Lucene search
K

11 matches found

NVD
NVD
added 2025/06/10 8:15 a.m.13 views

CVE-2025-27817

A possible arbitrary file read and SSRF vulnerability has been identified in Apache Kafka Client. Apache Kafka Clients accept configuration data for setting the SASL/OAUTHBEARER connection with the brokers, including "sasl.oauthbearer.token.endpoint.url" and "sasl.oauthbearer.jwks.endpoint.url"...

7.5CVSS0.62368EPSS
Exploits2References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:17 a.m.4 views

SUSE CVE-2005-3089

Firefox 1.0.6 allows attackers to cause a denial of service crash via a Proxy Auto-Config PAC script that uses an eval statement. NOTE: it is not clear whether an untrusted party has any role in triggering this issue, so it might not be a vulnerability...

2.6CVSS6.7AI score0.01683EPSS
Exploits0References3
Veracode
Veracode
added 2020/10/12 12:7 a.m.21 views

Arbitrary Code Execution

php-imagick is vulnerable to arbitrary code execution. Lack of boundary checks when writing to an array of values in ImagickKernel::fromMatrix can potentially lead to out of bounds write to memory if the function is called with the data controlled by untrusted party...

9.8CVSS5.1AI score0.01972EPSS
Exploits0References14Affected Software1
RedhatCVE
RedhatCVE
added 2019/05/10 9:20 a.m.27 views

CVE-2019-11037

In PHP imagick extension in versions between 3.3.0 and 3.4.4, writing to an array of values in ImagickKernel::fromMatrix function did not check that the address will be within the allocated array. This could lead to out of bounds write to memory if the function is called with the data controlled ...

9.8CVSS4.2AI score0.01972EPSS
Exploits0References3
NVD
NVD
added 2019/05/03 8:29 p.m.15 views

CVE-2019-11037

In PHP imagick extension in versions between 3.3.0 and 3.4.4, writing to an array of values in ImagickKernel::fromMatrix function did not check that the address will be within the allocated array. This could lead to out of bounds write to memory if the function is called with the data controlled ...

9.8CVSS7.2AI score0.01972EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2019/05/03 7:28 p.m.27 views

CVE-2019-11037

In PHP imagick extension in versions between 3.3.0 and 3.4.4, writing to an array of values in ImagickKernel::fromMatrix function did not check that the address will be within the allocated array. This could lead to out of bounds write to memory if the function is called with the data controlled ...

9.8CVSS7.3AI score0.01972EPSS
Exploits0
Cvelist
Cvelist
added 2019/05/03 7:28 p.m.26 views

CVE-2019-11037 Out of bounds memory write in PHP Imagick extension

In PHP imagick extension in versions between 3.3.0 and 3.4.4, writing to an array of values in ImagickKernel::fromMatrix function did not check that the address will be within the allocated array. This could lead to out of bounds write to memory if the function is called with the data controlled ...

4.9CVSS9.4AI score0.01972EPSS
Exploits0References11
AlpineLinux
AlpineLinux
added 2018/07/06 7:29 p.m.36 views

CVE-2018-13410

DISPUTED Info-ZIP Zip 3.0, when the -T and -TT command-line options are used, allows attackers to cause a denial of service invalid free and application crash or possibly have unspecified other impact because of an off-by-one error. NOTE: it is unclear whether there are realistic scenarios in whi...

9.8CVSS6.6AI score0.03977EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2018/07/06 7:29 p.m.34 views

CVE-2018-13410

Info-ZIP Zip 3.0, when the -T and -TT command-line options are used, allows attackers to cause a denial of service invalid free and application crash or possibly have unspecified other impact because of an off-by-one error. NOTE: it is unclear whether there are realistic scenarios in which an...

9.8CVSS7.5AI score0.03977EPSS
Exploits0References3
securityvulns
securityvulns
added 2011/09/16 12:0 a.m.45 views

DigiNotar fraudulent certificates

Well known domain names certificates were issued to untrusted party...

2.6CVSS3.4AI score0.0343EPSS
Exploits1References2Affected Software6
RedHat Linux
RedHat Linux
added 2005/09/22 8:16 p.m.5 views

security flaw

Firefox 1.0.6 allows attackers to cause a denial of service crash via a Proxy Auto-Config PAC script that uses an eval statement. NOTE: it is not clear whether an untrusted party has any role in triggering this issue, so it might not be a vulnerability...

2.6CVSS5.8AI score0.01683EPSS
Exploits0References4
Rows per page
Query Builder