Lucene search
K

5094 matches found

UbuntuCve
UbuntuCve
added 2021/04/01 2:15 p.m.31 views

CVE-2021-20234

An uncontrolled resource consumption memory leak flaw was found in the ZeroMQ client in versions before 4.3.3 in src/pipe.cpp. This issue causes a client that connects to multiple malicious or compromised servers to crash. The highest threat from this vulnerability is to system availability...

6.5CVSS6.8AI score0.01073EPSS
Exploits1References6
Prion
Prion
added 2021/04/01 2:15 p.m.22 views

Design/Logic Flaw

An uncontrolled resource consumption memory leak flaw was found in the ZeroMQ client in versions before 4.3.3 in src/pipe.cpp. This issue causes a client that connects to multiple malicious or compromised servers to crash. The highest threat from this vulnerability is to system availability...

4.3CVSS6.5AI score0.01073EPSS
Exploits1References2Affected Software1
UbuntuCve
UbuntuCve
added 2021/04/01 2:15 p.m.44 views

CVE-2021-20296

A flaw was found in OpenEXR in versions before 3.0.0-beta. A crafted input file supplied by an attacker, that is processed by the Dwa decompression functionality of OpenEXR's IlmImf library, could cause a NULL pointer dereference. The highest threat from this vulnerability is to system availabili...

5.3CVSS6.8AI score0.01747EPSS
Exploits0References4
OSV
OSV
added 2021/04/01 2:15 p.m.0 views

UBUNTU-CVE-2021-20296

A flaw was found in OpenEXR in versions before 3.0.0-beta. A crafted input file supplied by an attacker, that is processed by the Dwa decompression functionality of OpenEXR's IlmImf library, could cause a NULL pointer dereference. The highest threat from this vulnerability is to system availabili...

5.3CVSS6.7AI score0.01747EPSS
Exploits0References5
Cvelist
Cvelist
added 2021/04/01 1:46 p.m.30 views

CVE-2021-20234

An uncontrolled resource consumption memory leak flaw was found in the ZeroMQ client in versions before 4.3.3 in src/pipe.cpp. This issue causes a client that connects to multiple malicious or compromised servers to crash. The highest threat from this vulnerability is to system availability...

7.9AI score0.01073EPSS
Exploits1References2
CVE
CVE
added 2021/04/01 1:46 p.m.106 views

CVE-2021-20234

CVE-2021-20234 is a memory-leak/ uncontrolled resource consumption flaw in the ZeroMQ client before 4.3.3 (src/pipe.cpp). It can cause a client that connects to multiple malicious or compromised servers to crash, impacting availability. Affected: ZeroMQ client library (libzmq) prior to 4.3.3. Exp...

6.5CVSS7.5AI score0.01073EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVE
added 2021/04/01 1:46 p.m.46 views

CVE-2021-20234

An uncontrolled resource consumption memory leak flaw was found in the ZeroMQ client in versions before 4.3.3 in src/pipe.cpp. This issue causes a client that connects to multiple malicious or compromised servers to crash. The highest threat from this vulnerability is to system availability...

6.5CVSS7.7AI score0.01073EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2021/04/01 7:0 a.m.3 views

A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package whose signature header was modified to cause RPM database corruption and execute code. The highest threat from this vulnerability is to data integrity confidentiality and system availability.

...

7CVSS9.3AI score0.00827EPSS
Exploits0
Cvelist
Cvelist
added 2021/04/01 12:0 a.m.34 views

CVE-2021-20296

A flaw was found in OpenEXR in versions before 3.0.0-beta. A crafted input file supplied by an attacker, that is processed by the Dwa decompression functionality of OpenEXR's IlmImf library, could cause a NULL pointer dereference. The highest threat from this vulnerability is to system availabili...

5.7AI score0.01747EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2021/04/01 12:0 a.m.32 views

CVE-2021-20296

A flaw was found in OpenEXR in versions before 3.0.0-beta. A crafted input file supplied by an attacker, that is processed by the Dwa decompression functionality of OpenEXR's IlmImf library, could cause a NULL pointer dereference. The highest threat from this vulnerability is to system availabili...

5.3CVSS5.4AI score0.01747EPSS
Exploits0
NVD
NVD
added 2021/03/31 2:15 p.m.17 views

CVE-2021-3478

There's a flaw in OpenEXR's scanline input file functionality in versions before 3.0.0-beta. An attacker able to submit a crafted file to be processed by OpenEXR could consume excessive system memory. The greatest impact of this flaw is to system availability...

5.5CVSS0.0096EPSS
Exploits0References5
NVD
NVD
added 2021/03/31 2:15 p.m.17 views

CVE-2021-3479

There's a flaw in OpenEXR's Scanline API functionality in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to be processed by OpenEXR could trigger excessive consumption of memory, resulting in an impact to system availability...

5.5CVSS0.01EPSS
Exploits0References5
OSV
OSV
added 2021/03/31 2:15 p.m.29 views

CVE-2021-3478

There's a flaw in OpenEXR's scanline input file functionality in versions before 3.0.0-beta. An attacker able to submit a crafted file to be processed by OpenEXR could consume excessive system memory. The greatest impact of this flaw is to system availability...

5.5CVSS6.4AI score
Exploits0References5
OSV
OSV
added 2021/03/31 2:15 p.m.2 views

DEBIAN-CVE-2021-3478

There's a flaw in OpenEXR's scanline input file functionality in versions before 3.0.0-beta. An attacker able to submit a crafted file to be processed by OpenEXR could consume excessive system memory. The greatest impact of this flaw is to system availability...

5.5CVSS6.7AI score0.0096EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/03/31 2:15 p.m.35 views

CVE-2021-3479

There's a flaw in OpenEXR's Scanline API functionality in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to be processed by OpenEXR could trigger excessive consumption of memory, resulting in an impact to system availability...

5.5CVSS6.8AI score0.01EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2021/03/31 2:15 p.m.26 views

CVE-2021-3478

There's a flaw in OpenEXR's scanline input file functionality in versions before 3.0.0-beta. An attacker able to submit a crafted file to be processed by OpenEXR could consume excessive system memory. The greatest impact of this flaw is to system availability...

5.5CVSS6.8AI score0.0096EPSS
Exploits0References2
Prion
Prion
added 2021/03/31 2:15 p.m.24 views

Code injection

There's a flaw in OpenEXR's Scanline API functionality in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to be processed by OpenEXR could trigger excessive consumption of memory, resulting in an impact to system availability...

4.3CVSS5.4AI score0.01EPSS
Exploits0References5Affected Software2
Prion
Prion
added 2021/03/31 2:15 p.m.31 views

Input validation

There's a flaw in OpenEXR's scanline input file functionality in versions before 3.0.0-beta. An attacker able to submit a crafted file to be processed by OpenEXR could consume excessive system memory. The greatest impact of this flaw is to system availability...

4.3CVSS5.4AI score0.0096EPSS
Exploits0References5Affected Software2
RedHat Linux
RedHat Linux
added 2021/03/31 12:59 p.m.3 views

openvswitch: limitation in the OVS packet parsing in userspace leads to DoS

A vulnerability was found in openvswitch. A limitation in the implementation of userspace packet parsing can allow a malicious user to send a specially crafted packet causing the resulting megaflow in the kernel to be too wide, potentially causing a denial of service. The highest threat from this...

7.8CVSS5.7AI score0.08026EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/03/31 12:59 p.m.2 views

lldp/openvswitch: denial of service via externally triggered memory leak

A flaw was found in multiple versions of Open vSwitch. Specially crafted LLDP packets can cause memory to be lost when allocating data to handle specific optional TLVs, potentially causing a denial of service. The highest threat from this vulnerability is to system availability...

7.5CVSS5.7AI score0.03235EPSS
Exploits0References5
Rows per page
Query Builder