CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5833 matches found

OSV•added 2018/07/31 8:29 p.m.•1 views

CVE-2018-14316

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.0.1.5096. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

6.5CVSS5.6AI score0.02629EPSS

Exploits0References2

OSV•added 2018/07/24 4:29 p.m.•3 views

UBUNTU-CVE-2018-14589

An issue has been discovered in Bento4 1.5.1-624. AP4Mp4AudioDsiParser::ReadBits in Codecs/Ap4Mp4AudioInfo.cpp has a heap-based buffer over-read...

8.8CVSS7.4AI score0.0148EPSS

Exploits1References3

OSV•added 2018/07/24 4:29 p.m.•6 views

UBUNTU-CVE-2018-14585

An issue has been discovered in Bento4 1.5.1-624. AP4BytesToUInt16BE in Core/Ap4Utils.h has a heap-based buffer over-read after a call from the AP4Stz2Atom class...

8.8CVSS5.9AI score0.0148EPSS

Exploits1References3

PyPA•added 2018/07/23 8:29 a.m.•6 views

PYSEC-2018-63

An issue was discovered in aubio 0.4.6. A buffer over-read can occur in newaubiopitchyinfft in pitch/pitchyinfft.c, as demonstrated by aubionotes...

8.8CVSS7.2AI score0.01966EPSS

Exploits1References4Affected Software1

OSV•added 2018/07/23 8:29 a.m.•1 views

UBUNTU-CVE-2018-14532

An issue was discovered in Bento4 1.5.1-624. There is a heap-based buffer over-read in AP4Mpeg2TsVideoSampleStream::WriteSample in Core/Ap4Mpeg2Ts.cpp after a call from Mp42Hls.cpp, a related issue to CVE-2018-13846...

9.8CVSS7.5AI score0.01678EPSS

Exploits0References3

OSV•added 2018/07/23 8:29 a.m.•2 views

UBUNTU-CVE-2018-14523

An issue was discovered in aubio 0.4.6. A buffer over-read can occur in newaubiopitchyinfft in pitch/pitchyinfft.c, as demonstrated by aubionotes...

8.8CVSS7.4AI score0.01966EPSS

Exploits1References3

OSV•added 2018/07/23 8:29 a.m.•1 views

DEBIAN-CVE-2018-14523

An issue was discovered in aubio 0.4.6. A buffer over-read can occur in newaubiopitchyinfft in pitch/pitchyinfft.c, as demonstrated by aubionotes...

8.8CVSS7.2AI score0.01966EPSS

Exploits1References1

OSV•added 2018/07/20 3:29 p.m.•2 views

DEBIAN-CVE-2018-14460

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5Osdspacedecode in H5Osdspace.c...

8.8CVSS7.3AI score0.01561EPSS

Exploits0References1

OSV•added 2018/07/19 2:29 a.m.•1 views

DEBIAN-CVE-2018-14370

In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the IEEE 802.11 protocol dissector could crash. This was addressed in epan/crypt/airpdcap.c via bounds checking that prevents a buffer over-read...

7.5CVSS8.8AI score0.03421EPSS

Exploits1References1

OSV•added 2018/07/19 2:29 a.m.•1 views

UBUNTU-CVE-2018-14370

In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the IEEE 802.11 protocol dissector could crash. This was addressed in epan/crypt/airpdcap.c via bounds checking that prevents a buffer over-read...

7.5CVSS7AI score0.03421EPSS

Exploits1References5

OSV•added 2018/07/19 2:29 a.m.•1 views

UBUNTU-CVE-2018-14344

In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the ISMP dissector could crash. This was addressed in epan/dissectors/packet-ismp.c by validating the IPX address length to avoid a buffer over-read...

7.5CVSS7AI score0.03351EPSS

Exploits0References5

OSV•added 2018/07/19 2:29 a.m.•0 views

DEBIAN-CVE-2018-14344

7.5CVSS6.8AI score0.03351EPSS

Exploits0References1

OSV•added 2018/07/19 2:29 a.m.•0 views

DEBIAN-CVE-2018-14340

In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, dissectors that support zlib decompression could crash. This was addressed in epan/tvbuffzlib.c by rejecting negative lengths to avoid a buffer over-read...

7.5CVSS8.3AI score0.0345EPSS

Exploits1References1

CNVD•added 2018/07/19 12:0 a.m.•3 views

Wireshark Denial of Service Vulnerability (CNVD-2018-14104)

Wireshark formerly known as Ethereal is a set of network packet analysis software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis.ISMP dissector is one of the ISMP protocol parsers. A security vulnerability exist...

7.5CVSS7.5AI score0.03351EPSS

Exploits0References1

CNVD•added 2018/07/19 12:0 a.m.•2 views

Wireshark Denial of Service Vulnerability (CNVD-2018-13659)

Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A security vulnerability exists in the parser used to decompress zlib in Wireshark...

7.5CVSS7.5AI score0.0345EPSS

Exploits1References1

BDU FSTEC•added 2018/07/19 12:0 a.m.•3 views

The vulnerability of the AMD component in the Mac OS X operating system allows a hacker to trigger a service failure.

The vulnerability of the AMD component in the Mac OS X operating system is related to the operation of reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure through a specially created application...

6.2CVSS8AI score0.0092EPSS

Exploits0References3Affected Software1

PyPA•added 2018/07/13 3:29 p.m.•5 views

PYSEC-2018-133

Exiv2 0.26 has a heap-based buffer over-read in WebPImage::decodeChunks in webpimage.cpp...

8.8CVSS7.2AI score0.01688EPSS

Exploits1References3Affected Software1

OSV•added 2018/07/13 2:29 a.m.•4 views

UBUNTU-CVE-2018-14031

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5Tcopy in H5T.c...

8.8CVSS6.9AI score0.01568EPSS

Exploits0References3