Lucene search
K

7 matches found

NVD
NVD
added 2020/08/10 6:15 p.m.27 views

CVE-2020-15651

A unicode RTL order character in the downloaded file name can be used to change the file's name during the download UI flow to change the file extension. This vulnerability affects Firefox for iOS 28...

4.3CVSS4AI score0.00582EPSS
Exploits0References2
CVE
CVE
added 2020/08/10 5:43 p.m.64 views

CVE-2020-15651

The CVE-2020-15651 issue affects Firefox for iOS prior to 28. A Unicode RTL order character in the downloaded file name can be used in the download UI flow to rename the file and change its extension. Connected sources confirm the vulnerability and indicate Mozilla fixed it in Firefox iOS 28 (MFS...

4.3CVSS4.2AI score0.00582EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/08/26 9:57 p.m.24 views

CVE-2019-15651

wolfSSL 4.1.0 has a one-byte heap-based buffer over-read in DecodeCertExtensions in wolfcrypt/src/asn.c because reading the ASNBOOLEAN byte is mishandled for a crafted DER certificate in GetLengthex...

9.6AI score0.01009EPSS
Exploits0References1
CVE
CVE
added 2019/08/26 9:57 p.m.137 views

CVE-2019-15651

CVE-2019-15651 affects wolfSSL 4.1.0 where DecodeCertExtensions in wolfcrypt/src/asn.c reads an ASN_BOOLEAN byte and mishandles GetLength_ex for crafted DER certificates, causing a one-byte heap-based buffer over-read. Multiple connected sources (NVD, Red Hat, CNVD, OSV, etc.) confirm this vulner...

9.8CVSS9.4AI score0.01009EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2017/10/20 12:29 a.m.19 views

CVE-2017-15651

PRTG Network Monitor 17.3.33.2830 allows remote authenticated administrators to execute arbitrary code by uploading a .exe file and then proceeding in spite of the error message...

6.7CVSS6.8AI score0.0132EPSS
Exploits0References1
CVE
CVE
added 2017/10/20 12:0 a.m.62 views

CVE-2017-15651

PRTG Network Monitor 17.3.33.2830 contains an arbitrary code execution flaw that can be exploited by a remote authenticated administrator who uploads a .exe and proceeds despite an error message, allowing code execution with the attacker’s privileges. The vulnerability stems from processing the u...

6.7CVSS6.7AI score0.0132EPSS
Exploits0References1Affected Software1
CVE
CVE
added 1976/01/01 12:0 a.m.21 views

CVE-2018-15651

CVE-2018-15651 entry rejected/not used; does not represent an active vulnerability.

7.4AI score
Exploits0
Rows per page
Query Builder