CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5093 matches found

RedhatCVE•added 2021/02/15 9:58 p.m.•29 views

CVE-2021-20243

A flaw was found in ImageMagick in MagickCore/resize.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability...

5.5CVSS2.1AI score0.01058EPSS

Exploits0References4

RedhatCVE•added 2021/02/15 9:58 p.m.•27 views

CVE-2021-20241

A flaw was found in ImageMagick in coders/jp2.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability...

5.5CVSS2.1AI score0.01117EPSS

Exploits0References4

RedhatCVE•added 2021/02/15 9:44 p.m.•23 views

CVE-2021-20240

A flaw was found in gdk-pixbuf. An integer wraparound leading to an out of bounds write can occur when a crafted GIF image is loaded. An attacker may cause applications to crash or could potentially execute code on the victim system. The highest threat from this vulnerability is to data...

8.8CVSS2.8AI score0.02346EPSS

Exploits0References3

RedhatCVE•added 2021/02/15 7:4 p.m.•22 views

CVE-2020-13558

A use-after-free issue was found in the AudioSourceProviderGStreamer class of WebKitGTK and WPE WebKit in versions prior to 2.30.5. Processing maliciously crafted web content may lead to arbitrary code execution. The highest threat from this vulnerability is to data confidentiality and integrity ...

8.8CVSS5.2AI score0.01792EPSS

Exploits1References4

RedHat Linux•added 2021/02/15 6:28 p.m.•2 views

libuv: buffer overflow in realpath

A flaw has been found in libuv. The realpath implementation performs an incorrect calculation when allocating a buffer, leading to a potential buffer overflow. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

7.8CVSS7.7AI score0.00714EPSS

Exploits0References4

RedHat Linux•added 2021/02/15 7:33 a.m.•4 views

subversion: Remote unauthenticated denial of service in mod_authz_svn

A null-pointer-dereference flaw was found in modauthzsvn of subversion. This flaw allows a remote, unauthenticated attacker to cause a denial of service in some server configurations. The highest threat from this vulnerability is to system availability...

7.5CVSS7.3AI score0.37516EPSS

Exploits1References5

RedhatCVE•added 2021/02/12 3:32 p.m.•38 views

CVE-2021-20237

An uncontrolled resource consumption memory leak flaw was found in ZeroMQ's src/xpub.cpp. This flaw allows a remote unauthenticated attacker to send crafted PUB messages that consume excessive memory if the CURVE/ZAP authentication is disabled on the server, causing a denial of service. The highe...

7.5CVSS3.4AI score0.01694EPSS

Exploits0References4

RedhatCVE•added 2021/02/12 3:29 p.m.•38 views

CVE-2021-20236

A flaw was found in the ZeroMQ server. This flaw allows a malicious client to cause a stack buffer overflow on the server by sending crafted topic subscription requests and then unsubscribing. The highest threat from this vulnerability is to confidentiality, integrity, as well as system...

9.8CVSS8.5AI score0.01602EPSS

Exploits0References4

RedhatCVE•added 2021/02/12 3:29 p.m.•37 views

CVE-2021-20234

An uncontrolled resource consumption memory leak flaw was found in the ZeroMQ client in src/pipe.cpp. This issue causes a client that connects to multiple malicious or compromised servers to crash. The highest threat from this vulnerability is to system availability...

6.5CVSS7.7AI score0.01073EPSS

Exploits1References4

Tenable Nessus•added 2021/02/12 12:0 a.m.•27 views

Fedora 33 : spice-vdagent (2021-09ce0cdfac)

The remote Fedora 33 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-09ce0cdfac advisory. - A flaw was found in the way the spice-vdagentd daemon handled file transfers from the host system to the virtual machine. Any unprivileged local...

6.4CVSS6AI score0.0049EPSS

Exploits4References5

RedhatCVE•added 2021/02/11 8:3 p.m.•18 views

CVE-2019-11360

A buffer overflow flaw was found in iptables-restore. This flaw allows a local attacker with sufficiently high privileges, such as root, to provide a specially crafted file, causing a program crash or potential code execution. The highest threat from this vulnerability is to system availability...

4.2CVSS5.1AI score0.01809EPSS

Exploits1References4

OSV•added 2021/02/11 6:15 p.m.•19 views

CVE-2021-20188

A flaw was found in podman before 1.7.0. File permissions for non-root users running in a privileged container are not correctly checked. This flaw can be abused by a low-privileged user inside the container to access any other file in the container, even if owned by the root user inside the...

7CVSS6.5AI score

Exploits0References1

OSV•added 2021/02/11 6:15 p.m.•2 views

DEBIAN-CVE-2021-20188

7CVSS6.8AI score0.00261EPSS

Exploits0References1

OSV•added 2021/02/11 6:15 p.m.•2 views

DEBIAN-CVE-2020-35498

A vulnerability was found in openvswitch. A limitation in the implementation of userspace packet parsing can allow a malicious user to send a specially crafted packet causing the resulting megaflow in the kernel to be too wide, potentially causing a denial of service. The highest threat from this...

7.5CVSS7.3AI score0.08026EPSS

Exploits0References1