CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5218 matches found

Veracode•added 2020/04/10 12:12 a.m.•31 views

Denial Of Service (DoS)

ISC BIND Berkeley Internet Name Domain is vulnerable to Denial Of Service DoS. A use-after-free flaw was found in BIND. On servers that have recursion enabled, this could allow a remote attacker to cause a denial of service...

7.8CVSS4.3AI score0.13838EPSS

Exploits1References52Affected Software1

RedhatCVE•added 2020/04/09 7:9 a.m.•31 views

CVE-2018-20103

An issue was discovered in dns.c in HAProxy through 1.8.14. In the case of a compressed pointer, a crafted packet can trigger infinite recursion by making the pointer point to itself, or create a long chain of valid pointers resulting in stack exhaustion...

7.5CVSS2.3AI score0.001EPSS

Exploits0References2

IBM Security Bulletins•added 2020/04/07 1:33 p.m.•30 views

Security Bulletin: A vulnerability in SQLite affects IBM Cloud Application Performance Management Response Time Monitoring Agent (CVE-2019-19925, CVE-2019-19645, CVE-2019-19924, CVE-2019-19923, CVE-2019-19880, CVE-2019-19646, CVE-2019-19926)

Summary SQLite is vulnerable to a denial of service. Vulnerability Details CVEID: CVE-2019-19925 DESCRIPTION: SQLite is vulnerable to a denial of service, caused by the mishandling of a NULL pathname in the zipfileUpdate function in ext/misc/zipfile.c. By sending a specially-crafted request, a...

9.8CVSS0.9AI score0.09456EPSS

Exploits0Affected Software1

OpenVAS•added 2020/04/01 12:0 a.m.•40 views

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2020-1330)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.02309EPSS

Exploits2References2

RedhatCVE•added 2020/03/30 8:7 a.m.•42 views

CVE-2018-18700

An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31. There is a stack consumption vulnerability resulting from infinite recursion in the functions dname, dencoding, and dlocalname in cp-demangle.c. Remote attackers could leverage this vulnerability to...

5.5CVSS5.1AI score0.00562EPSS

Exploits1References2

OSV•added 2020/03/24 9:15 p.m.•1 views

UBUNTU-CVE-2020-6071

An exploitable denial-of-service vulnerability exists in the resource record-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing compressed labels in mDNS messages, the compression pointer is followed without checking for recursion, leading to a denial of service. An attacker can...

7.5CVSS7.3AI score0.00467EPSS

Exploits1References4

Debian CVE•added 2020/03/24 8:43 p.m.•20 views

CVE-2020-6071

7.5CVSS8.4AI score0.00467EPSS

Exploits1

OpenVAS•added 2020/03/13 12:0 a.m.•51 views

Huawei EulerOS: Security Advisory for libxkbcommon (EulerOS-SA-2020-1246)

7.8CVSS6.1AI score0.0008EPSS

Exploits0References2

OPENSUSE Linux•added 2020/03/01 12:0 a.m.•76 views

Security update for libexif (moderate)

openSUSE Security Update: Security update for libexif Announcement ID: openSUSE-SU-2020:0264-1 Rating: moderate References: 1120943 1160770 Cross-References: CVE-2018-20030 CVE-2019-9278 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description:...

8.8CVSS7.9AI score0.03749EPSS

Exploits0References2

Tenable Nessus•added 2020/02/26 12:0 a.m.•27 views

SUSE SLED12 / SLES12 Security Update : libexif (SUSE-SU-2020:0457-1)

This update for libexif fixes the following issues : CVE-2019-9278: Fixed an integer overflow bsc1160770. CVE-2018-20030: Fixed a denial of service by endless recursion bsc1120943. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...

8.8CVSS6.3AI score0.03749EPSS

Exploits0References7

OpenVAS•added 2020/02/25 12:0 a.m.•30 views

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2020-1152)

8.8CVSS7.7AI score0.02309EPSS

Exploits3References2

Tenable Nessus•added 2020/02/25 12:0 a.m.•42 views

EulerOS 2.0 SP8 : glibc (EulerOS-SA-2020-1152)

According to the versions of the glibc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well ...

8.8CVSS7.5AI score0.02309EPSS

Exploits3References4

Tenable Nessus•added 2020/02/24 12:0 a.m.•42 views

EulerOS 2.0 SP5 : glibc (EulerOS-SA-2020-1102)

8.8CVSS7.6AI score0.02309EPSS

Exploits3References4

Kitploit•added 2020/02/16 8:30 p.m.•82 views

Syborg - Recursive DNS Subdomain Enumerator With Dead-End Avoidance System

Syborg is a Recursive DNS Domain Enumerator which is neither active nor completely passive. This tool simply constructs a domain name and queries it with a specified DNS Server. Syborg has a Dead-end Avoidance system inspired from @Tomnomnom's ettu. When you run subdomain enumeration with some of...

7AI score

Exploits0References6

OSV•added 2020/01/28 7:52 a.m.•7 views

MGASA-2020-0049 Updated libsass packages fix security vulnerabilities

Use-after-free vulnerability in sasscontext.cpp:handleerror CVE-2018-11499. Null pointer dereference in Sass::SelectorList::populateextends CVE-2018-19797. Use-after-free vulnerability exists in the SharedPtr class CVE-2018-19827. Stack overflow in Eval::operator CVE-2018-19837. Stack-overflow at...

9.8CVSS6.9AI score0.03149EPSS

Exploits9References3

OpenVAS•added 2020/01/23 12:0 a.m.•28 views

Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2019-2276)

6.5CVSS7.4AI score0.01079EPSS

Exploits2References2

OpenVAS•added 2020/01/23 12:0 a.m.•28 views

Huawei EulerOS: Security Advisory for libtasn1 (EulerOS-SA-2019-1212)

7.5CVSS7.7AI score0.02547EPSS

Exploits0References2

OpenVAS•added 2020/01/23 12:0 a.m.•25 views

Huawei EulerOS: Security Advisory for poppler (EulerOS-SA-2019-2296)