Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-14646

Malware in sbrugna...

8.8CVSS7.7AI score0.01617EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/02/05 5:57 p.m.22 views

CVE-2019-5039

An exploitable command execution vulnerability exists in the ASN1 certificate writing functionality of Openweave-core version 4.0.2. A specially crafted weave certificate can trigger a heap-based buffer overflow, resulting in code execution. An attacker can craft a weave certificate to trigger th...

8.8CVSS7.4AI score0.01617EPSS
Exploits1References1
NVD
NVD
added 2019/08/20 9:15 p.m.37 views

CVE-2019-5039

An exploitable command execution vulnerability exists in the ASN1 certificate writing functionality of Openweave-core version 4.0.2. A specially crafted weave certificate can trigger a heap-based buffer overflow, resulting in code execution. An attacker can craft a weave certificate to trigger th...

8.8CVSS8.1AI score0.01617EPSS
Exploits1References1
Prion
Prion
added 2019/08/20 9:15 p.m.23 views

Heap overflow

An exploitable command execution vulnerability exists in the ASN1 certificate writing functionality of Openweave-core version 4.0.2. A specially crafted weave certificate can trigger a heap-based buffer overflow, resulting in code execution. An attacker can craft a weave certificate to trigger th...

6.8CVSS8.9AI score0.01617EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/08/20 8:39 p.m.246 views

CVE-2019-5039

CVE-2019-5039 describes an exploitable heap-based buffer overflow in the Openweave-core ASN1Writer PutValue path (Nest Nest Cam IQ Indoor, Openweave-core 4.0.2). TALOS details show an overflow in ASN1Writer::EncodeHead/PutValue when processing crafted Weave certificates, enabling code execution. ...

8.8CVSS8.9AI score0.01617EPSS
In wildExploits1References1Affected Software1
RedHat Linux
RedHat Linux
added 2016/03/09 3:40 a.m.7 views

nss: Heap buffer overflow vulnerability in ASN1 certificate parsing (MFSA 2016-35)

A heap-based buffer overflow flaw was found in the way NSS parsed certain ASN.1 structures. An attacker could use this flaw to create a specially crafted certificate which, when parsed by NSS, could cause it to crash, or execute arbitrary code, using the permissions of the user running an...

8.8CVSS7.7AI score0.04192EPSS
Exploits0References5
Rows per page
Query Builder