Lucene search
K

38 matches found

OSV
OSV
added 2022/10/17 6:15 p.m.4 views

UBUNTU-CVE-2022-3559

A vulnerability was found in Exim and classified as problematic. This issue affects some unknown processing of the component Regex Handler. The manipulation leads to use after free. The name of the patch is 4e9ed49f8f12eb331b29bd5b6dc3693c520fddc2. It is recommended to apply a patch to fix this...

7.5CVSS6.1AI score0.03661EPSS
Exploits0References3
OSV
OSV
added 2022/01/20 10:15 p.m.4 views

UBUNTU-CVE-2021-46342

There is an Assertion 'ecmaislexicalenvironment objp || !ecmaopobjectisfastarray objp' failed at /jerry-core/ecma/base/ecma-helpers.c in JerryScript 3.0.0...

5.5CVSS5.8AI score0.00621EPSS
Exploits1References3
OSV
OSV
added 2021/09/07 2:15 p.m.1 views

UBUNTU-CVE-2021-33289

In NTFS-3G versions 2021.8.22, when a specially crafted MFT section is supplied in an NTFS image a heap buffer overflow can occur and allow for code execution...

7.8CVSS7.1AI score0.00503EPSS
Exploits0References5
OSV
OSV
added 2021/05/27 12:15 p.m.4 views

UBUNTU-CVE-2021-28651

An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to a buffer-management bug, it allows a denial of service. When resolving a request with the urn: scheme, the parser leaks a small amount of memory. However, there is an unspecified attack methodology that can easily trigger a...

7.5CVSS7.1AI score0.0745EPSS
Exploits1References5
OSV
OSV
added 2021/05/18 8:15 p.m.5 views

UBUNTU-CVE-2021-31321

Telegram Android 7.1.0 2090, Telegram iOS 7.1, and Telegram macOS 7.1 are affected by a Stack Based Overflow in the graysplitcubic function of their custom fork of the rlottie library. A remote attacker might be able to overwrite Telegram's stack memory out-of-bounds on a victim device via a...

7.1CVSS7.1AI score0.01101EPSS
Exploits1References4
OSV
OSV
added 2020/08/10 2:15 p.m.3 views

UBUNTU-CVE-2020-13293

In GitLab before 13.0.12, 13.1.6 and 13.2.3 using a branch with a hexadecimal name could override an existing hash...

7.1CVSS5.8AI score0.01041EPSS
Exploits0References6
OSV
OSV
added 2020/02/14 12:0 a.m.2 views

UBUNTU-CVE-2020-3865

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, Safari 13.0.5, iTunes for Windows 12.10.4, iCloud for Windows 11.0, iCloud for Windows 7.17. Processing maliciously crafted web content may lead to...

8.8CVSS7AI score0.01812EPSS
Exploits0References4
OSV
OSV
added 2019/11/25 3:15 p.m.2 views

UBUNTU-CVE-2019-5853

Inappropriate implementation in JavaScript in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.3AI score0.00984EPSS
Exploits0References2
CNVD
CNVD
added 2019/10/16 12:0 a.m.4 views

Apple Swift Foundation Component Information Disclosure Vulnerability

Apple Swift is an Apple programming language for macOS, iOS, watchOS, and tvOS.Foundation is one of the frameworks that provides basic system services to all applications. A security vulnerability exists in the Foundation component in Apple Swift versions prior to 5.1.1 for Ubuntu-based platforms...

5.5CVSS6.4AI score0.00348EPSS
Exploits0References1
OSV
OSV
added 2017/09/12 12:0 a.m.10 views

UBUNTU-CVE-2017-14400

In ImageMagick 7.0.7-1 Q16, the PersistPixelCache function in magick/cache.c mishandles the pixel cache nexus, which allows remote attackers to cause a denial of service NULL pointer dereference in the function GetVirtualPixels in MagickCore/cache.c via a crafted file...

6.5CVSS7AI score0.02163EPSS
Exploits1References3
OSV
OSV
added 2017/09/09 8:29 a.m.3 views

UBUNTU-CVE-2017-14227

In MongoDB libbson 1.7.0, the bsonitercodewscope function in bson-iter.c miscalculates a bsonutf8validate length argument, which allows remote attackers to cause a denial of service heap-based buffer over-read in the bsonutf8validate function in bson-utf8.c, as demonstrated by bson-to-json.c...

7.5CVSS7.3AI score0.02797EPSS
Exploits0References7
OSV
OSV
added 2017/04/24 7:59 p.m.3 views

UBUNTU-CVE-2017-3561

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.0.38 and Prior to 5.1.20. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM...

8.8CVSS7.2AI score0.01543EPSS
Exploits2References3
OSV
OSV
added 2017/01/11 4:59 a.m.3 views

UBUNTU-CVE-2017-2928

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability related to setting visual mode effects. Successful exploitation could lead to arbitrary code execution...

9.8CVSS7.6AI score0.0502EPSS
Exploits0References3
OSV
OSV
added 2016/05/31 12:0 a.m.4 views

UBUNTU-CVE-2016-1689

Heap-based buffer overflow in content/renderer/media/canvascapturehandler.cc in Google Chrome before 51.0.2704.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted web site...

6.5CVSS7.3AI score0.01025EPSS
Exploits0References4
OSV
OSV
added 2015/08/16 11:59 p.m.7 views

UBUNTU-CVE-2015-3734

WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted web site, a different vulnerability than other WebKit CVE...

6.8CVSS7.5AI score0.02387EPSS
Exploits0References6
OSV
OSV
added 2014/10/02 2:55 p.m.6 views

UBUNTU-CVE-2014-7188

The hvmmsrreadintercept function in arch/x86/hvm/hvm.c in Xen 4.1 through 4.4.x uses an improper MSR range for x2APIC emulation, which allows local HVM guests to cause a denial of service host crash or read data from the hypervisor or other guests via unspecified vectors...

8.3CVSS7.3AI score0.00858EPSS
Exploits0References3
OSV
OSV
added 2014/09/18 10:55 a.m.2 views

UBUNTU-CVE-2014-4410

WebKit, as used in Apple iOS before 8 and Apple TV before 7, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-09-17-1 and...

6.8CVSS7.6AI score0.02762EPSS
Exploits0References5
OSV
OSV
added 2013/05/25 3:18 a.m.4 views

UBUNTU-CVE-2013-2082

Moodle through 2.1.10, 2.2.x before 2.2.10, 2.3.x before 2.3.7, and 2.4.x before 2.4.4 does not enforce capability requirements for reading blog comments, which allows remote attackers to obtain sensitive information via a crafted request...

5CVSS5.8AI score0.02372EPSS
Exploits0References4
Rows per page
Query Builder