Lucene search
+L

126 matches found

RedHat Linux
RedHat Linux
added 2022/10/05 2:50 p.m.4 views

snakeyaml: Uncaught exception in org.yaml.snakeyaml.constructor.BaseConstructor.constructObject

A flaw was found in the snakeyaml package due to a stack-overflow in parsing YAML files. By persuading a victim to open a specially-crafted file, a remote attacker could cause the application to crash...

6.5CVSS6.8AI score0.01025EPSS
Exploits1References4
Veracode
Veracode
added 2022/09/29 1:4 p.m.22 views

Denial Of Service (DoS)

tcpreplay is vulnerable to denial of service. The vulnerability exists in packet2tree function of tree.c due to a reachable assertion which allows an attacker to crash the application via malicious input...

5.5CVSS5.5AI score0.00597EPSS
Exploits1References5Affected Software1
Veracode
Veracode
added 2022/09/04 11:46 a.m.22 views

Remote Code Execution

thunderbird is vulnerable to denial of service. The vulnerability exists due to the lack of memory safety checks in the library, allowing an attacker to crash the application by providing malicious input...

8.8CVSS8.4AI score0.00892EPSS
Exploits0References5Affected Software5
OSV
OSV
added 2022/08/25 8:15 p.m.4 views

UBUNTU-CVE-2021-23172

A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function startread in hcom.c file. The vulnerability is exploitable with a crafted hcomn file, that could cause an application to crash...

5.5CVSS6.7AI score0.00431EPSS
Exploits1References7
Veracode
Veracode
added 2022/07/07 5:11 p.m.27 views

Denial Of Service (DoS)

mujs is vulnerable to denial of service. The vulnerability exists due to a NULL pointer dereference in jsdump.c which allows an attacker to crash the application via malicious input...

5.5CVSS5.6AI score0.01095EPSS
Exploits1References5Affected Software1
Veracode
Veracode
added 2022/06/26 4:55 p.m.15 views

Denial Of Service (DoS)

chromium is vulnerable to denial of service. The vulnerability exists due to the use after free in cast UI/TOOLBAR which allows an attacker to crash the application via malicious input...

8.8CVSS8.3AI score0.00662EPSS
Exploits0References9Affected Software2
CNNVD
CNNVD
added 2022/06/08 12:0 a.m.5 views

H3C Magic R100 缓冲区错误漏洞

H3C Magic R100 is a router from H3C. H3C Magic R100 is vulnerable to a buffer overflow vulnerability, which can be exploited by remote attackers to submit special requests that can crash an application or execute arbitrary code in the application context...

10CVSS6.8AI score0.01542EPSS
Exploits1References2
Veracode
Veracode
added 2022/05/25 5:2 a.m.32 views

Denial Of Service (DoS)

mariadb is vulnerable to denial of service. An attacker can crash the application through the use-after-free in the component mywildcmp8bitimpl at ctype-simple.c...

7.5CVSS7.3AI score0.01564EPSS
Exploits1References8Affected Software2
Veracode
Veracode
added 2022/05/12 11:22 a.m.24 views

Denial Of Service (DoS)

exempi is vulnerable to denial of service. An attacker can crash the application through the buffer overflow by providing a specially-crafted .cpp file, resulting in arbitrary code execution in the context of the current user...

7.8CVSS7.9AI score0.05409EPSS
Exploits0References3Affected Software2
Veracode
Veracode
added 2022/04/13 8:9 a.m.22 views

Denial Of Service (DoS)

mutt is vulnerable to denial of service. The vulnerability exists due to a lack of sanitization which allows an attacker to crash the application via malicious input...

5.3CVSS3.9AI score0.01711EPSS
Exploits2References8Affected Software5
Veracode
Veracode
added 2022/03/07 3:26 p.m.30 views

Denial Of Service (DoS)

github.com/ethereum/go-ethereum is vulnerable to denial of service. The vulnerability exists in loop function of txpool.go causing a buffer overflow which leads to an application crash...

7.5CVSS3.1AI score0.0134EPSS
Exploits1References6Affected Software1
Veracode
Veracode
added 2022/02/24 9:18 p.m.24 views

Denial Of Service (DoS)

kicad is vulnerable to denial of service. The vulnerability exists due to the stack-based buffer overflow in the Gerber Viewer gerber and excellon ReadXYCoord coordinate parsing functionality, allowing attacker to crash the application by providing a specially-crafted gerber or excellon file...

7.8CVSS5.8AI score0.01643EPSS
Exploits1References7Affected Software1
CNNVD
CNNVD
added 2022/02/11 12:0 a.m.6 views

fastify-multipart 资源管理错误漏洞

fastify-multipart is a software package that supports parsing multiple content types. A resource management error vulnerability exists in fastify-multipart before 5.3.1, which stems from the possibility of crashing the application by providing the name=constructor attribute...

7.5CVSS7.3AI score0.0203EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/01/18 12:0 a.m.3 views

Oracle MySQL 缓冲区错误漏洞

Oracle MySQL Cluster is the United States Oracle Oracle company developed a write scalable, real-time, ACID-compatible transactional database. An information disclosure vulnerability exists in Oracle MySQL Cluster, which can be exploited by an attacker to read the contents of memory or crash an...

2.9CVSS8.1AI score0.01592EPSS
Exploits0References8
CNNVD
CNNVD
added 2022/01/18 12:0 a.m.7 views

Oracle MySQL 缓冲区错误漏洞

Oracle MySQL is an open source relational database management system from Oracle Corporation. MySQL Cluster is a highly useful and redundant version of Oracle MySQL Cluster for distributed computing environments. The vulnerability can be exploited to read the contents of memory or crash an...

2.9CVSS8AI score0.01386EPSS
Exploits0References8
Veracode
Veracode
added 2022/01/15 12:39 a.m.30 views

Denial Of Service (DoS)

libxml2.so is vulnerable to Denial Of Service DoS. The vulnerability exists in the book3shvrmhandlers.s because of containing a bug when handling SRR1 that allows a malicious guest to crash the application,...

5.5CVSS6.2AI score0.00343EPSS
Exploits0References12Affected Software5
Veracode
Veracode
added 2022/01/12 9:51 a.m.23 views

Information Disclosure

shelljs is vulnerable to information disclosure. The vulnerability exists in ShellJS exec function of exec.js because the file permissions have not been locked down which allows an attacker to gain access to sensitive information of file system of the running scripts and crash application...

7.1CVSS2.4AI score0.00427EPSS
Exploits1References7Affected Software2
OpenVAS
OpenVAS
added 2021/08/09 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2021-2249)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.6AI score0.0828EPSS
Exploits1References2
CNNVD
CNNVD
added 2021/03/11 12:0 a.m.3 views

Pillow 缓冲区错误漏洞

Pillow is a Python-based image processing library. Pillow is vulnerable to an out-of-bounds read vulnerability, which can be exploited to submit special file requests and trick users into parsing them, which can crash the application...

7.5CVSS5.5AI score0.01601EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2021/03/04 12:0 a.m.26 views

QEMU <= 5.2.0 DoS Vulnerability

QEMU is prone to a denial of service DoS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you c...

3.2CVSS5.4AI score0.00587EPSS
Exploits1References2
Rows per page
Query Builder