CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2625 matches found

NVD•added 2020/06/26 8:15 p.m.•18 views

CVE-2020-9589

Adobe DNG Software Development Kit SDK 1.5 and earlier versions have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution...

9.3CVSS0.16757EPSS

Exploits0References1

Prion•added 2020/06/26 8:15 p.m.•15 views

Heap overflow

Adobe DNG Software Development Kit SDK 1.5 and earlier versions have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution...

9.3CVSS7.9AI score0.16757EPSS

Exploits0References1Affected Software1

BDU FSTEC•added 2020/06/05 12:0 a.m.•1 views

The vulnerability of the DNG file reading and writing software developed by Adobe’s SDK lies in buffer overflow attacks in the dynamic memory, allowing an attacker to execute arbitrary code.

The vulnerability of the DNG file reading and writing software developed by Adobe’s SDK is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS7.9AI score0.16757EPSS

Exploits0References4Affected Software1

Fedora•added 2020/05/28 4:15 a.m.•33 views

[SECURITY] Fedora 32 Update: dpdk-19.11.1-2.fc32

The Data Plane Development Kit is a set of libraries and drivers for fast packet processing in the user space...

7.7CVSS3.8AI score0.00606EPSS

Exploits0

RedHat Linux•added 2020/05/26 3:15 p.m.•3 views

dpdk: librte_vhost Integer truncation in vhost_user_check_and_alloc_queue_pair()

A memory corruption issue was found in DPDK versions 17.05 and above. This flaw is caused by an integer truncation on the index of a payload. Under certain circumstances, the index a UInt is copied and truncated into a uint16, which can lead to out of bound indexing and possible memory corruption...

6.7CVSS7.1AI score0.00087EPSS

Exploits0References6

RedHat Linux•added 2020/05/26 2:33 p.m.•1 views

dpdk: librte_vhost Missing inputs validation in Vhost-crypto

A vulnerability was found in DPDK versions 18.11 and above. The vhost-crypto library code is missing validations for user-supplied values, potentially allowing an information leak through an out-of-bounds memory read...

5.1CVSS7.2AI score0.00105EPSS

Exploits0References6

BDU FSTEC•added 2020/05/21 12:0 a.m.•1 views

The vulnerability of the Outside In Filters component of the Oracle Software Development Kit (SDK), as well as the Oracle Text component of the Oracle Database Server database management system, allows a malicious individual to gain access to read, delete, and modify data, or to cause a service failure.

The vulnerability of the Outside In Filters component of the Oracle Software Development Kit SDK and the Oracle Text component of the Oracle Database Server system is related to lack of access control mechanisms. Exploiting this vulnerability could allow an attacker to gain read, delete, and modi...

7.5CVSS6.9AI score0.00604EPSS

Exploits0References3Affected Software2

OSV•added 2020/05/20 2:15 p.m.•2 views

DEBIAN-CVE-2020-10726

A vulnerability was found in DPDK versions 19.11 and above. A malicious container that has direct access to the vhost-user socket can keep sending VHOSTUSERGETINFLIGHTFD messages, causing a resource leak file descriptors and virtual memory, which may result in a denial of service...

6CVSS6.1AI score0.00112EPSS

Exploits0References1

Microsoft KB•added 2020/05/20 12:0 a.m.•105 views

Microsoft Dynamics CRM 2011 Update Rollup 13

Microsoft Dynamics CRM 2011 Update Rollup 13 INTRODUCTION Update Rollup 13 for Microsoft Dynamics CRM 2011 is now available. This article describes the hotfixes and updates that are included in this update rollup. This update rollup is available for all languages that are supported by Microsoft...

7.3AI score

Exploits0

OSV•added 2020/05/19 7:15 p.m.•3 views

DEBIAN-CVE-2020-10724

5.1CVSS6.2AI score0.00105EPSS

Exploits0References1

OSV•added 2020/05/19 7:15 p.m.•3 views

DEBIAN-CVE-2020-10723

6.7CVSS7.2AI score0.00087EPSS

Exploits0References1

OSV•added 2020/05/18 3:0 p.m.•1 views

UBUNTU-CVE-2020-10725

A flaw was found in DPDK version 19.11 and above that allows a malicious guest to cause a segmentation fault of the vhost-user backend application running on the host, which could result in a loss of connectivity for the other guests running on that host. This is caused by a missing validity chec...

7.7CVSS7AI score0.00606EPSS

Exploits0References3

OSV•added 2020/05/18 3:0 p.m.•1 views

UBUNTU-CVE-2020-10723

6.7CVSS6.9AI score0.00087EPSS

Exploits0References3

OSV•added 2020/05/18 3:0 p.m.•0 views

UBUNTU-CVE-2020-10724

5.1CVSS6.3AI score0.00105EPSS

Exploits0References3

CNVD•added 2020/05/13 12:0 a.m.•3 views

Adobe DNG Software Development Kit Buffer Overflow Vulnerability (CNVD-2020-38190)

Adobe DNG Software Development Kit SDK is a software development kit that provides the ability to read and write DNG files from the American company Audobee Adobe. A buffer overflow vulnerability exists in the Adobe DNG Software Development Kit. An attacker could exploit this vulnerability to...

9.3CVSS7.7AI score0.16757EPSS

Exploits0References1

CNVD•added 2020/05/13 12:0 a.m.•1 views

Adobe DNG Software Development Kit Buffer Overflow Vulnerability

9.3CVSS7.7AI score0.16757EPSS

Exploits0References1

CNVD•added 2020/05/13 12:0 a.m.•2 views

Adobe DNG Software Development Kit Buffer Overflow Vulnerability (CNVD-2020-38191)

9.3CVSS7.7AI score0.15782EPSS

Exploits0References1

CNVD•added 2020/05/13 12:0 a.m.•3 views

Adobe DNG Software Development Kit Buffer Overflow Vulnerability (CNVD-2020-38184)