CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2024/10/15 4:15 p.m.•10 views

CVE-2024-47779

Element is a Matrix web client built using the Matrix React SDK. Element Web versions 1.11.70 through 1.11.80 contain a vulnerability which can, under specially crafted conditions, lead to the access token becoming exposed to third parties. At least one vector has been identified internally,...

7CVSS0.00214EPSS

Exploits0References2

OSV•added 2024/10/15 3:28 p.m.•9 views

CVE-2024-47779 Element Web vulnerable to potential exposure of access token via authenticated media

7CVSS6.8AI score0.00214EPSS

Exploits0References4

Fedora•added 2024/04/24 1:5 a.m.•28 views

[SECURITY] Fedora 40 Update: abseil-cpp-20240116.2-1.fc40

7.4AI score

ATTACKERKB•added 2023/12/09 6:15 a.m.•0 views

CVE-2023-47465

An issue in GPAC v.2.2.1 and before allows a local attacker to cause a denial of service DoS via the cttsboxread function of file src/isomedia/boxcodebase.c...

5.5CVSS6AI score0.00032EPSS

Exploits0References2

OSV•added 2023/12/09 6:15 a.m.•1 views

DEBIAN-CVE-2023-47465

An issue in GPAC v.2.2.1 and before allows a local attacker to cause a denial of service DoS via the cttsboxread function of file src/isomedia/boxcodebase.c...

5.5CVSS5.5AI score0.00032EPSS

OSV•added 2023/12/09 6:15 a.m.•0 views

UBUNTU-CVE-2023-47465

An issue in GPAC v.2.2.1 and before allows a local attacker to cause a denial of service DoS via the cttsboxread function of file src/isomedia/boxcodebase.c...

5.5CVSS5.8AI score0.00032EPSS

Exploits0References5

CNNVD•added 2023/12/09 12:0 a.m.•4 views

GPAC Security Vulnerabilities

GPAC is an open source multimedia framework. A security vulnerability exists in GPAC v.2.2.1. An attacker can exploit this vulnerability to cause a Denial of Service DoS via the cttsboxread function in the file src/isomedia/boxcodebase.c...

5.5CVSS6.7AI score0.00032EPSS

Exploits0References2

Packet Storm•added 2022/07/01 12:0 a.m.•390 views

PHP Library Remote Code Execution

JAHx221 - RCE in copy/pasted PHP compat libraries, jsondecode function =============================================================================== Several PHP compatability libraries contain a potential remote code execution flaw in their jsondecode function based on having copy pasted existi...

0.2AI score

Code423n4•added 2022/04/22 12:0 a.m.•7 views

Don't ignore ERC20 transfer return values

You're ignoring the return value of an ERC20 transfer twice: Either use SafeERC20 or check the return value as you do in other places in the code base. --- The text was updated successfully, but these errors were encountered: All reactions...

7.1AI score

OSV•added 2022/04/15 6:15 p.m.•11 views

CVE-2021-44510

An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. Using crafted input, attackers can cause a calculation of the size of calls to memset in opfnj3 in srport/opfnj3.c to result in an extremely large value in order to cause a segmentation fault and crash the...

7.5CVSS6.9AI score

OSV•added 2022/04/15 6:15 p.m.•0 views

DEBIAN-CVE-2021-44505

An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. Using crafted input, an attacker can cause a NULL pointer dereference after calls to ZPrint...

7.5CVSS7.2AI score0.00368EPSS

NVD•added 2022/04/15 6:15 p.m.•8 views

CVE-2021-44500

An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. A lack of input validation in calls to ebdiv in srport/ebmuldiv.c allows attackers to crash the application by performing a divide by zero...

7.5CVSS0.00161EPSS

OSV•added 2022/04/15 6:15 p.m.•1 views

DEBIAN-CVE-2021-44501

An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. Using crafted input, an attacker can cause calls to ZRead to crash due to a NULL pointer dereference...

7.5CVSS7.4AI score0.00368EPSS

OSV•added 2022/04/15 6:15 p.m.•12 views

CVE-2021-44505

An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. Using crafted input, an attacker can cause a NULL pointer dereference after calls to ZPrint...

7.5CVSS6.8AI score

OSV•added 2022/04/15 6:15 p.m.•1 views

DEBIAN-CVE-2021-44504

An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. Using crafted input, an attacker can cause a size variable, stored as an signed int, to equal an extremely large value, which is interpreted as a negative value during a check. This value is then used in a memc...

7.5CVSS7.4AI score0.00528EPSS

UbuntuCve•added 2022/04/15 6:15 p.m.•32 views

CVE-2021-44504

7.5CVSS7.1AI score0.00528EPSS