25 matches found
CVE-2019-20845
An issue was discovered in Mattermost Server before 5.18.0. It allows attackers to cause a denial of service memory consumption via a large Slack import...
Linux Distros Unpatched Vulnerability : CVE-2018-20845
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Division-by-zero vulnerabilities in the functions pinextpcrl, pinextcprl, and pinextrpcl in openmj2/pi.c in OpenJPEG through 2.3.0 allow remote attackers to cau...
CVE-2022-20845
creationtimestamp| type| source ---|---|--- 2024-11-15 15:53:31+00:00| seen| https://infosec.exchange/users/cve/statuses/113487774412820978...
CVE-2023-42041
CVE-2023-42041 is a Use-After-Free vulnerability in PDF-XChange Editor related to annotation handling. The flaw stems from failing to validate the existence of an Annotation object before operating on it, enabling an attacker to execute arbitrary code with the current process once the user visits...
CVE-2023-42041 PDF-XChange Editor Annotation Use-After-Free Remote Code Execution Vulnerability
PDF-XChange Editor Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a...
CVE-2023-42041 PDF-XChange Editor Annotation Use-After-Free Remote Code Execution Vulnerability
PDF-XChange Editor Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a...
CVE-2023-20845
CVE-2023-20845 affects imgsys. The vulnerability is an out-of-bounds read caused by missing valid range checking, leading to local information disclosure with system execution privileges required and user interaction for exploitation. Patch ID ALPS07197795 / Issue ID ALPS07340357 is associated wi...
Ubuntu: Security Advisory (USN-4782-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 3.0.6.0 : openjpeg2 (EulerOS-SA-2022-2576)
According to the versions of the openjpeg2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - OpenJPEG 2.3.0 has a NULL pointer dereference for 'red' in the imagetopnm function of jp2/convert.c CVE-2018-18088 -...
openSUSE: Security Advisory for openjpeg2 (SUSE-SU-2022:1252-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Huawei EulerOS: Security Advisory for openjpeg2 (EulerOS-SA-2022-1577)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2022:1252-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2022:1129-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-20845
Cross-site request forgery CSRF vulnerability in Unlimited Sitemap Generator versions prior to v8.2 allows a remote attacker to hijack the authentication of an administrator and conduct arbitrary operation via a specially crafted web page...
CVE-2021-20845
CVE-2021-20845 affects Unlimited Sitemap Generator (XML-Sitemaps): CSRF vulnerability in versions prior to 8.2 allows an attacker to hijack an administrator’s session and perform arbitrary actions via a crafted page. The issue arises from insufficient CSRF protections in the web interface, enabli...
Moderate: Red Hat Security Advisory: openjpeg2 security update
An update for openjpeg2 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
Moderate: openjpeg2 security update
OpenJPEG is an open source library for reading and writing image files in JPEG2000 format. The following packages have been upgraded to a later upstream version: openjpeg2 2.4.0. Security Fixes: openjpeg: use-after-free and double-free via a mix of valid and invalid files in a directory operated ...
RLSA-2021:4251 Moderate: openjpeg2 security update
OpenJPEG is an open source library for reading and writing image files in JPEG2000 format. The following packages have been upgraded to a later upstream version: openjpeg2 2.4.0. Security Fixes: openjpeg: use-after-free and double-free via a mix of valid and invalid files in a directory operated ...
ALSA-2021:4251 Moderate: openjpeg2 security update
OpenJPEG is an open source library for reading and writing image files in JPEG2000 format. The following packages have been upgraded to a later upstream version: openjpeg2 2.4.0. Security Fixes: openjpeg: use-after-free and double-free via a mix of valid and invalid files in a directory operated ...
USN-4782-1: OpenJPEG vulnerabilities
It was discovered that OpenJPEG incorrectly handled certain image files. A remote attacker could possibly use this issue to cause a denial of service. CVE-2016-10506 and CVE-2017-12982 affected only Ubuntu 16.04 ESM. CVE-2018-16375, CVE-2018-20845 and CVE-2019-12973 affected only Ubuntu 18.04 ESM...