Lucene search
K

23141 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:21 a.m.13 views

CVE-2011-2475

Format string vulnerability in ECTrace.dll in the iMailGateway service in the Internet Mail Gateway in OneBridge Server and DMZ Proxy in Sybase OneBridge Mobile Data Suite 5.5 and 5.6 allows remote attackers to execute arbitrary code via format string specifiers in unspecified string fields,...

10CVSS8.3AI score0.03677EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 2:36 a.m.5 views

CVE-2018-10388

Format string vulnerability in the logMess function in TFTP Server SP 1.66 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via format string sequences in a TFTP error packet...

9.8CVSS7.8AI score0.0436EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 2:36 a.m.11 views

CVE-2018-10389

Format string vulnerability in the logMess function in TFTP Server MT 1.65 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via format string sequences in a TFTP error packet...

9.8CVSS8.1AI score0.02257EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:35 a.m.6 views

CVE-2017-14232

The readchunk function in flif-dec.cpp in Free Lossless Image Format FLIF 0.3 allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted flif file...

5.5CVSS6.7AI score0.01158EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:37 a.m.5 views

CVE-2015-10088

A vulnerability, which was classified as critical, was found in ayttm up to 0.5.0.89. This affects the function httpconnect in the library libproxy/proxy.c. The manipulation leads to format string. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The...

8.1CVSS6.9AI score0.00721EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:16 a.m.6 views

CVE-2005-2237

Format string vulnerability in the swcons command in IBM AIX 5.3, and possibly other versions, might allow local users to execute arbitrary code via long command line arguments...

7.2CVSS7.7AI score0.00385EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:2 a.m.9 views

CVE-2009-2850

Multiple buffer overflows in NASA Common Data Format CDF allow context-dependent attackers to execute arbitrary code, as demonstrated using 1 an array index error in the ReadAEDRList64 function, and other errors in the 2 SearchForRecordr64, 3 LastRecord64, 4 CDFsel64, and other unspecified...

9.3CVSS7.7AI score0.0286EPSS
Exploits1References1
Packet Storm News
Packet Storm News
added 2025/05/22 12:0 a.m.3 views

Enhancing Meme Token Market Transparency: a Multi-Dimensional Entity-Linked Address Analysis for Liquidity Risk Evaluation

Meme tokens represent a distinctive asset class within the cryptocurrency ecosystem, characterized by high community engagement, significant market volatility, and heightened vulnerability to market manipulation. This paper introduces an innovative approach to assessing liquidity risk in meme tok...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/05/22 12:0 a.m.4 views

LLM Access Shield: Domain-Specific LLM Framework for Privacy Policy Compliance

Large language models LLMs are increasingly applied in fields such as finance, education, and governance due to their ability to generate human-like text and adapt to specialized tasks. However, their widespread adoption raises critical concerns about data privacy and security, including the risk...

6.6AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/21 10:40 p.m.6 views

CVE-2002-2155

Format string vulnerability in the error handling of IRC invite responses for Trillian 0.725 and 0.73 allows remote IRC servers to execute arbitrary code via an invite to a channel with format string specifiers in the name...

7.5CVSS8AI score0.02023EPSS
Exploits0References1
OSV
OSV
added 2025/05/21 10:15 p.m.4 views

UBUNTU-CVE-2025-47947

ModSecurity is an open source, cross platform web application firewall WAF engine for Apache, IIS and Nginx. Versions up to and including 2.9.8 are vulnerable to denial of service in one special case in stable released versions: when the payload's content type is application/json, and there is at...

7.5CVSS7AI score0.00559EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/05/21 10:10 p.m.7 views

CVE-2005-4846

Format string vulnerability in Logger.cc for Spey 0.3.3 allows attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers in a syslog call...

4.3CVSS7.9AI score0.01935EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/21 10:7 p.m.7 views

CVE-2005-2516

Safari in Mac OS X 10.3.9 and 10.4.2, when rendering Rich Text Format RTF files, can directly access URLs without performing the normal security checks, which allows remote attackers to execute arbitrary commands...

7.5CVSS7.8AI score0.04767EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 9:51 p.m.8 views

CVE-2008-7228

Multiple format string vulnerabilities in WhiteDune before 0.29beta851 have unspecified impact and attack vectors, a different vulnerability than CVE-2008-0101...

10CVSS7.3AI score0.03716EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/21 9:25 p.m.8 views

CVE-2006-6750

Format string vulnerability in XM Easy Personal FTP Server 5.0.1 allows remote attackers to cause a denial of service application crash via format string specifiers in a long PORT command. NOTE: this issue might be related to CVE-2006-2226...

5CVSS6.8AI score0.03501EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/21 9:17 p.m.5 views

CVE-2007-5561

Format string vulnerability in the logging function in the Oracle OPMN daemon, as used on Oracle Enterprise Grid Console server 10.2.0.1, allows remote attackers to execute arbitrary code via format string specifiers in the URI in an HTTP request to port 6003, aka Oracle reference number 6296175...

10CVSS7.6AI score0.07721EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/21 9:16 p.m.7 views

CVE-2004-2160

Format string vulnerability in xmlelem.c for XMLStarlet Command Line XML Toolkit 0.9.3 may allow attackers to cause a denial of service or execute arbitrary code...

6.4CVSS7.7AI score0.01695EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 9:7 p.m.5 views

CVE-2003-1580

The Apache HTTP Server 2.0.44, when DNS resolution is enabled for client IP addresses, uses a logging format that does not identify whether a dotted quad represents an unresolved IP address, which allows remote attackers to spoof IP addresses via crafted DNS responses containing numerical top-lev...

4.3CVSS7AI score0.03709EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/21 9:6 p.m.13 views

CVE-2009-5125

Comodo Internet Security before 3.9.95478.509 allows remote attackers to bypass malware detection in an RAR archive via an unspecified manipulation of the archive file format...

4.3CVSS7AI score0.03581EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 9:6 p.m.15 views

CVE-2003-0784

Format string vulnerability in tsm for the bos.rte.security fileset on AIX 5.2 allows remote attackers to gain root privileges via login, and local users to gain privileges via login, su, or passwd, with a username that contains format string specifiers...

10CVSS7.2AI score0.02006EPSS
Exploits0References1
Rows per page
Query Builder