Lucene search
K

20 matches found

EUVD
EUVD
added 2026/01/12 5:26 p.m.6 views

EUVD-2025-206281

Espressif ESP-IDF USB Host HID Human Interface Device Driver allows access to HID devices. Prior to 1.1.0, calls to hidhostdeviceclose can free the same usbtransfert twice. The USB event callback and user code share the hidifacet state without locking, so both can tear down a READY interface...

6.4CVSS6.5AI score0.00139EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2015-3353

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.07697EPSS
Exploits1References18
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.29 views

CBL Mariner 2.0 Security Update: grub2 (CVE-2023-4692)

The version of grub2 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-4692 advisory. - An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue May allow an attacker to...

7.8CVSS6.7AI score0.00536EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/03/21 12:0 a.m.45 views

EulerOS Virtualization 2.11.1 : grub2 (EulerOS-SA-2024-1399)

According to the versions of the grub2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially...

7.8CVSS6.6AI score0.00536EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2024/03/14 12:0 a.m.49 views

EulerOS Virtualization 2.10.1 : grub2 (EulerOS-SA-2024-1358)

According to the versions of the grub2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially...

7.8CVSS6.6AI score0.00536EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2024/02/08 12:0 a.m.34 views

EulerOS 2.0 SP5 : grub2 (EulerOS-SA-2024-1141)

According to the versions of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially crafted NTFS...

7.8CVSS6.6AI score0.00536EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.26 views

EulerOS 2.0 SP11 : grub2 (EulerOS-SA-2023-3272)

According to the versions of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially crafted NTFS...

7.8CVSS6.6AI score0.00536EPSS
Exploits2References3
Amazon
Amazon
added 2023/11/03 12:0 a.m.6 views

Low: grub2

Issue Overview: No CVE associated with this advisory Affected Packages: grub2 Issue Correction: Run dnf update grub2 --releasever 2023.2.20231030 or dnf update --advisory ALAS2023-2023-408 --releasever 2023.2.20231030 to update your system. More information on how to update your system can be fou...

7.8CVSS6.5AI score0.00536EPSS
Exploits2
NVD
NVD
added 2023/10/25 6:17 p.m.29 views

CVE-2023-4692

An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially crafted NTFS filesystem image, leading to grub's heap metadata corruption. In some circumstances, the attack may also corrupt the UEFI firmware heap metadata. As a...

7.8CVSS7.9AI score0.00536EPSS
Exploits1References13
SUSE CVE
SUSE CVE
added 2023/10/05 1:53 a.m.3 views

SUSE CVE-2023-4692

An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially crafted NTFS filesystem image, leading to grub's heap metadata corruption. In some circumstances, the attack may also corrupt the UEFI firmware heap metadata. As a...

7.8CVSS7.7AI score0.00536EPSS
Exploits1References20
RedhatCVE
RedhatCVE
added 2023/10/03 6:24 p.m.55 views

CVE-2023-4692

An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially crafted NTFS filesystem image, leading to grub's heap metadata corruption. In some circumstances, the attack may also corrupt the UEFI firmware heap metadata. As a...

7.5CVSS6.4AI score0.00536EPSS
Exploits2References6
F5 Networks
F5 Networks
added 2023/02/21 7:53 p.m.58 views

K07052904: PHP vulnerability CVE-2015-3307

Security Advisory Description The pharparsemetadata function in ext/phar/phar.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of service heap metadata corruption or possibly have unspecified other impact via a crafted tar archive...

7.5CVSS7.4AI score0.07697EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2023/02/15 5:19 a.m.5 views

SUSE CVE-2015-3307

The pharparsemetadata function in ext/phar/phar.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of service heap metadata corruption or possibly have unspecified other impact via a crafted tar archive...

7.5CVSS7.6AI score0.07697EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/06/21 12:0 a.m.2 views

Nvidia NVIDIA MB2 缓冲区错误漏洞

Nvidia NVIDIA MB2 is a component of Nvidia Corporation, USA. A security vulnerability exists in NVIDIA MB2 that stems from a boot loader containing a vulnerability in NVIDIA MB2, where a potential heap overflow could result in heap metadata corruption. An attacker can exploit the vulnerability to...

6.7CVSS7.4AI score0.00212EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/06/21 12:0 a.m.3 views

Nvidia NVIDIA MB2 缓冲区错误漏洞

Nvidia NVIDIA MB2 is a component of Nvidia Corporation, USA. A security vulnerability exists in NVIDIA MB2 that stems from a boot loader containing a vulnerability in NVIDIA MB2, where a potential heap overflow could result in heap metadata corruption. An attacker can exploit the vulnerability to...

7.8CVSS8.1AI score0.00249EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/06/21 12:0 a.m.4 views

Nvidia NVIDIA MB2 缓冲区错误漏洞

Nvidia NVIDIA MB2 is a component of Nvidia Corporation, USA. NVIDIA MB2 suffers from a buffer error vulnerability that stems from the boot loader containing a vulnerability in NVIDIA MB2, where a potential heap overflow could result in heap metadata corruption. An attacker could exploit the...

2.3CVSS6AI score0.00204EPSS
Exploits0References2
NVD
NVD
added 2018/04/24 7:29 p.m.23 views

CVE-2016-8728

An exploitable heap out of bounds write vulnerability exists in the Fitz graphical library part of the MuPDF renderer. A specially crafted PDF file can cause a out of bounds write resulting in heap metadata and sensitive process memory corruption leading to potential code execution. Victim needs ...

8.6CVSS8.2AI score0.01936EPSS
Exploits1References3
Cvelist
Cvelist
added 2018/04/24 7:0 p.m.27 views

CVE-2016-8728

An exploitable heap out of bounds write vulnerability exists in the Fitz graphical library part of the MuPDF renderer. A specially crafted PDF file can cause a out of bounds write resulting in heap metadata and sensitive process memory corruption leading to potential code execution. Victim needs ...

8.6CVSS7.9AI score0.01936EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2015/06/09 6:59 p.m.46 views

CVE-2015-3307

The pharparsemetadata function in ext/phar/phar.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of service heap metadata corruption or possibly have unspecified other impact via a crafted tar archive...

7.5CVSS6.8AI score0.07697EPSS
Exploits1References2
Cvelist
Cvelist
added 2015/06/09 6:0 p.m.38 views

CVE-2015-3307

The pharparsemetadata function in ext/phar/phar.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of service heap metadata corruption or possibly have unspecified other impact via a crafted tar archive...

8.9AI score0.07697EPSS
Exploits1References11
Rows per page
Query Builder