Lucene search
K

213 matches found

OSV
OSV
added 2023/05/18 1:15 p.m.3 views

UBUNTU-CVE-2023-2789

A vulnerability was found in GNU cflow 1.7. It has been rated as problematic. This issue affects the function funcbody/parsevariabledeclaration of the file parser.c. The manipulation leads to denial of service. The exploit has been disclosed to the public and may be used. The identifier VDB-22937...

7.5CVSS4.7AI score0.01234EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2023/05/18 12:31 p.m.18 views

CVE-2023-2789

A vulnerability was found in GNU cflow 1.7. It has been rated as problematic. This issue affects the function funcbody/parsevariabledeclaration of the file parser.c. The manipulation leads to denial of service. The exploit has been disclosed to the public and may be used. The identifier VDB-22937...

7.5CVSS4.4AI score0.01234EPSS
Exploits1
CNNVD
CNNVD
added 2023/05/18 12:0 a.m.5 views

GNU cflow 安全漏洞

GNU cflow is a flowchart generator from the US GNU community that reads C source files and generates externally referenced flowcharts. A security vulnerability exists in GNU cflow version 1.7, which stems from a problem with the function funcbody/parsevariabledeclaration in parser.c, resulting in...

7.5CVSS5.4AI score0.01234EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2023/05/18 12:0 a.m.4 views

PT-2023-21396 · Gnu +1 · Gnu Cflow +1

Name of the Vulnerable Software and Affected Versions: GNU cflow version 1.7 Description: A problematic issue has been found that affects the function func body/parse variable declaration of the file parser.c, leading to denial of service. The exploit has been disclosed to the public and may be...

7.5CVSS4.3AI score0.01234EPSS
Exploits1References14
UbuntuCve
UbuntuCve
added 2023/05/12 2:15 p.m.24 views

CVE-2023-31918

Jerryscript 3.0 commit 1a2c047 was discovered to contain an Assertion Failure via the parserparsefunctionarguments at jerry-core/parser/js/js-parser.c...

5.5CVSS6.1AI score0.00332EPSS
Exploits1References2
NVD
NVD
added 2023/05/09 4:15 p.m.13 views

CVE-2021-31240

An issue found in libming v.0.4.8 allows a local attacker to execute arbitrary code via the parseSWFIMPORTASSETS function in the parser.c file...

7.8CVSS7.8AI score0.00282EPSS
Exploits1References1
Prion
Prion
added 2023/05/09 4:15 p.m.15 views

Design/Logic Flaw

An issue found in libming v.0.4.8 allows a local attacker to execute arbitrary code via the parseSWFIMPORTASSETS function in the parser.c file...

4.3CVSS7.7AI score0.00282EPSS
Exploits1References1Affected Software1
UbuntuCve
UbuntuCve
added 2023/05/09 4:15 p.m.19 views

CVE-2021-31240

An issue found in libming v.0.4.8 allows a local attacker to execute arbitrary code via the parseSWFIMPORTASSETS function in the parser.c file...

7.8CVSS7.1AI score0.00282EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/05/09 12:0 a.m.3 views

libming 安全漏洞

libming is a Flash SWF output library written in the C language. A security vulnerability exists in libming version v.0.4.8, which originated from allowing a local attacker to execute arbitrary code via the parseSWFIMPORTASSETS function in the parser.c file...

7.8CVSS7.8AI score0.00282EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/05/04 12:0 a.m.31 views

Amazon Linux AMI : libxml2 (ALAS-2023-1743)

The version of libxml2 installed on the remote host is prior to 2.9.1-6.6.42. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2023-1743 advisory. parser.c in libxml2 before 2.9.5 mishandles parameter-entity references because the NEXTL macro calls the...

9.8CVSS7.5AI score0.22791EPSS
Exploits8References28
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.35 views

K04460334: libxml2 2.9.10 vulnerability CVE-2020-7595

Security Advisory Description xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation. CVE-2020-7595 Impact An attacker could exploit this vulnerability to cause the application to enter into an infinite loop resulting in a denial of servic...

7.5CVSS7.7AI score0.07836EPSS
Exploits0Affected Software2
OSV
OSV
added 2022/05/13 1:2 a.m.32 views

GHSA-X2FM-93WW-GGVX Nokogiri gem, via libxml, is affected by DoS vulnerabilities

parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in parameter entities...

7.5CVSS6.8AI score0.05928EPSS
Exploits0References12
Veracode
Veracode
added 2022/03/14 2:49 a.m.14 views

Denial Of Service (DoS)

libpano13 is vulnerable to denial of service. The vulnerability exists due to an out-of-bounds read in the function panoParserFindOLine in parser.c...

9.1CVSS3.7AI score0.02067EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2022/03/10 5:42 p.m.20 views

CVE-2021-33293

Panorama Tools libpano13 v2.9.20 was discovered to contain an out-of-bounds read in the function panoParserFindOLine in parser.c...

9.1CVSS0.02067EPSS
Exploits1References3
OSV
OSV
added 2022/03/10 5:42 p.m.3 views

DEBIAN-CVE-2021-33293

Panorama Tools libpano13 v2.9.20 was discovered to contain an out-of-bounds read in the function panoParserFindOLine in parser.c...

9.1CVSS7.3AI score0.02067EPSS
Exploits1References1
Prion
Prion
added 2022/03/10 5:42 p.m.16 views

Out-of-bounds

Panorama Tools libpano13 v2.9.20 was discovered to contain an out-of-bounds read in the function panoParserFindOLine in parser.c...

6.4CVSS7.6AI score0.02067EPSS
Exploits1References3Affected Software2
UbuntuCve
UbuntuCve
added 2022/03/10 5:42 p.m.28 views

CVE-2021-33293

Panorama Tools libpano13 v2.9.20 was discovered to contain an out-of-bounds read in the function panoParserFindOLine in parser.c...

9.1CVSS7.2AI score0.02067EPSS
Exploits1References4
CVE
CVE
added 2022/02/17 2:40 a.m.101 views

CVE-2022-22901

CVE-2022-22901 affects JerryScript (engine). The issue is an assertion failure in /js/js-parser.c: parser_parse_function_arguments, triggered by commit a6ab5e9 when context_p->next_scanner_info_p->type != SCANNER_TYPE_FUNCTION. Root cause: scanner information type mismatch. Impact described...

5.5CVSS5.5AI score0.00816EPSS
Exploits1References3Affected Software1
Veracode
Veracode
added 2021/11/09 3:48 a.m.32 views

Denial Of Service (DoS)

libxml2.so is vulnerable to denial of service. An attacker can crash the application or execute arbitrary code through the xmlParseAttValueComplex function in parser.c by providing long XML entity name...

10CVSS6.3AI score0.23373EPSS
Exploits9References57Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.4 views

The vulnerability in the `parser_parse_source` function of the `js-parser.c` component of the JavaScript framework for the Internet of Things, JerryScript, and the IoT.js platform, related to the insufficient use of the `assert()` function, allows a attacker to cause a service failure.

The vulnerability of the parserparsesource function in the js-parser.c component of the JavaScript engine for the Internet of Things, JerryScript, and the IoT.js platform, is related to the insufficient use of the assert function. Exploiting this vulnerability could allow a malicious actor to cau...

7.5CVSS7.2AI score0.01083EPSS
Exploits1References4Affected Software2
Rows per page
Query Builder