Lucene search
K

76 matches found

OSV
OSV
added 2018/02/07 11:29 p.m.4 views

UBUNTU-CVE-2017-5125

Heap buffer overflow in Skia in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.5AI score0.01731EPSS
Exploits0References3
OSV
OSV
added 2017/12/07 12:0 a.m.3 views

UBUNTU-CVE-2017-17456

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2017-14245. Reason: This candidate is a duplicate of CVE-2017-14245. Notes: All CVE users should reference CVE-2017-14245 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

6.7AI score
Exploits0References3
OSV
OSV
added 2017/10/27 6:29 p.m.5 views

UBUNTU-CVE-2017-15931

In radare2 2.0.1, an integer exception negative number leading to an invalid memory access exists in storeversioninfognuverneed in libr/bin/format/elf/elf.c via crafted ELF files on 32bit systems...

7.8CVSS7.1AI score0.01177EPSS
Exploits1References4
OSV
OSV
added 2017/08/02 12:0 a.m.3 views

UBUNTU-CVE-2017-10806

Stack-based buffer overflow in hw/usb/redirect.c in QEMU aka Quick Emulator allows local guest OS users to cause a denial of service QEMU process crash via vectors related to logging debug messages...

5.5CVSS7AI score0.00442EPSS
Exploits0References4
OSV
OSV
added 2017/05/09 8:29 p.m.4 views

UBUNTU-CVE-2017-8855

wolfSSL before 3.11.0 does not prevent wcDhAgree from accepting a malformed DH key...

7.5CVSS7.1AI score0.01118EPSS
Exploits0References3
OSV
OSV
added 2017/03/02 9:59 p.m.3 views

UBUNTU-CVE-2016-10069

coders/mat.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service application crash via a mat file with an invalid number of frames...

5.5CVSS6.8AI score0.01883EPSS
Exploits0References3
OSV
OSV
added 2017/02/15 6:59 a.m.5 views

UBUNTU-CVE-2017-2991

Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable memory corruption vulnerability in the h264 codec related to decompression. Successful exploitation could lead to arbitrary code execution...

9.8CVSS7.6AI score0.08666EPSS
Exploits0References3
OSV
OSV
added 2017/01/13 12:0 a.m.3 views

UBUNTU-CVE-2016-7433

NTP before 4.2.8p9 does not properly perform the initial sync calculations, which allows remote attackers to unspecified impact via unknown vectors, related to a "root distance that did not include the peer dispersion."...

5.3CVSS6.7AI score0.09841EPSS
Exploits0References3
OSV
OSV
added 2016/11/09 12:0 a.m.10 views

UBUNTU-CVE-2016-9243

HKDF in cryptography before 1.5.2 returns an empty byte-string if used with a length less than algorithm.digestsize...

7.5CVSS6.7AI score0.03399EPSS
Exploits0References4
OSV
OSV
added 2016/10/21 12:0 a.m.3 views

UBUNTU-CVE-2016-2848

ISC BIND 9.1.0 through 9.8.4-P2 and 9.9.0 through 9.9.2-P2 allows remote attackers to cause a denial of service assertion failure and daemon exit via malformed options data in an OPT resource record...

7.5CVSS7.2AI score0.25772EPSS
Exploits0References4
OSV
OSV
added 2016/08/02 12:0 a.m.8 views

UBUNTU-CVE-2016-6185

The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrary code via a Trojan horse library under the current working directory...

7.8CVSS7.5AI score0.00787EPSS
Exploits1References4
OSV
OSV
added 2016/06/23 12:0 a.m.3 views

UBUNTU-CVE-2016-2368

Multiple memory corruption vulnerabilities exist in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent via the server could result in multiple buffer overflows, potentially resulting in code execution or memory disclosure...

8.1CVSS7.3AI score0.04554EPSS
Exploits1References5
OSV
OSV
added 2015/09/18 10:59 a.m.2 views

UBUNTU-CVE-2015-5802

WebKit, as used in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-09-16-1 and...

6.8CVSS6.2AI score0.02505EPSS
Exploits0References6
OSV
OSV
added 2015/04/29 8:59 p.m.4 views

UBUNTU-CVE-2015-3026

Icecast before 2.4.2, when a streamauth handler is defined for URL authentication, allows remote attackers to cause a denial of service NULL pointer dereference and crash via a request without login credentials, as demonstrated by a request to "admin/killsource?mount=/test.ogg."...

5CVSS5.8AI score0.04344EPSS
Exploits1References4
OSV
OSV
added 2015/01/08 12:0 a.m.4 views

UBUNTU-CVE-2014-8150

CRLF injection vulnerability in libcurl 6.0 through 7.x before 7.40.0, when using an HTTP proxy, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in a URL...

4.3CVSS7.1AI score0.0681EPSS
Exploits0References4
OSV
OSV
added 2013/05/22 1:29 p.m.3 views

UBUNTU-CVE-2013-2838

Google V8, as used in Google Chrome before 27.0.1453.93, allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...

7.5CVSS7.3AI score0.01539EPSS
Exploits0References46
Rows per page
Query Builder