CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

MSRC•added 2021/01/11 8:0 a.m.•14 views

Building Faster AMD64 Memset Routines

7AI score

0day.today•added 2021/01/06 12:0 a.m.•64 views

H2 Database 1.4.199 - JNI Code Execution Vulnerability

Exploit Title: H2 Database 1.4.199 - JNI Code Execution Exploit Author: 1F98D Original Author: Markus Wulftange Vendor Hompage: https://www.h2database.com/ Tested on: Windows 10 x64, Java 1.8, H2 1.4.199 References:...

7.4AI score

Tenable Nessus•added 2021/01/06 12:0 a.m.•40 views

SUSE SLES12 Security Update : java-1_8_0-ibm (SUSE-SU-2021:0032-1)

This update for java-180-ibm fixes the following issues : Update to Java 8.0 Service Refresh 6 Fix Pack 20 bsc1180063,bsc1177943 CVE-2020-14792 CVE-2020-14797 CVE-2020-14781 CVE-2020-14779 CVE-2020-14798 CVE-2020-14796 CVE-2020-14803 - Class libraries : - SOCKETADAPTOR$SOCKETINPUTSTREAM.READ is...

5.8CVSS6.1AI score0.03726EPSS

Exploits0References17

Exploit DB•added 2021/01/06 12:0 a.m.•218 views

H2 Database 1.4.199 - JNI Code Execution

Exploit Title: H2 Database 1.4.199 - JNI Code Execution Exploit Author: 1F98D Original Author: Markus Wulftange Date: 28 April 2020 Vendor Hompage: https://www.h2database.com/ Tested on: Windows 10 x64, Java 1.8, H2 1.4.199 References:...

7.4AI score

OSV•added 2021/01/05 3:21 p.m.•9 views

SUSE-SU-2021:0032-1 Security update for java-1_8_0-ibm

This update for java-180-ibm fixes the following issues: - Update to Java 8.0 Service Refresh 6 Fix Pack 20 bsc1180063,bsc1177943 CVE-2020-14792 CVE-2020-14797 CVE-2020-14781 CVE-2020-14779 CVE-2020-14798 CVE-2020-14796 CVE-2020-14803 Class libraries: - SOCKETADAPTOR$SOCKETINPUTSTREAM.READ is...

5.8CVSS5.2AI score0.03726EPSS

Exploits0References10

OSV•added 2020/12/24 6:15 p.m.•5 views

CVE-2020-24658

Arm Compiler 5 through 5.06u6 has an error in a stack protection feature designed to help spot stack-based buffer overflows in local arrays. When this feature is enabled, a protected function writes a guard value to the stack prior to above any vulnerable arrays in the stack. The guard value is...

7.8CVSS6.1AI score

NVD•added 2020/12/24 6:15 p.m.•12 views

CVE-2020-24658

7.8CVSS8AI score0.0031EPSS

Prion•added 2020/12/24 6:15 p.m.•28 views

Buffer overflow

4.4CVSS7.9AI score0.0031EPSS

CVE•added 2020/12/24 5:21 p.m.•73 views

CVE-2020-24658

Arm Compiler 5 through 5.06u6 contains a defect in the stack protection feature for detecting stack-based overflows. If the reference value written to the stack overlaps with the guard value, and both are overwritten, the protection may fail to detect corruption. This requires both a buffer overf...

7.8CVSS7.9AI score0.0031EPSS

Cvelist•added 2020/12/24 5:21 p.m.•36 views

CVE-2020-24658

8AI score0.0031EPSS

CNNVD•added 2020/12/24 12:0 a.m.•2 views

ARM Compiler Buffer Error Vulnerability

ARM Compiler is a tool from ARM UK for compiling and generating applications for the ARM architecture. A security vulnerability exists in Arm Compiler version 5, release 5.06u6, which stems from a bug in the stack protection feature, which is designed to help detect stack-based buffer overflows i...

7.8CVSS7.4AI score0.0031EPSS

Exploits0References2

Tenable Nessus•added 2020/12/24 12:0 a.m.•48 views

SUSE SLES15 Security Update : java-1_8_0-ibm (SUSE-SU-2020:3932-1)

5.8CVSS6.1AI score0.03726EPSS

Exploits0References17

OSV•added 2020/12/23 5:22 p.m.•8 views

SUSE-SU-2020:3932-1 Security update for java-1_8_0-ibm

5.8CVSS5.2AI score0.03726EPSS

Exploits0References10

Kitploit•added 2020/12/20 8:30 p.m.•50 views

Sploit - Go Package That Aids In Binary Analysis And Exploitation

Sploit is a Go package that aids in binary analysis and exploitation. The motivating factor behind the development of sploit is to be able to have a well designed API with functionality that rivals some of the more common Python exploit development frameworks while taking advantage of the Go...

7.7AI score

OSV•added 2020/12/20 5:23 p.m.•4 views

OPENSUSE-SU-2020:2300-1 Security update for gcc7

This update for gcc7 fixes the following issues: - CVE-2020-13844: Added mitigation for aarch64 Straight Line Speculation issue bsc1172798 - Enable fortran for the nvptx offload compiler. - Update README.First-for.SuSE.packagers - avoid assembler errors with AVX512 gather and scatter instructions...

5.5CVSS5.9AI score0.00504EPSS

Exploits0References10

NVD•added 2020/12/17 5:15 p.m.•10 views

CVE-2020-15294

Compiler Optimization Removal or Modification of Security-critical Code vulnerability in IntPeParseUnwindData results in multiple dereferences to the same pointer. If the pointer is located in memory-mapped from the guest space, this may cause a race-condition where the generated code would...

7.8CVSS7.9AI score0.00289EPSS

Prion•added 2020/12/17 5:15 p.m.•15 views

Race condition

4.4CVSS7.2AI score0.00289EPSS

CVE•added 2020/12/17 4:50 p.m.•45 views

CVE-2020-15294

CVE-2020-15294 refers to a vulnerability in Bitdefender Hypervisor Introspection (HVI) prior to version 1.132.2. The root cause is a compiler optimization issue in IntPeParseUnwindData(), which can trigger multiple dereferences of the same pointer—potentially when that pointer is memory-mapped fr...

7.8CVSS7.3AI score0.00289EPSS

Cvelist•added 2020/12/17 4:50 p.m.•10 views

CVE-2020-15294 Compiler Optimization Removal or Modification of Security-Critical Code vulnerability in Bitdefender Hypervisor Introspection (VA-9339)

7.8CVSS7.9AI score0.00289EPSS