CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

126 matches found

OSV•added 2022/04/20 12:21 p.m.•44 views

ALSA-2022:1445 Important: java-17-openjdk security and bug fix update

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fixes: OpenJDK: Improper ECDSA signature verification Libraries, 8277233 CVE-2022-21449 OpenJDK: Defective secure validation in Apache Santuario Libraries, 82780...

7.5CVSS6.9AI score0.34335EPSS

Exploits6References7

Tenable Nessus•added 2022/04/20 12:0 a.m.•57 views

RHEL 8 : java-11-openjdk (RHSA-2022:1443)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:1443 advisory. The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fixe...

7.5CVSS6.3AI score0.00167EPSS

Exploits0References12

OSV•added 2022/03/07 11:3 a.m.•1 views

OESA-2022-1548 unzip security update

A utility for unpacking zip files. Security Fixes: A flaw was found in Unzip. The vulnerability occurs during the conversion of a wide string to a local string that leads to a heap of out-of-bound write. This flaw allows an attacker to input a specially crafted zip file, leading to a crash or cod...

5.5CVSS6.7AI score0.00242EPSS

Exploits2References3

OSV•added 2022/02/09 11:15 p.m.•0 views

DEBIAN-CVE-2022-0530

A flaw was found in Unzip. The vulnerability occurs during the conversion of a wide string to a local string that leads to a heap of out-of-bound write. This flaw allows an attacker to input a specially crafted zip file, leading to a crash or code execution...

5.5CVSS5.9AI score0.00163EPSS

Exploits1References1

OSV•added 2022/02/09 11:15 p.m.•2 views

AZL-35344 CVE-2022-0530 affecting package unzip for versions less than 6.0-21

5.5CVSS6.4AI score0.00163EPSS

Exploits1References1

OSV•added 2022/02/09 11:15 p.m.•3 views

AZL-8533 CVE-2022-0530 affecting package unzip for versions less than 6.0-21

5.5CVSS6.5AI score0.00163EPSS

Exploits1References1

OSV•added 2022/02/09 11:15 p.m.•1 views

ALPINE-CVE-2022-0530

5.5CVSS7AI score0.00163EPSS

Exploits1References1

OSV•added 2022/02/09 11:15 p.m.•1 views

DEBIAN-CVE-2022-0529

5.5CVSS5.9AI score0.00242EPSS

Exploits1References1

OSV•added 2022/02/09 11:15 p.m.•0 views

ALPINE-CVE-2022-0529

5.5CVSS7AI score0.00242EPSS

Exploits1References1

Prion•added 2022/02/09 11:15 p.m.•20 views

Heap overflow

4.3CVSS5.3AI score0.00242EPSS

Exploits1References5Affected Software4

OSV•added 2022/02/09 11:15 p.m.•1 views

UBUNTU-CVE-2022-0529

5.5CVSS6.7AI score0.00242EPSS

Exploits1References4

CNNVD•added 2022/02/09 12:0 a.m.•1 views

Info-ZIP UnZip 缓冲区错误漏洞

Info-ZIP UnZip is a set of tools for decompressing the ".zip" file format on Unix platforms developed by Greg Roelofs, an individual developer in the United States. A buffer error vulnerability exists in Info-ZIP unzip, which is caused by a security issue in the conversion of wide strings to nati...

5.5CVSS6.6AI score0.00242EPSS

Exploits1References11

Tenable Nessus•added 2021/06/01 12:0 a.m.•18 views

openSUSE Security Update : libxls (openSUSE-2021-812)

This update for libxls fixes the following issues : libxsl was updated to release 1.6.2 : - Fix NULL pointer dereferences in the xls2csv tool boo1179532 CVE-2020-27819 Update to release 1.6.1 - Enabled decoding of non-Unicode character sets in older BIFF5 XLS files. - Improved string conversion...

5.5CVSS5.6AI score0.00269EPSS

Exploits0References2

OpenVAS•added 2020/07/03 12:0 a.m.•39 views

Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2020-1746)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.10242EPSS

Exploits0References2

Veracode•added 2020/04/10 12:34 a.m.•30 views

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as CIFS clients convert Unicode strings sent by a server to their local character sets, and then write those strings into memory. If a malicious server sent a long enough string, it could write past the end of the target memo...

7.1CVSS2.8AI score0.01839EPSS

Exploits1References43Affected Software2

Tenable Nessus•added 2020/02/25 12:0 a.m.•92 views

EulerOS 2.0 SP8 : samba (EulerOS-SA-2020-1179)

According to the versions of the samba packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There is an issue in all samba 4.11.x versions before 4.11.5, all samba 4.10.x versions before 4.10.12 and all samba 4.9.x versions before 4.9.18...

6.5CVSS6.7AI score0.10242EPSS

Exploits0References3

Veracode•added 2020/01/29 5:37 a.m.•17 views

Denial Of Service (DoS)

tensorflow is vulnerable to denial of service DoS. The vulnerability exists due to the lack of checks during conversion of a string in eager mode from Python to a tf.float16 value...

7.5CVSS4.5AI score0.00232EPSS

Exploits1References5Affected Software3

NVD•added 2020/01/28 10:15 p.m.•22 views

CVE-2020-5215

In TensorFlow before 1.15.2 and 2.0.1, converting a string from Python to a tf.float16 value results in a segmentation fault in eager mode as the format checks for this use case are only in the graph mode. This issue can lead to denial of service in inference/training where a malicious attacker c...

7.5CVSS5.7AI score0.00232EPSS

Exploits1References4