CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7037 matches found

Vulnrichment•added 2023/06/14 12:0 a.m.•11 views

CVE-2023-34868

Jerryscript 3.0 commit 05dbbd1 was discovered to contain an Assertion Failure via the parserparseforstatementstart at jerry-core/parser/js/js-parser-statm.c...

7.2AI score0.00732EPSS

Exploits1References1

CVE•added 2023/06/14 12:0 a.m.•46 views

CVE-2023-34868

CVE-2023-34868 affects JerryScript 3.0 (commit 05dbbd1). The issue is an Assertion Failure in the parser: parser_parse_for_statement_start (jerry-core/parser/js/js-parser-statm.c). Impact per sources indicates high-severity with availability impact; no confidentiality/integrity impact indicated. ...

7.5CVSS7.5AI score0.00732EPSS

Exploits1References1Affected Software1

Debian CVE•added 2023/06/14 12:0 a.m.•14 views

CVE-2023-34868

Removed by vendor...

7.5CVSS7.5AI score0.00732EPSS

Exploits1

RedhatCVE•added 2023/06/13 6:35 a.m.•47 views

CVE-2023-1428

A flaw was found in the gRPC library. Affected versions of this package are vulnerable to a reachable assertion, causing the abort function to be called and resulting in a denial of service. Mitigation Mitigation for this issue is either not available or the currently available options do not mee...

7.5CVSS7.2AI score0.00412EPSS

Exploits0References3

Amazon•added 2023/06/13 12:0 a.m.•25 views

Medium: glib2

Issue Overview: PCRE before 8.38 mishandles the interaction of lookbehind assertions and mutually recursive subpatterns, which allows remote attackers to cause a denial of service buffer overflow or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a...

9.8CVSS9.2AI score0.07059EPSS

Exploits0

CNNVD•added 2023/06/13 12:0 a.m.•6 views

Siemens Mendix SAML Module 授权问题漏洞

The Mendix SAML module allows you to authenticate users in cloud applications using SAML. The module can communicate with any identity provider that supports SAML 2.0 or Shibboleth. An authentication bypass vulnerability exists in Siemens Mendix SAML, which can be exploited by an attacker to bypa...

9.8CVSS7.1AI score0.00888EPSS

Exploits0References2

OpenVAS•added 2023/06/12 12:0 a.m.•17 views

Huawei EulerOS: Security Advisory for mariadb (EulerOS-SA-2023-2226)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.07489EPSS

Exploits2References2

OpenVAS•added 2023/06/12 12:0 a.m.•24 views

Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2023-2207)

8.3CVSS7.5AI score0.12205EPSS

Exploits4References2

OSV•added 2023/06/09 7:33 p.m.•26 views

GHSA-R6WW-5963-7R95 Denial of Service via reachable assertion

A grpc-swift server is vulnerable to a denial of service attack via a reachable assertion. This was due to incorrect logic when handling GOAWAY frames. The attack is low-effort: it takes very little resources to construct and send the required sequence of frames. The impact on availability is hig...

7.5CVSS7.2AI score0.01131EPSS

Exploits0References4

Github Security Blog•added 2023/06/09 7:33 p.m.•29 views

Denial of Service via reachable assertion

7.5CVSS6.6AI score0.01131EPSS

Exploits0References4Affected Software1

GitLab Advisory Database•added 2023/06/09 12:0 a.m.•21 views

Denial of Service via reachable assertion

7.5CVSS6.5AI score0.01131EPSS

Exploits0References5Affected Software1

Tenable Nessus•added 2023/06/07 12:0 a.m.•23 views

EulerOS Virtualization 2.11.1 : libtiff (EulerOS-SA-2023-2074)

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For user...

8.8CVSS6AI score0.01378EPSS

Exploits25References26

NVD•added 2023/06/06 8:15 a.m.•28 views

CVE-2022-40538

Transient DOS due to reachable assertion in modem while processing sib with incorrect values from network...

7.5CVSS7.5AI score0.00383EPSS

Exploits0References1

NVD•added 2023/06/06 8:15 a.m.•20 views

CVE-2022-33251

Transient DOS due to reachable assertion in Modem because of invalid network configuration...

7.5CVSS7.5AI score0.00383EPSS

Exploits0References1

NVD•added 2023/06/06 8:15 a.m.•19 views

CVE-2022-22060

Assertion occurs while processing Reconfiguration message due to improper validation...

7.5CVSS7.5AI score0.00383EPSS

Exploits0References1

Prion•added 2023/06/06 8:15 a.m.•27 views

Design/Logic Flaw

Transient DOS due to reachable assertion in modem while processing sib with incorrect values from network...

5CVSS7.5AI score0.00383EPSS

Exploits0References1

Vulnrichment•added 2023/06/06 7:39 a.m.•18 views

CVE-2022-40538 Reachable assertion in Modem

Transient DOS due to reachable assertion in modem while processing sib with incorrect values from network...

7.5CVSS6.9AI score0.00383EPSS

Exploits0References1

CVE•added 2023/06/06 7:39 a.m.•66 views

CVE-2022-40538

CVE-2022-40538: A transient DoS due to a reachable assertion in the modem while processing a System Information Block (SIB) with incorrect values from the network. Documented as affecting Qualcomm chipsets/modem and exposed over a network (no user interaction). CVSSv3.1 base score 7.5 (HIGH): Net...

7.5CVSS7.5AI score0.00383EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/06/06 7:38 a.m.•19 views

CVE-2022-33251 Reachable assertion in Modem

Transient DOS due to reachable assertion in Modem because of invalid network configuration...

7.5CVSS7.1AI score0.00383EPSS

Exploits0References1