Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2020/03/31 1:57 p.m.27 views

CVE-2019-9162

It was found that there are insufficient ASN.1 sequence length checks a.k.a. an array index error in the Linux kernel in the snmpversion and snmphelper functions in the net/ipv4/netfilter/nfnatsnmpbasicmain.c in the nfnatsnmpbasic module making out-of-bounds read and write operations possible. An...

7.8CVSS3.7AI score0.00205EPSS
Exploits2References4
NVD
NVDadded 2015/01/27 8:59 p.m.20 views

CVE-2015-1182

The asn1getsequenceof function in library/asn1parse.c in PolarSSL 1.0 through 1.2.12 and 1.3.x through 1.3.9 does not properly initialize a pointer in the asn1sequence linked list, which allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted...

7.5CVSS7.7AI score0.01697EPSS
Exploits0References8
Prion
Prionadded 2015/01/27 8:59 p.m.20 views

Null pointer dereference

The asn1getsequenceof function in library/asn1parse.c in PolarSSL 1.0 through 1.2.12 and 1.3.x through 1.3.9 does not properly initialize a pointer in the asn1sequence linked list, which allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted...

7.5CVSS8.3AI score0.01697EPSS
Exploits0References8Affected Software2
Cvelist
Cvelistadded 2015/01/27 3:0 p.m.19 views

CVE-2015-1182

The asn1getsequenceof function in library/asn1parse.c in PolarSSL 1.0 through 1.2.12 and 1.3.x through 1.3.9 does not properly initialize a pointer in the asn1sequence linked list, which allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted...

6.4AI score0.01697EPSS
Exploits0References8
ArchLinux
ArchLinuxadded 2015/01/20 12:0 a.m.40 views

polarssl: remote code execution

During the parsing of a ASN.1 sequence, a pointer in the linked list of asn1sequence is not initialized by asn1getsequenceof. In case an error occurs during parsing of the list, a situation is created where the uninitialized pointer is passed to polarsslfree. This sequence can be triggered when a...

7.5CVSS5.5AI score0.01697EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2015/01/20 12:0 a.m.43 views

FreeBSD : polarssl -- Remote attack using crafted certificates (a5856eba-a015-11e4-a680-1c6f65c3c4ff)

PolarSSL team reports : During the parsing of a ASN.1 sequence, a pointer in the linked list of asn1sequence is not initialized by asn1getsequenceof. In case an error occurs during parsing of the list, a situation is created where the uninitialized pointer is passed to polarsslfree. This sequence...

7.5CVSS6.5AI score0.01697EPSS
Exploits0References4
FreeBSD
FreeBSDadded 2015/01/14 12:0 a.m.24 views

polarssl -- Remote attack using crafted certificates

PolarSSL team reports: During the parsing of a ASN.1 sequence, a pointer in the linked list of asn1sequence is not initialized by asn1getsequenceof. In case an error occurs during parsing of the list, a situation is created where the uninitialized pointer is passed to polarsslfree. This sequence...

7.5CVSS5.9AI score0.01697EPSS
Exploits0References2
Rows per page
Query Builder