CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1417 matches found

Cvelist•added 2019/06/19 3:56 p.m.•14 views

CVE-2019-6114

An issue was discovered in Corel PaintShop Pro 2019 21.0.0.119. An integer overflow in the jp2 parsing library allows an attacker to overwrite memory and to execute arbitrary code...

9.1AI score0.00685EPSS

Exploits1References1

OSV•added 2019/06/05 5:29 p.m.•1 views

CVE-2019-12553

In SweetScape 010 Editor 9.0.1, improper validation of arguments in the internal implementation of the StrCat function provided by the scripting engine allows an attacker to overwrite arbitrary memory, which could lead to code execution...

9.8CVSS6AI score

Exploits0References2

CVE•added 2019/06/05 4:20 p.m.•87 views

CVE-2019-12553

CVE-2019-12553 affects SweetScape 010 Editor 9.0.1. The vulnerability arises from improper validation of arguments in the StrCat function (inside the scripting engine), allowing an attacker to overwrite arbitrary memory and potentially achieve code execution. The available documents identify the ...

9.8CVSS9.2AI score0.01803EPSS

Exploits1References2Affected Software1

Cvelist•added 2019/06/05 4:20 p.m.•21 views

CVE-2019-12553

9.3AI score0.01803EPSS

Exploits1References2

CNVD•added 2019/05/17 12:0 a.m.•2 views

Microsoft Windows Jet Database Engine Buffer Overflow Vulnerability (CNVD-2019-24832)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. Windows Jet Database Engine is one of the database engines. A buffer overflow vulnerabilit...

9.3CVSS7.3AI score0.19206EPSS

Exploits0References1

Veracode•added 2019/05/16 2:23 a.m.•37 views

Privilege Escalation

Linux kernel is vulnerable to privilege escalation vulnerability. This occurs in the 32-bit compatibility layer of the ioctl handling code of the v4l2 video driver in the Linux kernel. An attacker to overwrite a kernel memory from an unprivileged userspace process causing a privilege escalation...

7.8CVSS7.6AI score0.89595EPSS

Exploits3References17Affected Software2

OSV•added 2019/05/07 9:38 p.m.•6 views

MGASA-2019-0153 Updated putty/filezilla/wxgtk packages fix security vulnerability

A remotely triggerable memory overwrite in RSA key exchange in PuTTY before 0.71 can occur before host key verification CVE-2019-9894. In PuTTY versions before 0.71 on Unix, a remotely triggerable buffer overflow exists in any kind of server-to-client forwarding CVE-2019-9895. Multiple...

9.8CVSS8.5AI score0.04291EPSS

Exploits0References6

Mageia•added 2019/05/07 9:38 p.m.•36 views

Updated putty/filezilla/wxgtk packages fix security vulnerability

9.8CVSS2.5AI score0.04291EPSS

Exploits0References5

Kitploit•added 2019/04/10 1:11 p.m.•99 views

Mysql-Magic - Dump Mysql Client Password From Memory

The mysql client read the password, then write this for some malloc'ed memory, and free it, but just because a chunk was freed doesn't mean it will be used again, to ensure that your programs not keep sensitive information in memory you must overwrite the memory. The main goal is get the password...

7.2AI score

Exploits0References1

OSV•added 2019/04/02 1:58 p.m.•5 views

OPENSUSE-SU-2019:1123-1 Security update for putty

This update for putty fixes the following issues: Update to new upstream release 0.71 boo1129633 CVE-2019-9894: Fixed a remotely triggerable memory overwrite in RSA key exchange, which can occur before host key verification potential recycling of random numbers used in cryptography. CVE-2019-9895...

9.8CVSS8.8AI score0.04291EPSS

Exploits0References7

OSV•added 2019/04/02 11:3 a.m.•5 views

OPENSUSE-SU-2019:1113-1 Security update for putty

9.8CVSS8.9AI score0.04291EPSS

Exploits0References7

OPENSUSE Linux•added 2019/04/02 12:0 a.m.•162 views

Security update for putty (moderate)

openSUSE Security Update: Security update for putty Announcement ID: openSUSE-SU-2019:1123-1 Rating: moderate References: 1129633 Cross-References: CVE-2019-9894 CVE-2019-9895 CVE-2019-9896 CVE-2019-9897 CVE-2019-9898 Affected Products: openSUSE Backports SLE-15 An update that fixes 5...

9.8CVSS9.4AI score0.04291EPSS

Exploits0References1

Ubuntu•added 2019/03/28 5:55 p.m.•67 views

USN-3925-1: FreeImage vulnerability

It was discovered that an out-of-bounds write vulnerability existed in the XMP image handling functionality of the FreeImage library. If a user or automated system were tricked into opening a specially crafted image, a remote attacker could overwrite arbitrary memory, resulting in code execution...

7.8CVSS7.7AI score0.00496EPSS

Exploits1

Tenable Nessus•added 2019/03/27 12:0 a.m.•123 views

PuTTY < 0.71 Multiple Vulnerabilities

The remote host has a version of PuTTY installed that is prior to 0.71. It is, therefore, affected by multiple vulnerabilities including: - A remotely triggerable buffer overflow in any kind of server-to-client forwarding. CVE-2019-9895 - Potential recycling of random numbers used in cryptography...

9.8CVSS7.4AI score0.04291EPSS

Exploits0References14

OSV•added 2019/03/21 4:1 p.m.•1 views

DEBIAN-CVE-2019-9894

A remotely triggerable memory overwrite in RSA key exchange in PuTTY before 0.71 can occur before host key verification...

7.5CVSS8.2AI score0.00657EPSS

Exploits0References1