Lucene search
K

23182 matches found

SUSE CVE
SUSE CVE
added 2024/12/13 12:30 a.m.3 views

SUSE CVE-2024-47600

GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been detected in the formatchannelmask function in gst-discoverer.c. The vulnerability affects the local array position, which is defined with a fixed size of 64 elements. However, the...

3.3CVSS6.7AI score0.01101EPSS
Exploits0References11
BDU FSTEC
BDU FSTEC
added 2024/12/13 12:0 a.m.6 views

The vulnerability of the SAP NetWeaver AS for Java software platform, related to the leakage of information about files and directories, allows attackers to circumvent existing security restrictions.

The vulnerability of the SAP NetWeaver AS for Java software platform is related to the leakage of information about files and directories. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions by using specially created PDF files...

6.8CVSS5.4AI score0.00514EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/12/13 12:0 a.m.10 views

CBL Mariner 2.0 Security Update: kernel (CVE-2024-49895)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49895 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix index out of bounds...

7.8CVSS6.4AI score0.00272EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2024/12/12 7:22 p.m.8 views

org.http4k:http4k (>=4.3.3.0 <=4.3.4.1) potentially affected by CVE-2024-55875 via org.http4k:http4k-format-xml (>=4.3.3.0 <=4.3.4.1)

org.http4k:http4k-format-xml MAVEN version =4.3.3.0, =4.3.3.0, =4.3.4.1 Source cves: CVE-2024-55875 Source advisory: OSV:GHSA-7MJ5-HJJJ-8RGW...

9.8CVSS5.8AI score0.01902EPSS
Exploits0
OSV
OSV
added 2024/12/12 2:3 a.m.8 views

AZL-62396 CVE-2024-47600 affecting package gstreamer1 1.20.0-2

GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been detected in the formatchannelmask function in gst-discoverer.c. The vulnerability affects the local array position, which is defined with a fixed size of 64 elements. However, the...

9.1CVSS6.7AI score0.01101EPSS
Exploits0References1
OSV
OSV
added 2024/12/12 2:3 a.m.6 views

AZL-54359 CVE-2024-47600 affecting package gstreamer1-plugins-base 1.20.0-3

GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been detected in the formatchannelmask function in gst-discoverer.c. The vulnerability affects the local array position, which is defined with a fixed size of 64 elements. However, the...

9.1CVSS6.7AI score0.01101EPSS
Exploits0References1
OSV
OSV
added 2024/12/12 2:3 a.m.4 views

ALPINE-CVE-2024-47600

GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been detected in the formatchannelmask function in gst-discoverer.c. The vulnerability affects the local array position, which is defined with a fixed size of 64 elements. However, the...

9.1CVSS6.7AI score0.01101EPSS
Exploits0References1
OSV
OSV
added 2024/12/12 2:3 a.m.7 views

AZL-54294 CVE-2024-47600 affecting package gstreamer1-plugins-base 1.20.0-3

GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been detected in the formatchannelmask function in gst-discoverer.c. The vulnerability affects the local array position, which is defined with a fixed size of 64 elements. However, the...

9.1CVSS6.7AI score0.01101EPSS
Exploits0References1
Amazon
Amazon
added 2024/12/12 12:0 a.m.4 views

Important: ghostscript

Issue Overview: PS interpreter - check the type of the Pattern Implementation NOTE: https://bugs.ghostscript.com/showbug.cgi?id=707991 NOTE: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=f49812186baa7d1362880673408a6fbe8719b4f8 NOTE:...

8.4CVSS8.1AI score0.00388EPSS
Exploits0
OSV
OSV
added 2024/12/12 12:0 a.m.4 views

UBUNTU-CVE-2024-47600

GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been detected in the formatchannelmask function in gst-discoverer.c. The vulnerability affects the local array position, which is defined with a fixed size of 64 elements. However, the...

9.1CVSS7.2AI score0.01101EPSS
Exploits0References6
Amazon
Amazon
added 2024/12/12 12:0 a.m.8 views

Important: ghostscript

Issue Overview: PS interpreter - check the type of the Pattern Implementation NOTE: https://bugs.ghostscript.com/showbug.cgi?id=707991 NOTE: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=f49812186baa7d1362880673408a6fbe8719b4f8 NOTE:...

8.4CVSS7.4AI score0.00388EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/12/12 12:0 a.m.4 views

CVE-2022-48063

...

5.5CVSS6AI score0.00483EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2024/12/11 4:20 p.m.5 views

php: Password_verify() always return true with some hash

A vulnerability was found in PHP. This security flaw occurs when malformatted BCrypt hashes that include a $ within their salt part trigger a buffer overread and may erroneously validate any password as valid...

8.1CVSS7.4AI score0.00944EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2024/12/11 4:19 p.m.2 views

kernel: s390/dasd: fix error recovery leading to data corruption on ESE devices

In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix error recovery leading to data corruption on ESE devices Extent Space Efficient ESE or thin provisioned volumes need to be formatted on demand during usual IO processing. The dasdeseneedsformat function checks for...

7.8CVSS6.5AI score0.00243EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/12/11 12:0 a.m.2 views

GStreamer 缓冲区错误漏洞

GStreamer is an open source set of frameworks for processing streaming media from GStreamer. GStreamer suffers from a buffer error vulnerability that stems from the detection of an out-of-bounds read vulnerability in the formatchannelmask function in gst-discoverer.c. The vulnerability is caused ...

9.1CVSS7AI score0.01101EPSS
Exploits0References5
OSV
OSV
added 2024/12/10 5:15 p.m.3 views

UBUNTU-CVE-2024-46657

Artifex Software mupdf v1.24.9 was discovered to contain a segmentation fault via the component /tools/pdfextract.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted PDF file...

5.5CVSS5.8AI score0.00314EPSS
Exploits1References6
Patchstack
Patchstack
added 2024/12/10 1:28 p.m.4 views

WordPress ImageRecycle pdf & image compression plugin <= 3.1.16 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by thiennv Patchstack Alliance in WordPress Plugin ImageRecycle pdf & image compression versions = 3.1.16...

7.1CVSS6.1AI score0.00417EPSS
Exploits0Affected Software1
Rosalinux
Rosalinux
added 2024/12/10 11:51 a.m.14 views

Advisory ROSA-SA-2024-2541

software: tcl 8.6.13 WASP: ROSA-CHROME packageevrstring: tcl-8.6.13-1 CVE-ID: CVE-2021-35331 BDU-ID: 2022-01774 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the nmakehlp.c component of the Tcl programming language is related to insufficient format string handling. Exploitation of the...

7.8CVSS6.9AI score0.01639EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2024/12/10 3:49 a.m.4 views

SUSE CVE-2024-53589

GNU objdump 2.43 is vulnerable to Buffer Overflow in the BFD Binary File Descriptor library's handling of tekhex format files...

8.4CVSS7.1AI score0.00268EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/12/10 12:0 a.m.8 views

GeoServer < 2.23.4 Multiples Vulnerabilities

According to its banner, the version of GeoServer running on the remote host is prior to 2.23.5 or 2.24.0 prior to 2.24.2. It is, therefore, affected by Multiples Vulnerabilities : - An Arbitrary file upload vulnerability in REST Coverage Store API - A Stored Cross-Site Scripting XSS vulnerabilit...

7.2CVSS6AI score0.01867EPSS
Exploits1References12
Rows per page
Query Builder