Lucene search
K

800 matches found

OpenVAS
OpenVAS
added 2020/06/05 12:0 a.m.18 views

Huawei Data Communication: Memory Leak Vulnerability in Several Huawei Products (huawei-sa-20171213-04-xml)

There is a memory leak vulnerability in several Huawei products. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

2.1CVSS0.3AI score0.00222EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/06/04 12:0 a.m.26 views

Fedora 31 : perl-Email-MIME / perl-Email-MIME-ContentType (2020-39d40d9ae9)

This update limits the number of nested MIME parts to 10 by default, to avoid a possible memory exhaustion issue with lots of tiny MIME parts. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to...

5.5AI score
Exploits0References1
ossfuzz
ossfuzz
added 2020/05/30 2:33 p.m.21 views

pcapplusplus:FuzzTarget: Use-of-uninitialized-value in pcpp::GtpV1Layer::getHeaderLen

Project: https://github.com/seladb/PcapPlusPlus.git Detailed Report: https://oss-fuzz.com/testcase?key=5204104585674752 Project: pcapplusplus Fuzzing Engine: libFuzzer Fuzz Target: FuzzTarget Job Type: libfuzzermsanpcapplusplus Platform Id: linux Crash Type: Use-of-uninitialized-value Crash...

6.8AI score
Exploits0Affected Software1
CVE
CVE
added 2020/05/29 12:0 a.m.221 views

CVE-2020-11039

Summary (CVE-2020-11039) In FreeRDP, versions up to and including 2.0.0 with USB redirection enabled can suffer an integer-overflow in length checks that allows (nearly) arbitrary memory read/write when interacting with a manipulated server. This was fixed in version 2.1.0. Public advisories and ...

8CVSS7AI score0.01268EPSS
Exploits0References3Affected Software1
Apple
Apple
added 2020/05/27 12:42 p.m.204 views

About the security content of Safari 13.1.1 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.8CVSS1.3AI score0.77246EPSS
Exploits6Affected Software1
RedHat Linux
RedHat Linux
added 2020/05/20 5:35 p.m.4 views

OpenJDK: Excessive memory usage in OID processing in X.509 certificate parsing (Libraries, 8234037)

Vulnerability in the Java SE product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE...

4.3CVSS7.3AI score0.03823EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/05/20 4:26 p.m.5 views

OpenJDK: Excessive memory usage in OID processing in X.509 certificate parsing (Libraries, 8234037)

Vulnerability in the Java SE product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE...

4.3CVSS7.3AI score0.03823EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/05/20 3:10 p.m.6 views

OpenJDK: Excessive memory usage in OID processing in X.509 certificate parsing (Libraries, 8234037)

Vulnerability in the Java SE product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE...

4.3CVSS7.3AI score0.03823EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/04/16 8:31 p.m.2 views

Mozilla: Use-after-free when handling a ReadableStream

A flaw was found in Mozilla's Firefox. A race condition can occur when handling a ReadableStream causing a use-after-free memory issue. The highest threat from this vulnerability are to data confidentiality and integrity as well as system availability...

8.1CVSS7.2AI score0.06305EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2020/04/07 8:53 a.m.3 views

Mozilla: Use-after-free when handling a ReadableStream

A flaw was found in Mozilla's Firefox. A race condition can occur when handling a ReadableStream causing a use-after-free memory issue. The highest threat from this vulnerability are to data confidentiality and integrity as well as system availability...

8.1CVSS7.2AI score0.06305EPSS
Exploits0References6
OSV
OSV
added 2020/04/01 6:15 p.m.4 views

DEBIAN-CVE-2020-3899

A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, watchOS 6.2, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. A remote attacker may be able to cause arbitrary code...

8.8CVSS7.1AI score0.04017EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/04/01 5:54 p.m.21 views

CVE-2020-3914

A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. An application may be able to read restricted memory...

5.8AI score0.00773EPSS
Exploits0References4
ossfuzz
ossfuzz
added 2020/03/25 11:41 a.m.17 views

libspectre:spectre_read_fuzzer: Use-of-uninitialized-value in display_put_params

Detailed Report: https://oss-fuzz.com/testcase?key=5737193667821568 Project: libspectre Fuzzing Engine: libFuzzer Fuzz Target: spectrereadfuzzer Job Type: libfuzzermsanlibspectre Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: displayputparams gsputdevicepara...

6.8AI score
Exploits0Affected Software1
NVD
NVD
added 2020/03/24 6:15 p.m.26 views

CVE-2020-10836

An issue was discovered on Samsung mobile devices with O8.x, P9.0, and Q10.0 Exynos chipsets software. The Widevine Trustlet allows read and write operations on arbitrary memory locations. The Samsung ID is SVE-2019-15873 February 2020...

9.8CVSS9.5AI score0.00449EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/03/12 3:48 p.m.24 views

CVE-2020-0803

An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory, aka 'Windows Network Connections Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0778, CVE-2020-0802, CVE-2020-0804, CVE-2020-0845...

8.2AI score0.01006EPSS
Exploits0References1
OSV
OSV
added 2020/03/04 7:15 p.m.11 views

OPENSUSE-SU-2020:0301-1 Security update for openfortivpn

This update for openfortivpn to version 1.12.0 fixes the following issues: - CVE-2020-7043: Fixed a TLS Certificate CommonName NULL Byte Vulnerability boo1165301. - CVE-2020-7042: Fixed use of uninitialized memory in X509checkhost boo1165300. - CVE-2020-7041: Fixed incorrect use of X509checkhost...

9.1CVSS7AI score0.02403EPSS
Exploits0References7
NVD
NVD
added 2020/02/11 6:15 p.m.16 views

CVE-2020-5831

Symantec Endpoint Protection Manager SEPM, prior to 14.2 RU2 MP1, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory outside of the bounds of the memory that had been allocated to the program...

3.3CVSS3.5AI score0.00354EPSS
Exploits0References1
Prion
Prion
added 2020/02/11 6:15 p.m.18 views

Out-of-bounds

Symantec Endpoint Protection Manager SEPM, prior to 14.2 RU2 MP1, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory outside of the bounds of the memory that had been allocated to the program...

2.1CVSS3.7AI score0.00354EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/02/11 6:15 p.m.18 views

Out-of-bounds

Symantec Endpoint Protection SEP and Symantec Endpoint Protection Small Business Edition SEP SBE, prior to 14.2 RU2 MP1 and prior to 14.2.5569.2100 respectively, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory...

2.1CVSS5.2AI score0.00336EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/02/11 5:12 p.m.19 views

CVE-2020-5831

Symantec Endpoint Protection Manager SEPM, prior to 14.2 RU2 MP1, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory outside of the bounds of the memory that had been allocated to the program...

3.5AI score0.00354EPSS
Exploits0References1
Rows per page
Query Builder