Lucene search
K

664 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:7 a.m.4 views

SUSE CVE-2019-18420

An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to cause a denial of service via a VCPUOPinitialise hypercall. hypercallcreatecontinuation is a variadic function which uses a printf-like format string to interpret its parameters. Error handling for a bad format...

6.5CVSS5.7AI score0.02522EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2023/02/15 3:52 a.m.2 views

SUSE CVE-2020-28020

Exim 4 before 4.92 allows Integer Overflow to Buffer Overflow, in which an unauthenticated remote attacker can execute arbitrary code by leveraging the mishandling of continuation lines during header-length restriction...

9.8CVSS8.6AI score0.07796EPSS
Exploits1References6
Code423n4
Code423n4
added 2022/10/25 12:0 a.m.12 views

Incorrect usage of try/catch block

Lines of code Vulnerability details Vulnerability details Description There is a function getBridgeOutRequestPayload in HolographBridge contract. It has the following: / @dev the revertedBridgeOutRequest function is wrapped into a try/catch function / try this.revertedBridgeOutRequestmsg.sender,...

7AI score
Exploits0
OSV
OSV
added 2022/10/20 9:15 p.m.2 views

CVE-2022-39823

An issue was discovered in Softing OPC UA C++ SDK 5.66 through 6.x before 6.10. An OPC/UA browse request exceeding the server limit on continuation points may cause a use-after-free error...

7.5CVSS5.8AI score0.00635EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/10/20 12:0 a.m.15 views

CVE-2022-39823

An issue was discovered in Softing OPC UA C++ SDK 5.66 through 6.x before 6.10. An OPC/UA browse request exceeding the server limit on continuation points may cause a use-after-free error...

7.7AI score0.00635EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/10/20 12:0 a.m.6 views

PT-2022-25016 · Softing · Softing Opc Ua C++ Sdk

Name of the Vulnerable Software and Affected Versions: Softing OPC UA C++ SDK versions 5.66 through 6.x before 6.10 Description: An issue was discovered where an OPC/UA browse request exceeding the server limit on continuation points may cause a use-after-free error. Recommendations: For versions...

7.5CVSS7.5AI score0.00635EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2021/06/24 12:0 a.m.30 views

mediawiki -- multiple vulnerabilities

Mediawiki reports: T285515, CVE-2021-41798 SECURITY: XSS vulnerability in Special:Search. T290379, CVE-2021-41799 SECURITY: ApiQueryBacklinks can cause a full table scan. T284419, CVE-2021-41800 SECURITY: fix PoolCounter protection of Special:Contributions. T279090, CVE-2021-41801 SECURITY:...

8.8CVSS2.2AI score0.01735EPSS
Exploits1References1
NVD
NVD
added 2021/05/06 1:15 p.m.14 views

CVE-2020-28020

Exim 4 before 4.92 allows Integer Overflow to Buffer Overflow, in which an unauthenticated remote attacker can execute arbitrary code by leveraging the mishandling of continuation lines during header-length restriction...

9.8CVSS0.07796EPSS
Exploits1References3
OSV
OSV
added 2021/05/06 1:15 p.m.0 views

DEBIAN-CVE-2020-28020

Exim 4 before 4.92 allows Integer Overflow to Buffer Overflow, in which an unauthenticated remote attacker can execute arbitrary code by leveraging the mishandling of continuation lines during header-length restriction...

9.8CVSS8.2AI score0.07796EPSS
Exploits1References1
AlpineLinux
AlpineLinux
added 2021/05/06 4:10 a.m.51 views

CVE-2020-28020

Exim 4 before 4.92 allows Integer Overflow to Buffer Overflow, in which an unauthenticated remote attacker can execute arbitrary code by leveraging the mishandling of continuation lines during header-length restriction...

9.8CVSS8.4AI score0.07796EPSS
Exploits1References3
Cvelist
Cvelist
added 2021/05/06 4:10 a.m.28 views

CVE-2020-28020

Exim 4 before 4.92 allows Integer Overflow to Buffer Overflow, in which an unauthenticated remote attacker can execute arbitrary code by leveraging the mishandling of continuation lines during header-length restriction...

9.7AI score0.07796EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2021/05/04 1:30 p.m.41 views

CVE-2020-28020

Exim 4 before 4.92 allows Integer Overflow to Buffer Overflow, in which an unauthenticated remote attacker can execute arbitrary code by leveraging the mishandling of continuation lines during header-length restriction...

9.8CVSS7.4AI score0.07796EPSS
Exploits1References3
OSV
OSV
added 2021/05/04 1:30 p.m.4 views

UBUNTU-CVE-2020-28020

Exim 4 before 4.92 allows Integer Overflow to Buffer Overflow, in which an unauthenticated remote attacker can execute arbitrary code by leveraging the mishandling of continuation lines during header-length restriction...

9.8CVSS7.2AI score0.07796EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2019:0900-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.2AI score0.02462EPSS
Exploits1References6
Debian CVE
Debian CVE
added 2021/03/02 6:15 p.m.18 views

CVE-2021-22187

Removed by vendor...

4.3CVSS5.8AI score0.01038EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/05/01 12:0 a.m.98 views

Fedora 31 : xen (2020-295ed0b1e0)

multiple xenoprof issues XSA-313, CVE-2020-11740, CVE-2020-11741 1823912, 1823914 Missing memory barriers in read-write unlock paths XSA-314, CVE-2020-11739 1823784 Bad error path in GNTTABOPmapgrant XSA-316, CVE-2020-11743 1823926 Bad continuation handling in GNTTABOPcopy XSA-318, CVE-2020-11742...

8.8CVSS6.8AI score0.00527EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.46 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1472)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS7.3AI score0.03322EPSS
Exploits5References2
Positive Technologies
Positive Technologies
added 2019/10/31 12:0 a.m.10 views

PT-2019-4882 · Xen +1 · Xen +1

Name of the Vulnerable Software and Affected Versions: Xen versions 4.6 through 4.12.x Description: The issue is related to incorrect error handling for a malformed format character in the hypercall initialise function of the Xen hypervisor. This can be exploited by a remote attacker to cause a...

9.8CVSS7.4AI score0.16658EPSS
Exploits4References182
BDU FSTEC
BDU FSTEC
added 2019/08/22 12:0 a.m.3 views

The vulnerability relates to the implementation of the HTTP/2 network protocol on Windows operating systems, nginx servers, network programming tools like netty, Envoy, SwiftNIO, and Node.js software platforms. This allows attackers to induce service failures.

The vulnerability of the HTTP/2 network protocol implementation in Windows operating systems, nginx servers, network programming tools like Netty, Envoy, SwiftNIO, and Node.js software platforms is related to an uncontrolled resource consumption. Exploiting this vulnerability can allow a maliciou...

7.8CVSS5.5AI score0.25448EPSS
Exploits0References10Affected Software6
OSV
OSV
added 2019/08/13 9:15 p.m.2 views

ALPINE-CVE-2019-9518

Some HTTP/2 implementations are vulnerable to a flood of empty frames, potentially leading to a denial of service. The attacker sends a stream of frames with an empty payload and without the end-of-stream flag. These frames can be DATA, HEADERS, CONTINUATION and/or PUSHPROMISE. The peer spends ti...

7.5CVSS8.8AI score0.25448EPSS
Exploits0References1
Rows per page
Query Builder