CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7028 matches found

AlpineLinux•added 2021/05/26 11:54 p.m.•35 views

CVE-2021-30501

An assertion abort was found in upx MemBuffer::alloc in mem.cpp, in version UPX 4.0.0. The flow allows attackers to cause a denial of service abort via a crafted file...

5.5CVSS5.3AI score0.01041EPSS

Exploits1

Oracle linux•added 2021/05/25 12:0 a.m.•111 views

glibc security, bug fix, and enhancement update

2.28-151.0.1.el84 - merge RH patches for ol8-u4 release Review-exception: Patch merge - Provide glibc.pthread.mutexspincount tunable for pthread adaptive - spin mutex Orabug: 27982358. Reviewed-by: Qing Zhao - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag ...

9.8CVSS0.4AI score0.04731EPSS

Exploits2

Veracode•added 2021/05/24 12:38 a.m.•29 views

Denial Of Service (DoS)

glibc is vulnerable to denial of service. An attacker capable of supplying a malicious sequence of characters to an application using iconv to convert from ISO-2022-JP-3 to cause an assertion failure...

7.5CVSS4.8AI score0.03093EPSS

Exploits0References13Affected Software1

CNNVD•added 2021/05/24 12:0 a.m.•2 views

OpenLDAP 安全漏洞

OpenLDAP is an open source implementation of the Lightweight Directory Access Protocol LDAP from the OpenLDAP Openldap Foundation in the United States. A security vulnerability exists in OpenLDAP, which can be exploited by an attacker to send a malicious packet to OpenLDAP's slapd server for...

7.5CVSS7.8AI score0.01094EPSS

Exploits0References2

Tenable Nessus•added 2021/05/24 12:0 a.m.•51 views

Amazon Linux 2 : bind (ALAS-2021-1635)

The version of bind installed on the remote host is prior to 9.11.4-26.P2. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2021-1635 advisory. A flaw was found in bind. The way DNAME records are processed may trigger the same RRset to the ANSWER section to be added more...

7.5CVSS7.2AI score0.11296EPSS

Exploits0References3

OSV•added 2021/05/23 6:45 p.m.•5 views

MGASA-2021-0220 Updated bind packages fix security vulnerabilities

A broken inbound incremental zone update IXFR can cause named to terminate unexpectedlyCVE-2021-25214. Mageia 7 version not affected. An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself CVE-2021-25215. This affects both...

9.8CVSS7.2AI score0.83406EPSS

Exploits0References7

Mageia•added 2021/05/23 6:45 p.m.•53 views

Updated bind packages fix security vulnerabilities

9.8CVSS4.5AI score0.83406EPSS

Exploits0References6

Github Security Blog•added 2021/05/21 2:25 p.m.•33 views

CHECK-fail in `tf.raw_ops.IRFFT`

Impact An attacker can cause a denial of service by exploiting a CHECK-failure coming from the implementation of tf.rawops.IRFFT: python import tensorflow as tf values = -10.0 130 values0 = -9.999999999999995 inputs = tf.constantvalues, shape=10, 13, dtype=tf.float32 inputs = tf.castinputs,...

5.5CVSS2.5AI score0.00189EPSS

Exploits1References7Affected Software3

Github Security Blog•added 2021/05/21 2:21 p.m.•29 views

Division by zero in `Conv3D`

Impact A malicious user could trigger a division by 0 in Conv3D implementation: python import tensorflow as tf inputtensor = tf.constant, shape=0, 0, 0, 0, 0, dtype=tf.float32 filtertensor = tf.constant, shape=0, 0, 0, 0, 0, dtype=tf.float32 tf.rawops.Conv3Dinput=inputtensor, filter=filtertensor,...

5.5CVSS1.1AI score0.00189EPSS

Exploits1References7Affected Software3