CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2012-3938

Malware in sbrugna...

4.3CVSS9.4AI score0.00927EPSS

Exploits0References21

Tenable Nessus•added 2023/03/29 12:0 a.m.•37 views

Fedora 38 : cutter-re / rizin (2023-af305bed3d)

The remote Fedora 38 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-af305bed3d advisory. rebase rizin to v0.5.1 and cutter-re to 0.2.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note...

7.8CVSS6.6AI score0.0055EPSS

Exploits1References7

SUSE CVE•added 2023/02/15 5:45 a.m.•3 views

SUSE CVE-2012-3994

Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 allow remote attackers to conduct cross-site scripting XSS attacks via a binary plugin that uses Object.defineProperty to shadow the top object, and...

4.3CVSS8.2AI score0.00927EPSS

Exploits0References7

SUSE CVE•added 2023/02/15 5:45 a.m.•1 views

SUSE CVE-2012-4209

Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 do not prevent use of a "top" frame name-attribute value to access the location property, which makes it easier for remote attackers to conduct...

4.3CVSS8.2AI score0.02065EPSS

Exploits0References6

Tenable Nessus•added 2022/09/25 12:0 a.m.•34 views

GLSA-202209-06 : Rizin: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202209-06 Rizin: Multiple Vulnerabilities - Rizin v0.4.0 and below was discovered to contain an integer overflow via the function getlongobject. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted...

7.8CVSS6.9AI score0.0055EPSS

Exploits1References10

Prion•added 2022/09/06 8:15 p.m.•8 views

Double free

Rizin is a UNIX-like reverse engineering framework and command-line toolset. Versions 0.4.0 and prior are vulnerable to a double free in bobj.c:rzbinrelocstoragefree when freeing relocations generated from qnx binary plugin. A user opening a malicious qnx binary could be affected by this...

4.4CVSS7.7AI score0.00488EPSS

Exploits0References5Affected Software1

Positive Technologies•added 2022/09/06 12:0 a.m.•1 views

PT-2022-23138 · Rizin · Rizin

Name of the Vulnerable Software and Affected Versions: Rizin versions 0.4.0 and prior Description: The issue is related to a double free in bobj.c:rz bin reloc storage free when freeing relocations generated from qnx binary plugin. A user opening a malicious qnx binary could be affected, allowing...

7.8CVSS7.5AI score0.00488EPSS

Exploits0References10

Cvelist•added 2022/09/06 12:0 a.m.•16 views

CVE-2022-36043 Rizin Double Free in bobj.c when using qnx binary plugin

7.8CVSS7.9AI score0.00488EPSS

Exploits0References5

Veracode•added 2019/05/02 4:41 a.m.•21 views

Cross Site Scripting (XSS)

Mozilla Firefox is vulnerable to cross-site scripting XSS, Due to flaws found in the location object implementation in Firefox, it does not prevent use of a "top" frame name-attribute value to access the location property, which makes it easier for remote attackers to conduct cross-site scripting...

4.3CVSS7.7AI score0.02065EPSS

Exploits0References28Affected Software3