CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2019/12/23 3:15 a.m.•0 views

UBUNTU-CVE-2019-11047

6.5CVSS6.7AI score0.07274EPSS

BDU FSTEC•added 2019/12/23 12:0 a.m.•3 views

The vulnerabilities of PDF viewing and editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, and Adobe Acrobat 2017/Adobe Acrobat Reader 2017 involve reading beyond the buffer in memory, allowing attackers to gain unauthorized access to protected information.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, and Adobe Acrobat Reader 2017 are related to reading data beyond the buffer in memory. Exploiting these vulnerabilities can allow an attacker to...

7.8CVSS7.4AI score0.02893EPSS

Exploits0References3

BDU FSTEC•added 2019/12/23 12:0 a.m.•4 views

7.8CVSS7.4AI score0.02893EPSS

Exploits0References3

BDU FSTEC•added 2019/12/22 12:0 a.m.•4 views

Vulnerability of the print-rx.c:rx_cache_find() function in the packet capture and analysis tool tcpdump: This function allows a intruder to gain unauthorized access to information and compromise its integrity and availability.

The vulnerability in the print-rx.crxcachefind function of the packet capture and analysis tool tcpdump involves reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to gain unauthorized access to information and compromise its integrity and...

BDU FSTEC•added 2019/12/22 12:0 a.m.•3 views

Vulnerability in the print-isakmp.c function: The print() utility for capturing and analyzing network traffic via tcpdump allows a hacker to gain unauthorized access to information and compromise its integrity and availability.

The vulnerability in the print-isakmp.c file, specifically the function ikev1nprint, related to the tcpdump tool for capturing and analyzing network traffic, involves reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to gain unauthorized...

9.8CVSS6.5AI score0.05342EPSS

Exploits0References4Affected Software2

BDU FSTEC•added 2019/12/22 12:0 a.m.•4 views

Vulnerability of the print-rsvp.c:rsvp_obj_print() utility for capturing and analyzing network traffic with tcpdump: This utility allows a intruder to gain unauthorized access to information and compromise its integrity and availability.

The vulnerability in the print-rsvp.c:rsvpobjprint utility for capturing and analyzing network traffic using tcpdump is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to gain unauthorized access to information and compromise...

10CVSS6.5AI score0.04069EPSS

BDU FSTEC•added 2019/12/22 12:0 a.m.•5 views

Vulnerability of the print-bgp.c:bgp_capabilities_print() function in the packet capture and analysis tool tcpdump: This function allows a malicious actor to gain unauthorized access to information and compromise its integrity and availability.

The vulnerability in the print-bgp.c:bgpcapabilitiesprint utility for capturing and analyzing network traffic using tcpdump is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to information and...

BDU FSTEC•added 2019/12/22 12:0 a.m.•2 views

Vulnerability of the print-lmp.c:lmp_print_data_link_subobjs() function in the packet capture and analysis tool tcpdump: This function allows an intruder to gain unauthorized access to information and compromise its integrity and availability.

The vulnerability in the print-lmp.c file, specifically lmpprintdatalinksubobjs, related to the tcpdump tool for capturing and analyzing network traffic, stems from reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to gain unauthorized...

BDU FSTEC•added 2019/12/22 12:0 a.m.•3 views

The vulnerability in the print-fr.c:mfr_print() function of the tcpdump utility for capturing and analyzing network traffic allows a malicious actor to gain unauthorized access to information and compromise its integrity and availability.

The vulnerability of the print-fr.c:mfrprint function in the tcpdump utility for capturing and analyzing network traffic is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to gain unauthorized access to information and...

Positive Technologies•added 2019/12/21 12:0 a.m.•8 views

PT-2019-4739 · Php +7 · Php +7

Name of the Vulnerable Software and Affected Versions: PHP versions 7.2.x through 7.2.25 PHP versions 7.3.x through 7.3.12 PHP version 7.4.0 Description: The issue is related to the PHP EXIF extension when parsing EXIF information from an image, for example, via the exif read data function. It is...

9.8CVSS7.6AI score0.9947EPSS

Exploits102References430

IBM Security Bulletins•added 2019/12/18 2:26 p.m.•68 views

Security Bulletin: CVE-2017-3167, CVE-2017-3169, CVE-2017-7659, CVE-2017-7668 and CVE-2017-7679 in IBM i HTTP Server

Summary HTTP Server is supported by IBM i. IBM i has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2017-7679 DESCRIPTION: Apache HTTPD could allow a remote attacker to obtain sensitive information, caused by a buffer overread in modmime. By sending a specially crafted Content-Ty...

9.8CVSS1.6AI score0.57472EPSS

Exploits4Affected Software1

RedHat Linux•added 2019/12/17 11:15 a.m.•3 views

freetype: mishandling ps_parser_skip_PS_token in an FT_New_Memory_Face operation in skip_comment, psaux/psobjs.c, leads to a buffer over-read

FreeType before 2.6.1 has a buffer over-read in skipcomment in psaux/psobjs.c because psparserskipPStoken is mishandled in an FTNewMemoryFace operation...

6.5CVSS7.5AI score0.01687EPSS

RedHat Linux•added 2019/12/17 11:15 a.m.•2 views

freetype: a heap-based buffer over-read in T1_Get_Private_Dict in type1/t1parse.c leading to crash

An out-of-bounds buffer overflow flaw was found in FreeType prior to version 2.6.1...

8.8CVSS6.8AI score0.01919EPSS

BDU FSTEC•added 2019/12/17 12:0 a.m.•6 views

Vulnerability in the print-icmp.c:icmp_print() utility for capturing and analyzing network traffic with tcpdump: This allows a intruder to gain unauthorized access to information and compromise its integrity and availability.

The vulnerability in the print-icmp.c function, specifically the icmpprint utility for capturing and analyzing network traffic using tcpdump, is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to gain unauthorized access to...

BDU FSTEC•added 2019/12/17 12:0 a.m.•4 views

The vulnerability of the archive_wstring.AppendFrom_MBS function in the OpenLDAP package allows a hacker to read the memory contents of the system.

The vulnerability of the archivewstringappendfrommbs function in the archivestring.c file of the OpenLDAP package involves reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to read memory contents using a specially created archive file...

5.5CVSS6.8AI score0.00661EPSS

Exploits1References4Affected Software1

BDU FSTEC•added 2019/12/17 12:0 a.m.•6 views

Vulnerability of the print-ldp.c:ldp_tlv_print() utility in tcpdump: a tool for capturing and analyzing network traffic. This vulnerability allows an attacker to gain unauthorized access to information and compromise its integrity and availability.

The vulnerability in the print-ldp.c function, specifically ldptlvprint, a utility for capturing and analyzing network traffic using tcpdump, relates to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to information...