Lucene search
K

84 matches found

NVD
NVD
added 2018/04/24 7:29 p.m.15 views

CVE-2017-2901

An exploitable integer overflow exists in the IRIS loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.iris' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the applicatio...

8.8CVSS8.1AI score0.01866EPSS
Exploits1References3
CVE
CVE
added 2018/04/24 7:0 p.m.78 views

CVE-2017-2901

Blender 2.78c is affected by CVE-2017-2901 due to an integer overflow in the IRIS loader, causing a buffer overflow that can lead to code execution when a user opens a crafted .iris asset via the sequencer. This is a local vulnerability with user interaction required and is addressed by upgrading...

8.8CVSS7.7AI score0.01866EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2016/06/26 1:0 a.m.21 views

CVE-2016-2901

Cross-site request forgery CSRF vulnerability in the PAThemeCreator application in IBM WebSphere Portal 8.5 CF08 through CF10 and Web Content Manager allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences...

8.8AI score0.00919EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2016/04/26 12:0 a.m.69 views

ntp -- multiple vulnerabilities

Network Time Foundation reports: NTF's NTP Project has been notified of the following low- and medium-severity vulnerabilities that are fixed in ntp-4.2.8p7, released on Tuesday, 26 April 2016: Bug 3020 / CVE-2016-1551: Refclock impersonation vulnerability, AKA: refclock-peering. Reported by Matt...

7.5CVSS6.8AI score0.15081EPSS
Exploits9References1
Tenable Nessus
Tenable Nessus
added 2016/02/18 12:0 a.m.18 views

Ubuntu 14.04 LTS : xdelta3 vulnerability (USN-2901-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-2901-1 advisory. It was discovered that xdelta3 incorrectly handled certain files. If a user or automated system were tricked into processing a specially-crafted file, a remote...

8.8CVSS8.2AI score0.04157EPSS
Exploits0References2
myhack58
myhack58
added 2016/01/12 12:0 a.m.17 views

MEDCIN engine of the exploitability of the vulnerability details-vulnerability warning-the black bar safety net

! Science: the MEDCIN engine is a service to doctors and nurses electronic medical records system. A few months ago, I was in the MEDCIN engine to older versions of the safety assessment found a loophole. So I to the Supplier a report of the vulnerabilities and then repair, after viewing the...

0.7AI score
Exploits0
CVE
CVE
added 2015/10/29 10:0 a.m.44 views

CVE-2015-2901

CVE-2015-2901 affects Medicomp MEDCIN Engine (version 2.22.20142.166). It describes multiple stack-based buffer overflows that could allow remote code execution via a crafted packet on port 8190, specifically related to the GetProperty info_getproperty and GetProperty UdfCodeList functions. Conne...

6.8CVSS8AI score0.03195EPSS
Exploits0References2Affected Software1
CERT
CERT
added 2015/10/20 12:0 a.m.43 views

Medicomp MEDCIN Engine contains multiple vulnerabilities

Overview Medicomp's MEDCIN Engine provide electronic health records EHR tools and information to medical professionals. MEDCIN Engine versions before version 2.22.20153.226 are vulnerable to several buffer overflows. Description Medicomp MEDCIN Engine prior to version 2.22.20153.226 is vulnerable...

7.5CVSS7.1AI score0.03665EPSS
Exploits0References6
Debian
Debian
added 2014/04/21 6:6 a.m.82 views

[SECURITY] [DSA 2901-3] wordpress regression update

------------------------------------------------------------------------- Debian Security Advisory DSA-2901-3 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso April 21, 2014 http://www.debian.org/security/faq -...

6.4CVSS1.5AI score0.0893EPSS
Exploits0
Debian
Debian
added 2014/04/18 3:34 p.m.71 views

[SECURITY] [DSA 2901-2] wordpress regression update

------------------------------------------------------------------------- Debian Security Advisory DSA-2901-2 [email protected] http://www.debian.org/security/ Thijs Kinkhorst April 18, 2014 http://www.debian.org/security/faq -...

6.4CVSS6.7AI score0.0893EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/04/14 12:0 a.m.30 views

Debian DSA-2901-1 : wordpress - security update

Several vulnerabilities were discovered in Wordpress, a web blogging tool. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2014-0165 A user with a contributor role, using a specially crafted request, can publish posts, which is reserved for users of the...

6.4CVSS5.5AI score0.0893EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2014/04/11 12:0 a.m.34 views

Debian: Security Advisory (DSA-2901-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.4CVSS6.4AI score0.0893EPSS
Exploits0References3
CVE
CVE
added 2013/10/01 5:0 p.m.83 views

CVE-2011-2901

CVE-2011-2901 affects Xen 3.3 and earlier. The off-by-one error in the __addr_ok macro allows local 64-bit PV guest administrators to cause a host crash (denial of service) via unspecified hypercalls that ignore virtual-address bits. Public references confirm the issue across multiple advisories ...

5.5CVSS6.9AI score0.0059EPSS
Exploits0References5Affected Software1
OpenVAS
OpenVAS
added 2013/08/26 12:0 a.m.26 views

Google Chrome Multiple Vulnerabilities-01 (Aug 2013) - Windows

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

7.5CVSS6AI score0.01627EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2013/08/26 12:0 a.m.25 views

Debian DSA-2741-1 : chromium-browser - several vulnerabilities

Several vulnerabilities have been discovered in the Chromium web browser. - CVE-2013-2887 The chrome 29 development team found various issues from internal fuzzing, audits, and other studies. - CVE-2013-2900 Krystian Bigaj discovered a file handling path sanitization issue. - CVE-2013-2901 Alex...

7.5CVSS5.4AI score0.01627EPSS
Exploits0References16
OpenVAS
OpenVAS
added 2013/08/25 12:0 a.m.29 views

Debian Security Advisory DSA 2741-1 (chromium-browser - several vulnerabilities)

Several vulnerabilities have been discovered in the Chromium web browser. CVE-2013-2887 The chrome 29 development team found various issues from internal fuzzing, audits, and other studies. CVE-2013-2900 Krystian Bigaj discovered a file handling path sanitization issue. CVE-2013-2901 Alex Chapman...

7.5CVSS0.4AI score0.01627EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2013/08/24 12:0 a.m.17 views

Debian: Security Advisory (DSA-2741-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.01627EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2013/08/20 1:45 p.m.18 views

Google Chrome 29 Fixes 25 Vulnerabilities

There are 25 fresh security patches in the newest version of Google Chrome, including fixes for a number of high-severity vulnerabilities. Chrome 29 also includes a number of performance enhancements. Google regularly pushes out new versions of its browser every few weeks, and sometimes will only...

7.5CVSS3AI score0.01627EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.56 views

Oracle Linux 5 : kernel (ELSA-2011-1212)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-1212 advisory. - xen fix off-by-one shift in x8664 addrok Laszlo Ersek 728043 719850 CVE-2011-2901 - wireless nl80211: check for valid SSID size in scan operation...

7.8CVSS7.4AI score0.03769EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2013/01/24 12:0 a.m.37 views

RHEL 5 : kernel (RHSA-2011:1813)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:1813 advisory. - kernel: sctp dos CVE-2011-2482 - kernel: rpc task leak after flocking NFS share CVE-2011-2491 - kernel: /proc/PID/io infoleak CVE-2011-249...

7.8CVSS7.6AI score0.03769EPSS
Exploits2References14
Rows per page
Query Builder