Lucene search
+L

169 matches found

CVE
CVE
added 2020/02/12 1:49 p.m.216 views

CVE-2014-4607

CVE-2014-4607 affects Oberhumer liblzo2 and lzo-2 up to version 2.07 on 32-bit platforms. The vulnerability arises from an integer overflow in the lzo1x_decompress_safe function when handling any variant of a Literal Run, which could lead to memory corruption and potentially remote code execution...

8.8CVSS9.1AI score0.05315EPSS
Exploits1References2Affected Software2
Debian CVE
Debian CVE
added 2020/02/12 1:49 p.m.33 views

CVE-2014-4607

Integer overflow in the LZO algorithm variant in Oberhumer liblzo2 and lzo-2 before 2.07 on 32-bit platforms might allow remote attackers to execute arbitrary code via a crafted Literal Run...

8.8CVSS8.1AI score0.05315EPSS
Exploits1
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.35 views

Huawei EulerOS: Security Advisory for dump (EulerOS-SA-2019-2139)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.6AI score0.05315EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for dump (EulerOS-SA-2019-2029)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.6AI score0.05315EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.37 views

Huawei EulerOS: Security Advisory for libxslt (EulerOS-SA-2019-2627)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.6AI score0.05146EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.36 views

Huawei EulerOS: Security Advisory for libxslt (EulerOS-SA-2019-2519)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.8AI score0.06457EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/01/21 12:0 a.m.24 views

Debian DSA-4607-1 : openconnect - security update

Lukas Kupczyk reported a vulnerability in the handling of chunked HTTP in openconnect, an open client for Cisco AnyConnect, Pulse and GlobalProtect VPN. A malicious HTTP server after having accepted its identity certificate, can provide bogus chunk lengths for chunked HTTP encoding and cause a...

9.8CVSS7.9AI score0.03445EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2019/12/18 12:0 a.m.45 views

EulerOS 2.0 SP3 : libxslt (EulerOS-SA-2019-2627)

According to the versions of the libxslt packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The xsltStylePreCompute function in preproc.c in libxslt 1.1.28 does not check if the parent node is an element, which allows attackers to caus...

9.8CVSS7.5AI score0.05146EPSS
Exploits1References9
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/02 10:53 p.m.13 views

Security Bulletin: IBM InfoSphere Information Governance Catalog is affected by a privilege escalation vulnerability

Summary A privilege escalation vulnerability was addressed in InfoSphere Information Governance Catalog. Vulnerability Details CVEID: CVE-2019-4607 DESCRIPTION: IBM InfoSphere Information Governance Catalog could allow an authorized user to access details of both governance and information assets...

0.7AI score
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/09/24 12:0 a.m.69 views

EulerOS 2.0 SP3 : grub2 (EulerOS-SA-2019-2011)

According to the version of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An integer overflow flaw was found in the way the lzo library decompressed certain archives compressed with the LZO algorithm. An attacker could...

8.8CVSS6.8AI score0.05315EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/09/24 12:0 a.m.28 views

EulerOS 2.0 SP3 : dump (EulerOS-SA-2019-2029)

According to the version of the dump package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An integer overflow flaw was found in the way the lzo library decompressed certain archives compressed with the LZO algorithm. An attacker could creat...

8.8CVSS6.8AI score0.05315EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/07/22 12:0 a.m.36 views

EulerOS 2.0 SP2 : dump (EulerOS-SA-2019-1740)

According to the version of the dump package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An integer overflow flaw was found in the way the lzo library decompressed certain archives compressed with the LZO algorithm. An attacker could creat...

8.8CVSS6.8AI score0.05315EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/07/22 12:0 a.m.34 views

EulerOS 2.0 SP2 : grub2 (EulerOS-SA-2019-1735)

According to the version of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An integer overflow flaw was found in the way the lzo library decompressed certain archives compressed with the LZO algorithm. An attacker could...

8.8CVSS6.8AI score0.05315EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/06/19 12:0 a.m.37 views

Fedora 30 : mingw-libxslt (2019-320d5295fc)

Update to 1.1.33 Fix CVE-2016-1841, CVE-2016-4607, CVE-2016-4608, CVE-2016-4610, CVE-2016-4609, CVE-2019-11068, CVE-2016-1684, CVE-2016-1683, CVE-2016-4738. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has...

9.8CVSS7AI score0.05146EPSS
Exploits0References10
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:6 a.m.34 views

Security Bulletin: A busybox vulnerability affects IBM DataPower Gateways (CVE-2014-4607)

Summary A buffer overflow vulnerability affects IBM DataPower Gateways. IBM DataPower Gateways has addressed the applicable CVE Vulnerability Details CVEID: CVE-2014-4607 DESCRIPTION: Oberhumer LZO could allow a remote attacker to execute arbitrary code on the system, caused by an integer overflo...

8.8CVSS7.5AI score0.05315EPSS
Exploits1Affected Software1
CVE
CVE
added 2018/03/16 2:4 p.m.25 views

CVE-2017-4607

CVE-2017-4607 is rejected/not used per the Initial Description.

7.3AI score
Exploits0
Cvelist
Cvelist
added 2018/03/16 2:4 p.m.9 views

CVE-2017-4607

...

Exploits0
OpenVAS
OpenVAS
added 2018/01/07 12:0 a.m.30 views

Debian: Security Advisory (DLA-826-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.02942EPSS
Exploits0References2
Apple
Apple
added 2017/06/10 11:47 a.m.55 views

About the security content of iTunes 12.4.2 for Windows - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. For more information about security, se...

10CVSS1.4AI score0.1398EPSS
Exploits3Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/05/31 12:0 a.m.48 views

SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2017:1442-1)

Wireshark was updated to version 2.2.6, which brings several new features, enhancements and bug fixes. Thses security issues were fixed : - CVE-2017-7700: In Wireshark the NetScaler file parser could go into an infinite loop, triggered by a malformed capture file. This was addressed in...

9.8CVSS8.6AI score0.08767EPSS
Exploits0References77
Rows per page
Query Builder