Lucene search
K

7041 matches found

CVE
CVE
added 2022/06/10 2:49 p.m.60 views

CVE-2022-32978

CVE-2022-32978 affects the libjpeg library prior to 1.64, caused by an assertion failure in SingleComponentLSScan::ParseMCU when processing an empty JPEG-LS scan. This leads to denial of service and is documented across multiple sources; no exploitation details are provided beyond the assertion f...

6.5CVSS6.4AI score0.00836EPSS
Exploits1References2Affected Software1
Ubuntu
Ubuntu
added 2022/06/08 7:20 p.m.155 views

USN-5474-1: Varnish Cache vulnerabilities

It was dicovered that Varnish Cache did not clear a pointer between the handling of one client request and the next request within the same connection. A remote attacker could possibly use this issue to obtain sensitive information. CVE-2019-20637 It was discovered that Varnish Cache could have a...

9.1CVSS6.7AI score0.02106EPSS
Exploits0
Prion
Prion
added 2022/06/03 6:15 p.m.27 views

Authorization

Xecurify's miniOrange Premium, Standard, and Enterprise Drupal SAML SP modules possess an authentication and authorization bypass vulnerability. An attacker with access to a HTTP-request intercepting method is able to bypass authentication and authorization by removing the SAML Assertion Signatur...

6.5CVSS8.8AI score0.00545EPSS
Exploits0References1Affected Software1
AlpineLinux
AlpineLinux
added 2022/06/03 4:0 p.m.75 views

CVE-2022-26493

Xecurify's miniOrange Premium, Standard, and Enterprise Drupal SAML SP modules possess an authentication and authorization bypass vulnerability. An attacker with access to a HTTP-request intercepting method is able to bypass authentication and authorization by removing the SAML Assertion Signatur...

9.8CVSS8.9AI score0.00545EPSS
Exploits0
CNNVD
CNNVD
added 2022/06/03 12:0 a.m.5 views

Drupal 信任管理问题漏洞

Drupal is an open source content management system developed in the PHP language by the Drupal community. A trust management issue vulnerability exists in Drupal SAML SP version 2.0. An attacker exploits the vulnerability to log in as any selected user...

9.8CVSS8.4AI score0.00545EPSS
Exploits0References3
Code423n4
Code423n4
added 2022/06/03 12:0 a.m.9 views

Wrong items length assertion in basic order

Lines of code Vulnerability details When fulfilling a basic order we need to assert that the parameter totalOriginalAdditionalRecipients is less or equal than the length of additionalRecipients written in calldata. However in prepareBasicFulfillmentFromCalldata this assertion is incorrect L346: /...

6.7AI score
Exploits0
OpenVAS
OpenVAS
added 2022/05/31 12:0 a.m.23 views

openSUSE: Security Advisory for tiff (SUSE-SU-2022:1882-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.7CVSS7AI score0.01542EPSS
Exploits8References2
CNVD
CNVD
added 2022/05/27 12:0 a.m.17 views

SoX Denial of Service Vulnerability

SoX is a set of audio processing tools. SoX version 14.4.2 contains a denial of service vulnerability that results from an assertion failure in rateinit in rate.c in libsox.a. The vulnerability can be exploited to cause a denial of service. An attacker could exploit this vulnerability to cause a...

4.3CVSS4.5AI score0.01114EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/05/26 12:0 a.m.24 views

EulerOS 2.0 SP3 : libtiff (EulerOS-SA-2022-1739)

According to the versions of the libtiff packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Null source pointer passed as an argument to memcpy function within TIFFFetchStripThing in tifdirread.c in libtiff versions from 3.9.0 to 4.3.0...

7.7CVSS6.8AI score0.01542EPSS
Exploits6References7
CNVD
CNVD
added 2022/05/26 12:0 a.m.15 views

libjpeg Denial of Service Vulnerability (CNVD-2022-77076)

libjpeg is a library written entirely in C that contains widely used implementations of JPEG decoding, JPEG encoding, and other JPEG functionality. libjpeg versions prior to 1.64 contain a denial-of-service vulnerability that stems from an assertion failure in BitStream in bitstream.hpp, which ca...

4.3CVSS5.2AI score0.01336EPSS
Exploits1Affected Software1
OSV
OSV
added 2022/05/25 11:15 p.m.4 views

CVE-2022-31651

In SoX 14.4.2, there is an assertion failure in rateinit in rate.c in libsox.a...

5.5CVSS9.2AI score
Exploits0References4
NVD
NVD
added 2022/05/25 11:15 p.m.15 views

CVE-2022-31651

In SoX 14.4.2, there is an assertion failure in rateinit in rate.c in libsox.a...

5.5CVSS0.01114EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2022/05/25 11:15 p.m.2 views

CVE-2022-31651

In SoX 14.4.2, there is an assertion failure in rateinit in rate.c in libsox.a...

5.5CVSS5.3AI score0.01114EPSS
Exploits1References5
OSV
OSV
added 2022/05/25 11:15 p.m.3 views

AZL-43648 CVE-2022-31651 affecting package sox 14.4.2.0-34

In SoX 14.4.2, there is an assertion failure in rateinit in rate.c in libsox.a...

5.5CVSS6.7AI score0.01114EPSS
Exploits1References1
Prion
Prion
added 2022/05/25 11:15 p.m.19 views

Authentication flaw

In SoX 14.4.2, there is an assertion failure in rateinit in rate.c in libsox.a...

4.3CVSS6.1AI score0.01114EPSS
Exploits1References4Affected Software1
UbuntuCve
UbuntuCve
added 2022/05/25 11:15 p.m.28 views

CVE-2022-31651

In SoX 14.4.2, there is an assertion failure in rateinit in rate.c in libsox.a...

5.5CVSS6.8AI score0.01114EPSS
Exploits1References3
NVD
NVD
added 2022/05/25 9:15 p.m.17 views

CVE-2022-31620

In libjpeg before 1.64, BitStream::Get in bitstream.hpp has an assertion failure that may cause denial of service. This is related to out-of-bounds array access during arithmetically coded lossless scan or arithmetically coded sequential scan...

6.5CVSS0.01336EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/05/25 9:15 p.m.2 views

CVE-2022-31620

In libjpeg before 1.64, BitStream::Get in bitstream.hpp has an assertion failure that may cause denial of service. This is related to out-of-bounds array access during arithmetically coded lossless scan or arithmetically coded sequential scan...

6.5CVSS5.3AI score0.01336EPSS
Exploits1References3
OSV
OSV
added 2022/05/25 9:15 p.m.12 views

CVE-2022-31620

In libjpeg before 1.64, BitStream::Get in bitstream.hpp has an assertion failure that may cause denial of service. This is related to out-of-bounds array access during arithmetically coded lossless scan or arithmetically coded sequential scan...

6.5CVSS6.7AI score
Exploits0References2
OSV
OSV
added 2022/05/25 9:15 p.m.1 views

UBUNTU-CVE-2022-31620

In libjpeg before 1.64, BitStream::Get in bitstream.hpp has an assertion failure that may cause denial of service. This is related to out-of-bounds array access during arithmetically coded lossless scan or arithmetically coded sequential scan...

6.5CVSS6.6AI score0.01336EPSS
Exploits1References4
Rows per page
Query Builder