Lucene search
K

203 matches found

Vulnrichment
Vulnrichment
added 2025/07/23 6:55 a.m.7 views

CVE-2025-31701

A vulnerability has been found in Dahua products. Attackers could exploit a buffer overflow vulnerability by sending specially crafted malicious packets, potentially causing service disruption e.g., crashes or remote code execution RCE. Some devices may have deployed protection mechanisms such as...

8.1CVSS7.9AI score0.008EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/07/23 12:0 a.m.4 views

PT-2025-30545

Name of the Vulnerable Software and Affected Versions Dahua products affected versions not specified Description A buffer overflow vulnerability exists in Dahua products. Attackers can exploit this issue by sending specially crafted malicious packets, potentially leading to service disruption, su...

8.1CVSS6.7AI score0.00835EPSS
Exploits1References17
Tenable Nessus
Tenable Nessus
added 2025/07/01 12:0 a.m.1 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS : libxslt vulnerability (USN-7600-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-7600-1 advisory. It was discovered that libxslt could be made to expose sensitive information about address space layout. An attack...

6.5CVSS7.2AI score0.01092EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/06/30 12:0 a.m.5 views

Ubuntu: Security Advisory (USN-7600-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.5AI score0.01092EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 9:53 p.m.7 views

CVE-2022-25477

Vulnerability in Realtek RtsPer driver for PCIe Card Reader RtsPer.sys before 10.0.22000.21355 and Realtek RtsUer driver for USB Card Reader RtsUer.sys before 10.0.22000.31274 leaks driver logs that contain addresses of kernel mode objects, weakening KASLR...

5.5CVSS6.9AI score0.00181EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:2 p.m.5 views

CVE-2021-1087

NVIDIA vGPU driver contains a vulnerability in the Virtual GPU Manager vGPU plugin, which could allow an attacker to retrieve information that could lead to a Address Space Layout Randomization ASLR bypass. This affects vGPU version 12.x prior to 12.2, version 11.x prior to 11.4 and version 8.x...

5.5CVSS6.5AI score0.00242EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:48 p.m.5 views

CVE-2020-3679

u'During execution after Address Space Layout Randomization is turned on for QTEE, part of code is still mapped at known address including code segments' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music,...

5.5CVSS9.5AI score0.00263EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 1:13 p.m.7 views

CVE-2018-9434

In multiple functions of Parcel.cpp, there is a possible way to bypass address space layout randomization. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.2AI score0.00096EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/05/12 12:0 a.m.2 views

PT-2025-20751 · Apple · Macos Sonoma +3

Name of the Vulnerable Software and Affected Versions: macOS Ventura versions prior to 13.7.6 macOS Sequoia versions prior to 15.5 macOS Sonoma versions prior to 14.7.6 Description: The issue allows an app to bypass Address Space Layout Randomization ASLR, which is a security feature designed to...

5.5CVSS6AI score0.00164EPSS
Exploits0References8
Packet Storm
Packet Storm
added 2025/02/14 12:0 a.m.352 views

Using Valgrind on Chrome

Brief script that demonstrates running valgrind and afl-fuzz on Google Chrome. This favorite code for security auditing and memory leak detection with Valgrind runs the Valgrind tool and several other tools to check for memory leaks, which can lead to resource buffer overflows and more. Exploit /...

7.3AI score
Exploits0
Cvelist
Cvelist
added 2025/01/17 11:11 p.m.11 views

CVE-2018-9434

In multiple functions of Parcel.cpp, there is a possible way to bypass address space layout randomization. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00096EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/01/17 12:0 a.m.5 views

PT-2025-1343 · Google · Android

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to multiple functions in Parcel.cpp, where it is possible to bypass address space layout randomization. This could lead to a local...

7.8CVSS7.5AI score0.00096EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2024/12/27 12:0 a.m.7 views

The vulnerability of Adobe InDesign’s computer layout automation tool, related to the execution of operations beyond the buffer in memory, allows attackers to bypass the ASLR protection mechanism and expose the protected information.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to bypass the ASLR protection mechanism and disclose the protected information...

5.5CVSS5.8AI score0.00316EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/27 12:0 a.m.9 views

The vulnerability of Adobe InDesign’s computer layout automation tool, related to memory-walking attacks, allows attackers to bypass ASLR protection and disclose the protected information.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to memory-walking attacks. Exploiting this vulnerability can allow an attacker to bypass ASLR protection and disclose the protected information...

5.5CVSS5.4AI score0.00316EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/12/10 10:15 p.m.4 views

CVE-2024-53005

Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a...

5.5CVSS5.8AI score0.00399EPSS
Exploits0References1
OSV
OSV
added 2024/11/12 7:15 p.m.4 views

CVE-2024-45147

Bridge versions 13.0.9, 14.1.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim...

5.5CVSS5.8AI score0.00258EPSS
Exploits0References1
OSV
OSV
added 2024/09/13 9:15 a.m.6 views

CVE-2024-39385

Premiere Pro versions 24.5, 23.6.8 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim...

5.5CVSS5.6AI score0.00281EPSS
Exploits0References1
OSV
OSV
added 2024/02/15 1:15 p.m.2 views

CVE-2024-20747

Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...

5.5CVSS7.3AI score
Exploits0References2
OSV
OSV
added 2023/09/07 2:15 p.m.3 views

CVE-2021-44193

Adobe After Effects versions 22.0 and earlier and 18.4.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...

3.3CVSS5.6AI score0.00303EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/08/10 2:15 p.m.6 views

CVE-2023-38238

Adobe Acrobat Reader versions 23.003.20244 and earlier and 20.005.30467 and earlier are affected by a Use-After-Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requir...

5.5CVSS5.8AI score0.02238EPSS
Exploits0References2
Rows per page
Query Builder