Lucene search
K

7652 matches found

BDU FSTEC
BDU FSTEC
added 2024/12/05 12:0 a.m.5 views

The vulnerability of the Curve.IsOnCurve component in the Golang programming language, which allows a malicious actor to influence the accessibility and integrity of the resource.

The vulnerability of the Curve.IsOnCurve component in the Golang programming language is related to incorrect checking of the returned value by a method or function. Exploiting this vulnerability can allow an attacker to influence the accessibility and integrity of a resource...

9.4CVSS7.4AI score0.03015EPSS
Exploits0References8Affected Software17
RedHat Linux
RedHat Linux
added 2024/12/04 12:19 a.m.2 views

kernel: drm/radeon: fix UBSAN warning in kv_dpm.c

A vulnerability was found in the Linux kernel's DRM/Radeon driver, specifically in the sumovidmappingentry within the kvdpm.c file. Insufficient bounds checking can lead to memory corruption...

5.5CVSS7.2AI score0.00279EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/12/04 12:19 a.m.2 views

kernel: xfs: add bounds checking to xlog_recover_process_data

A vulnerability has been identified within the Linux kernel's xlogrecoverprocessdata function. Specifically, the function lacks proper bounds checking on the space allocated for the fixed members of the xlogopheader structure during log record processing. This omission can lead to an out-of-bound...

7.1CVSS7.1AI score0.00224EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/12/04 12:0 a.m.2 views

Veeam Backup & Replication 安全漏洞

Veeam Backup & Replication is a backup and replication software from Veeam USA. A security vulnerability exists in Veeam Backup & Replication 12.2.0.334 and previous 12.X versions, which stems from improper privilege checking in the method of managing access to the service, resulting in a denial ...

8.1CVSS7.4AI score0.00325EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/04 12:0 a.m.15 views

Google Pixel 安全漏洞

Google Pixel is a smartphone from Google, an American company. A security vulnerability exists in Google Pixel, which stems from a lack of bounds checking in getbinary in vendor/mediatek/proprietary/hardware/connectivity/gps/gpshal/src/datacoder.c, where out-of-bounds writes may exist...

7.8CVSS9.1AI score0.00084EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/02 12:0 a.m.3 views

MediaTek Chipsets 安全漏洞

MediaTek Chipsets are a variety of chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Chipsets, which stems from a lack of boundary checking in ril, which could lead to out-of-bounds writes...

6.7CVSS6.7AI score0.00081EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/02 12:0 a.m.4 views

MediaTek Chipsets 安全漏洞

MediaTek Chipsets are a variety of chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Chipsets, which stems from a lack of boundary checking in cmdq, which could lead to out-of-bounds reads...

4.4CVSS6.7AI score0.00082EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/02 12:0 a.m.3 views

MediaTek Chipsets 安全漏洞

MediaTek Chipsets are a variety of chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Chipsets, which stems from a lack of boundary checking in da that could lead to out-of-bounds reads...

6.2CVSS6.7AI score0.00085EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/02 12:0 a.m.4 views

Google Pixel 安全漏洞

Google Pixel is a smartphone from Google USA. Google Pixel suffers from a security vulnerability that stems from a lack of bounds checking and a possible stack buffer overflow that could lead to remote code execution...

9.8CVSS8.2AI score0.00255EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/02 12:0 a.m.4 views

MediaTek Chipsets 安全漏洞

MediaTek Chipsets are a variety of chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Chipsets, which stems from a lack of boundary checking in vdec, which could lead to out-of-bounds writes...

6.7CVSS6.5AI score0.00082EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/12/02 12:0 a.m.4 views

MediaTek Chipsets 安全漏洞

MediaTek Chipsets are a variety of chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Chipsets, which stems from a lack of boundary checking in power, which could lead to out-of-bounds writes...

6.7CVSS6.7AI score0.00079EPSS
Exploits0References1
OSV
OSV
added 2024/12/02 12:0 a.m.1 views

UBUNTU-CVE-2024-53861

pyjwt is a JSON Web Token implementation in Python. An incorrect string comparison is run for iss checking, resulting in "acb" being accepted for "abc". This is a bug introduced in version 2.10.0: checking the "iss" claim changed from isinstanceissuer, list to isinstanceissuer, Sequence. Since st...

7.5CVSS7.1AI score0.0081EPSS
Exploits1References6
CNNVD
CNNVD
added 2024/12/02 12:0 a.m.5 views

MediaTek Chipsets 安全漏洞

MediaTek Chipsets are a variety of chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Chipsets that stems from a lack of boundary checking in Telephony, which could lead to out-of-bounds reads...

7.5CVSS6.7AI score0.00294EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2024/11/29 8:15 p.m.13 views

CVE-2024-35366

FFmpeg n6.1.1 is Integer Overflow. The vulnerability exists in the parseoptions function of sbgdec.c within the libavformat module. When parsing certain options, the software does not adequately validate the input. This allows for negative duration values to be accepted without proper bounds...

9.1CVSS6.9AI score0.00621EPSS
Exploits0
NVD
NVD
added 2024/11/29 8:15 p.m.20 views

CVE-2024-35366

FFmpeg n6.1.1 is Integer Overflow. The vulnerability exists in the parseoptions function of sbgdec.c within the libavformat module. When parsing certain options, the software does not adequately validate the input. This allows for negative duration values to be accepted without proper bounds...

9.1CVSS0.00621EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/11/29 12:0 a.m.6 views

CVE-2024-35366

FFmpeg n6.1.1 is Integer Overflow. The vulnerability exists in the parseoptions function of sbgdec.c within the libavformat module. When parsing certain options, the software does not adequately validate the input. This allows for negative duration values to be accepted without proper bounds...

6.8AI score0.00621EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/11/28 4:0 a.m.1 views

SUSE CVE-2024-36468

The reported vulnerability is a stack buffer overflow in the zbxsnmpcachehandleengineid function within the Zabbix server/proxy code. This issue occurs when copying data from session-securityEngineID to localrecord.engineid without proper bounds checking...

8.2CVSS7.4AI score0.005EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2024/11/27 9:21 p.m.31 views

CVE-2024-53920

A flaw was found in Emacs. Viewing or editing an untrusted Emacs Lisp source code file can cause arbitrary code execution due to unsafe macro expansion when a user has configured elisp-completion-at-point for code completion or has enabled automatic error checking, such as Flymake or Flycheck...

7.8CVSS7AI score0.00526EPSS
Exploits0References5
AlpineLinux
AlpineLinux
added 2024/11/27 12:15 p.m.3 views

CVE-2024-36468

The reported vulnerability is a stack buffer overflow in the zbxsnmpcachehandleengineid function within the Zabbix server/proxy code. This issue occurs when copying data from session-securityEngineID to localrecord.engineid without proper bounds checking...

8.2CVSS7.7AI score0.005EPSS
Exploits0References1
OSV
OSV
added 2024/11/27 12:15 p.m.11 views

CVE-2024-36468

The reported vulnerability is a stack buffer overflow in the zbxsnmpcachehandleengineid function within the Zabbix server/proxy code. This issue occurs when copying data from session-securityEngineID to localrecord.engineid without proper bounds checking...

8.2CVSS7.1AI score
Exploits0References1
Rows per page
Query Builder