Lucene search
K

944 matches found

BDU FSTEC
BDU FSTEC
added 2021/07/20 12:0 a.m.4 views

The vulnerability of the `caca_resize` function in the library for converting images into ASCII art in libcaca involves an out-of-buffer operation. This vulnerability allows attackers to access confidential data, compromise its integrity, and cause service interruptions.

The vulnerability of the cacaresize function in the library that converts images into ASCII art in libcaca is related to the output of the operation outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to access confidential data, compromise its integrity, and ev...

7.8CVSS7AI score0.00561EPSS
Exploits1References14Affected Software6
BDU FSTEC
BDU FSTEC
added 2021/07/20 12:0 a.m.8 views

The vulnerability of the MagickCore/visual-effects.c file, a set of programs for reading and editing ImageMagisk files, arises from the lack of zero-division checking. This allows an attacker to trigger a service failure.

The vulnerability of the MagickCore/visual-effects.c file, a set of programs for reading and editing ImageMagisk files, is related to the lack of checks for division by zero. Exploiting this vulnerability could allow an attacker to cause service interruptions...

7.1CVSS6.7AI score0.01199EPSS
Exploits0References13Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/07/13 12:0 a.m.5 views

The vulnerability of software for storing images in OpenEXR format, which has a wide dynamic range of brightness levels, arises from reading data beyond the acceptable buffer limit. This allows attackers to cause service failures.

The vulnerability of software for storing images with a wide dynamic range of brightness in the OpenEXR format is related to reading data beyond the allowable buffer size. Exploiting this vulnerability can allow an attacker to cause service interruptions...

6.5CVSS6.9AI score0.01807EPSS
Exploits1References11Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/07/13 12:0 a.m.6 views

The vulnerability of the DwaCompressor::Classifier::Classifier function in software for storing images with wide dynamic range brightness in OpenEXR, related to a single offset error, allows attackers to cause service interruptions.

The vulnerability of the DwaCompressor::Classifier::Classifier function in software for storing images with wide dynamic range brightness in OpenEXR is related to a single-shift error. Exploiting this vulnerability could allow an attacker to cause service failures...

6.5CVSS6.7AI score0.01702EPSS
Exploits1References11Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/07/13 12:0 a.m.5 views

The vulnerability of the `str_lower_case_match` component in the Oniguruma regular expression library, which involves reading data beyond the allowed buffer limits, allows attackers to cause service interruptions.

The vulnerability of the strlowercasematch component in the Oniguruma regular expression library is related to reading data beyond the allowable buffer size. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.5CVSS6.7AI score0.02942EPSS
Exploits0References12Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/07/07 12:0 a.m.6 views

The vulnerability of the PALM image encoding engine in the ImageMagick console-based graphics editor allows an attacker to trigger a service failure by exceeding the allowed buffer data size.

The vulnerability of the PALM image encoding engine in the ImageMagick graphics editor involves reading data beyond the acceptable buffer limits. Exploiting this vulnerability allows a malicious actor to cause service interruptions...

5.3CVSS6.9AI score0.01016EPSS
Exploits1References14Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/07/07 12:0 a.m.4 views

The vulnerability of the software for creating a private virtual network, astra-openvpn-server, related to code errors, allows a intruder to trigger a service failure.

The vulnerability of the software used to create the private virtual network astra-openvpn-server is related to a code error that prevents the /etc/openvpn/keys/ directory from being created. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

3.5CVSS5.6AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/06/29 12:0 a.m.4 views

The vulnerability of the Trend Micro Home Network Security anti-virus protection, related to resource release errors, allows a perpetrator to trigger a service failure.

The vulnerability of the Trend Micro Home Network Security antivirus protection lies in resource release errors. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.8CVSS7.2AI score0.01097EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/06/25 12:0 a.m.4 views

The vulnerability of the Dovecot mail server, related to resource management errors, allows a hacker to cause a service failure.

The vulnerability of the Dovecot mail server is related to resource management errors. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

5CVSS6.8AI score0.01968EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/06/23 12:0 a.m.3 views

The vulnerability of Junos OS routers in the MX series, related to uncontrolled resource consumption, allows a hacker to cause a service failure.

The vulnerability of Junos OS routers in the MX series is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a attacker to cause service interruptions...

5.5CVSS5.9AI score0.00232EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/06/18 12:0 a.m.4 views

The vulnerability of the libwebp library regarding the encoding and decoding of WebP images allows for uncontrolled resource consumption, enabling attackers to cause service failures.

The vulnerability of the libwebp library for encoding and decoding WebP images is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

5CVSS7.5AI score0.01966EPSS
Exploits0References11Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/06/15 12:0 a.m.3 views

The vulnerability of IBM DB2 JDBC database management system client allows a attacker to trigger a service failure.

The vulnerability of the IBM DB2 database management system’s JDBC client relates to resource release errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by using specially crafted commands...

6.5CVSS6.8AI score0.01642EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/06/15 12:0 a.m.3 views

The vulnerability of the SSL-VPN portal for FortiOS operating systems allows a hacker to induce a service failure.

The vulnerability of the SSL-VPN portal for FortiOS operating systems is related to the execution of operations outside the buffer. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by sending a specially crafted POST request...

5.3CVSS7.4AI score0.01753EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/06/15 12:0 a.m.3 views

The vulnerability of the SSL protocol implementation in the IBM DB2 database management system allows a hacker to induce a service failure.

The vulnerability of the SSL protocol implementation in the IBM DB2 database management system is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

7.5CVSS7.6AI score0.02019EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/06/15 12:0 a.m.4 views

The vulnerability of the TRUNCATE function implementation in the IBM DB2 database management system allows a hacker to trigger a service failure.

The vulnerability of the TRUNCATE function implementation in the IBM DB2 database management system is related to incorrect validation of input data. Exploiting this vulnerability could allow an attacker to cause service interruptions using the SELECT query operator...

5.3CVSS6.5AI score0.01859EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/06/15 12:0 a.m.6 views

The vulnerability of the IBM DB2 database management system lies in the insufficient cleaning of special elements in the output data used by the incoming component, which allows a hacker to trigger a service failure.

The vulnerability of the IBM DB2 database management system is related to insufficient cleaning of special elements in the output data used by the incoming component. Exploiting this vulnerability can allow a malicious actor to cause service interruptions using specially created commands...

6.5CVSS6.9AI score0.01395EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/05/24 12:0 a.m.5 views

Vulnerability of the Server component: The Replication function of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Oracle MySQL Server database management system’s replication component is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions using the MySQL network protocol...

6.3CVSS6.3AI score0.01803EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/05/14 12:0 a.m.5 views

Vulnerability of the Server component: The DML of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Oracle MySQL Server component relates to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions using the MySQL network protocol...

6.8CVSS6.4AI score0.02043EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/05/14 12:0 a.m.4 views

Vulnerability of the Server component: The DML of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Oracle MySQL Server component relates to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions using the MySQL network protocol...

6.8CVSS6.6AI score0.02481EPSS
Exploits0References8Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/05/05 12:0 a.m.4 views

The vulnerability of the JIT WebAssembly component in the Thunderbird email client, as well as in browsers like Firefox and Firefox ESR, allows a hacker to trigger a service failure.

The vulnerability of the JIT WebAssembly component in the Thunderbird email client, as well as in browsers like Firefox and Firefox ESR, is related to incorrect calculations. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

3.1CVSS7AI score0.01208EPSS
Exploits0References14Affected Software19
Rows per page
Query Builder