Lucene search
K

57 matches found

BDU FSTEC
BDU FSTEC
added 2023/05/31 12:0 a.m.5 views

The vulnerability of theEncodeAlphaInternal() function in the libwebp library allows for manipulation of image encoding and decoding processes in the WebP format by browsers such as Mozilla Firefox, Firefox ESR, and the email client Thunderbird. This vulnerability enables a malicious actor to cause service interruptions.

The vulnerability of theEncodeAlphaInternal function in the libwebp library, which is used for encoding and decoding images in the WebP format for browsers such as Mozilla Firefox, Firefox ESR, and the Thunderbird email client, is related to a repeated memory release mechanism. Exploiting this...

7.6CVSS6.6AI score0.00952EPSS
Exploits0References15Affected Software11
CNNVD
CNNVD
added 2023/05/05 12:0 a.m.2 views

Linux kernel 资源管理错误漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A resource management error vulnerability exists in versions of Linux kernel prior to 6.1.11, which stems from a confusion in the instructions responsible for freeing memory in...

6.7CVSS6.9AI score0.0027EPSS
Exploits0References13
CNNVD
CNNVD
added 2023/05/02 12:0 a.m.27 views

Qualcomm 芯片安全漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuitry mainly semiconductor devices, but also passive components, etc. and is manufactured from time to time on the surface of semiconductor wafers. A security vulnerability exists in some Qualcomm products that ste...

8.4CVSS7.5AI score0.0018EPSS
Exploits2References3
BDU FSTEC
BDU FSTEC
added 2023/04/03 12:0 a.m.4 views

The vulnerability of the tun_free_netdev() function in Linux kernel-based TUN/TAP virtual network drivers allows a attacker to cause service failure or gain increased privileges.

The vulnerability of the tunfreenetdev function in Linux’s TUN/TAP virtual network drivers is related to the repeated release of previously released memory. Exploiting this vulnerability can allow an attacker to cause service failures or increase their privileges...

7.8CVSS6.6AI score0.00456EPSS
Exploits0References13Affected Software5
BDU FSTEC
BDU FSTEC
added 2023/03/17 12:0 a.m.7 views

The vulnerability of the __sys_socket_file() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the syssocketfile function in the Linux operating system’s kernel is related to the repeated release of memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.6AI score0.00274EPSS
Exploits0References7Affected Software2
SUSE CVE
SUSE CVE
added 2023/02/15 3:49 a.m.5 views

SUSE CVE-2021-3544

Several memory leaks were found in the virtio vhost-user GPU device vhost-user-gpu of QEMU in versions up to and including 6.0. They exist in contrib/vhost-user-gpu/vhost-user-gpu.c and contrib/vhost-user-gpu/virgl.c due to improper release of memory i.e., free after effective lifetime...

5CVSS7AI score0.00436EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/01/09 12:0 a.m.6 views

PT-2023-9422 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to errors in memory release in the io uring component of the Linux kernel. Exploitation of this issue may allow an attacker to cause a denial of service. The probl...

5.5CVSS6.5AI score0.00205EPSS
Exploits0References20
OSV
OSV
added 2023/01/06 8:15 p.m.5 views

CVE-2021-46867

The HWKEYMASTER module has a problem in releasing memory.Successful exploitation of this vulnerability may result in out-of-bounds memory access...

7.5CVSS5.8AI score0.00398EPSS
Exploits0References2
OSV
OSV
added 2022/07/20 3:15 p.m.3 views

CVE-2022-22204

An Improper Release of Memory Before Removing Last Reference vulnerability in the Session Initiation Protocol SIP Application Layer Gateway ALG of Juniper Networks Junos OS allows unauthenticated network-based attacker to cause a partial Denial of Service DoS. On all MX and SRX platforms, if the...

5.3CVSS5.8AI score0.00615EPSS
Exploits1References1
OSV
OSV
added 2022/01/19 1:15 a.m.5 views

CVE-2022-22168

An Improper Validation of Specified Type of Input vulnerability in the kernel of Juniper Networks Junos OS allows an unauthenticated adjacent attacker to trigger a Missing Release of Memory after Effective Lifetime vulnerability. Continued exploitation of this vulnerability will eventually lead t...

6.5CVSS6.6AI score0.00391EPSS
Exploits0References1
OSV
OSV
added 2021/06/02 2:15 p.m.3 views

UBUNTU-CVE-2021-3544

Several memory leaks were found in the virtio vhost-user GPU device vhost-user-gpu of QEMU in versions up to and including 6.0. They exist in contrib/vhost-user-gpu/vhost-user-gpu.c and contrib/vhost-user-gpu/virgl.c due to improper release of memory i.e., free after effective lifetime...

6.5CVSS6.6AI score0.00436EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2021/05/11 12:0 a.m.8 views

PT-2021-3092

Name of the Vulnerable Software and Affected Versions Microsoft HTTP Protocol Stack versions prior to the fixed version Description The issue is related to a memory usage problem after memory release in the HTTP Protocol Stack of Microsoft Windows operating systems. This can be exploited by a...

9.8CVSS7.2AI score0.99657EPSS
Exploits24References46
BDU FSTEC
BDU FSTEC
added 2021/03/02 12:0 a.m.9 views

The vulnerability of the usm_free_usmStateReference function in the software for deploying and using the SNMP protocol Net-SNMP allows a attacker to trigger a service failure.

The vulnerability of the usmfreeusmStateReference function in the software for deploying and using the SNMP protocol Net-SNMP is due to repeated memory release. Exploiting this vulnerability can allow a malicious actor to cause service failures through specially crafted GetBulk requests...

6.8CVSS6.8AI score0.02315EPSS
Exploits1References4Affected Software4
BDU FSTEC
BDU FSTEC
added 2020/12/22 12:0 a.m.7 views

The vulnerability of the Junos operating system’s kernel allows a attacker to trigger an emergency shutdown of the application.

The vulnerability of the Junos operating system’s kernel is related to the improper release of memory before deleting the last reference. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause an unexpected termination of the application...

7.8CVSS7.2AI score0.01062EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/07/06 12:0 a.m.8 views

The vulnerability of the `gdImageWebPtr` function in the GD Graphics Library allows attackers to exert undefined effects.

The vulnerability of the gdImageWebPtr function in the GD Graphics Library is related to the repeated release of memory. Exploiting this vulnerability can allow an attacker, operating remotely, to cause unpredictable effects by using large values for width and height...

7.5CVSS7.7AI score0.04449EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2016/07/06 12:0 a.m.6 views

The vulnerability of the Cisco Wireless LAN Controller 2100 software allows a malicious individual to cause service failure.

Vulnerability exists in Cisco Wireless LAN Controller WLC devices due to improper memory release. This allows malicious actors operating remotely to trigger a service failure by sending frequent WebAuth authorization requests...

7.8CVSS5.5AI score0.0134EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/07/06 12:0 a.m.8 views

The vulnerability of the Cisco Wireless LAN Controller 4400 software allows a malicious individual to cause service failure.

Vulnerability exists in Cisco Wireless LAN Controller WLC devices due to improper memory release. This allows malicious actors operating remotely to trigger a service failure by sending frequent WebAuth authorization requests...

7.8CVSS5.5AI score0.0134EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder