Lucene search
K

11 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/18 8:58 a.m.6 views

CVE-2026-50643

8cc is vulnerable to an Out‑of‑Bounds Read due to improper handling of line directives and GNU linemarkers. The compiler accepts attacker-controlled filename and line number metadata and later uses it without validation when accessing source line arrays. By supplying invalid or oversized line...

5.1CVSS5.3AI score0.00138EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/08 9:35 p.m.2 views

CVE-2026-40027 ALEAPP NQ Vault Artifact Parser Path Traversal

ALEAPP Android Logs Events And Protobuf Parser through 3.4.0 contains a path traversal vulnerability in the NQVault.py artifact parser that uses attacker-controlled filenamefrom values from a database directly as the output filename, allowing arbitrary file writes outside the report output...

8.4CVSS6.5AI score0.00192EPSS
Exploits0References4
OSV
OSV
added 2022/02/16 9:15 p.m.3 views

ALPINE-CVE-2021-43300

Stack overflow in PJSUA API when calling pjsuarecordercreate. An attacker-controlled 'filename' argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation...

9.8CVSS7.4AI score0.02339EPSS
Exploits0References1
OSV
OSV
added 2022/02/16 9:15 p.m.2 views

ALPINE-CVE-2021-43299

Stack overflow in PJSUA API when calling pjsuaplayercreate. An attacker-controlled 'filename' argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation...

9.8CVSS7.4AI score0.02475EPSS
Exploits0References1
OSV
OSV
added 2022/02/16 9:15 p.m.1 views

DEBIAN-CVE-2021-43299

Stack overflow in PJSUA API when calling pjsuaplayercreate. An attacker-controlled 'filename' argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation...

9.8CVSS9.1AI score0.02475EPSS
Exploits0References1
OSV
OSV
added 2022/02/16 9:15 p.m.44 views

CVE-2021-43299

Stack overflow in PJSUA API when calling pjsuaplayercreate. An attacker-controlled 'filename' argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation...

9.8CVSS3.6AI score
Exploits0References6
OSV
OSV
added 2022/02/16 9:15 p.m.1 views

UBUNTU-CVE-2021-43302

Read out-of-bounds in PJSUA API when calling pjsuarecordercreate. An attacker-controlled 'filename' argument may cause an out-of-bounds read when the filename is shorter than 4 characters...

9.1CVSS7.2AI score0.02164EPSS
Exploits0References5
Cvelist
Cvelist
added 2022/02/16 12:0 a.m.16 views

CVE-2021-43302

Read out-of-bounds in PJSUA API when calling pjsuarecordercreate. An attacker-controlled 'filename' argument may cause an out-of-bounds read when the filename is shorter than 4 characters...

9.5AI score0.02164EPSS
Exploits0References5
AlpineLinux
AlpineLinux
added 2022/02/16 12:0 a.m.30 views

CVE-2021-43299

Stack overflow in PJSUA API when calling pjsuaplayercreate. An attacker-controlled 'filename' argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation...

9.8CVSS9.8AI score0.02475EPSS
Exploits0
OSV
OSV
added 2021/07/28 6:8 p.m.25 views

GO-2021-0108 CRLF vulnerability in Fiber in github.com/gofiber/fiber

Due to improper input sanitization, a maliciously constructed filename could cause a file download to use an attacker controlled filename, as well as injecting additional headers into an HTTP response...

5.8CVSS5.3AI score0.00861EPSS
Exploits0References2
OSV
OSV
added 2021/05/07 4:20 p.m.2 views

GHSA-FMF5-J5J9-99PP OS Command Injection in pulverizr

pulverizr through 0.7.0 allows execution of arbitrary commands. Within lib/job.js, the variable filename can be controlled by the attacker. This function uses the variable "filename" to construct the argument of the exec call without any sanitization. In order to successfully exploit this...

9.8CVSS6.1AI score0.02512EPSS
Exploits1References3
Rows per page
Query Builder