CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

58 matches found

NVD•added 2025/01/22 3:15 p.m.•7 views

CVE-2023-37004

Open5GS MME versions = 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an Initial Context Setup Response message missing a required MMEUES1APID field to repeatedly crash the MME, resulting in denial of service...

5.3CVSS0.00261EPSS

Exploits1References1

Vulnrichment•added 2025/01/22 12:0 a.m.•6 views

CVE-2023-37022

Open5GS MME versions = 2.6.4 contain a reachable assertion in the UE Context Release Request packet handler. A packet containing an invalid MMEUES1APID field causes Open5gs to crash; an attacker may repeatedly send such packets to cause denial of service...

6.7AI score0.00752EPSS

Exploits1References1

RedhatCVE•added 2024/10/28 10:56 p.m.•11 views

CVE-2024-50613

libsndfile through 1.2.2 has a reachable assertion, that may lead to application exit, in mpegl3encode.c mpegl3encoderclose...

6.5CVSS6.8AI score0.00513EPSS

Exploits1References4

Vulnrichment•added 2024/10/27 12:0 a.m.•11 views

CVE-2024-50613

libsndfile through 1.2.2 has a reachable assertion, that may lead to application exit, in mpegl3encode.c mpegl3encoderclose...

6.7AI score0.00513EPSS

Exploits1References1

Debian CVE•added 2024/10/27 12:0 a.m.•13 views

CVE-2024-50615

TinyXML2 through 10.0.0 has a reachable assertion for UINTMAX/digit, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef...

6.5CVSS5.2AI score0.00373EPSS

Exploits1

Debian CVE•added 2024/10/27 12:0 a.m.•10 views

CVE-2024-50614

TinyXML2 through 10.0.0 has a reachable assertion for UINTMAX/16, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef...

6.5CVSS6.3AI score0.00404EPSS

Exploits1

Cvelist•added 2024/10/27 12:0 a.m.•15 views

CVE-2024-50615

TinyXML2 through 10.0.0 has a reachable assertion for UINTMAX/digit, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef...

0.00373EPSS

Exploits1References1

Vulnrichment•added 2024/05/04 12:0 a.m.•13 views

CVE-2024-34476

Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: ogsnasencrypt in lib/nas/common/security.c for pkbuf-len...

6.5AI score0.00513EPSS

Exploits0References2

Positive Technologies•added 2024/04/23 12:0 a.m.•5 views

PT-2024-5485 · Isc +12 · Bind 9 +12

Name of the Vulnerable Software and Affected Versions: BIND 9 versions 9.11.33-S1 through 9.11.37-S1 BIND 9 versions 9.16.13 through 9.16.50 BIND 9 versions 9.16.13-S1 through 9.16.50-S1 BIND 9 versions 9.18.0 through 9.18.27 BIND 9 versions 9.18.11-S1 through 9.18.27-S1 BIND 9 versions 9.19.0...

7.8CVSS7.9AI score0.0468EPSS

Exploits0References98

Cvelist•added 2023/12/05 3:4 a.m.•23 views

CVE-2023-33041 Reachable assertion in WLAN Firmware

Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while looking up peer ids...

7.5CVSS7.7AI score0.00471EPSS

Exploits0References1

Vulnrichment•added 2023/10/12 10:59 p.m.•9 views

CVE-2023-44175 Junos OS and Junos OS Evolved: Receipt of a specific genuine PIM packet causes RPD crash

A Reachable Assertion vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows to send specific genuine PIM packets to the device resulting in rpd to crash causing a Denial of Service DoS. Continued receipt and processing of this packet will create...

6.5CVSS6.8AI score0.00515EPSS

Exploits0References1

CNNVD•added 2023/10/06 12:0 a.m.•3 views

Zephyr Buffer Error Vulnerability

Zephyr is an extensible real-time operating system RTOS open-sourced by the Zephyr Project. A security vulnerability exists in Zephyr that stems from an assertion and stack-based buffer overflow in subsys/canbus/isotp/isotp.c. The vulnerability is caused by the presence of an assertion and a...

9.8CVSS7.3AI score0.01061EPSS

Exploits1References2

Vulnrichment•added 2023/09/05 6:23 a.m.•14 views

CVE-2023-21646 Reachable Assertion in Modem

Transient DOS in Modem while processing invalid System Information Block 1...

7.5CVSS6.9AI score0.00324EPSS

Exploits0References1

OSV•added 2023/08/22 7:16 p.m.•29 views

CVE-2021-46179

Reachable Assertion vulnerability in upx before 4.0.0 allows attackers to cause a denial of service via crafted file passed to the the readx function...

6.5CVSS7AI score

Exploits0References1

Debian CVE•added 2023/08/22 12:0 a.m.•23 views

CVE-2021-46179

Reachable Assertion vulnerability in upx before 4.0.0 allows attackers to cause a denial of service via crafted file passed to the the readx function...

6.5CVSS6.3AI score0.00454EPSS

Exploits0

UbuntuCve•added 2023/07/13 11:15 p.m.•21 views

CVE-2023-37836

libjpeg commit db33a6e was discovered to contain a reachable assertion via BitMapHook::BitMapHook at bitmaphook.cpp. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted file...

6.5CVSS6.6AI score0.0051EPSS

Exploits1References1

Cvelist•added 2023/07/13 12:0 a.m.•14 views

CVE-2023-37836

6.4AI score0.0051EPSS

Exploits1References1

CNNVD•added 2022/09/16 12:0 a.m.•5 views

JasPer 安全漏洞

JasPer is a C-based tool for image processing from the individual developer Michael Adams. The software supports the JPEG-2000 format as defined in ISO/IEC 15444-1 and is primarily used for image encoding and processing. A security vulnerability exists in JasPer version 3.0.6, which originates fr...

5.5CVSS6.8AI score0.00346EPSS

Exploits1References2

OSV•added 2022/03/26 1:15 p.m.•20 views

CVE-2022-27939

tcprewrite in Tcpreplay 4.4.1 has a reachable assertion in getlayer4v6 in common/get.c...

5.5CVSS6.6AI score

Exploits0References5

NVD•added 2022/03/26 1:15 p.m.•16 views

CVE-2022-27939

tcprewrite in Tcpreplay 4.4.1 has a reachable assertion in getlayer4v6 in common/get.c...

5.5CVSS0.01019EPSS

Exploits1References5