Lucene search
+L

4866 matches found

Debian CVE
Debian CVE
added 2018/04/29 3:0 p.m.47 views

CVE-2018-10539

An issue was discovered in WavPack 5.1.0 and earlier for DSDiff input. Out-of-bounds writes can occur because ParseDsdiffHeaderConfig in dsdiff.c does not validate the sizes of unknown chunks before attempting memory allocation, related to a lack of integer-overflow protection within a bytestocop...

5.5CVSS6.4AI score0.01668EPSS
Exploits1
CVE
CVE
added 2018/04/29 3:0 p.m.159 views

CVE-2018-10540

CVE-2018-10540 affects WavPack up to version 5.1.0 (W64 input). The vulnerability arises from ParseWave64HeaderConfig not validating unknown chunk sizes before memory allocation, combined with a lack of integer-overflow protection in a bytes_to_copy calculation and the subsequent malloc, which ca...

5.5CVSS5.7AI score0.01668EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2018/04/29 3:0 p.m.35 views

CVE-2018-10540

An issue was discovered in WavPack 5.1.0 and earlier for W64 input. Out-of-bounds writes can occur because ParseWave64HeaderConfig in wave64.c does not validate the sizes of unknown chunks before attempting memory allocation, related to a lack of integer-overflow protection within a bytestocopy...

5.9AI score0.01668EPSS
Exploits1References8
Debian CVE
Debian CVE
added 2018/04/29 3:0 p.m.49 views

CVE-2018-10540

An issue was discovered in WavPack 5.1.0 and earlier for W64 input. Out-of-bounds writes can occur because ParseWave64HeaderConfig in wave64.c does not validate the sizes of unknown chunks before attempting memory allocation, related to a lack of integer-overflow protection within a bytestocopy...

5.5CVSS6.4AI score0.01668EPSS
Exploits1
Cvelist
Cvelist
added 2018/04/29 3:0 p.m.30 views

CVE-2018-10538

An issue was discovered in WavPack 5.1.0 and earlier for WAV input. Out-of-bounds writes can occur because ParseRiffHeaderConfig in riff.c does not validate the sizes of unknown chunks before attempting memory allocation, related to a lack of integer-overflow protection within a bytestocopy...

5.9AI score0.01631EPSS
Exploits1References8
Cvelist
Cvelist
added 2018/04/29 3:0 p.m.33 views

CVE-2018-10539

An issue was discovered in WavPack 5.1.0 and earlier for DSDiff input. Out-of-bounds writes can occur because ParseDsdiffHeaderConfig in dsdiff.c does not validate the sizes of unknown chunks before attempting memory allocation, related to a lack of integer-overflow protection within a bytestocop...

5.9AI score0.01668EPSS
Exploits1References8
CVE
CVE
added 2018/04/29 3:0 p.m.179 views

CVE-2018-10539

CVE-2018-10539 affects WavPack 5.1.0 and earlier for DSDiff input. The vulnerability stems from ParseDsdiffHeaderConfig not validating unknown chunk sizes before memory allocation, with lack of integer-overflow protection in a bytes_to_copy calculation leading to insufficient allocation and poten...

5.5CVSS5.7AI score0.01668EPSS
Exploits1References8Affected Software1
Debian CVE
Debian CVE
added 2018/04/29 3:0 p.m.56 views

CVE-2018-10538

An issue was discovered in WavPack 5.1.0 and earlier for WAV input. Out-of-bounds writes can occur because ParseRiffHeaderConfig in riff.c does not validate the sizes of unknown chunks before attempting memory allocation, related to a lack of integer-overflow protection within a bytestocopy...

5.5CVSS6.5AI score0.01631EPSS
Exploits1
CVE
CVE
added 2018/04/29 3:0 p.m.183 views

CVE-2018-10538

The CVE-2018-10538 issue affects WavPack up to version 5.1.0 for WAV input, where ParseRiffHeaderConfig in riff.c may allocate insufficient memory due to not validating unknown chunk sizes and a vulnerable bytes_to_copy/malloc path. This can cause out-of-bounds writes and memory allocation errors...

5.5CVSS5.7AI score0.01631EPSS
Exploits1References8Affected Software1
AlpineLinux
AlpineLinux
added 2018/04/29 3:0 p.m.80 views

CVE-2018-10539

An issue was discovered in WavPack 5.1.0 and earlier for DSDiff input. Out-of-bounds writes can occur because ParseDsdiffHeaderConfig in dsdiff.c does not validate the sizes of unknown chunks before attempting memory allocation, related to a lack of integer-overflow protection within a bytestocop...

5.5CVSS6AI score0.01668EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2018/04/29 3:0 p.m.69 views

CVE-2018-10538

An issue was discovered in WavPack 5.1.0 and earlier for WAV input. Out-of-bounds writes can occur because ParseRiffHeaderConfig in riff.c does not validate the sizes of unknown chunks before attempting memory allocation, related to a lack of integer-overflow protection within a bytestocopy...

5.5CVSS6.1AI score0.01631EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2018/04/29 12:0 a.m.24 views

CVE-2018-10539

An issue was discovered in WavPack 5.1.0 and earlier for DSDiff input. Out-of-bounds writes can occur because ParseDsdiffHeaderConfig in dsdiff.c does not validate the sizes of unknown chunks before attempting memory allocation, related to a lack of integer-overflow protection within a bytestocop...

5.5CVSS6.8AI score0.01668EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2018/04/29 12:0 a.m.32 views

CVE-2018-10538

An issue was discovered in WavPack 5.1.0 and earlier for WAV input. Out-of-bounds writes can occur because ParseRiffHeaderConfig in riff.c does not validate the sizes of unknown chunks before attempting memory allocation, related to a lack of integer-overflow protection within a bytestocopy...

5.5CVSS6.8AI score0.01631EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2018/04/27 12:0 a.m.7 views

The vulnerability of the System Call Interface (SCI) in the Linux operating system allows a hacker to increase their privileges.

The vulnerability of the System Call Interface SCI in the Linux operating system is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.2CVSS6.8AI score0.00451EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2018/04/20 9:29 p.m.25 views

CVE-2017-2825

In the trapper functionality of Zabbix Server 2.4.x, specifically crafted trapper packets can pass database logic checks, resulting in database writes. An attacker can set up a Man-in-the-Middle server to alter trapper requests made between an active Zabbix proxy and Server to trigger this...

7CVSS7.2AI score0.04385EPSS
Exploits2References3
UbuntuCve
UbuntuCve
added 2018/04/20 9:29 p.m.28 views

CVE-2017-2825

In the trapper functionality of Zabbix Server 2.4.x, specifically crafted trapper packets can pass database logic checks, resulting in database writes. An attacker can set up a Man-in-the-Middle server to alter trapper requests made between an active Zabbix proxy and Server to trigger this...

7CVSS7.1AI score0.04385EPSS
Exploits2References4
OSV
OSV
added 2018/04/20 9:29 p.m.2 views

DEBIAN-CVE-2017-2825

In the trapper functionality of Zabbix Server 2.4.x, specifically crafted trapper packets can pass database logic checks, resulting in database writes. An attacker can set up a Man-in-the-Middle server to alter trapper requests made between an active Zabbix proxy and Server to trigger this...

7CVSS6.9AI score0.04385EPSS
Exploits2References1
OSV
OSV
added 2018/04/20 9:29 p.m.6 views

UBUNTU-CVE-2017-2825

In the trapper functionality of Zabbix Server 2.4.x, specifically crafted trapper packets can pass database logic checks, resulting in database writes. An attacker can set up a Man-in-the-Middle server to alter trapper requests made between an active Zabbix proxy and Server to trigger this...

7CVSS7.1AI score0.04385EPSS
Exploits2References5
Debian CVE
Debian CVE
added 2018/04/20 9:0 p.m.59 views

CVE-2017-2825

In the trapper functionality of Zabbix Server 2.4.x, specifically crafted trapper packets can pass database logic checks, resulting in database writes. An attacker can set up a Man-in-the-Middle server to alter trapper requests made between an active Zabbix proxy and Server to trigger this...

7CVSS2.7AI score0.04385EPSS
Exploits2
Cvelist
Cvelist
added 2018/04/20 9:0 p.m.25 views

CVE-2017-2825

In the trapper functionality of Zabbix Server 2.4.x, specifically crafted trapper packets can pass database logic checks, resulting in database writes. An attacker can set up a Man-in-the-Middle server to alter trapper requests made between an active Zabbix proxy and Server to trigger this...

7.1AI score0.04385EPSS
Exploits2References3
Rows per page
Query Builder