CVE-2024-20299

A vulnerability in the AnyConnect firewall for Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass a configured access control list ACL and allow traffic that should have been denied to flow throu...

CVE-2022-20299

In ContentService, there is a possible way to check if the given account exists on the device due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

Linux Distros Unpatched Vulnerability : CVE-2021-20299

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in OpenEXR's Multipart input file functionality. A crafted multi-part input file with no actual parts can trigger a NULL pointer dereference. T...

CVE-2024-20299

creationtimestamp| type| source ---|---|--- 2024-10-23 19:54:36+00:00| seen| https://t.me/cvedetector/8735...

Debian dla-3236 : libopenexr-dev - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3236 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3236-1 [email protected]...

[SECURITY] [DLA 3236-1] openexr security update

Debian LTS Advisory DLA-3236-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany December 12, 2022 https://wiki.debian.org/LTS Package : openexr Version : 2.2.1-4.1+deb10u2 CVE ID : CVE-2020-16587 CVE-2020-16588 CVE-2020-16589 CVE-2021-3474 CVE-2021-3475 CVE-2021-34...

CVE-2022-20299

creationtimestamp| type| source ---|---|--- 2022-08-12 18:33:45+00:00| seen| https://t.me/cibsecurity/48041...

CVE-2022-20299

In ContentService, there is a possible way to check if the given account exists on the device due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

CVE-2021-20299

creationtimestamp| type| source ---|---|--- 2022-03-16 17:33:58+00:00| seen| https://t.me/cibsecurity/39086...

CVE-2021-20299

CVE-2021-20299 affects OpenEXR existing as part of the library’s Multipart input file handling. A crafted multipart input file containing no actual parts can trigger a NULL pointer dereference, with the highest reported impact on system availability. Public references in Debian’s DLA-3236-1 indic...

EulerOS 2.0 SP8 : OpenEXR (EulerOS-SA-2021-2477)

According to the versions of the OpenEXR package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw found in function dataWindowForTile of IlmImf/ImfTiledMisc.cpp. An attacker who is able to submit a crafted file to be processed by OpenE...

SUSE: Security Advisory (SUSE-SU-2021:2913-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2021:2913-1 Security update for openexr

This update for openexr fixes the following issues: - CVE-2021-20298 bsc1188460: Fixed Out-of-memory in B44Compressor - CVE-2021-20299 bsc1188459: Fixed Null-dereference READ in Imf25:Header:operator - CVE-2021-20300 bsc1188458: Fixed Integer-overflow in Imf25:hufUncompress - CVE-2021-20302...

openSUSE: Security Advisory for openexr (openSUSE-SU-2021:1198-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE: Security Advisory for openexr (openSUSE-SU-2021:2793-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2021:2793-1 Security update for openexr

This update for openexr fixes the following issues: - CVE-2021-20298 bsc1188460: Fixed Out-of-memory in B44Compressor - CVE-2021-20299 bsc1188459: Fixed Null-dereference READ in Imf25:Header:operator - CVE-2021-20300 bsc1188458: Fixed Integer-overflow in Imf25:hufUncompress - CVE-2021-20302...

SUSE: Security Advisory (SUSE-SU-2021:2793-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for openexr (important)

openSUSE Security Update: Security update for openexr Announcement ID: openSUSE-SU-2021:2793-1 Rating: important References: 1188457 1188458 1188459 1188460 1188461 1188462 Cross-References: CVE-2021-20298 CVE-2021-20299 CVE-2021-20300 CVE-2021-20302 CVE-2021-20303 CVE-2021-20304 CVE-2021-3476 CV...

CVE-2020-20299

creationtimestamp| type| source ---|---|--- 2020-12-18 22:44:15+00:00| seen| https://t.me/cibsecurity/21095...

CVE-2020-20299

Summary: CVE-2020-20299 affects WeiPHP 5.0. The vulnerability arises from a failure to properly restrict access to pages, related to the use of POST. Documented impact ranges from partial confidentiality loss (CVSS v2) to high confidentiality impact (CVSS v3.1) with network access and low attack ...