Lucene search
K

689 matches found

OSV
OSV
added 2023/09/11 9:15 a.m.2 views

DEBIAN-CVE-2023-4575

When creating a callback over IPC for showing the File Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of the callbacks finished. This could have led to a use-after-free causing a potentially exploitable...

6.5CVSS6.5AI score0.00571EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2023/09/07 11:45 a.m.2 views

Mozilla: Memory corruption in IPC FilePickerShownCallback

The Mozilla Foundation Security Advisory describes this flaw as: When creating a callback over IPC for showing the File Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of the callbacks finished. This could...

6.5CVSS7.2AI score0.00571EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/09/04 4:0 p.m.3 views

Mozilla: Memory corruption in IPC FilePickerShownCallback

The Mozilla Foundation Security Advisory describes this flaw as: When creating a callback over IPC for showing the File Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of the callbacks finished. This could...

6.5CVSS7.2AI score0.00571EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/09/04 3:59 p.m.7 views

Mozilla: Memory corruption in IPC ColorPickerShownCallback

The Mozilla Foundation Security Advisory describes this flaw as: When creating a callback over IPC for showing the Color Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of the callbacks finished. This could...

6.5CVSS7.2AI score0.00571EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/09/04 3:52 p.m.7 views

Mozilla: Memory corruption in IPC ColorPickerShownCallback

The Mozilla Foundation Security Advisory describes this flaw as: When creating a callback over IPC for showing the Color Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of the callbacks finished. This could...

6.5CVSS7.2AI score0.00571EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/08/31 1:57 a.m.4 views

SUSE CVE-2023-4575

When creating a callback over IPC for showing the File Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of the callbacks finished. This could have led to a use-after-free causing a potentially exploitable...

6.5CVSS6.7AI score0.00571EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/08/31 1:57 a.m.5 views

SUSE CVE-2023-4574

When creating a callback over IPC for showing the Color Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of the callbacks finished. This could have led to a use-after-free causing a potentially exploitable...

6.5CVSS6.7AI score0.00571EPSS
Exploits0References8
CNNVD
CNNVD
added 2023/08/30 12:0 a.m.4 views

Mozilla Firefox 资源管理错误漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation. Mozilla Firefox suffers from a resource management error vulnerability that stems from the fact that when creating a callback to display a color picker window via IPC, multiple identical callbacks may be created...

6.5CVSS7.4AI score0.00571EPSS
Exploits0References16
CNNVD
CNNVD
added 2023/08/30 12:0 a.m.4 views

Mozilla Firefox 资源管理错误漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation. Mozilla Firefox suffers from a Resource Management Error vulnerability that stems from the fact that when creating callbacks via IPC to display a file chooser window, multiple identical callbacks may be created at the same...

6.5CVSS7.4AI score0.00571EPSS
Exploits0References16
OSV
OSV
added 2023/08/30 12:0 a.m.0 views

UBUNTU-CVE-2023-4574

When creating a callback over IPC for showing the Color Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of the callbacks finished. This could have led to a use-after-free causing a potentially exploitable...

6.5CVSS7.3AI score0.00571EPSS
Exploits0References4
OSV
OSV
added 2023/08/30 12:0 a.m.2 views

UBUNTU-CVE-2023-4575

When creating a callback over IPC for showing the File Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of the callbacks finished. This could have led to a use-after-free causing a potentially exploitable...

6.5CVSS6.8AI score0.00571EPSS
Exploits0References4
Code423n4
Code423n4
added 2023/08/04 12:0 a.m.9 views

Reentrancy vulnerability in SGLLendingCommon._removeCollateral

Lines of code Vulnerability details Impact This vulnerability could allow an attacker to withdraw collateral from the SGLLendingCommon contract without actually removing it. This could result in a loss of funds for the lender. Proof of Concept The SGLLendingCommon.removeCollateral function is...

6.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2023/07/20 1:38 p.m.16 views

CVE-2023-3603

A missing allocation check in sftp server processing read requests may cause a NULL dereference on low-memory conditions. The malicious client can request up to 4GB SFTP reads, causing allocation of up to 4GB buffers, which was not being checked for failure. This will likely crash the authenticat...

3.1CVSS5.4AI score0.00767EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2023/07/20 12:0 a.m.27 views

Ubuntu: Security Advisory (USN-6237-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.3AI score0.02211EPSS
Exploits2References3
Code423n4
Code423n4
added 2023/06/23 12:0 a.m.18 views

The last error in swap.go#swapCoins() was not handled correctly.

Lines of code Vulnerability details Impact If the last statement of the swapCoins function returns an error, the swap is only half completed, i.e. only the user's assets are deducted transferred to the pool, but the user's bought assets are not sent to the user, resulting in a loss of the user's...

7AI score
Exploits0
OSV
OSV
added 2023/06/19 5:15 p.m.6 views

CVE-2023-34166

Vulnerability of system restart triggered by abnormal callbacks passed to APIs.Successful exploitation of this vulnerability may cause the system to restart...

7.5CVSS5.8AI score0.00434EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/06/19 5:15 p.m.8 views

CVE-2023-34166

Vulnerability of system restart triggered by abnormal callbacks passed to APIs.Successful exploitation of this vulnerability may cause the system to restart...

7.5CVSS7.1AI score0.00434EPSS
Exploits0References2Affected Software2
NVD
NVD
added 2023/06/19 5:15 p.m.25 views

CVE-2023-34166

Vulnerability of system restart triggered by abnormal callbacks passed to APIs.Successful exploitation of this vulnerability may cause the system to restart...

7.5CVSS7.5AI score0.00434EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/06/19 12:0 a.m.28 views

CVE-2023-34166

Vulnerability of system restart triggered by abnormal callbacks passed to APIs.Successful exploitation of this vulnerability may cause the system to restart...

7.6AI score0.00434EPSS
Exploits0References1
CVE
CVE
added 2023/06/19 12:0 a.m.62 views

CVE-2023-34166

CVE-2023-34166 is linked to Huawei HarmonyOS in the provided documents. The Huawei/CNNVD entry describes a vulnerability in which an interface pass-in exception callback to APIs can cause a system reboot by an attacker. The NVD entry lists a CVSSv3.1 base score of 7.5 (Network, Low attack complex...

7.5CVSS7.4AI score0.00434EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder