Lucene search
K

121 matches found

Code423n4
Code423n4
added 2021/09/29 12:0 a.m.11 views

IndexPool.sol#_pow() Wrong implementation

Handle WatchPug Vulnerability details function powuint256 a, uint256 n internal pure returns uint256 output output = n % 2 != 0 ? a : BASE; for n /= 2; n != 0; n /= 2 a = a a; if n % 2 != 0 output = output a; 1. a a without div by BASE will accumulate decimals unexpectedly and leads to overflow...

7.1AI score
Exploits0
Code423n4
Code423n4
added 2021/09/29 12:0 a.m.13 views

TridentRouter.addLiquidity() Add liquidity to IndexPool through TridentRouter may casue loss of a small portion of users funds

Handle WatchPug Vulnerability details The mint function in IndexPool requires the liquidity provider to transfer in amounts no less than the amounts of tokens' reserve proportionally to the toMint amount. However, the TridentRouter won't calculate the toMint amount and amountsIn for the liquidity...

6.9AI score
Exploits0
Cvelist
Cvelist
added 2021/09/16 12:20 p.m.25 views

CVE-2021-34573 Incorrect calculation in Enbra EWM does not report backflows or no flow events

In Enbra EWM in Version 1.7.29 together with several tested wireless M-Bus Sensors the events backflow and "no flow" are not reconized or misinterpreted. This may lead to wrong values and missing events...

6.2CVSS6.5AI score0.00219EPSS
Exploits0References1
OSV
OSV
added 2021/08/25 8:55 p.m.12 views

GHSA-QJ3V-Q2VJ-4C8H Calculation error in ark-r1cs-std

An issue was discovered in the ark-r1cs-std crate before 0.3.1 for Rust. It does not enforce any constraints in the FieldVar::mulbyinverse method. Thus, a prover can produce a proof that is unsound but is nonetheless verified...

9.8CVSS9.4AI score0.01275EPSS
Exploits1References6
BDU FSTEC
BDU FSTEC
added 2021/07/07 12:0 a.m.19 views

The vulnerability of the fly-fm file manager, related to insufficient validation of input data, allows a hacker to trigger a service failure.

The vulnerability of the fly-fm file manager is related to incorrect calculation of MD5 in the program window. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

4CVSS5.5AI score
Exploits0References1Affected Software1
CNVD
CNVD
added 2021/01/26 12:0 a.m.13 views

OpenLDAP Denial of Service Vulnerability (CNVD-2021-07934)

OpenLDAP is a free, open source implementation of the Lightweight Directory Access Protocol LDAP. A denial of service vulnerability exists in OpenLDAP versions prior to 2.4.57. An attacker could exploit this vulnerability to cause a memch-bvlen calculation error and a slapd crash in saslAuthzTo...

7.5CVSS6.4AI score0.043EPSS
Exploits0References1
NVD
NVD
added 2020/09/17 1:15 p.m.36 views

CVE-2020-6113

An exploitable vulnerability exists in the object stream parsing functionality of Nitro Software, Inc.’s Nitro Pro 13.13.2.242 when updating its cross-reference table. When processing an object stream from a PDF document, the application will perform a calculation in order to allocate memory for...

8.8CVSS0.6862EPSS
Exploits1References1
Hacker One
Hacker One
added 2020/03/14 5:52 p.m.35 views

Zomato: Mathematical error found in meals for one

NOTE! Thanks for submitting a report! Please replace all the square sections below with the pertinent details. Remember, the more detail you provide, the easier it is for us to verify and then potentially issue a bounty, so be sure to take your time filling out th Wrong calculation is done by the...

1.2AI score
Exploits0
Prion
Prion
added 2019/05/24 5:29 p.m.22 views

Integer overflow

Possible integer underflow can happen when calculating length of elementary stream map from invalid packet length which is later used to read from input buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT,...

10CVSS9.3AI score0.00988EPSS
Exploits0References1
Veracode
Veracode
added 2019/01/15 8:52 a.m.36 views

Denial Of Service (DoS)

mysql is vulnerable to denial of service DoS attacks. The vulnerability exists as Oracle MySQL 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier allows remote attackers to cause a denial of service crash via a crafted geometry feature that specifies a large number of points, which is...

5CVSS5.6AI score0.18675EPSS
Exploits2References25Affected Software1
CNVD
CNVD
added 2018/05/28 12:0 a.m.3 views

DimonCoin (FUD) Information Disclosure Vulnerability

DimonCoin FUD is a virtual currency system. A security vulnerability exists in the 'transferFrom' function of the smart contract implementation in DimonCoin FUD, which stems from an error in the computation of the included value. The vulnerability can be exploited by an attacker to steal assets...

7.5CVSS6.9AI score0.00971EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2018/01/09 1:20 p.m.26 views

CVE-2018-5208

In Irssi before 1.0.6, a calculation error in the completion code could cause a heap buffer overflow when completing certain strings...

9.8CVSS3.5AI score0.02378EPSS
Exploits0References2
NVD
NVD
added 2018/01/06 4:29 p.m.13 views

CVE-2018-5208

In Irssi before 1.0.6, a calculation error in the completion code could cause a heap buffer overflow when completing certain strings...

9.8CVSS9.7AI score0.02378EPSS
Exploits0References2
Prion
Prion
added 2018/01/06 4:29 p.m.16 views

Heap overflow

In Irssi before 1.0.6, a calculation error in the completion code could cause a heap buffer overflow when completing certain strings...

7.5CVSS9.5AI score0.02378EPSS
Exploits0References2Affected Software2
OSV
OSV
added 2018/01/06 4:29 p.m.1 views

DEBIAN-CVE-2018-5208

In Irssi before 1.0.6, a calculation error in the completion code could cause a heap buffer overflow when completing certain strings...

9.8CVSS7.6AI score0.02378EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/01/06 4:0 p.m.24 views

CVE-2018-5208

In Irssi before 1.0.6, a calculation error in the completion code could cause a heap buffer overflow when completing certain strings...

9.6AI score0.02378EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2018/01/06 4:0 p.m.27 views

CVE-2018-5208

In Irssi before 1.0.6, a calculation error in the completion code could cause a heap buffer overflow when completing certain strings...

9.8CVSS9.8AI score0.02378EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2018/01/06 4:0 p.m.37 views

CVE-2018-5208

In Irssi before 1.0.6, a calculation error in the completion code could cause a heap buffer overflow when completing certain strings...

9.8CVSS9.7AI score0.02378EPSS
Exploits0
OSV
OSV
added 2018/01/06 12:0 a.m.8 views

UBUNTU-CVE-2018-5208

In Irssi before 1.0.6, a calculation error in the completion code could cause a heap buffer overflow when completing certain strings...

9.8CVSS7.6AI score0.02378EPSS
Exploits0References5
VulnCheck KEV
VulnCheck KEV
added 2016/09/29 12:0 a.m.4 views

VulnCheck KEV: CVE-2011-0101

Microsoft Excel 2002 SP3 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted RealTimeData record, related to a stTopic field, double-byte characters, and an incorrect pointer calculation, aka "Excel Record Parsing WriteAV Vulnerability."...

9.3CVSS6.2AI score0.29971EPSS
Exploits1References1
Rows per page
Query Builder