CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

327 matches found

Positive Technologies•added 2025/01/08 12:0 a.m.•3 views

PT-2025-1330 · Gemalto · Gemalto

Name of the Vulnerable Software and Affected Versions: Gemalto affected versions not specified Description: A potential stack-based buffer overflow issue existed in the GemaltoKeyHandle.cpp file. This issue was fixed in SCSSU-201801. Recommendations: At the moment, there is no information about a...

9.8CVSS6.5AI score0.00526EPSS

Exploits1References5

Tenable Nessus•added 2024/12/09 12:0 a.m.•15 views

Apple Safari 16.5 Multiple Vulnerabilities (102735)

The version of Apple Safari installed on the remote host is prior to 16.5. It is, therefore, affected by multiple vulnerabilities as referenced in the 102735 advisory. - An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventur...

8.8CVSS8.3AI score0.1653EPSS

Exploits0References6

Zero Day Initiative•added 2024/11/21 12:0 a.m.•9 views

IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DXF files...

7.8CVSS6.8AI score0.00403EPSS

Exploits0

Zero Day Initiative•added 2024/11/21 12:0 a.m.•7 views

IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

7.8CVSS6.9AI score0.00421EPSS

Exploits0

Positive Technologies•added 2024/11/11 12:0 a.m.•2 views

PT-2024-20849 · Superscan · Superscan

Name of the Vulnerable Software and Affected Versions: SuperScan version 4.1 Description: A buffer overflow issue was discovered in SuperScan, which occurs via the Hostname/IP parameter. This issue grants an attacker full control. Recommendations: For SuperScan version 4.1, patch immediately and...

9.8CVSS6.8AI score0.0045EPSS

Exploits0References7

Zero Day Initiative•added 2024/10/31 12:0 a.m.•8 views

Autodesk AutoCAD CATPART File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS6.8AI score0.00207EPSS

Exploits0References1

Positive Technologies•added 2024/09/03 12:0 a.m.•3 views

PT-2024-29396 · Yugabyte · Yugabytedb

Name of the Vulnerable Software and Affected Versions: YugabyteDB version 2.21.1.0 Description: A buffer overflow issue was discovered in YugabyteDB via the insert into parameter. Recommendations: For YugabyteDB version 2.21.1.0, consider restricting the use of the insert into parameter until a...

7.5CVSS7AI score0.0051EPSS

Exploits1References9

Positive Technologies•added 2024/09/03 12:0 a.m.•4 views

PT-2024-29397 · Unknown +1 · Clickhouse +1

Name of the Vulnerable Software and Affected Versions: ClickHouse version 24.3.3.102 Description: A buffer overflow issue was discovered in ClickHouse via the component DB::evaluateConstantExpressionImpl. Recommendations: For ClickHouse version 24.3.3.102, consider disabling the...

7.5CVSS6.6AI score0.00559EPSS

Exploits1References17

Zero Day Initiative•added 2024/08/08 12:0 a.m.•6 views

Apple macOS AppleVADriver Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of MOV...

8.8CVSS7.6AI score0.00638EPSS

Exploits0References1

Zero Day Initiative•added 2024/07/22 12:0 a.m.•8 views

Delta Electronics CNCSoft-G2 DPAX File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics CNCSoft-G2. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS8.8AI score0.00738EPSS

Exploits0References1

Positive Technologies•added 2024/05/24 12:0 a.m.•3 views

PT-2024-25496 · Pingcap · Tidb

Name of the Vulnerable Software and Affected Versions: PingCAP TiDB version 7.5.1 Description: A buffer overflow issue was discovered, which could lead to database crashes and denial of service attacks. Recommendations: For PingCAP TiDB version 7.5.1, at the moment, there is no information about ...

6.5CVSS6.6AI score0.00426EPSS

Exploits0References5

Cvelist•added 2024/05/09 4:26 p.m.•22 views

CVE-2024-29166

HDF5 through 1.14.3 contains a buffer overflow in H5Olinfodecode, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...

8AI score0.00213EPSS

Exploits0References1

Cvelist•added 2024/03/27 12:0 a.m.•14 views

CVE-2024-25388

drivers/wlan/wlanmgmt,c in RT-Thread through 5.0.2 has an integer signedness error and resultant buffer overflow...

7AI score0.00323EPSS

Exploits0References5

Amazon•added 2024/02/19 12:0 a.m.•3 views

Medium: vim

Issue Overview: Vim before 9.0.2142 has a stack-based buffer overflow because didsetlangmap in map.c calls sprintf to write to the error buffer that is passed down to the option callback functions. CVE-2024-22667 Affected Packages: vim Issue Correction: Run dnf update vim --releasever...

7.8CVSS7.9AI score0.00563EPSS

Exploits1

Vulnrichment•added 2024/02/06 12:20 a.m.•4 views

CVE-2023-6229

Buffer overflow in CPCA PDL Resource Download process of Office Multifunction Printers and Laser Printers which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code.: Satera LBP670C Series/Satera MF750C Series firmware v03.07...

9.8CVSS8.1AI score0.01383EPSS

Exploits0References4

Positive Technologies•added 2024/02/01 12:0 a.m.•1 views

PT-2024-40811 · Git +1 · S2Opc

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a global buffer overflow read of 8 bytes. The crash occurs in the ReadVariantArrayBuiltInType function, which is called by SOPC...

7.3AI score

Exploits0References2

Positive Technologies•added 2023/11/14 12:0 a.m.•1 views

PT-2023-6941 · Microsoft · Windows +1

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the November patch Description: The issue is related to a buffer overflow in the memory of the Microsoft DWM Core Library in Windows operating systems. This can allow an attacker to escalate their privilege...

7.8CVSS8.3AI score0.12073EPSS

Exploits0References28

Positive Technologies•added 2023/10/16 12:0 a.m.•3 views

PT-2023-6596 · D Link · Di-7100Gv2.D1 +5

Name of the Vulnerable Software and Affected Versions: D-Link DI-7003GV2.D1 versions 23.08.25D1 and earlier D-Link DI-7100G+V2.D1 versions 23.08.23D1 and earlier D-Link DI-7100GV2.D1 version 23.08.23D1 D-Link DI-7200G+V2.D1 versions 23.08.23D1 and earlier D-Link DI-7200GV2.E1 versions 23.08.23E1...

9.8CVSS9.7AI score0.01242EPSS

Exploits1References3

Positive Technologies•added 2023/10/04 12:0 a.m.•3 views

PT-2023-36050 · Git +1 · Libdwarf

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read error. Technical details include a crash type of Heap-buffer-overflow READ 8, with the crash state...

6.8AI score

Exploits0References2