Lucene search
+L

636 matches found

OSV
OSV
added 2023/11/03 4:15 a.m.6 views

UBUNTU-CVE-2023-31102

Ppmd7.c in 7-Zip before 23.00 allows an integer underflow and invalid read operation via a crafted 7Z archive...

7.8CVSS5.8AI score0.7104EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/10/21 12:0 a.m.60 views

Ubuntu 16.04 LTS / 18.04 LTS : PHP vulnerabilities (USN-3922-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3922-1 advisory. It was discovered that PHP incorrectly handled certain inputs. An attacker could possibly use this issue to expose sensitive information...

9.8CVSS7.2AI score0.09395EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2023/10/21 12:0 a.m.23 views

Ubuntu 18.04 LTS : libmysofa vulnerabilities (USN-4473-1)

The remote Ubuntu 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4473-1 advisory. It was discovered that libmysofa incorrectly handled certain input files. An attacker could possibly use this issue to cause a denial of service or other...

9.8CVSS7.1AI score0.0153EPSS
Exploits0References6
Huntr
Huntr
added 2023/09/02 2:33 p.m.35 views

segmentation fault in function f_fullcommand

Description segmentation fault in function ffullcommand at exdocmd.c:4101 Proof of Concept valgrind ./vim -u NONE -i NONE -n -m -X -Z -e -s -S ./pocseg -c :qa! ==14662== Memcheck, a memory error detector ==14662== Copyright C 2002-2017, and GNU GPL'd, by Julian Seward et al. ==14662== Using...

4.4CVSS6.9AI score0.00573EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2023/08/29 5:15 p.m.4 views

CVE-2023-39616

AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read memory access via the component assignframebufferp in av1/common/av1commonint.h...

7.5CVSS5.7AI score0.00617EPSS
Exploits0References2
OSV
OSV
added 2023/08/29 5:15 p.m.5 views

DEBIAN-CVE-2023-39616

AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read memory access via the component assignframebufferp in av1/common/av1commonint.h...

7.5CVSS7.2AI score0.00617EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2023/08/29 5:15 p.m.16 views

CVE-2023-39616

AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read memory access via the component assignframebufferp in av1/common/av1commonint.h...

7.5CVSS7AI score0.00617EPSS
Exploits0References2
OSV
OSV
added 2023/08/29 5:15 p.m.11 views

UBUNTU-CVE-2023-39616

AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read memory access via the component assignframebufferp in av1/common/av1commonint.h...

7.5CVSS7.1AI score0.00617EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/08/29 2:9 a.m.3 views

SUSE CVE-2023-31102

Ppmd7.c in 7-Zip before 23.00 allows an integer underflow and invalid read operation via a crafted 7Z archive...

7.8CVSS6.8AI score0.7104EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/08/29 12:0 a.m.21 views

CVE-2023-39616

AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read memory access via the component assignframebufferp in av1/common/av1commonint.h...

7.2AI score0.00617EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2023/06/21 8:15 p.m.32 views

CVE-2023-25435

libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesShifted8bits at /libtiff/tools/tiffcrop.c:3753...

5.5CVSS6.8AI score0.00345EPSS
Exploits1References1
F5 Networks
F5 Networks
added 2023/02/21 6:54 p.m.395 views

K25544541: PHP vulnerabilities CVE-2019-9638, CVE-2019-9639, CVE-2019-9640, and CVE-2019-9641

Security Advisory Description CVE-2019-9638 An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exifprocessIFDinMAKERNOTE because of mishandling the makernote-offset relationship to valuelen...

9.8CVSS7.2AI score0.09395EPSS
Exploits5
SUSE CVE
SUSE CVE
added 2023/02/15 6:7 a.m.3 views

SUSE CVE-2008-3933

Wireshark formerly Ethereal 0.10.14 through 1.0.2 allows attackers to cause a denial of service crash via a packet with crafted zlib-compressed data that triggers an invalid read in the tvbuncompress function...

3.3CVSS6.7AI score0.00623EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:51 a.m.5 views

SUSE CVE-2011-3057

Google V8, as used in Google Chrome before 17.0.963.83, allows remote attackers to cause a denial of service via vectors that trigger an invalid read operation...

4.3CVSS8.8AI score0.01739EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:24 a.m.4 views

SUSE CVE-2014-9771

Integer overflow in imlib2 before 1.4.7 allows remote attackers to cause a denial of service memory consumption or application crash via a crafted image, which triggers an invalid read operation...

7.5CVSS7AI score0.02709EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:11 a.m.2 views

SUSE CVE-2015-8730

epan/dissectors/packet-nbap.c in the NBAP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the number of items, which allows remote attackers to cause a denial of service invalid read operation and application crash via a crafted packet...

5.5CVSS6.7AI score0.04509EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:10 a.m.4 views

SUSE CVE-2015-9274

HarfBuzz before 1.0.4 allows remote attackers to cause a denial of service invalid read of two bytes and application crash because of GPOS and GSUB table mishandling, related to hb-ot-layout-gpos-table.hh, hb-ot-layout-gsub-table.hh, and hb-ot-layout-gsubgpos-private.hh...

6.5CVSS6.8AI score0.01542EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:7 a.m.2 views

SUSE CVE-2016-1654

The media subsystem in Google Chrome before 50.0.2661.75 does not initialize an unspecified data structure, which allows remote attackers to cause a denial of service invalid read operation via unknown vectors...

6.5CVSS8.8AI score0.01201EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 4:49 a.m.5 views

SUSE CVE-2017-6309

An issue was discovered in tnef before 1.4.13. Two type confusions have been identified in the parsefile function. These might lead to invalid read and write operations, controlled by an attacker...

7.8CVSS7.1AI score0.01411EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:48 a.m.4 views

SUSE CVE-2017-7302

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has a swapstdrelocout function in bfd/aoutx.h that is vulnerable to an invalid read of size 4 because of missing checks for relocs that could not be recognised. This vulnerability causes Binutils utilities lik...

7.5CVSS6.7AI score0.02376EPSS
Exploits0References9
Rows per page
Query Builder