Lucene search
K

61 matches found

CNNVD
CNNVD
added 2024/11/27 12:0 a.m.5 views

Contiki-NG 缓冲区错误漏洞

Contiki-NG is a Contiki-NG open source operating system for resource-constrained devices in the Internet of Things. A buffer error vulnerability exists in Contiki-NG that originates from a 1-byte out-of-bounds read that may be triggered when sending a packet to a device running the SNMP-enabled...

9.6CVSS6.7AI score0.00286EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/10/11 2:48 a.m.13 views

SUSE CVE-2024-47667

In the Linux kernel, the following vulnerability has been resolved: PCI: keystone: Add workaround for Errata i2037 AM65x SR 1.0 Errata i2037 in AM65x/DRA80xM Processors Silicon Revision 1.0 SPRZ452DJuly 2018Revised December 2019 1 mentions when an inbound PCIe TLP spans more than two internal AXI...

4.4CVSS6.5AI score0.00207EPSS
Exploits0References16
OSV
OSV
added 2024/05/21 3:15 p.m.3 views

DEBIAN-CVE-2021-47348

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid HDCP over-read and corruption Instead of reading the desired 5 bytes of the actual target field, the code was reading 8. This could result in a corrupted value if the trailing 3 bytes were non-zero, so...

9.1CVSS5.7AI score0.00987EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/01/06 12:0 a.m.4 views

PT-2024-40803 · Git +1 · Libjxl

Name of the Vulnerable Software and Affected Versions: No specific software or version information is provided in the input descriptions. Description: A crash has been reported due to a global buffer overflow read of 16 bytes. The issue is related to the jxl::N AVX2::WriteToOutputStage module,...

7.4AI score
Exploits0References2
OSV
OSV
added 2023/12/22 3:15 a.m.2 views

DEBIAN-CVE-2023-51713

makeftpcmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics...

7.5CVSS7.3AI score0.04249EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/12/21 12:0 a.m.5 views

PT-2023-8972 · Proftpd +3 · Proftpd +3

Name of the Vulnerable Software and Affected Versions: ProFTPD versions prior to 1.3.8a Description: The issue is related to the make ftp cmd function in the main.c component of the ProFTPD FTP server, which mishandles quote and backslash semantics. This leads to a one-byte out-of-bounds read and...

7.8CVSS6.7AI score0.93305EPSS
Exploits5References40
OSV
OSV
added 2023/04/16 12:15 a.m.8 views

AZL-42093 CVE-2020-27545 affecting package libdwarf for versions less than 0.9.0-1

libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer dereference via an invalid line table in a crafted object...

6.5CVSS6.7AI score0.00823EPSS
Exploits0References1
OSV
OSV
added 2023/04/16 12:15 a.m.5 views

UBUNTU-CVE-2020-27545

libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer dereference via an invalid line table in a crafted object...

6.5CVSS6.8AI score0.00823EPSS
Exploits0References4
OSV
OSV
added 2023/02/28 6:15 p.m.2 views

DEBIAN-CVE-2023-1018

An out-of-bounds read vulnerability exists in TPM2.0's Module Library allowing a 2-byte read past the end of a TPM2.0 command in the CryptParameterDecryption routine. An attacker who can successfully exploit this vulnerability can read or access sensitive data stored in the TPM...

5.5CVSS7AI score0.05552EPSS
Exploits0References1
OSV
OSV
added 2023/02/21 11:4 a.m.5 views

OESA-2023-1106 tar security update

GNU Tar provides the ability to create tar archives, as well as various other kinds of manipulation. For example, you can use Tar on previously created archives to extract files, to store additional files, or to update or list files which were already stored. Security Fixes: GNU Tar through 1.34...

5.5CVSS7AI score0.04524EPSS
Exploits1References2
OSV
OSV
added 2023/02/17 11:4 a.m.6 views

OESA-2023-1104 tar security update

GNU Tar provides the ability to create tar archives, as well as various other kinds of manipulation. For example, you can use Tar on previously created archives to extract files, to store additional files, or to update or list files which were already stored. Security Fixes: GNU Tar through 1.34...

5.5CVSS7AI score0.04524EPSS
Exploits1References2
OSV
OSV
added 2023/02/17 11:4 a.m.4 views

OESA-2023-1089 tar security update

GNU Tar provides the ability to create tar archives, as well as various other kinds of manipulation. For example, you can use Tar on previously created archives to extract files, to store additional files, or to update or list files which were already stored. Security Fixes: GNU Tar through 1.34...

5.5CVSS7AI score0.04524EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:45 a.m.4 views

SUSE CVE-2017-8398

dwarf.c in GNU Binutils 2.28 is vulnerable to an invalid read of size 1 during dumping of debug information from a corrupt binary. This vulnerability causes programs that conduct an analysis of binary programs, such as objdump and readelf, to crash...

3.3CVSS7.6AI score0.01968EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 3:47 a.m.5 views

SUSE CVE-2021-20275

A flaw was found in privoxy before 3.0.32. A invalid read of size two may occur in chunkedbodyiscomplete leading to denial of service...

7.5CVSS7.1AI score0.01953EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 3:22 a.m.5 views

SUSE CVE-2022-48303

GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitation to change the flow of control has not been demonstrated. The issue occurs in fromheader in list.c via a V7 archive in which mtime has approximately 11 whitespace...

4.3CVSS8.4AI score0.04524EPSS
Exploits1References34
OSV
OSV
added 2023/01/30 4:15 a.m.4 views

DEBIAN-CVE-2022-48303

GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitation to change the flow of control has not been demonstrated. The issue occurs in fromheader in list.c via a V7 archive in which mtime has approximately 11 whitespace...

5.5CVSS6.5AI score0.04524EPSS
Exploits1References1
OSV
OSV
added 2020/07/09 3:15 p.m.5 views

CVE-2020-12425

Due to confusion processing a hyphen character in Date.parse, a one-byte out of bounds read could have occurred, leading to potential information disclosure. This vulnerability affects Firefox 78...

6.5CVSS7.1AI score0.01362EPSS
Exploits0References5
OSV
OSV
added 2020/07/01 12:0 a.m.6 views

UBUNTU-CVE-2020-12425

Due to confusion processing a hyphen character in Date.parse, a one-byte out of bounds read could have occurred, leading to potential information disclosure. This vulnerability affects Firefox 78...

6.5CVSS7AI score0.01362EPSS
Exploits0References5
NVD
NVD
added 2019/04/28 4:29 p.m.30 views

CVE-2019-11579

dhcp.c in dhcpcd before 7.2.1 contains a 1-byte read overflow with DHOOPTSOVERLOADED...

5.3CVSS5.3AI score0.01414EPSS
Exploits0References4
CVE
CVE
added 2019/04/28 3:22 p.m.64 views

CVE-2019-11579

CVE-2019-11579 affects the dhcpcd DHCP client (dhcpcd) before 7.2.1. It is caused by a 1-byte read overflow in the DHO_OPTSOVERLOADED handling in dhcp.c. The documented remediation is to upgrade to version 7.2.1 or apply vendor patches that address this issue.

5.3CVSS5.2AI score0.01414EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder