CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1145 matches found

Debian CVE•added 2019/04/08 10:20 p.m.•16 views

CVE-2019-11024

The loadpnm function in frompnm.c in libsixel.a in libsixel 1.8.2 has infinite recursion...

5.5CVSS5.5AI score0.00961EPSS

Exploits1

Positive Technologies•added 2019/04/08 12:0 a.m.•3 views

PT-2019-12144 · Libsixel +1 · Libsixel +1

Name of the Vulnerable Software and Affected Versions: libsixel version 1.8.2 Description: The issue is related to the load pnm function in frompnm.c in libsixel.a, which has infinite recursion. Recommendations: For libsixel version 1.8.2, at the moment, there is no information about a newer...

9.8CVSS5.6AI score0.01501EPSS

Exploits21References60

Positive Technologies•added 2019/04/08 12:0 a.m.•2 views

PT-2019-12146 · Poppler · Poppler

Name of the Vulnerable Software and Affected Versions: Poppler version 0.75.0 Description: The issue is related to infinite recursion in the FontInfoScanner::scanFonts function in FontInfo.cc, which leads to a call to the error function in Error.cc. Recommendations: For Poppler version 0.75.0, at...

6.5CVSS5.1AI score0.01815EPSS

Exploits1References11

Snyk•added 2019/04/07 3:54 p.m.•3 views

Sandbox Bypass

Overview vm2 is a sandbox that can run untrusted code with whitelisted Node's built-in modules. Affected versions of this package are vulnerable to Sandbox Bypass. It is possible to trigger a RangeError exception from the host rather than the "sandboxed" context by reaching the stack call limit...

8.3CVSS7.4AI score0.00974EPSS

Exploits1References2

OSV•added 2019/03/27 10:39 a.m.•4 views

SUSE-SU-2019:0776-1 Security update for w3m

This update for w3m fixes several issues. These security issues were fixed: - CVE-2018-6196: Prevent infinite recursion in HTMLlineproc0 caused by the feedtableblocktag function which did not prevent a negative indent value bsc1077559 - CVE-2018-6197: Prevent NULL pointer dereference in...

7.5CVSS5.9AI score0.04475EPSS

Exploits2References7

RedhatCVE•added 2019/03/01 6:50 a.m.•22 views

CVE-2019-9143

An issue was discovered in Exiv2 0.27. There is infinite recursion at Exiv2::Image::printTiffStructure in the file image.cpp. This can be triggered by a crafted file. It allows an attacker to cause Denial of Service Segmentation fault or possibly have unspecified other impact...

8.8CVSS6.2AI score0.02769EPSS

Exploits1References3

BDU FSTEC•added 2019/03/01 12:0 a.m.•5 views

The vulnerability of the Samba networking software’s LDAP server arises from an error in processing requests containing cyclic CNAME records. This error allows a hacker to trigger a service failure.

The vulnerability of the Samba networking software’s LDAP server is related to an error in processing requests that contain cyclic CNAME records. Exploiting this vulnerability can allow a malicious actor to trigger an infinite recursion on the server, resulting in service failure...

6.5CVSS6.8AI score0.05192EPSS

Exploits1References6Affected Software3

RedhatCVE•added 2019/02/26 1:19 p.m.•32 views

CVE-2019-9144

An issue was discovered in Exiv2 0.27. There is infinite recursion at BigTiffImage::printIFD in the file bigtiffimage.cpp. This can be triggered by a crafted file. It allows an attacker to cause Denial of Service Segmentation fault or possibly have unspecified other impact...

8.8CVSS5.8AI score0.02783EPSS

Exploits1References3

CNVD•added 2019/02/26 12:0 a.m.•3 views

Exiv2 image.cpp File Denial of Service Vulnerability

Exiv2 is a set of C++ libraries and command line applications for managing image metadata by Andreas Huggel programmers. The product provides for reading and writing image metadata in a variety of EXIF, IPTC and XMP formats. A denial of service vulnerability exists in the...

8.8CVSS6.9AI score0.02769EPSS

Exploits1References1

CNVD•added 2019/02/26 12:0 a.m.•5 views

Exiv2 bigtiffimage.cpp File Denial of Service Vulnerability

8.8CVSS6.9AI score0.02783EPSS

Exploits1References1