Lucene search
K

1374 matches found

CNVD
CNVD
added 2019/06/24 12:0 a.m.2 views

RDK CcspPandM module buffer overflow vulnerability (CNVD-2019-19286)

RDK is a suite of modular, portable, and customizable open source IoT software solutions from the RDK Management community. ccspPandM is one of the modules used to implement the core configuration and management functions of the device. A buffer overflow vulnerability exists in the cosadhcpv4dml....

8.8CVSS7.3AI score0.02441EPSS
Exploits0References1
CNVD
CNVD
added 2019/06/19 12:0 a.m.3 views

WLAN Buffer Overflow Vulnerability in Multiple Qualcomm Products (CNVD-2019-18598)

Qualcomm MDM9206 and others are products of Qualcomm Incorporated.MDM9206 is a central processing unit CPU product.MDM9607 is a central processing unit CPU product.MDM9640 is a central processing unit CPU product.WLAN is one of the wireless LAN components. A buffer overflow vulnerability exists i...

7.8CVSS7.4AI score0.00198EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/06/14 12:0 a.m.4 views

The vulnerability of the DHCP server service for Windows Server allows a perpetrator to execute arbitrary code.

The vulnerability of the DHCP server service for Windows operating systems arises from an operation that goes beyond the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted packet...

10CVSS6.2AI score0.26264EPSS
Exploits0References2
CNVD
CNVD
added 2019/05/22 12:0 a.m.3 views

Intel AMT Subsystem Buffer Overflow Vulnerability

Intel Active Management Technology AMT is a set of hardware-based computer remote active management technology software from Intel Intel. A buffer overflow vulnerability exists in a subsystem in Intel AMT. The vulnerability arises from a networked system or product performing operations on memory...

8CVSS7.4AI score0.00495EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2019/05/14 6:15 p.m.5 views

libssh2: Integer overflow in user authenticate keyboard interactive allows out-of-bounds writes

A flaw was found in libssh2. A server could send a multiple keyboard interactive response messages, whose total length are greater than the unsigned char max characters. This value is used as an index to copy memory causing in an out of bounds memory write error. The highest threat from this...

8.8CVSS7.3AI score0.03437EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2019/05/14 11:58 a.m.34 views

CVE-2018-1000810

A buffer overflow vulnerability was discovered in Rust that affects the str::repeat function in the standard library. An attacker could abuse this flaw by controlling the arguments given to str::repeat and can cause a Rust program to overflow a buffer in memory, potentially leading to a crash or...

9.8CVSS5.5AI score0.02955EPSS
Exploits0References2
CNVD
CNVD
added 2019/05/14 12:0 a.m.2 views

Multiple Apple Products WebKit Component Out-of-Bounds Read Vulnerability (CNVD-2019-16414)

Apple iOS is an operating system developed for mobile devices. apple tvOS is an operating system for smart TVs. apple macOS Mojave is a specialized operating system developed for Mac computers. webKit is one of the web browser WebKit is a Web browser engine component. An out-of-bounds read...

6.5CVSS8.6AI score0.01418EPSS
Exploits0References1
Veracode
Veracode
added 2019/05/02 4:58 a.m.33 views

Cross-site Request Forgery (CSRF)

Samba is an open-source implementation of the Server Message Block SMB or Common Internet File System CIFS protocol, which allows PC-compatible machines to share files, printers, and other information. It was discovered that the Samba Web Administration Tool SWAT did not protect against being...

5.1CVSS6.7AI score0.69008EPSS
Exploits7References16Affected Software2
Tenable Nessus
Tenable Nessus
added 2019/05/02 12:0 a.m.241 views

Fedora 30 : libssh2 (2019-70a9d4f970)

This update addresses various overflow conditions that could result in possible memory read/write out of bounds errors or zero byte allocations when connected to a malicious server. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update...

9.3CVSS7.4AI score0.09219EPSS
Exploits0References10
NVD
NVD
added 2019/04/26 2:29 p.m.16 views

CVE-2019-11493

VeryPDF 4.1 has a Memory Overflow leading to Code Execution because pdfocx!CxImageTIF::operator in pdfocx.ocx used by pdfeditor.exe and pdfcmd.exe is mishandled...

7.8CVSS7.8AI score0.01431EPSS
Exploits1References1
OSV
OSV
added 2019/04/26 2:29 p.m.4 views

CVE-2019-11493

VeryPDF 4.1 has a Memory Overflow leading to Code Execution because pdfocx!CxImageTIF::operator in pdfocx.ocx used by pdfeditor.exe and pdfcmd.exe is mishandled...

7.8CVSS7.2AI score0.01431EPSS
Exploits1References1
Prion
Prion
added 2019/04/26 2:29 p.m.15 views

Design/Logic Flaw

VeryPDF 4.1 has a Memory Overflow leading to Code Execution because pdfocx!CxImageTIF::operator in pdfocx.ocx used by pdfeditor.exe and pdfcmd.exe is mishandled...

6.8CVSS7.7AI score0.01431EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/04/26 1:42 p.m.20 views

CVE-2019-11493

VeryPDF 4.1 has a Memory Overflow leading to Code Execution because pdfocx!CxImageTIF::operator in pdfocx.ocx used by pdfeditor.exe and pdfcmd.exe is mishandled...

7.8AI score0.01431EPSS
Exploits1References1
CVE
CVE
added 2019/04/26 1:42 p.m.41 views

CVE-2019-11493

VeryPDF 4.1 is affected by a memory overflow in pdfocx.ocx (CxImageTIF::operator) used by pdfeditor.exe and pdfcmd.exe, enabling code execution. Root cause: mishandling in pdfocx.ocx leading to overflow. Affected software/parts are confirmed by NVD entry CVE-2019-11493 and related records; exploi...

7.8CVSS7.7AI score0.01431EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2019/04/25 5:29 p.m.4 views

CVE-2019-9136

DaviewIndy 8.98.7 and earlier versions have a Heap-based overflow vulnerability, triggered when the user opens a malformed JPEG2000 format file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution...

7.8CVSS7.3AI score0.01228EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/04/25 12:0 a.m.5 views

The vulnerability of Samba software, related to overflow of dynamic memory buffers, allows a hacker to execute arbitrary code.

The vulnerability of Samba software is related to the overflow of dynamic memory buffers when the file name in the directory is too long. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8.8CVSS7AI score0.04302EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/04/12 12:0 a.m.3 views

The vulnerability of the Libmspack library and the CAB-file decompression utility SabExtract, which allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the Libmspack library mspack/cab.h and the CAB-file decompression utilities provided by SabExtract are related to memory buffer overflow attacks. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause system failures remotely...

8.6CVSS7.5AI score0.03086EPSS
Exploits0References4Affected Software5
Positive Technologies
Positive Technologies
added 2019/03/25 12:0 a.m.6 views

PT-2023-1054

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free flaw was found in the Linux kernel’s nouveau driver, related to how a user triggers a memory overflow that causes the nvkm vma tail function to fail. This issue allows a...

7.8CVSS6.8AI score0.00223EPSS
Exploits0References21
BDU FSTEC
BDU FSTEC
added 2019/03/22 12:0 a.m.5 views

The vulnerability of the _bfd_generic_read_minisymbols function in the GNU Binutils set of system utilities, related to memory overflow, allows an attacker to trigger a service failure.

The vulnerability of the bfdgenericreadminisymbols function in the descriptor library BFD, which is included in the GNU Binutils package, is related to a memory leak. Exploiting this vulnerability could allow an attacker to cause a service failure using a specially crafted ELF file...

5.5CVSS6.2AI score0.01819EPSS
Exploits1References6Affected Software1
CERT
CERT
added 2019/02/05 12:0 a.m.282 views

Marvell Avastar wireless SoCs have multiple vulnerabilities

Overview Some Marvell Avastar wireless system on chip SoC models have multiple vulnerabilities, including a block pool overflow during Wi-Fi network scan. Description A presentation at the ZeroNights 2018 conference describes multiple security issues with Marvell Avastar SoCs models 88W8787,...

8.8CVSS9AI score0.06617EPSS
Exploits1References7
Rows per page
Query Builder