user who has web restore permission by requesting that user’s token during a web-restore operation. This requires ...

openSUSE Security Update : exiv2 (openSUSE-2019-504)

This update for exiv2 to 0.26 fixes the following security issues : - CVE-2017-14864: Prevent invalid memory address dereference in Exiv2::getULong that could have caused a segmentation fault and application crash, which leads to denial of service bsc1060995. - CVE-2017-14862: Prevent invalid...

openSUSE Security Update : exiv2 (openSUSE-2018-727)

This update for exiv2 to 0.26 fixes the following security issues : - CVE-2017-14864: Prevent invalid memory address dereference in Exiv2::getULong that could have caused a segmentation fault and application crash, which leads to denial of service bsc1060995. - CVE-2017-14862: Prevent invalid...

Security update for exiv2 (moderate)

This update for exiv2 to 0.26 fixes the following security issues: - CVE-2017-14864: Prevent invalid memory address dereference in Exiv2::getULong that could have caused a segmentation fault and application crash, which leads to denial of service bsc1060995. - CVE-2017-14862: Prevent invalid memo...

CVE-2017-11553

There is an illegal address access in the extendaliastable function in localealias.c of Exiv2 0.26. A crafted input will lead to remote denial of service...

CVE-2017-11553

There is an illegal address access in the extendaliastable function in localealias.c of Exiv2 0.26. A crafted input will lead to remote denial of service...

CVE-2017-11553

There is an illegal address access in the extendaliastable function in localealias.c of Exiv2 0.26. A crafted input will lead to remote denial of service...

CVE-2017-11553

Exiv2-0.26 contains a vulnerability in the extend_alias_table function of localealias.c where crafted input triggers illegal address access, leading to remote denial of service. Public references in the connected docs show multiple advisories (including OpenSUSE/SUSE updates) addressing CVE-2017-...