Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

525 matches found

UbuntuCve
UbuntuCveadded 2018/09/17 12:0 a.m.34 views

CVE-2017-15705

A denial of service vulnerability was identified that exists in Apache SpamAssassin before 3.4.2. The vulnerability arises with certain unclosed tags in emails that cause markup to be handled incorrectly leading to scan timeouts. In Apache SpamAssassin, using HTML::Parser, we setup an object and...

5.3CVSS6.6AI score0.07879EPSS
Exploits0References4
OSV
OSVadded 2018/09/17 12:0 a.m.3 views

UBUNTU-CVE-2017-15705

A denial of service vulnerability was identified that exists in Apache SpamAssassin before 3.4.2. The vulnerability arises with certain unclosed tags in emails that cause markup to be handled incorrectly leading to scan timeouts. In Apache SpamAssassin, using HTML::Parser, we setup an object and...

5.3CVSS6.6AI score0.07879EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2018/09/16 12:0 a.m.3 views

PT-2018-13880 · Go · Html Package

Name of the Vulnerable Software and Affected Versions: html package aka x/net/html versions prior to 2018-07-13 Description: The issue is related to the HTML parser mishandling "in frameset" insertion mode. This can lead to a panic when parsing malformed HTML that contains tags, potentially...

7.5CVSS5.9AI score0.02774EPSS
Exploits1References18
FreeBSD
FreeBSDadded 2018/09/16 12:0 a.m.507 views

spamassassin -- multiple vulnerabilities

the Apache Spamassassin project reports: In Apache SpamAssassin, using HTML::Parser, we setup an object and hook into the begin and end tag event handlers In both cases, the "open" event is immediately followed by a "close" event - even if the tag does not close in the HTML being parsed. Because ...

7.5AI score
Exploits0References1
RedhatCVE
RedhatCVEadded 2018/05/30 9:5 a.m.33 views

CVE-2018-6145

Insufficient data validation in HTML parser in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to bypass same origin policy via a crafted HTML page...

6.1CVSS5.1AI score0.00593EPSS
Exploits0References2
Mageia
Mageiaadded 2017/12/16 11:20 p.m.37 views

Updated lynx package fixes security vulnerability

Lynx before 2.8.9dev.16 is vulnerable to a use after free in the HTML parser resulting in memory disclosure, because HTMLputstring can append a chunk onto itself. CVE-2017-1000211...

5.3CVSS1.8AI score0.01705EPSS
Exploits0References2
OSV
OSVadded 2017/12/16 11:20 p.m.4 views

MGASA-2017-0451 Updated lynx package fixes security vulnerability

Lynx before 2.8.9dev.16 is vulnerable to a use after free in the HTML parser resulting in memory disclosure, because HTMLputstring can append a chunk onto itself. CVE-2017-1000211...

5.3CVSS5.3AI score0.01705EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2017/12/06 6:27 a.m.28 views

CVE-2017-1000211

Lynx before 2.8.9dev.16 is vulnerable to a use after free in the HTML parser resulting in memory disclosure, because HTMLputstring can append a chunk onto itself...

5.3CVSS1.1AI score0.01705EPSS
Exploits0References1
CNVD
CNVDadded 2017/11/24 12:0 a.m.4 views

Lynx 'HTML.c:HTML_put_string()' memory misreference vulnerability

Lynx is a text-only web browser. html parser is one of the HTML parsers. A memory misreference vulnerability exists in Lynx 'HTML.c:HTMLputstring'. An attacker could exploit this vulnerability to cause a memory leak...

5.3CVSS6.7AI score0.01705EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2017/11/20 12:0 a.m.25 views

Debian DLA-1175-1 : lynx-cur security update

It was discovered that there was a use-after-free vulnerability in the HTML parser of lynx-cur, a terminal-based web browser. This could have led to memory/information disclosure. For Debian 7 'Wheezy', this issue has been fixed in lynx-cur version 2.8.8dev.12-2+deb7u2. We recommend that you...

5.3CVSS6AI score0.01705EPSS
Exploits0References3
Debian
Debianadded 2017/11/18 1:47 a.m.30 views

[SECURITY] [DLA 1175-1] lynx-cur security update

Package : lynx-cur Version : 2.8.8dev.12-2+deb7u2 CVE ID : CVE-2017-1000211 It was discovered that there was a use-after-free vulnerability in the HTML parser of lynx-cur, a terminal-based web browser. This could have led to memory/information disclosure. For Debian 7 "Wheezy", this issue has bee...

5.3CVSS5.5AI score0.01705EPSS
Exploits0
UbuntuCve
UbuntuCveadded 2017/11/17 3:29 p.m.26 views

CVE-2017-1000211

Lynx before 2.8.9dev.16 is vulnerable to a use after free in the HTML parser resulting in memory disclosure, because HTMLputstring can append a chunk onto itself...

5.3CVSS6.4AI score0.01705EPSS
Exploits0References3
Prion
Prionadded 2017/11/17 3:29 p.m.27 views

Design/Logic Flaw

Lynx before 2.8.9dev.16 is vulnerable to a use after free in the HTML parser resulting in memory disclosure, because HTMLputstring can append a chunk onto itself...

5CVSS5.5AI score0.01705EPSS
Exploits0References4Affected Software1
OSV
OSVadded 2017/11/17 3:29 p.m.18 views

CVE-2017-1000211

Lynx before 2.8.9dev.16 is vulnerable to a use after free in the HTML parser resulting in memory disclosure, because HTMLputstring can append a chunk onto itself...

5.3CVSS5.3AI score
Exploits0References4
OSV
OSVadded 2017/11/17 3:29 p.m.1 views

DEBIAN-CVE-2017-1000211

Lynx before 2.8.9dev.16 is vulnerable to a use after free in the HTML parser resulting in memory disclosure, because HTMLputstring can append a chunk onto itself...

5.3CVSS7.1AI score0.01705EPSS
Exploits0References1
OSV
OSVadded 2017/11/17 3:29 p.m.1 views

UBUNTU-CVE-2017-1000211

Lynx before 2.8.9dev.16 is vulnerable to a use after free in the HTML parser resulting in memory disclosure, because HTMLputstring can append a chunk onto itself...

5.3CVSS6.4AI score0.01705EPSS
Exploits0References4
NVD
NVDadded 2017/11/17 3:29 p.m.16 views

CVE-2017-1000211

Lynx before 2.8.9dev.16 is vulnerable to a use after free in the HTML parser resulting in memory disclosure, because HTMLputstring can append a chunk onto itself...

5.3CVSS5.2AI score0.01705EPSS
Exploits0References4
Cvelist
Cvelistadded 2017/11/17 3:0 p.m.25 views

CVE-2017-1000211

Lynx before 2.8.9dev.16 is vulnerable to a use after free in the HTML parser resulting in memory disclosure, because HTMLputstring can append a chunk onto itself...

5.5AI score0.01705EPSS
Exploits0References4
CVE
CVEadded 2017/11/17 3:0 p.m.86 views

CVE-2017-1000211

CVE-2017-1000211 affects Lynx up to 2.8.9dev.16, where a use-after-free in the HTML parser (HTML_put_string) can lead to memory disclosure. The issue is triggered by the parser potentially appending a chunk to itself, enabling memory disclosure on affected builds. Reported in multiple advisories ...

5.3CVSS5.4AI score0.01705EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVEadded 2017/11/17 3:0 p.m.20 views

CVE-2017-1000211

Lynx before 2.8.9dev.16 is vulnerable to a use after free in the HTML parser resulting in memory disclosure, because HTMLputstring can append a chunk onto itself...

5.3CVSS5.7AI score0.01705EPSS
Exploits0
Rows per page
Query Builder