Lucene search
+L

319 matches found

OpenVAS
OpenVAS
added 2023/09/14 12:0 a.m.32 views

Ubuntu: Security Advisory (USN-6364-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.00707EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.57 views

Oracle Linux 7 : qemu (ELSA-2018-4285)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-4285 advisory. - net: ignore packet size greater than INTMAX Jason Wang Orabug: 28763782 CVE-2018-17963 - pcnet: fix possible buffer overflow Jason Wang Orabug:...

10CVSS7.6AI score0.93838EPSS
Exploits24References40
UbuntuCve
UbuntuCve
added 2023/08/22 7:16 p.m.347 views

CVE-2022-48571

memcached 1.6.7 allows a Denial of Service via multi-packet uploads in UDP...

7.5CVSS6.8AI score0.00912EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2023/08/22 7:16 p.m.48 views

CVE-2020-19726

An issue was discovered in binutils libbfd.c 2.36 relating to the auxiliary symbol data allows attackers to read or write to system memory or cause a denial of service...

8.8CVSS6.3AI score0.00664EPSS
Exploits1References5
Veracode
Veracode
added 2023/08/07 12:14 a.m.38 views

Denial Of Service (DoS)

vim is vulnerable to Denial of Service DoS. The vulnerability exists due to a NULL Pointer Dereference which allows an attacker to cause an application crash...

5.5CVSS5.5AI score0.00462EPSS
Exploits1References7Affected Software1
Github Security Blog
Github Security Blog
added 2023/05/05 6:30 p.m.12 views

libheif vulnerable to segmentation fault via floating point exception

A Segmentation fault caused by a floating point exception exists in libheif 1.15.1 using crafted heif images via the heif::Fraction::round function in box.cc, which causes a denial of service...

6.5CVSS6.7AI score0.00927EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2023/04/19 12:0 a.m.32 views

CVE-2023-21091

In canDisplayLocalUi of AppLocalePickerActivity.java, there is a possible way to change system app locales due to a missing permission check. This could lead to local denial of service across user boundaries with no additional execution privileges needed. User interaction is not needed for...

5.6AI score0.00083EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/03/23 12:0 a.m.45 views

CVE-2023-1289

A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentation fault. This flaw allows a remote attacker to pass a specially crafted SVG file that leads to a segmentation fault, generating many trash files in "/tmp," resulting in a denial o...

6AI score0.00865EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/03/21 12:0 a.m.146 views

Amazon Linux 2023 : compat-libpthread-nonshared, glibc, glibc-all-langpacks (ALAS2023-2023-060)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-060 advisory. A stack based buffer-overflow vulnerability was found in the deprecated compatibility function clntcreate in the sunrpc's clntgen.c module of the GNU C Library aka glibc through 2.34. This vulnerability...

9.8CVSS7.9AI score0.04211EPSS
Exploits1References4
AlpineLinux
AlpineLinux
added 2023/03/10 9:15 p.m.54 views

CVE-2023-27901

Jenkins 2.393 and earlier, LTS 2.375.3 and earlier uses the Apache Commons FileUpload library without specifying limits for the number of request parts introduced in version 1.5 for CVE-2023-24998 in org.kohsuke.stapler.RequestImpl, allowing attackers to trigger a denial of service...

7.5CVSS7.6AI score0.46836EPSS
Exploits1
NVD
NVD
added 2023/03/06 11:15 p.m.18 views

CVE-2022-4904

A flaw was found in the c-ares package. The aressetsortlist is missing checks about the validity of the input string, which allows a possible arbitrary length stack overflow. This issue may cause a denial of service or a limited impact on confidentiality and integrity...

8.6CVSS8.5AI score0.01222EPSS
Exploits1References4
F5 Networks
F5 Networks
added 2023/02/21 6:15 p.m.27 views

K17521: NTP vulnerability CVE-2015-7849

Security Advisory Description Use-after-free vulnerability in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to possibly execute arbitrary code or cause a denial of service crash via crafted packets. CVE-2015-7849 Impact There is no impact; F5 products...

8.8CVSS7.9AI score0.16848EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 5:49 a.m.4 views

SUSE CVE-2012-0247

ImageMagick 6.7.5-7 and earlier allows remote attackers to cause a denial of service memory corruption and possibly execute arbitrary code via crafted offset and count values in the ResolutionUnit tag in the EXIF IFD0 of an image...

8.8CVSS7.7AI score0.03816EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:44 a.m.4 views

SUSE CVE-2012-5120

Google V8 before 3.13.7.5, as used in Google Chrome before 23.0.1271.64, on 64-bit Linux platforms allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that triggers an out-of-bounds access to an array...

7.5CVSS9.3AI score0.01526EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:49 a.m.4 views

SUSE CVE-2017-5852

The PoDoFo::PdfPage::GetInheritedKeyFromObject function in base/PdfVariant.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service infinite loop via a crafted file...

5.3CVSS9AI score0.01389EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:41 a.m.6 views

SUSE CVE-2017-12671

In ImageMagick 7.0.6-3, a missing NULL assignment was found in coders/png.c, leading to an invalid free in the function RelinquishMagickMemory in MagickCore/memory.c, which allows attackers to cause a denial of service...

7.5CVSS8.6AI score0.01107EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 3:43 a.m.4 views

SUSE CVE-2021-29549

TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a runtime division by zero error and denial of service in tf.rawops.QuantizedBatchNormWithGlobalNormalization. This is because the...

5.5CVSS5.4AI score0.00189EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2023/02/15 12:0 a.m.26 views

Microsoft .NET Framework DoS And RCE Vulnerabilities (KB5022782)

This host is missing an important security update according to Microsoft KB5022782 Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...

7.8CVSS6.2AI score0.01148EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.21 views

Ubuntu: Security Advisory (USN-4787-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.8AI score0.05333EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.23 views

Google Chrome Security Updates (stable-channel-update-for-desktop_24-2023-01) - Mac OS X

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

8.8CVSS9.9AI score0.00736EPSS
Exploits0References1
Rows per page
Query Builder