CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

RedhatCVE•added 2025/05/22 3:51 p.m.•4 views

CVE-2020-15922

There is an OS Command Injection in Mida eFramework 2.9.0 that allows an attacker to achieve Remote Code Execution RCE with administrative root privileges. Authentication is required...

10CVSS8AI score0.60975EPSS

Exploits3

OpenVAS•added 2020/11/24 12:0 a.m.•17 views

Ubuntu: Security Advisory (USN-4641-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.01659EPSS

Exploits12References2

Tenable Nessus•added 2020/11/24 12:0 a.m.•26 views

Ubuntu 16.04 LTS : libextractor vulnerabilities (USN-4641-1)

The remote Ubuntu 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4641-1 advisory. It was discovered that Libextractor incorrectly handled zero sample rate. An attacker could possibly use this issue to cause a denial of service...

8.8CVSS6.7AI score0.01659EPSS

Exploits12References13

Ubuntu•added 2020/11/23 6:2 p.m.•60 views

USN-4641-1: libextractor vulnerabilities

It was discovered that Libextractor incorrectly handled zero sample rate. An attacker could possibly use this issue to cause a denial of service. CVE-2017-15266 It was discovered that Libextractor incorrectly handled certain FLAC metadata. An attacker could possibly use this issue to cause a deni...

8.8CVSS6.7AI score0.01659EPSS

Exploits12

OSV•added 2020/11/23 6:2 p.m.•0 views

USN-4641-1 libextractor vulnerabilities

8.8CVSS6.9AI score0.01659EPSS

Exploits12References13

Exploit DB•added 2020/09/28 12:0 a.m.•370 views

Mida eFramework 2.8.9 - Remote Code Execution

Exploit Title: Mida eFramework 2.8.9 - Remote Code Execution Google Dork: Server: Mida eFramework Date: 2020-08-27 Exploit Author: elbae Vendor Homepage: https://www.midasolutions.com/ Software Link: http://ova-efw.midasolutions.com/ Reference:...

10CVSS9.8AI score0.60975EPSS

Exploits3

Packet Storm•added 2020/09/28 12:0 a.m.•207 views

Mida eFramework 2.8.9 Remote Code Execution

10CVSS0.6AI score0.60975EPSS

Exploits3

CVE•added 2020/07/24 12:58 a.m.•100 views

CVE-2020-15922

CVE-2020-15922 describes an OS Command Injection in Mida Solutions’ eFramework version 2.9.0 that enables Remote Code Execution with administrative/root privileges, requiring authentication. The connected Red Hat, CNVD, CNVD-like and Exploit-DB entries corroborate a root-level impact via command ...

10CVSS9.9AI score0.60975EPSS

Exploits3References2Affected Software1

OpenVAS•added 2020/01/23 12:0 a.m.•40 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-2081)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.4CVSS7.7AI score0.05955EPSS

Exploits11References2

Tenable Nessus•added 2019/12/03 12:0 a.m.•80 views

EulerOS Virtualization for ARM 64 3.0.3.0 : kernel (EulerOS-SA-2019-2309)

According to the versions of the kernel packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in the Linux kernel before 5.2.3. There is a use-after-free caused by a malicious USB device i...

9.4CVSS7AI score0.05955EPSS

Exploits13References20

CVE•added 2019/09/04 6:8 p.m.•148 views

CVE-2019-15922

CVE-2019-15922 relates to the Linux kernel before 5.0.9, where a NULL pointer dereference can occur for a pf data structure if alloc_disk fails in drivers/block/paride/pf.c. This is a local, kernel‑space issue that can lead to a crash. The affected component is the paride pf driver path; the root...

5.5CVSS6.5AI score0.00091EPSS

Exploits1References3Affected Software1

OSV•added 2018/10/12 6:29 p.m.•0 views

CVE-2018-15922

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure...

5.5CVSS5.8AI score

Exploits0References3

ArchLinux•added 2017/11/08 12:0 a.m.•25 views

[ASA-201711-16] libextractor: denial of service

Arch Linux Security Advisory ASA-201711-16 ========================================== Severity: Low Date : 2017-11-08 CVE-ID : CVE-2017-15922 Package : libextractor Type : denial of service Remote : No Link : https://security.archlinux.org/AVG-471 Summary ======= The package libextractor before...

5.5CVSS2.2AI score0.00177EPSS

Exploits1References3

OSV•added 2017/10/26 6:29 p.m.•0 views

UBUNTU-CVE-2017-15922

In GNU Libextractor 1.4, there is an out-of-bounds read in the EXTRACTORdviextractmethod function in plugins/dviextractor.c...

5.5CVSS6.4AI score0.00177EPSS

Exploits1References4

UbuntuCve•added 2017/10/26 6:29 p.m.•18 views

CVE-2017-15922

In GNU Libextractor 1.4, there is an out-of-bounds read in the EXTRACTORdviextractmethod function in plugins/dviextractor.c...

5.5CVSS6.4AI score0.00177EPSS

Exploits1References3

CVE•added 2017/10/26 6:0 p.m.•61 views

CVE-2017-15922

CVE-2017-15922 is an out-of-bounds read vulnerability in GNU Libextractor. The flaw affects the DVI extractor (EXTRACTOR_dvi_extract_method in plugins/dvi_extractor.c), enabling a crafted DVI input to crash the application (DoS) or potentially impact stability. Public sources in the connected doc...

5.5CVSS6.1AI score0.00177EPSS

Exploits1References3Affected Software1