CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8453 matches found

Tenable Nessus•added 2024/05/11 12:0 a.m.•23 views

RHEL 7 : mariadb (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - mariadb: CONNECT storage engine heap-based buffer overflow CVE-2022-24052 - getsortbytable in MariaDB...

8.7AI score0.00952EPSS

Exploits35References46

Positive Technologies•added 2024/05/09 12:0 a.m.•2 views

PT-2024-4558

Name of the Vulnerable Software and Affected Versions Artifex Ghostscript versions prior to 10.03.1 Description The vulnerability in Artifex Ghostscript is related to a format string injection in the uniprint device, which can lead to memory corruption and allow an attacker to bypass the -dSAFER...

8.8CVSS8.2AI score0.08233EPSS

Exploits6References116

OSV•added 2024/05/09 12:0 a.m.•0 views

UBUNTU-CVE-2024-29510

Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device...

6.3CVSS7.3AI score0.08233EPSS

Exploits6References4

OSV•added 2024/05/07 11:15 p.m.•0 views

CVE-2021-34970

Foxit PDF Reader print Method Use of Externally-Controlled Format String Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in...

5.5CVSS5AI score0.00373EPSS

Exploits0References2

Cvelist•added 2024/05/07 10:54 p.m.•21 views

CVE-2021-34970 Foxit PDF Reader print Method Use of Externally-Controlled Format String Information Disclosure Vulnerability

3.3CVSS5.5AI score0.00373EPSS

Exploits0References2

CVE•added 2024/05/07 10:54 p.m.•63 views

CVE-2021-34970

CVE-2021-34970 (Foxit PDF Reader / PhantomPDF) is a vulnerability where the print method mishandles a user-supplied string used as a format specifier, due to improper validation. This leads to information disclosure on affected Foxit PDF Reader/PhantomPDF installations and, per sources, can be le...

5.5CVSS3.5AI score0.00373EPSS

Exploits0References2Affected Software2

Vulnrichment•added 2024/05/07 10:54 p.m.•18 views

CVE-2021-34970 Foxit PDF Reader print Method Use of Externally-Controlled Format String Information Disclosure Vulnerability

3.3CVSS6.1AI score0.00373EPSS

Exploits0References2

NVD•added 2024/05/03 9:15 a.m.•7 views

CVE-2024-23914

Use of Externally-Controlled Format String vulnerability in Merge DICOM Toolkit C/C++ on Windows. When MCOpenAssociation function is used to open DICOM Association and gets DICOM Application Context Name with illegal characters, it might result in an unhandled exception...

5.7CVSS5.6AI score0.00031EPSS

Exploits0References1

CVE•added 2024/05/03 8:15 a.m.•54 views

CVE-2024-23914

The CVE-2024-23914 entry concerns an externally-controlled format string vulnerability in Merative Merge DICOM Toolkit C/C++ on Windows. The flaw arises when MC_Open_Association() processes a DICOM Application Context Name containing illegal characters, potentially triggering an unhandled excepti...

5.7CVSS6.8AI score0.00031EPSS

Exploits0References1

Cvelist•added 2024/05/03 8:15 a.m.•14 views

CVE-2024-23914

5.7CVSS5.9AI score0.00031EPSS

Exploits0References1

Vulnrichment•added 2024/05/03 8:15 a.m.•8 views

CVE-2024-23914

5.7CVSS7.2AI score0.00031EPSS

Exploits0References1

OSV•added 2024/04/30 7:15 a.m.•1 views

DEBIAN-CVE-2024-31837

DMitry Deepmagic Information Gathering Tool 1.3a has a format-string vulnerability, with a threat model similar to CVE-2017-7938...

8.4CVSS8.5AI score0.00046EPSS

Exploits4References1

NVD•added 2024/04/30 7:15 a.m.•8 views

CVE-2024-31837

DMitry Deepmagic Information Gathering Tool 1.3a has a format-string vulnerability, with a threat model similar to CVE-2017-7938...

8.4CVSS9.4AI score0.00046EPSS

Exploits4References2

OSV•added 2024/04/30 7:15 a.m.•17 views

CVE-2024-31837

DMitry Deepmagic Information Gathering Tool 1.3a has a format-string vulnerability, with a threat model similar to CVE-2017-7938...

6.6AI score

Exploits0References1

OSV•added 2024/04/30 7:15 a.m.•0 views

UBUNTU-CVE-2024-31837

DMitry Deepmagic Information Gathering Tool 1.3a has a format-string vulnerability, with a threat model similar to CVE-2017-7938...

8.4CVSS5.8AI score0.00046EPSS

Exploits4References3

Positive Technologies•added 2024/04/30 12:0 a.m.•2 views

PT-2024-24234 · Dmitry · Dmitry

Name of the Vulnerable Software and Affected Versions: DMitry Deepmagic Information Gathering Tool version 1.3a Description: The issue is a format-string vulnerability. It has a threat model similar to other known format-string vulnerabilities. Recommendations: For DMitry Deepmagic Information...

9.8CVSS7.8AI score0.01894EPSS

Exploits6References20

CNNVD•added 2024/04/30 12:0 a.m.•1 views

DMitry 安全漏洞

DMitry is a Deepmagic Information Gathering Tool by the individual developer J Greig in the UK. A security vulnerability exists in DMitry Deepmagic Information Gathering Tool version 1.3a, which stems from the presence of a format string vulnerability...

8.4CVSS6.8AI score0.00046EPSS

Exploits4References2