Lucene search
K

14 matches found

Snyk
Snyk
added 2026/06/10 11:12 p.m.8 views

Out-of-bounds Write

Overview Magick.NET-Q16-HDRI-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package a...

6.8CVSS5.5AI score0.00103EPSS
Exploits0References2
Snyk
Snyk
added 2026/06/10 11:12 p.m.5 views

Out-of-bounds Write

Overview Magick.NET-Q16-HDRI-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this...

6.8CVSS5.5AI score0.00103EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/10 12:0 a.m.9 views

Net-CIDR-Lite 安全漏洞

Net-CIDR-Lite is a Perl module for handling CIDR addresses from the individual developers at Stig. A security vulnerability exists in Net-CIDR-Lite versions prior to 0.24 that stems from not properly handling extra zero characters in CIDR mask values, which could lead to IP ACL bypass...

6.5CVSS5.8AI score0.003EPSS
Exploits0References1
OSV
OSV
added 2026/05/04 1:12 p.m.9 views

JLSEC-2026-423 curl's websocket code did not update the 32 bit mask pattern for each new outgoing frame as the...

curl's websocket code did not update the 32 bit mask pattern for each new outgoing frame as the specification says. Instead it used a fixed mask that persisted and was used throughout the entire connection. A predictable mask pattern allows for a malicious server to induce traffic between the two...

5.3CVSS6.9AI score0.00466EPSS
Exploits0References8
OSV
OSV
added 2026/01/23 3:33 p.m.4 views

SUSE-SU-2026:0280-1 Security update for openvswitch

This update for openvswitch fixes the following issues: Update to v3.1.7: - CVE-2023-3966: openvswitch, openvswitch3: Invalid memory access in Geneve with HW offload bsc1219465. - CVE-2024-2182: openvswitch: ov: insufficient validation of incoming BFD packets may lead to denial of service...

8.8CVSS6.7AI score0.01216EPSS
Exploits1References13
OSV
OSV
added 2025/12/04 4:16 p.m.3 views

UBUNTU-CVE-2025-40254

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: remove never-working support for setting nsh fields The validation of the setnsh... action is completely wrong. It runs through the nshkeyputfromnlattr function that is the same function that validates NSH keys...

5.9AI score0.00207EPSS
Exploits0References34
Tenable Nessus
Tenable Nessus
added 2025/10/08 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2025-39910

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mm/vmalloc, mm/kasan: respect gfp mask in kasanpopulatevmalloc kasanpopulatevmalloc and its helpers ignore the caller's gfpmask and always allocate memory usin...

5.5CVSS6.2AI score0.00093EPSS
Exploits0References4
OSV
OSV
added 2023/11/17 7:5 a.m.7 views

SUSE-SU-2023:4476-1 Security update for xen

This update for xen fixes the following issues: - CVE-2023-20588: AMD CPU transitional execution leak via division by zero XSA-439 bsc1215474. - CVE-2023-34322: top-level shadow reference dropped too early for 64-bit PV guests XSA-438 bsc1215145. - CVE-2023-34325: Multiple vulnerabilities in...

7.8CVSS6.7AI score0.12405EPSS
Exploits0References17
OSV
OSV
added 2023/10/12 7:49 a.m.4 views

SUSE-SU-2023:4054-1 Security update for xen

This update for xen fixes the following issues: - CVE-2023-34323: A transaction conflict can crash C Xenstored XSA-440, bsc1215744 - CVE-2023-34326: Missing IOMMU TLB flushing XSA-442, bsc1215746 - CVE-2023-34325: Multiple vulnerabilities in libfsimage disk handling XSA-443, bsc1215747 -...

7.8CVSS6.7AI score0.00289EPSS
Exploits0References10
ATTACKERKB
ATTACKERKB
added 2020/12/15 4:15 p.m.4 views

CVE-2020-0496

In CPDFRenderStatus::LoadSMask of cpdfrenderstatus.cpp, there is a possible memory corruption due to a use-after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

5.5CVSS5.7AI score0.00131EPSS
Exploits0References2
OSV
OSV
added 2017/06/20 5:29 p.m.0 views

CVE-2017-3081

Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free vulnerability during internal computation caused by multiple display object mask manipulations. Successful exploitation could lead to arbitrary code execution...

9.8CVSS6AI score0.14425EPSS
Exploits0References5
OSV
OSV
added 2017/06/20 5:29 p.m.3 views

UBUNTU-CVE-2017-3081

Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free vulnerability during internal computation caused by multiple display object mask manipulations. Successful exploitation could lead to arbitrary code execution...

9.8CVSS7.6AI score0.14425EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2017/05/09 12:0 a.m.2 views

PT-2017-2035 · Adobe +3 · Flash Player +3

Name of the Vulnerable Software and Affected Versions: Adobe Flash Player versions 25.0.0.148 and earlier Description: The issue is related to a use after free vulnerability in the handling of mask properties of display objects, which can lead to memory corruption. Successful exploitation could...

10CVSS8.4AI score0.89618EPSS
Exploits47References157
Tenable Nessus
Tenable Nessus
added 2009/07/15 12:0 a.m.34 views

GLSA-200907-12 : ISC DHCP: dhcpclient Remote execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200907-12 ISC DHCP: dhcpclient Remote execution of arbitrary code The Mandriva Linux Engineering Team has reported a stack-based buffer overflow in the subnet-mask handling of dhclient. Impact : A remote attacker might set up a...

10CVSS8AI score0.2578EPSS
Exploits9References2
Rows per page
Query Builder