Lucene search
K

4195 matches found

NVD
NVD
added 2019/03/27 2:29 a.m.24 views

CVE-2019-7167

Zcash, before the Sapling network upgrade 2018-10-28, had a counterfeiting vulnerability. A key-generation process, during evaluation of polynomials related to a to-be-proven statement, produced certain bypass elements. Availability of these elements allowed a cheating prover to bypass a...

7.5CVSS7.6AI score0.01705EPSS
Exploits0References3
Prion
Prion
added 2019/03/27 2:29 a.m.20 views

Design/Logic Flaw

Zcash, before the Sapling network upgrade 2018-10-28, had a counterfeiting vulnerability. A key-generation process, during evaluation of polynomials related to a to-be-proven statement, produced certain bypass elements. Availability of these elements allowed a cheating prover to bypass a...

5CVSS7.6AI score0.01705EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2019/03/27 2:29 a.m.22 views

CVE-2019-7167

Zcash, before the Sapling network upgrade 2018-10-28, had a counterfeiting vulnerability. A key-generation process, during evaluation of polynomials related to a to-be-proven statement, produced certain bypass elements. Availability of these elements allowed a cheating prover to bypass a...

7.5CVSS6.8AI score
Exploits0References3
Cvelist
Cvelist
added 2019/03/27 1:37 a.m.28 views

CVE-2019-7167

Zcash, before the Sapling network upgrade 2018-10-28, had a counterfeiting vulnerability. A key-generation process, during evaluation of polynomials related to a to-be-proven statement, produced certain bypass elements. Availability of these elements allowed a cheating prover to bypass a...

7.6AI score0.01705EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2019/03/25 1:20 p.m.41 views

CVE-2019-9936

In SQLite 3.27.2, running fts5 prefix queries inside a transaction could trigger a heap-based buffer over-read in fts5HashEntrySort in sqlite3.c, which may lead to an information leak. This is related to ext/fts5/fts5hash.c...

7.5CVSS2.8AI score0.05673EPSS
Exploits0References3
Prion
Prion
added 2019/03/22 8:29 a.m.32 views

Heap overflow

In SQLite 3.27.2, running fts5 prefix queries inside a transaction could trigger a heap-based buffer over-read in fts5HashEntrySort in sqlite3.c, which may lead to an information leak. This is related to ext/fts5/fts5hash.c...

5CVSS8.2AI score0.05673EPSS
Exploits0References13Affected Software1
OSV
OSV
added 2019/03/22 8:29 a.m.0 views

DEBIAN-CVE-2019-9936

In SQLite 3.27.2, running fts5 prefix queries inside a transaction could trigger a heap-based buffer over-read in fts5HashEntrySort in sqlite3.c, which may lead to an information leak. This is related to ext/fts5/fts5hash.c...

7.5CVSS7.6AI score0.05673EPSS
Exploits0References1
CVE
CVE
added 2019/03/22 7:7 a.m.232 views

CVE-2019-9936

CVE-2019-9936 is a SQLite vulnerability in which, on SQLite 3.27.2, running fts5 prefix queries inside a transaction can trigger a heap-based buffer over-read in fts5HashEntrySort (sqlite3.c), potentially causing an information leak. The description is corroborated by IBM’s Security Bulletin list...

7.5CVSS8.2AI score0.05673EPSS
Exploits0References13Affected Software1
OSV
OSV
added 2019/03/22 12:0 a.m.1 views

UBUNTU-CVE-2019-9936

In SQLite 3.27.2, running fts5 prefix queries inside a transaction could trigger a heap-based buffer over-read in fts5HashEntrySort in sqlite3.c, which may lead to an information leak. This is related to ext/fts5/fts5hash.c...

7.5CVSS6.8AI score0.05673EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2019/03/20 12:0 a.m.27 views

CVE-2019-9806

A vulnerability exists during authorization prompting for FTP transaction where successive modal prompts are displayed and cannot be immediately dismissed. This allows for a denial of service DOS attack. This vulnerability affects Firefox 66...

7.5CVSS7.1AI score0.01081EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2019/03/13 12:0 a.m.4 views

A vulnerability in the transaction.c file of the Linux operating system’s kernel allows a hacker to trigger a service failure or increase their privileges.

The vulnerability in the transaction.c file of the Linux operating system is related to writing data beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause service failures or increase their privileges by using a specially created ext4 file system image...

5.5CVSS6.7AI score0.00717EPSS
Exploits1References32Affected Software1
Hacker One
Hacker One
added 2019/03/07 8:46 p.m.19 views

Monero: RingCT malformed tx prevents target from being able to sweep balance

Summary: An attacker can send a malformed RingCT transaction to an attackee wallet that prevents the attackee from sweeping their wallet balance. This is done by the attacker changing the mask amount in genRctSimple with a modified wallet. The attacker does not need any intervention from the...

7AI score
Exploits0
NVD
NVD
added 2019/03/05 6:29 p.m.18 views

CVE-2019-4032

IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.1.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-ForceID: 155998...

9.8CVSS7.2AI score0.01551EPSS
Exploits0References2
Prion
Prion
added 2019/03/05 6:29 p.m.15 views

Sql injection

IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.1.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-ForceID: 155998...

7.5CVSS9.5AI score0.01551EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/03/05 6:0 p.m.24 views

CVE-2019-4032

IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.1.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-ForceID: 155998...

6.3CVSS9.6AI score0.01551EPSS
Exploits0References2
CVE
CVE
added 2019/03/05 6:0 p.m.45 views

CVE-2019-4032

A set of IBM Financial Transaction Manager products are affected by CVE-2019-4032 (SQL injection): FTM for Digital Payments for Multi-Platform (DP) v3.1.0 vulnerable to remote SQL injection enabling viewing/modifying/deleting back-end data. IBM advisories list affected ranges and fixes: FTM DP pa...

9.8CVSS9.6AI score0.01551EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2019/03/05 12:0 a.m.5 views

PT-2019-16850 · Ibm · Ibm Financial Transaction Manager For Digital Payments For Multi-Platform

Name of the Vulnerable Software and Affected Versions: IBM Financial Transaction Manager for Digital Payments for Multi-Platform version 3.1.0 Description: The issue allows a remote attacker to send specially-crafted SQL statements, which could enable the attacker to view, add, modify, or delete...

9.8CVSS6.8AI score0.01551EPSS
Exploits0References4
CNVD
CNVD
added 2019/02/28 12:0 a.m.5 views

Wireshark Null Pointer Dereference Vulnerability (CNVD-2019-18501)

Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A null pointer dereference vulnerability exists in the TCAP parser in Wireshark versions...

7.5CVSS8.1AI score0.03863EPSS
Exploits1References1
OSV
OSV
added 2019/02/27 12:0 a.m.1 views

UBUNTU-CVE-2019-9208

In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the TCAP dissector could crash. This was addressed in epan/dissectors/asn1/tcap/tcap.cnf by avoiding NULL pointer dereferences...

7.5CVSS6.8AI score0.03863EPSS
Exploits1References6
IBM Security Bulletins
IBM Security Bulletins
added 2019/02/22 5:45 p.m.19 views

Security Bulletin: Financial Transaction Manager for Corporate Payment Services for Multi-Platform v2.1.1 is affected by a potential SQL Injection vulnerability CVE-2018-1819

Summary Financial Transaction Manager for Corporate Payment Services for Multi-Platform FTM CPS has addressed the following vulnerability: Potential SQL Injection CVE-2018-1819 Vulnerability Details CVEID: CVE-2018-1819 DESCRIPTION: IBM Financial Transaction Manager for Digital Payments for...

8.8CVSS1AI score0.01659EPSS
Exploits0Affected Software1
Rows per page
Query Builder