26 matches found
PT-2026-54925
Name of the Vulnerable Software and Affected Versions FatFs versions R0.16 and earlier Description A divide-by-zero issue exists in the exFAT sync logic. This occurs during write or sync operations when crafted metadata causes the calculation n fatent - 2 to result in zero. Divide-by-zero is a...
MiracleLinux 3 : xulrunner-1.9.2.4-9.0.1.AXS3 (AXSA:2010-369:02)
The remote MiracleLinux 3 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2010-369:02 advisory. XULRunner provides the XUL Runtime environment for Gecko applications. Security issues fixed with this release: CVE-2008-5913 An unspecified function...
EUVD-2025-200776
Malicious code in elf-stats-tinsel-drum-369 npm...
MAL-2025-192176 Malicious code in elf-stats-tinsel-drum-369 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a3dd305a4d89db2c8c618144f0796ab98d79209cfeae64ef69489b2adbc9a11 The package elf-stats-tinsel-drum-369 was found to contain malicious code...
CVE-2024-49899 drm/amd/display: Initialize denominators' default to 1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Initialize denominators' default to 1 WHAT & HOW Variables used as denominators and maybe not assigned to other values, should not be 0. Change their default to 1 so they are never 0. This fixes 10 DIVIDEBYZERO...
Upgraded Q -> 3 from #369 [1699544960870]
Judge has assessed an item in Issue 369 as 3 risk. The relevant finding follows: L-01 Controller can’t call setMaxTotalSupply due to lack of function to do it. --- The text was updated successfully, but these errors were encountered: All reactions...
Amazon Linux 2023 : aspnetcore-runtime-6.0, aspnetcore-targeting-pack-6.0, dotnet (ALAS2023-2023-369)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-369 advisory. Visual Studio Remote Code Execution Vulnerability CVE-2023-36792 Visual Studio Remote Code Execution Vulnerability CVE-2023-36793 Visual Studio Remote Code Execution Vulnerability CVE-2023-3679...
capsa-369.online Cross Site Scripting vulnerability OBB-3282530
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
SoX 14.4.2 - Denial Of Service
Exploit Title: SoX 14.4.2 - Denial Of Service Exploit Author: LiquidWorm Vendor: Chris Bagwell Product web page: http://sox.sourceforge.net https://en.wikipedia.org/wiki/SoX Affected version: =14.4.2 Summary: SoX Sound eXchange is the Swiss Army knife of sound processing tools: it can convert sou...
GHSA-3633-5H82-39PQ Go-tuf Improperly handles multiple key IDs for the same public keys in attacker-controlled metadata
Issue If an attacker is able to control a threshold of keys to insert the same public key more than once with different key IDs into signed, trusted metadata on a TUF repository, then go-tuf clients 0.3.2 are susceptible to an attack where attackers can cause the same signature from the same publ...
Ubuntu: Security Advisory (USN-369-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-369-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-3432 BT: Invalid interval in CONNECT_IND leads to Division by Zero
Invalid interval in CONNECTIND leads to Division by Zero. Zephyr versions = v1.14.0 Divide By Zero CWE-369. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-7364-p4wc-8mj4...
CVE-2021-3432
CVE-2021-3432 affects Zephyr RTOS where an invalid interval in CONNECT_IND can trigger a division by zero (CWE-369). The NVD entry states Zephyr versions >= 1.14.0 are vulnerable, with an impact described as availability loss, and references GHSA-7364-p4wc-8mj4 for more information. The vulner...
AlmaLinux 8 : wavpack (ALSA-2020:1581)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2020:1581 advisory. - The function WavpackPackInit in packutils.c in libwavpack.a in WavPack through 5.1.0 allows attackers to cause a denial-of-service resource exhaustion...
CVE-2019-1010315
WavPack 5.1 and earlier is affected by: CWE 369: Divide by Zero. The impact is: Divide by zero can lead to sudden crash of a software/service that tries to parse a .wav file. The component is: ParseDsdiffHeaderConfig dsdiff.c:282. The attack vector is: Maliciously crafted .wav file. The fixed...
CVE-2019-1010315
WavPack 5.1 and earlier is affected by: CWE 369: Divide by Zero. The impact is: Divide by zero can lead to sudden crash of a software/service that tries to parse a .wav file. The component is: ParseDsdiffHeaderConfig dsdiff.c:282. The attack vector is: Maliciously crafted .wav file. The fixed...
CVE-2019-1010315
CVE-2019-1010315 affects WavPack 5.1 and earlier. The vulnerability is a CWE-369 divide-by-zero in ParseDsdiffHeaderConfig (dsdiff.c:282) when parsing a malicious .wav file, which can cause the application to crash. The attack vector is a crafted WAV file. The fixed version is the code commit htt...
CVE-2019-1010315
WavPack 5.1 and earlier is affected by: CWE 369: Divide by Zero. The impact is: Divide by zero can lead to sudden crash of a software/service that tries to parse a .wav file. The component is: ParseDsdiffHeaderConfig dsdiff.c:282. The attack vector is: Maliciously crafted .wav file. The fixed...
CVE-2019-1010315
WavPack 5.1 and earlier is affected by: CWE 369: Divide by Zero. The impact is: Divide by zero can lead to sudden crash of a software/service that tries to parse a .wav file. The component is: ParseDsdiffHeaderConfig dsdiff.c:282. The attack vector is: Maliciously crafted .wav file. The fixed...