Lucene search
K

240 matches found

Prion
Prion
added 2021/08/04 2:15 p.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Frontend Taglib module in Liferay Portal 7.4.0 allows remote attackers to inject arbitrary web script or HTML into the management toolbar search via the keywords parameter...

4.3CVSS6AI score0.0075EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.14 views

SUSE: Security Advisory (SUSE-SU-2012:0743-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.7AI score0.03103EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.12 views

SUSE: Security Advisory (SUSE-SU-2019:1374-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.02847EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2020:2968-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.6AI score0.02847EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2021/03/21 12:0 a.m.5 views

The vulnerability of the TagLib::Ogg::FLAC::File::scan function in the TagLib library, which involves reading data beyond the permissible buffer limits, allows attackers to access confidential data.

The vulnerability of the TagLib::Ogg::FLAC::File::scan function in the TagLib library is related to reading data beyond the allowable buffer size. Exploiting this vulnerability could allow a malicious actor to gain access to confidential data...

6.5CVSS6AI score0.02847EPSS
Exploits1References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/03/21 12:0 a.m.6 views

The vulnerability of the rebuildAggregateFrames function in the library for reading and modifying metadata in audio files from TagLib allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the rebuildAggregateFrames function in the library for reading and modifying metadata in audio files from TagLib is related to the unlimited loading of dangerous files. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its...

8.8CVSS6.6AI score0.02207EPSS
Exploits0References9Affected Software3
Tenable Nessus
Tenable Nessus
added 2020/12/15 12:0 a.m.25 views

EulerOS 2.0 SP5 : taglib (EulerOS-SA-2020-2566)

According to the version of the taglib package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based...

6.5CVSS5.8AI score0.02847EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/12/15 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for taglib (EulerOS-SA-2020-2566)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.02847EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.19 views

SUSE SLES12 Security Update : taglib (SUSE-SU-2020:2968-1)

This update for taglib fixes the following issues : CVE-2018-11439: The TagLib::Ogg::FLAC::File::scan function allowed remote attackers to cause information disclosure heap-based buffer over-read via a crafted audio file bsc1096180. Note that Tenable Network Security has extracted the preceding...

6.5CVSS5.4AI score0.02847EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.19 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : taglib Vulnerability (NS-SA-2020-0086)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has taglib packages installed that are affected by a vulnerability: - The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based buffer...

6.5CVSS5.8AI score0.02847EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.19 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : taglib Vulnerability (NS-SA-2020-0056)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has taglib packages installed that are affected by a vulnerability: - The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based buffer...

6.5CVSS5.8AI score0.02847EPSS
Exploits1References2
Gitee
Gitee
added 2020/12/05 4:25 p.m.5 views

Exploit for CVE-2019-2888

CVE-2019-2888 WebLogic EJBTaglibDescriptor XXE漏洞 https://www.oracle.com/security-alerts/cpuoct2019.html fernflower.jar weblogic.jar/weblogic/servlet/ejb2jsp/dd/EJBTaglibDescriptor.class ╭─root@jas502n /var ╰─ find ./ |grep EJBTaglibDescriptor  ✔  8388  18:32:43...

7.2CVSS7AI score0.37597EPSS
Exploits9
OSV
OSV
added 2020/10/20 2:4 p.m.1 views

SUSE-SU-2020:2968-1 Security update for taglib

This update for taglib fixes the following issues: - CVE-2018-11439: The TagLib::Ogg::FLAC::File::scan function allowed remote attackers to cause information disclosure heap-based buffer over-read via a crafted audio file bsc1096180...

6.5CVSS6.5AI score0.02847EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2020/07/20 12:0 a.m.30 views

Amazon Linux 2 : taglib (ALAS-2020-1460)

The version of taglib installed on the remote host is prior to 1.8-8.20130218git. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2020-1460 advisory. The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause informatio...

6.5CVSS5.8AI score0.02847EPSS
Exploits1References3
Amazon
Amazon
added 2020/07/16 12:0 a.m.27 views

Low: taglib

Issue Overview: The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based buffer over-read via a crafted audio file. CVE-2018-11439 Affected Packages: taglib Note: This advisory is applicable to Amazon Linux 2...

6.5CVSS6.1AI score0.02847EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/05/04 12:0 a.m.26 views

FreeBSD : taglib -- heap-based buffer over-read via a crafted audio file (d3f3e818-8d10-11ea-8668-e0d55e2a8bf9)

Webin security lab - dbapp security Ltd reports : The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based buffer over-read via a crafted audio file. C Tenable Network Security, Inc. The descriptive text and...

6.5CVSS5.7AI score0.02847EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2020/04/21 12:0 a.m.23 views

Scientific Linux Security Update : taglib on SL7.x x86_64 (20200407)

taglib: heap-based buffer over-read via a crafted audio file C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid135838; scriptversion"1.3"; scriptsetattributeattribute:"pluginmodificationdate", value:"2024/03/15";...

6.5CVSS4.7AI score0.02847EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/04/10 12:0 a.m.35 views

CentOS 7 : taglib (RHSA-2020:1175)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1175 advisory. - The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based buffer...

6.5CVSS5.8AI score0.02847EPSS
Exploits1References2
Cent OS
Cent OS
added 2020/04/08 7:27 p.m.92 views

taglib security update

CentOS Errata and Security Advisory CESA-2020:1175 An update for taglib is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...

6.5CVSS6.2AI score0.02847EPSS
Exploits1References7
Oracle linux
Oracle linux
added 2020/04/06 12:0 a.m.40 views

taglib security update

1.8-8.20130218git - Fixed OOB read when loading invalid ogg flac file Resolves: bz1585260...

6.5CVSS1.3AI score0.02847EPSS
Exploits1
Rows per page
Query Builder