CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7027 matches found

OSV•added 2021/03/03 5:13 p.m.•7 views

SUSE-SU-2021:0693-1 Security update for openldap2

This update for openldap2 fixes the following issues: - bsc1182408 CVE-2020-36230 - an assertion failure in slapd in the X.509 DN parsing in decode.c bernextelement, resulting in denial of service. - bsc1182411 CVE-2020-36229 - ldapX509dn2bv crash in the X.509 DN parsing in adkeystring, resulting...

7.5CVSS7.4AI score0.84224EPSS

Exploits1References23

Tenable Nessus•added 2021/03/01 12:0 a.m.•57 views

SUSE SLES12 Security Update : glibc (SUSE-SU-2021:0608-1)

This update for glibc fixes the following issues : Fix buffer overrun in EUC-KR conversion module CVE-2019-25013, bsc1182117, BZ 24973 gconv: Fix assertion failure in ISO-2022-JP-3 module CVE-2021-3326, bsc1181505, BZ 27256 Fix parsing of /sys/devices/system/cpu/online bsc1180038, BZ 25859 powerp...

7.5CVSS6.9AI score0.03538EPSS

Exploits0References9

Tenable Nessus•added 2021/03/01 12:0 a.m.•68 views

openSUSE Security Update : glibc (openSUSE-2021-358)

This update for glibc fixes the following issues : - Fix buffer overrun in EUC-KR conversion module CVE-2019-25013, bsc1182117, BZ 24973 - x86: Harden printf against non-normal long double values CVE-2020-29573, bsc1179721, BZ 26649 - gconv: Fix assertion failure in ISO-2022-JP-3 module...

7.5CVSS6.6AI score0.03538EPSS

Exploits2References11

Tenable Nessus•added 2021/03/01 12:0 a.m.•51 views

SUSE SLED15 / SLES15 Security Update : glibc (SUSE-SU-2021:0653-1)

This update for glibc fixes the following issues : Fix buffer overrun in EUC-KR conversion module CVE-2019-25013, bsc1182117, BZ 24973 x86: Harden printf against non-normal long double values CVE-2020-29573, bsc1179721, BZ 26649 gconv: Fix assertion failure in ISO-2022-JP-3 module CVE-2021-3326,...

7.5CVSS6.7AI score0.03538EPSS

Exploits2References17

OSV•added 2021/02/27 9:33 p.m.•7 views

OPENSUSE-SU-2021:0358-1 Security update for glibc

This update for glibc fixes the following issues: - Fix buffer overrun in EUC-KR conversion module CVE-2019-25013, bsc1182117, BZ 24973 - x86: Harden printf against non-normal long double values CVE-2020-29573, bsc1179721, BZ 26649 - gconv: Fix assertion failure in ISO-2022-JP-3 module...

7.5CVSS6.5AI score0.03538EPSS

Exploits2References12

OSV•added 2021/02/25 8:4 p.m.•10 views

SUSE-SU-2021:0608-1 Security update for glibc

This update for glibc fixes the following issues: - Fix buffer overrun in EUC-KR conversion module CVE-2019-25013, bsc1182117, BZ 24973 - gconv: Fix assertion failure in ISO-2022-JP-3 module CVE-2021-3326, bsc1181505, BZ 27256 - Fix parsing of /sys/devices/system/cpu/online bsc1180038, BZ 25859 -...

7.5CVSS6.8AI score0.03538EPSS

Exploits0References7

Veracode•added 2021/02/25 6:39 p.m.•28 views

Denial Of Service (DoS)

OpenLDAP is vulnerable to denial of service DoS. An assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service daemon exit via a short timestamp. This is related to schemainit.c and checkTime...

7.5CVSS3AI score0.64147EPSS

Exploits1References12Affected Software1

Microsoft CVE•added 2021/02/24 8:0 a.m.•1 views

In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet resulting in a denial of service (daemon exit) via a short timestamp. This is related to schema_init.c and checkTime.

...

7.5CVSS7.8AI score0.64147EPSS

Exploits1

RedHat Linux•added 2021/02/23 6:47 p.m.•85 views

Low: Red Hat Security Advisory: virt:8.2 and virt-devel:8.2 security update

An update for the virt:8.2 and virt-devel:8.2 modules is now available for Advanced Virtualization for RHEL 8.2.1. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

3.8CVSS6.9AI score0.00463EPSS

Exploits0References3

Tenable Nessus•added 2021/02/23 12:0 a.m.•51 views

RHEL 8 : virt:8.2 and virt-devel:8.2 (RHSA-2021:0648)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:0648 advisory. The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Re...

3.8CVSS7.1AI score0.00463EPSS

Exploits0References7

RedHat Linux•added 2021/02/22 3:43 p.m.•3 views

QEMU: assertion failure through usb_packet_unmap() in hw/usb/hcd-ehci.c

A reachable assertion vulnerability was found in the USB EHCI emulation code of QEMU. This issue occurs while processing USB requests due to missed handling of DMA memory map failure. This flaw allows a malicious privileged user within the guest to send bogus USB requests and crash the QEMU proce...

3.2CVSS6.9AI score0.00357EPSS

Exploits0References4

Tenable Nessus•added 2021/02/22 12:0 a.m.•28 views

Debian DLA-2574-1 : openldap security update

A vulnerability in the Certificate List Exact Assertion validation was discovered in OpenLDAP, a free implementation of the Lightweight Directory Access Protocol. An unauthenticated remote attacker can take advantage of this flaw to cause a denial of service slapd daemon crash via specially craft...

7.5CVSS7.3AI score0.64147EPSS

Exploits1References4

Tenable Nessus•added 2021/02/22 12:0 a.m.•31 views

EulerOS 2.0 SP2 : sox (EulerOS-SA-2021-1359)

According to the versions of the sox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in SoX 14.4.2. In xmalloc.h, there is an integer overflow on the result of multiplication fed into the lsxvalloc macro that...

5.5CVSS6.4AI score0.07401EPSS

Exploits11References12

Debian•added 2021/02/20 1:0 p.m.•127 views

[SECURITY] [DSA 4860-1] openldap security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4860-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 20, 2021 https://www.debian.org/security/faq -...

7.5CVSS7.7AI score0.64147EPSS

Exploits1

Amazon•added 2021/02/20 12:0 a.m.•76 views

Important: glibc

Issue Overview: The iconv program in the GNU C Library aka glibc or libc6 2.31 and earlier, when invoked with multiple suffixes in the destination encoding TRANSLATE or IGNORE along with the -c option, enters an infinite loop when processing invalid multi-byte input sequences, leading to a denial...

8.1CVSS7.2AI score0.05223EPSS

Exploits1

Mageia•added 2021/02/19 10:27 a.m.•29 views

Updated privoxy package fixes security vulnerabilities

Fixed a memory leak when decompression fails "unexpectedly". CVE-2021-20216 Prevent an assertion from getting triggered by a crafted CGI request. CVE-2021-20217...

7.8CVSS2.4AI score0.02276EPSS

Exploits0References4

RedhatCVE•added 2021/02/15 3:43 p.m.•31 views

CVE-2021-27212

A flaw was found in openldap. An assertion failure in slapd can occur resulting in a denial of service daemon exit via a short timestamp. The highest threat from this vulnerability is to system availability...

7.5CVSS1.7AI score0.64147EPSS

Exploits1References3

NVD•added 2021/02/14 3:15 a.m.•19 views

CVE-2021-27212

In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service daemon exit via a short timestamp. This is related to schemainit.c and checkTime...

7.5CVSS0.64147EPSS

Exploits1References8

OSV•added 2021/02/14 3:15 a.m.•1 views

DEBIAN-CVE-2021-27212

7.5CVSS7.2AI score0.64147EPSS

Exploits1References1

OSV•added 2021/02/14 3:15 a.m.•22 views

CVE-2021-27212

7.5CVSS8.9AI score

Exploits0References8

Rows per page