Lucene search
K

15 matches found

OSV
OSV
added 2024/11/27 7:59 p.m.10 views

MGASA-2024-0374 Updated zbar packages fix security vulnerabilities

A heap-based buffer overflow exists in the qrreadermatchcenters function of ZBar 0.23.90. Specially crafted QR codes may lead to information disclosure and/or arbitrary code execution. To trigger this vulnerability, an attacker can digitally input the malicious QR code, or prepare it to be...

9.8CVSS9.6AI score0.01787EPSS
Exploits0References3
Mageia
Mageia
added 2024/11/27 7:59 p.m.23 views

Updated zbar packages fix security vulnerabilities

A heap-based buffer overflow exists in the qrreadermatchcenters function of ZBar 0.23.90. Specially crafted QR codes may lead to information disclosure and/or arbitrary code execution. To trigger this vulnerability, an attacker can digitally input the malicious QR code, or prepare it to be...

9.8CVSS8AI score0.01787EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/11/22 12:0 a.m.15 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS : ZBar vulnerabilities (USN-7118-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7118-1 advisory. It was discovered that ZBar did not properly handle certain QR codes. If a user or automated system using ZBar were...

9.8CVSS8.3AI score0.01787EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/11/22 12:0 a.m.15 views

Ubuntu: Security Advisory (USN-7118-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.01787EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/02/05 12:0 a.m.42 views

Debian: Security Advisory (DSA-5614-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.01787EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/01/18 12:0 a.m.22 views

Fedora 39 : zbar (2024-73d5220ed3)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-73d5220ed3 advisory. 0.23.93, fixes for two CVEs Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has n...

9.8CVSS8.4AI score0.01787EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/01/18 12:0 a.m.28 views

Fedora 38 : zbar (2024-583e4098b9)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-583e4098b9 advisory. 0.23.93, fixes for two CVEs Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has n...

9.8CVSS8.4AI score0.01787EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/12/23 12:0 a.m.13 views

SUSE SLED15: libzbar-devel / libzbar0 / libzbar0-32bit / libzbarqt-devel / etc (SUSE-SU-2023:4948-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4948-1 advisory. - CVE-2023-40889: Fixed heap-based buffer overflow in the qrreadermatchcenters function...

9.8CVSS7.7AI score0.01787EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2023/12/05 12:0 a.m.14 views

Debian: Security Advisory (DLA-3675-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.01787EPSS
Exploits0References4
Amazon
Amazon
added 2023/12/04 12:0 a.m.27 views

Medium: zbar

Issue Overview: A heap-based buffer overflow exists in the qrreadermatchcenters function of ZBar 0.23.90. Specially crafted QR codes may lead to information disclosure and/or arbitrary code execution. To trigger this vulnerability, an attacker can digitally input the malicious QR code, or prepare...

9.8CVSS9.8AI score0.01787EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/12/04 12:0 a.m.21 views

Debian dla-3675 : libbarcode-zbar-perl - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3675 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3675-1 [email protected]...

9.8CVSS8.9AI score0.01787EPSS
Exploits0References6
Debian
Debian
added 2023/12/01 10:30 a.m.23 views

[SECURITY] [DLA 3675-1] zbar security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3675-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès November 30, 2023 https://wiki.debian.org/LTS -...

9.8CVSS10AI score0.01787EPSS
Exploits0
Circl
Circl
added 2023/08/29 8:17 p.m.8 views

CVE-2023-40890

creationtimestamp| type| source ---|---|--- 2023-08-29 20:17:47+00:00| seen| https://t.me/cibsecurity/69368 2025-07-01 14:11:19+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/20032...

9.8CVSS7.3AI score0.01787EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/08/29 12:0 a.m.0 views

CVE-2023-40890

A stack-based buffer overflow vulnerability exists in the lookupsequence function of ZBar 0.23.90. Specially crafted QR codes may lead to information disclosure and/or arbitrary code execution. To trigger this vulnerability, an attacker can digitally input the malicious QR code, or prepare it to ...

8AI score0.01787EPSS
Exploits0References4
CVE
CVE
added 2023/08/29 12:0 a.m.82 views

CVE-2023-40890

Summary: CVE-2023-40890 affects ZBar 0.23.90 and describes a stack-based buffer overflow in the lookup_sequence function. Attackers can trigger via specially crafted QR codes scanned by vulnerable hardware/software, with potential information disclosure and arbitrary code execution as indicated b...

9.8CVSS9.5AI score0.01787EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder