Lucene search
K

51 matches found

OSV
OSV
added 2023/09/02 11:5 a.m.4 views

OESA-2023-1563 perl security update

Perl 5 is a highly capable, feature-rich programming language with over 30 years of development.Perl 5 runs on over 100 platforms from portables to mainframes and is suitable for both rapid prototyping and large scale development projects. Security Fixes: In Perl 5.34.0, function Sfinduninitvar i...

9.8CVSS8AI score0.02046EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/08/22 7:16 p.m.9 views

CVE-2022-48522

In Perl 5.34.0, function Sfinduninitvar in sv.c has a stack-based crash that can lead to remote code execution or local privilege escalation...

9.8CVSS8AI score0.02046EPSS
Exploits1References3
OSV
OSV
added 2023/08/22 7:16 p.m.2 views

DEBIAN-CVE-2022-48522

In Perl 5.34.0, function Sfinduninitvar in sv.c has a stack-based crash that can lead to remote code execution or local privilege escalation...

9.8CVSS8AI score0.02046EPSS
Exploits1References1
OSV
OSV
added 2023/08/22 7:16 p.m.9 views

UBUNTU-CVE-2022-48522

In Perl 5.34.0, function Sfinduninitvar in sv.c has a stack-based crash that can lead to remote code execution or local privilege escalation...

9.8CVSS7.5AI score0.02046EPSS
Exploits1References4
EUVD
EUVD
added 2023/08/22 12:0 a.m.5 views

EUVD-2022-51218

In Perl 5.34.0, function Sfinduninitvar in sv.c has a stack-based crash that can lead to remote code execution or local privilege escalation...

9.8CVSS7.6AI score0.02046EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/08/22 12:0 a.m.6 views

Perl 缓冲区错误漏洞

Perl is a general-purpose, interpreted, dynamic cross-platform programming language from the PERL community. A security vulnerability exists in Perl version 5.34.0, which stems from a stack crash issue in the function Sfinduninitvar, and can be exploited by an attacker to perform remote code...

9.8CVSS8AI score0.02046EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2022/11/21 12:0 a.m.27 views

Xenstore: recursive operations causing xenstored stack exhaustion (XSA-418)

Xenstore: xenstored is using recursion for some Xenstore operations e.g. for deleting a sub-tree of Xenstore nodes. With sufficiently deep nesting levels this can result in stack exhaustion leading to a crash. Note that Nessus has not tested for this issue but has instead relied only on the...

6.5CVSS6.3AI score0.00269EPSS
Exploits0References2
ICS
ICS
added 2022/06/14 12:0 a.m.123 views

Siemens SCALANCE LPE9403 Third-Party Vulnerabilities

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely, low attack complexity Vendor: Siemens Equipment: SCALANCE LPE9403 Vulnerabilities: Multiple 2. RISK EVALUATION Successful exploitation of these vulnerabilities could cause crashes and unrestricted file access, impacting the...

9.8CVSS8.3AI score0.88106EPSS
Exploits106References11
OSV
OSV
added 2022/04/15 6:15 p.m.2 views

UBUNTU-CVE-2021-44504

An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. Using crafted input, an attacker can cause a size variable, stored as an signed int, to equal an extremely large value, which is interpreted as a negative value during a check. This value is then used in a memc...

7.5CVSS7.2AI score0.01535EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.27 views

Mitsubishi Electric MELSEC-Q Series PLCs Uncontrolled Resource Consumption (CVE-2019-6535)

Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior. A remote attacker can send specific bytes over Port 5007 that will result in an Ethernet...

7.5CVSS7.5AI score0.04274EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/07/20 10:40 p.m.114 views

Important: Red Hat Security Advisory: systemd security update

An update for systemd is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

5.5CVSS6.7AI score0.0865EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2021/07/20 10:33 p.m.4 views

systemd: uncontrolled allocation on the stack in function unit_name_path_escape leads to crash

A flaw was found in systemd. The use of alloca function with an uncontrolled size in function unitnamepathescape allows a local attacker, able to mount a filesystem on a very long path, to crash systemd and the whole system by allocating a very large space in the stack. The highest threat from th...

5.5CVSS7.3AI score0.0865EPSS
Exploits2References6
NVD
NVD
added 2021/06/25 7:15 p.m.18 views

CVE-2021-21005

In Phoenix Contact FL SWITCH SMCS series products in multiple versions if an attacker sends a hand-crafted TCP-Packet with the Urgent-Flag set and the Urgent-Pointer set to 0, the network stack will crash. The device needs to be rebooted afterwards...

7.8CVSS0.00678EPSS
Exploits0References1
OSV
OSV
added 2021/06/25 7:15 p.m.8 views

CVE-2021-21005

In Phoenix Contact FL SWITCH SMCS series products in multiple versions if an attacker sends a hand-crafted TCP-Packet with the Urgent-Flag set and the Urgent-Pointer set to 0, the network stack will crash. The device needs to be rebooted afterwards...

7.5CVSS7.1AI score0.00678EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/06/02 12:0 a.m.6 views

GNU Binutils 安全漏洞

GNU Binutils GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU community. The programs are primarily used to work with target files in a variety of formats, and provide linkers, assemblers, and other tools for target files and archives. A...

7.5CVSS7.2AI score0.024EPSS
Exploits0References7
CNVD
CNVD
added 2020/08/01 12:0 a.m.1 views

Low-power Bluetooth (BLE) connectivity vulnerability in LED smart bulbs at Foshan Electric Lighting Co.

LED smart light bulb is a new technology light source, which has the advantages of beauty, fashion, energy saving, environmental protection, safety and so on, and it can be controlled by intelligent devices. Foshan Electric Lighting Co., Ltd LED smart bulb there is a low-power Bluetooth BLE...

7.2AI score
Exploits0
CNVD
CNVD
added 2020/06/05 12:0 a.m.3 views

Foxit PhantomPDF Resource Management Error Vulnerability (CNVD-2020-32088)

Foxit PhantomPDF is China's Foxit Foxit company a PDF document reader. A security vulnerability exists in Foxit PhantomPDF versions prior to 8.3.12. An attacker can exploit the vulnerability to exhaust the stack crash...

7.5CVSS6.8AI score0.0153EPSS
Exploits0References1
Prion
Prion
added 2019/02/05 7:29 p.m.20 views

Stack overflow

Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior. A remote attacker can send specific bytes over Port 5007 that will result in an Ethernet...

5CVSS7.5AI score0.04274EPSS
Exploits0References2Affected Software18
OSV
OSV
added 2019/02/05 7:29 p.m.5 views

CVE-2019-6535

Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior. A remote attacker can send specific bytes over Port 5007 that will result in an Ethernet...

7.5CVSS7.2AI score0.04274EPSS
Exploits0References3
Cvelist
Cvelist
added 2019/02/05 7:0 p.m.29 views

CVE-2019-6535 Mitsubishi Electric MELSEC-Q Series PLCs Resource Exhaustion

Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior. A remote attacker can send specific bytes over Port 5007 that will result in an Ethernet...

7.5CVSS7.5AI score0.04274EPSS
Exploits0References2
Rows per page
Query Builder