Lucene search
K

185 matches found

CNNVD
CNNVD
added 2022/04/07 12:0 a.m.4 views

SWHKD 资源管理错误漏洞

SWHKD is a display protocol-independent hotkey daemon made in Rust. SWHKD has a security vulnerability that stems from insecure parsing and can be exploited by an attacker to cause a simple denial of service memory exhaustion when attempting to parse large or unlimited files such as blocks or...

5.3CVSS5.6AI score0.00822EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/04/06 12:0 a.m.5 views

PT-2022-3642 · Swhkd · Swhkd

Name of the Vulnerable Software and Affected Versions: SWHKD version 1.1.5 Description: The issue is related to unsafe parsing via the -c option, which can lead to an information leak or a denial of service memory exhaustion when attempting to parse large or infinite files, such as block or...

5.3CVSS5.1AI score0.00822EPSS
Exploits0References12
OpenVAS
OpenVAS
added 2022/03/23 12:0 a.m.19 views

openSUSE: Security Advisory for tcpdump (openSUSE-SU-2022:0774-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS6.4AI score0.00626EPSS
Exploits0References2
OSV
OSV
added 2022/03/09 9:53 a.m.4 views

SUSE-SU-2022:0774-1 Security update for tcpdump

This update for tcpdump fixes the following issues: - CVE-2018-16301: Fixed segfault when handling large files bsc1195825...

7.8CVSS5.6AI score0.00626EPSS
Exploits0References3
OSV
OSV
added 2022/02/18 9:59 a.m.5 views

SUSE-SU-2022:14890-1 Security update for tcpdump

This update for tcpdump fixes the following issues: - CVE-2018-16301: Fixed segfault when handling large files bsc1195825...

7.8CVSS5.6AI score0.00626EPSS
Exploits0References3
OSV
OSV
added 2022/02/18 9:58 a.m.6 views

SUSE-SU-2022:0505-1 Security update for tcpdump

This update for tcpdump fixes the following issues: - CVE-2018-16301: Fixed segfault when handling large files bsc1195825...

7.8CVSS5.6AI score0.00626EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2021/11/09 5:31 p.m.3 views

libfastjson: integer overflow and out-of-bounds write via a large JSON file

A flaw was found in json-c. In printbufmemappend, certain crafted values can overflow the memory allowing an attacker to write past the memory boundary. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

7.8CVSS6.4AI score0.01888EPSS
Exploits1References4
Veeam
Veeam
added 2021/02/25 12:0 a.m.22 views

How to Attach a File Larger Than 5GB to a Support Case

Purpose This article documents how to attach an individual file to a case larger than the My Account portal's 5GB per file limit. Solution Option 1: Use SFTP Files larger than 5GB may be uploaded to a support case via SFTP. More information on SFTP can be found here: https://www.veeam.com/kb1661...

6.7AI score
Exploits0
OSV
OSV
added 2021/01/15 6:15 p.m.31 views

CVE-2021-21237

Git LFS is a command line extension for managing large files with Git. On Windows, if Git LFS operates on a malicious repository with a git.bat or git.exe file in the current directory, that program would be executed, permitting the attacker to execute arbitrary code. This does not affect Unix...

7.8CVSS7.2AI score0.82715EPSS
Exploits14References4
Prion
Prion
added 2021/01/15 6:15 p.m.19 views

Directory traversal

Git LFS is a command line extension for managing large files with Git. On Windows, if Git LFS operates on a malicious repository with a git.bat or git.exe file in the current directory, that program would be executed, permitting the attacker to execute arbitrary code. This does not affect Unix...

4.6CVSS8.8AI score0.82715EPSS
Exploits14References4Affected Software1
Debian CVE
Debian CVE
added 2021/01/15 5:36 p.m.29 views

CVE-2021-21237

Git LFS is a command line extension for managing large files with Git. On Windows, if Git LFS operates on a malicious repository with a git.bat or git.exe file in the current directory, that program would be executed, permitting the attacker to execute arbitrary code. This does not affect Unix...

7.8CVSS9AI score0.00436EPSS
Exploits0
Kitploit
Kitploit
added 2020/11/17 8:30 p.m.83 views

Rehex - Reverse Engineers' Hex Editor

A cross-platform Windows, Linux, Mac hex editor for reverse engineering, and everything else. Features Large 1TB+ file support Decoding of integer/floating point value types Disassembly of machine code Highlighting and annotation of ranges of bytes Side by side comparision of selections...

7.2AI score
Exploits0References4
OpenVAS
OpenVAS
added 2020/09/23 12:0 a.m.20 views

Liferay Portal < 7.3.3 DoS Vulnerability

Liferay Portal is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.5CVSS6.4AI score0.02164EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2020/07/29 6:34 p.m.4 views

grub2: Integer overflow in initrd size handling

Integer overflows were discovered in the functions grubcmdinitrd and grubinitrdinit in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu the functionality is not included in GRUB2 upstream, leading to a heap-based buffer overflow. These could be triggered by an extremely...

6.4CVSS7.9AI score0.01588EPSS
Exploits1References4
OSV
OSV
added 2020/07/29 5:0 p.m.2 views

UBUNTU-CVE-2020-15707

Integer overflows were discovered in the functions grubcmdinitrd and grubinitrdinit in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu the functionality is not included in GRUB2 upstream, leading to a heap-based buffer overflow. These could be triggered by an extremely...

6.4CVSS7.5AI score0.01588EPSS
Exploits1References7
Kitploit
Kitploit
added 2020/07/07 12:30 p.m.80 views

Airshare - Cross-platform Content Sharing In A Local Network

Airshare is a Python-based CLI tool and module that lets you transfer data between two machines in a local network, P2P, using Multicast-DNS. It also opens an HTTP gateway for other non-CLI external interfaces. It works completely offline! Built with aiohttp and zeroconf. Checkout the demo...

7.3AI score
Exploits0References3
Fedora
Fedora
added 2020/07/04 1:14 a.m.15 views

[SECURITY] Fedora 32 Update: filezilla-3.48.1-1.fc32

FileZilla is a FTP, FTPS and SFTP client for Linux with a lot of features. - Supports FTP, FTP over SSL/TLS FTPS and SSH File Transfer Protocol SFT P - Cross-platform - Available in many languages - Supports resume and transfer of large files greater than 4GB - Easy to use Site Manager and transf...

0.7AI score
Exploits0
OSV
OSV
added 2020/05/09 6:15 p.m.2 views

DEBIAN-CVE-2020-12762

json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend...

7.8CVSS6.8AI score0.01888EPSS
Exploits1References1
Veracode
Veracode
added 2020/04/10 12:34 a.m.39 views

Denial Of Service (DoS)

httpd is vulnerable to denial of service. A denial of service flaw was found in the Apache moddeflate module. This module continued to compress large files until compression was complete, even if the network connection that requested the content was closed before compression completed. This would...

7.1CVSS1.5AI score0.17111EPSS
Exploits3References78Affected Software1
Fedora
Fedora
added 2020/02/07 1:51 a.m.78 views

[SECURITY] Fedora 31 Update: xar-1.8.0.417.1-1.fc31

The XAR project aims to provide an easily extensible archive format. Import ant design decisions include an easily extensible XML table of contents for ran dom access to archived files, storing the toc at the beginning of the archive to allow for efficient handling of streamed archives, the abili...

10CVSS7.3AI score0.03367EPSS
Exploits0
Rows per page
Query Builder