Lucene search
K

110 matches found

CVE
CVE
added 2024/08/14 3:5 p.m.63 views

CVE-2024-39393

Adobe InDesign Desktop (ID19.4, ID18.5.2 and earlier) is affected by CVE-2024-39393 due to an out-of-bounds read while parsing crafted files, potentially allowing code execution in the caller’s context. Exploitation requires user interaction (victim opens a malicious file). Affected versions are ...

7.8CVSS7.5AI score0.00332EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/08/14 12:0 a.m.186 views

SUSE SLES15: kernel-azure / kernel-azure-devel / kernel-devel-azure / etc (SUSE-SU-2024:2896-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2896-1 advisory. The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes. The following security bugs were...

9.8CVSS7.2AI score0.02701EPSS
Exploits4References1253
CVE
CVE
added 2024/07/02 1:44 p.m.146 views

CVE-2024-34122

CVE-2024-34122 affects Acrobat for Edge (Edge Chromium-based) up to version 126.0.2592.68, with an out-of-bounds read when parsing a crafted file that could allow code execution under the user’s context after user interaction. The issue is confirmed across multiple sources; a remediation exists a...

7.8CVSS7.5AI score0.00315EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/07/02 1:44 p.m.34 views

CVE-2024-34122 T5 Acrobat Vulnerability - Exploitable crash in DecodeTile

Acrobat for Edge versions 126.0.2592.68 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the...

7.8CVSS0.00315EPSS
Exploits0References1
CVE
CVE
added 2024/06/13 11:22 a.m.83 views

CVE-2024-20753

Adobe Photoshop Desktop (Windows/macOS) is affected by CVE-2024-20753, an out-of-bounds read in PDF/file parsing that could allow code execution in the context of the current user. Affected versions include 24.7.3, 25.7 and earlier; exploitation requires the user to open a crafted file. Several c...

7.8CVSS7.5AI score0.00315EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/22 11:46 a.m.18 views

CVE-2024-36010 igb: Fix string truncation warnings in igb_set_fw_version

In the Linux kernel, the following vulnerability has been resolved: igb: Fix string truncation warnings in igbsetfwversion Commit 1978d3ead82c "intel: fix string truncation warnings" fixes '-Wformat-truncation=' warnings in igbmain.c by using kasprintf...

6.8AI score0.00178EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2024/05/20 4:23 p.m.24 views

CVE-2024-35940

A vulnerability was found in the Linux kernel's pstore/zone subsystem, specifically in the pszkmsgread function. The issue occurs because kasprintf can return a NULL pointer if memory allocation fails, but there was no check for this in the affected code. Mitigation Mitigation for this issue is...

5.5CVSS6.7AI score0.0021EPSS
Exploits0References4
NVD
NVD
added 2024/05/17 3:15 p.m.19 views

CVE-2023-52686

In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv: Add a null pointer check in opaleventinit kasprintf returns a pointer to dynamically allocated memory which can be NULL upon failure...

5.5CVSS7.4AI score0.00261EPSS
Exploits0References9
Cvelist
Cvelist
added 2024/05/17 2:24 p.m.34 views

CVE-2023-52690 powerpc/powernv: Add a null pointer check to scom_debug_init_one()

In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv: Add a null pointer check to scomdebuginitone kasprintf returns a pointer to dynamically allocated memory which can be NULL upon failure. Add a null pointer check, and release 'ent' to avoid memory leaks...

6.4AI score0.00236EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2024/05/17 2:24 p.m.13 views

CVE-2023-52686 powerpc/powernv: Add a null pointer check in opal_event_init()

In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv: Add a null pointer check in opaleventinit kasprintf returns a pointer to dynamically allocated memory which can be NULL upon failure...

6.6AI score0.00261EPSS
Exploits0References8
OSV
OSV
added 2024/05/17 2:24 p.m.23 views

CVE-2023-52686 powerpc/powernv: Add a null pointer check in opal_event_init()

In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv: Add a null pointer check in opaleventinit kasprintf returns a pointer to dynamically allocated memory which can be NULL upon failure...

5.5CVSS5.8AI score0.00261EPSS
Exploits0References12
OSV
OSV
added 2024/05/17 2:24 p.m.20 views

CVE-2023-52675 powerpc/imc-pmu: Add a null pointer check in update_events_in_group()

In the Linux kernel, the following vulnerability has been resolved: powerpc/imc-pmu: Add a null pointer check in updateeventsingroup kasprintf returns a pointer to dynamically allocated memory which can be NULL upon failure...

5.5CVSS5.8AI score0.00271EPSS
Exploits0References12
Vulnrichment
Vulnrichment
added 2024/05/16 8:8 a.m.27 views

CVE-2024-20791 Illustrator 2024 BMP File Parsing Memory Corruption

Illustrator versions 28.4, 27.9.3 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current...

7.8CVSS6.7AI score0.00339EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2024/04/29 4:5 p.m.29 views

CVE-2022-48650

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix memory leak in qlt24xxhandleabts Commit 8f394da36a36 "scsi: qla2xxx: Drop TARGETSCFLOOKUPLUNFROMTAG" made the qlt24xxhandleabts function return early if tcmqla2xxxfindcmdbytag didn't find a command, but it miss...

4.4CVSS7.1AI score0.00229EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/04/17 7:54 p.m.37 views

CVE-2024-26908

REJECTED CVE In the Linux kernel, the following vulnerability has been resolved: x86/xen: Add some null pointer checking to smp.c The Linux kernel CVE team has assigned CVE-2024-26908 to this issue...

5.5CVSS7AI score
Exploits0References4
UbuntuCve
UbuntuCve
added 2024/04/17 11:15 a.m.34 views

CVE-2024-26908

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6.6AI score
Exploits0References10
CVE
CVE
added 2024/04/17 10:27 a.m.148 views

CVE-2024-26908

CVE-2024-26908 is a Linux kernel issue where the advisory notes adding null pointer checks in kernel/x86/smp.c (x86/xen path). Connected advisories (RHSA-2024:6992, RHSA-2024:5992/5928 equivalents, ELSA-2024-5928) indicate affected kernel builds in Red Hat, Oracle Linux, and related distributions...

6.7AI score
Exploits0
CNVD
CNVD
added 2024/04/15 12:0 a.m.21 views

Adobe Animate Buffer Overflow Vulnerability (CNVD-2024-19000)

Adobe Animate is a set of Flash animation software from the American company Audobee Adobe. Adobe Animate suffers from a buffer overflow vulnerability that stems from the application's susceptibility to out-of-bounds reads when parsing carefully crafted files, which may read beyond the end of an...

7.8CVSS7.9AI score0.00389EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/06 6:45 a.m.43 views

CVE-2023-52607 powerpc/mm: Fix null-pointer dereference in pgtable_cache_add

In the Linux kernel, the following vulnerability has been resolved: powerpc/mm: Fix null-pointer dereference in pgtablecacheadd kasprintf returns a pointer to dynamically allocated memory which can be NULL upon failure. Ensure the allocation was successful by checking the pointer validity...

7.6AI score0.00234EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2024/02/27 5:32 a.m.33 views

CVE-2023-52467

A vulnerability was found in the Linux kernel, where A NULL pointer dereference flaw may occur in sysconregister. In this issue, kasprintf returns a pointer to dynamically allocated memory, which can be NULL upon failure...

4.4CVSS6.4AI score0.00278EPSS
Exploits0References9
Rows per page
Query Builder