Lucene search
K

99 matches found

BDU FSTEC
BDU FSTEC
added 2021/07/27 12:0 a.m.5 views

The vulnerability of the `gb18030_mbc_enc_len` function in the Oniguruma regular expression library, which relates to reading data beyond the allowed buffer limits, allows attackers to cause service failures.

The vulnerability of the gb18030mbcenclen function in the Oniguruma regular expression library is related to reading data beyond the acceptable buffer limit. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.5CVSS6.8AI score0.04052EPSS
Exploits1References14Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/07/22 12:0 a.m.9 views

The vulnerability of the getBits function in the OpenEXR library, which is related to reading data from buffers beyond their allowable limits, allows attackers to cause service interruptions.

The vulnerability of the getBits function in the OpenEXR library lies in reading data beyond the permissible limits of the data buffer. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

6.5CVSS6.9AI score0.01851EPSS
Exploits0References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/07/20 12:0 a.m.6 views

The vulnerability of the Pillow library for working with raster graphics, related to reading beyond the allowed buffer data limits, allows a hacker to gain access to confidential data.

The vulnerability of the Pillow library for working with raster graphics relates to reading data beyond the allowed buffer limits. Exploiting this vulnerability could allow a malicious actor to gain access to confidential data...

6.5CVSS6.7AI score0.01468EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/07/20 12:0 a.m.5 views

The vulnerability of the library for EXIF file grammar analysis in libexif, which arises from reading beyond the permissible buffer limit, allows an intruder to access confidential data and also causes service failure.

The vulnerability of the library for EXIF file parsing in libexif is related to reading data beyond the permissible buffer limits. Exploiting this vulnerability could allow an attacker to access confidential data, as well as cause service failures...

9.1CVSS7.3AI score0.02684EPSS
Exploits0References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/07/13 12:0 a.m.6 views

The vulnerability of QEMU’s emulation software lies in its ability to read data beyond the allowed buffer limits, allowing an attacker to trigger a service failure.

The vulnerability of QEMU’s emulation software-related hardware lies in reading data from buffers beyond acceptable limits. Exploiting this vulnerability allows an attacker to cause system failures...

3.2CVSS6.6AI score0.00377EPSS
Exploits0References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/07/13 12:0 a.m.11 views

The vulnerability of the FastHufDecoder::refill library in the ImfFastHuf.cpp software for storing images in OpenEXR format with a wide dynamic range of brightness levels, related to reading data beyond the buffer’s acceptable limits, allows attackers to cause service interruptions.

The vulnerability of the FastHufDecoder::refill library in the ImfFastHuf.cpp software for storing images with wide dynamic range brightness in the OpenEXR format is related to reading data beyond the allowable buffer size. Exploiting this vulnerability could allow a malicious actor to cause...

6.5CVSS6.9AI score0.01785EPSS
Exploits1References11Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/07/08 12:0 a.m.4 views

The vulnerability of the OpenJPEG library for image encoding and decoding lies in the fact that the output of the operation is limited to a buffer size. This allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the OpenJPEG library for image encoding and decoding is related to the execution of operations within acceptable buffer data limits. Exploiting this vulnerability allows a malicious actor to gain access to confidential data, compromise its integrity, and cause service failure...

8.8CVSS7.4AI score0.01107EPSS
Exploits0References13Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/07/02 12:0 a.m.6 views

The vulnerability of the htmlParseTryOrFinish function in the HTMLparser.c component of the Libxml2 library arises from reading data beyond the allowed buffer limits. This allows an attacker to access confidential data and also cause a service failure.

The vulnerability of the htmlParseTryOrFinish function in the HTMLparser.c component of the Libxml2 library is related to reading data beyond the allowable buffer size. Exploiting this vulnerability allows an attacker to gain access to confidential data and also cause service failures...

9.1CVSS7.7AI score0.02306EPSS
Exploits0References12Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/07/02 12:0 a.m.8 views

The vulnerability of the ReadPSDImage function in the coders/psd.c component of the console-based image editing tool ImageMagick allows an attacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the ReadPSDImage function in the coders/psd.c component of the ImageMagick console graphics editor is related to the execution of operations within acceptable buffer data limits. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise...

8.8CVSS7.7AI score0.02725EPSS
Exploits0References10Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/03/30 12:0 a.m.8 views

The vulnerability of Squid’s ESI element processing mechanism, which is related to the operation being brought within the allowable data buffer limits, allows a hacker to cause a service failure.

The vulnerability of the Squid proxy server’s ESI element processing mechanism lies in the ability to limit the execution of operations within acceptable data buffer limits. Exploiting this vulnerability allows a malicious actor to cause service failures...

5.9CVSS7AI score0.05765EPSS
Exploits0References10Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/03/30 12:0 a.m.6 views

The vulnerability of the ESIExpression::Evaluate function in the Squid proxy server lies in the fact that it allows the output of operations within acceptable data buffer limits. This enables attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the ESIExpression::Evaluate function of the Squid proxy server is related to the execution of operations within acceptable data buffer limits. Exploiting this vulnerability can allow a remote attacker to access confidential data, compromise its integrity, and cause service...

9.8CVSS7.1AI score0.06734EPSS
Exploits0References11Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/03/21 12:0 a.m.44 views

The vulnerability of the DecodeManager::decodeRect function in the VNC TigerVNC software allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the DecodeManager::decodeRect function in the VNC TigerVNC software is related to the execution of operations within acceptable buffer data limits. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause...

7.2CVSS7.5AI score0.04485EPSS
Exploits1References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/03/21 12:0 a.m.7 views

The vulnerability of the elf_end function in the libelf library, a set of utilities for processing ELF objects, relates to the issue of allowing the output operation to be within acceptable data buffer limits. This vulnerability allows an attacker to cause a service failure.

The vulnerability of the elfend function in the libelf library is related to improper closure of the ar file. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

6.5CVSS6.4AI score0.02791EPSS
Exploits1References8Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/03/21 12:0 a.m.7 views

The vulnerability of the WebAudio component in the Google Chrome browser allows a hacker to gain access to confidential data, compromise its integrity, and cause service interruptions.

The vulnerability of Google Chrome’s WebAudio component is related to the execution of operations that exceed the allowable buffer data limits. Exploiting this vulnerability can allow a remote attacker to access confidential data, compromise its integrity, and cause service interruptions...

9.3CVSS8.2AI score0.02882EPSS
Exploits0References14Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/03/21 12:0 a.m.4 views

The vulnerability of Google Chrome’s browser storage, related to the operation of pushing operations beyond the data buffer’s allowable limits, allows a perpetrator to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of Google Chrome’s browser storage relates to the operation of operations that exceed the permissible data buffer limits. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

7.3CVSS7.9AI score0.01851EPSS
Exploits1References16Affected Software6
BDU FSTEC
BDU FSTEC
added 2021/03/21 12:0 a.m.6 views

The vulnerability of the WebRTC technology implemented in Google Chrome browsers allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the WebRTC technology implemented in Google Chrome browser is related to the execution of operations within the data buffer’s allowable limits. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data, compromise its integrity, and cause...

6.8CVSS7.9AI score0.01913EPSS
Exploits0References13Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/03/21 12:0 a.m.7 views

The vulnerability of the `finish_stab` function in the `stabs.c` file of the Binutils development tools, related to the operation of pushing values out of the data buffer’s acceptable range, allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability in the finishstab function of the stabs.c file in the Binutils development tools set relates to the execution of operations within acceptable buffer data limits. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, an...

9.8CVSS7.1AI score0.04505EPSS
Exploits1References12Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/03/21 12:0 a.m.4 views

The vulnerability of the TightDecoder::FilterGradient function in the VNC TigerVNC software allows a perpetrator to access confidential data, compromise its integrity, and cause service interruptions.

The vulnerability of the TightDecoder::FilterGradient function in the VNC TigerVNC software is related to the execution of operations within acceptable buffer data limits. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause...

7.2CVSS7.5AI score0.04277EPSS
Exploits1References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/03/15 12:0 a.m.10 views

The vulnerability of VNC implementations with extensions for optimizing operations under slow data transmission channels, such as Tightvnc, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of VNC implementations with extensions for optimizing operations under slow data transmission channels, such as Tightvnc, is related to the execution of operations within the allowable buffer size limits. Exploiting this vulnerability can allow a remote attacker to gain access t...

9.8CVSS8.2AI score0.13149EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/02/16 12:0 a.m.7 views

The vulnerability of the WavpackPackSamples function in the packUtils.c component of the WavPack audio codec allows for an operation that outputs data within acceptable buffer limits. This enables a malicious actor to compromise the integrity of the data and cause service failures.

The vulnerability of the WavpackPackSamples function in the packUtils.c component of the WavPack audio codec is related to the output of the operation within acceptable buffer data limits. Exploiting this vulnerability allows a remote attacker to compromise the integrity of the data and also caus...

7.8CVSS6.8AI score0.01196EPSS
Exploits1References20Affected Software10
Rows per page
Query Builder