Lucene search
K

64 matches found

CNNVD
CNNVD
added 2023/12/10 12:0 a.m.5 views

Matrimonial Site SQL Injection Vulnerability

Matrimonial Site is a dating website. The code-projects Matrimonial Site version 1.0 has a SQL injection vulnerability that originates from a SQL injection vulnerability in the file /auth/auth.php...

9.8CVSS7.9AI score0.00858EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2023/05/19 12:0 a.m.7 views

The vulnerability of the authfile.c file in the memcached data caching software allows a hacker to induce a service failure.

The vulnerability of the authfile.c file in the memcached data caching software is related to buffer overflows in the dynamic memory. Exploiting this vulnerability can allow an attacker to cause a service failure by using a specially created authentication file...

5.5CVSS6.4AI score0.0036EPSS
Exploits1References9Affected Software5
Positive Technologies
Positive Technologies
added 2023/05/04 12:0 a.m.4 views

PT-2023-18248 · Unknown · Shannon Baseband

Name of the Vulnerable Software and Affected Versions: Shannon baseband versions prior to SMR May-2023 Release 1 Description: The issue is related to a potential buffer overflow vulnerability in the auth API, specifically in the mm Authentication.c file. This could allow remote attackers to cause...

9.8CVSS9.4AI score0.0066EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2023/03/22 7:0 a.m.4 views

The authfile directive in the booth config file is ignored preventing use of authentication in communications from node to node. As a result nodes that do not have the correct authentication key are not prevented from communicating with other nodes in the cluster.

...

6.5CVSS6.5AI score0.00924EPSS
Exploits0
Veracode
Veracode
added 2023/03/17 3:51 a.m.17 views

Denial Of Service (DoS)

memcached is vulnerable to Denial Of Service DoS. The vulnerability exists due to the buffer overflow in the authfile.c, which allows an attacker to cause an application crash through the crafted authentication file...

5.5CVSS6.4AI score0.0036EPSS
Exploits1References3Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 4:54 a.m.6 views

SUSE CVE-2016-10011

authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging access to a privilege-separated child process...

5.5CVSS7.7AI score0.01101EPSS
Exploits1References15
SUSE CVE
SUSE CVE
added 2023/02/15 3:39 a.m.4 views

SUSE CVE-2021-37519

Buffer Overflow vulnerability in authfile.c memcached 1.6.9 allows attackers to cause a denial of service via crafted authenticattion file...

5.5CVSS9.1AI score0.0036EPSS
Exploits1References3
NVD
NVD
added 2023/02/03 6:15 p.m.9 views

CVE-2021-37519

Buffer Overflow vulnerability in authfile.c memcached 1.6.9 allows attackers to cause a denial of service via crafted authenticattion file...

5.5CVSS5.3AI score0.0036EPSS
Exploits1References2
OSV
OSV
added 2023/02/03 6:15 p.m.31 views

CVE-2021-37519

Buffer Overflow vulnerability in authfile.c memcached 1.6.9 allows attackers to cause a denial of service via crafted authenticattion file...

5.5CVSS5.5AI score
Exploits0References2
UbuntuCve
UbuntuCve
added 2023/02/03 6:15 p.m.28 views

CVE-2021-37519

Buffer Overflow vulnerability in authfile.c memcached 1.6.9 allows attackers to cause a denial of service via crafted authenticattion file...

5.5CVSS6.4AI score0.0036EPSS
Exploits1References2
AlpineLinux
AlpineLinux
added 2023/02/03 6:15 p.m.31 views

CVE-2021-37519

Buffer Overflow vulnerability in authfile.c memcached 1.6.9 allows attackers to cause a denial of service via crafted authenticattion file...

5.5CVSS5.3AI score0.0036EPSS
Exploits1
OSV
OSV
added 2023/02/03 6:15 p.m.1 views

UBUNTU-CVE-2021-37519

Buffer Overflow vulnerability in authfile.c memcached 1.6.9 allows attackers to cause a denial of service via crafted authenticattion file...

5.5CVSS5.8AI score0.0036EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/02/03 12:0 a.m.1 views

Memcached 缓冲区错误漏洞

Memcached is the United States Brad Fitzpatrick Brad Fitzpatrick individual developers of a high-performance distributed memory object caching system. The system reduces the number of database reads by caching data and objects in memory, thus increasing the speed of website access. A security...

5.5CVSS6.1AI score0.0036EPSS
Exploits1References4
Cvelist
Cvelist
added 2023/02/03 12:0 a.m.17 views

CVE-2021-37519

Buffer Overflow vulnerability in authfile.c memcached 1.6.9 allows attackers to cause a denial of service via crafted authenticattion file...

5.8AI score0.0036EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2023/02/03 12:0 a.m.20 views

CVE-2021-37519

Buffer Overflow vulnerability in authfile.c memcached 1.6.9 allows attackers to cause a denial of service via crafted authenticattion file...

5.5CVSS5.1AI score0.0036EPSS
Exploits1
CVE
CVE
added 2023/02/03 12:0 a.m.109 views

CVE-2021-37519

Summary (CVE-2021-37519) : The vulnerability is a buffer overflow in memcached’s authfile.c (affecting memcached 1.6.9) that allows denial of service via a crafted authentication file. Connected documents corroborate this CVE, listing CVE-2021-37519 across multiple sources (e.g., Astra Linux advi...

5.5CVSS5.4AI score0.0036EPSS
Exploits1References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/11/08 12:0 a.m.23 views

Schneider-electric Modicon Improper Authentication

A Permissions, Privileges, and Access Control vulnerability exists in Schneider Electric's Modicon M221 product all references, all versions prior to firmware V1.6.2.0. The vulnerability allows unauthorized users to overwrite the original password with their password. If an attacker exploits this...

9.8CVSS3.5AI score0.01896EPSS
Exploits0References3
OSV
OSV
added 2019/04/28 4:29 p.m.1 views

UBUNTU-CVE-2019-11578

auth.c in dhcpcd before 7.2.1 allowed attackers to infer secrets by performing latency attacks...

5.9CVSS5.8AI score0.02026EPSS
Exploits0References6
OSV
OSV
added 2017/04/03 2:59 p.m.2 views

UBUNTU-CVE-2017-7401

Incorrect interaction of the parsepacket and parsepartsignsha256 functions in network.c in collectd 5.7.1 and earlier allows remote attackers to cause a denial of service infinite loop of a collectd instance configured with "SecurityLevel None" and with empty "AuthFile" options via a crafted UDP...

7.5CVSS6.9AI score0.03997EPSS
Exploits0References3
0day.today
0day.today
added 2016/02/10 12:0 a.m.91 views

Yeager CMS 1.2.1 - Multiple Vulnerabilities

Exploit for php platform in category web applications title: Multiple Vulnerabilities product: Yeager CMS vulnerable version: 1.2.1 fixed version: 1.3 CVE number: CVE-2015-7567, CVE-2015-7568, CVE-2015-7569, CVE-2015-7570 , CVE-2015-7571, CVE-2015-7572 impact: Critical homepage:...

7.5CVSS0.08439EPSS
Exploits9
Rows per page
Query Builder