174 matches found
OSV-2025-68 UNKNOWN READ in std::__1::__function::__func<cv::PngDecoder::compose_frame
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=392318892 Crash type: UNKNOWN READ Crash state: std::1::function::funccv::PngDecoder::composeframe cv::ParallelLoopBodyWrapper::operator cv::ThreadPool::run...
OSV-2025-51 Heap-buffer-overflow in std::__1::__function::__func<cv::PngDecoder::compose_frame
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=390788198 Crash type: Heap-buffer-overflow WRITE Crash state: std::1::function::funccv::PngDecoder::composeframe cv::ParallelLoopBodyWrapper::operator cv::ThreadPool::run...
PT-2025-3691 · Arista · Arista Cloudvision Appliance
Name of the Vulnerable Software and Affected Versions: Arista CloudVision Appliance CVA affected versions not specified Description: The issue affects Arista CloudVision Appliance CVA releases running on appliances that support hardware disk encryption, specifically the DCA-350E-CV model. The...
PT-2024-17555 · Mozilla +1 · Firefox +1
Name of the Vulnerable Software and Affected Versions: Talentera versions up to 20241128 Description: A vulnerability has been found in Talentera, classified as problematic. This issue affects unknown code in the file /app/control/byt cv manager. The manipulation of the redirect url argument lead...
Moderate: Red Hat Security Advisory: libreswan security update
An update for libreswan is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
CVE-2024-6519
A use-after-free vulnerability was found in the QEMU LSI53C895A SCSI Host Bus Adapter emulation. This issue can lead to a crash or VM escape...
Security Advisory 0104
Security Advisory 0104 . CSAF PDF Date: September 24, 2024 Revision | Date | Changes ---|---|--- 1.0 | September 24, 2024 | Initial release The CVE-ID tracking this issue: CVE-2024-7142 CVSSv3.1 Base Score: 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Common Weakness Enumeration: CWE-311:...
The vulnerability of the OptFeature() function in the objdetect/src/cascadedetect.hpp component of the computer vision algorithm library OpenCV, which involves reading data beyond the allowed buffer limits, allows a malicious actor to cause a service failure.
The vulnerability of the OptFeature function in the objdetect/src/cascadedetect.hpp component of the computer vision library OpenCV involves reading data beyond the allowable buffer size. Exploiting this vulnerability could allow a remote attacker to cause a service failure...
CVE-2024-0115
NVIDIA CV-CUDA for Ubuntu 20.04, Ubuntu 22.04, and Jetpack contains a vulnerability in Python APIs where a user may cause an uncontrolled resource consumption issue by a long running CV-CUDA Python process. A successful exploit of this vulnerability may lead to denial of service and data loss...
CVE-2024-0115
NVIDIA CV-CUDA for Ubuntu 20.04, Ubuntu 22.04, and Jetpack contains a vulnerability in Python APIs where a user may cause an uncontrolled resource consumption issue by a long running CV-CUDA Python process. A successful exploit of this vulnerability may lead to denial of service and data loss...
CVE-2024-0115
Affected software: NVIDIA CV-CUDA for Ubuntu 20.04, Ubuntu 22.04, and Jetpack. Vulnerability: Python APIs can be exploited by a long-running CV-CUDA Python process to cause uncontrolled resource consumption, leading to denial of service and data loss. Root cause / impact: Unspecified in-depth det...
CVE-2024-0115
NVIDIA CV-CUDA for Ubuntu 20.04, Ubuntu 22.04, and Jetpack contains a vulnerability in Python APIs where a user may cause an uncontrolled resource consumption issue by a long running CV-CUDA Python process. A successful exploit of this vulnerability may lead to denial of service and data loss...
CVE-2024-0115
NVIDIA CV-CUDA for Ubuntu 20.04, Ubuntu 22.04, and Jetpack contains a vulnerability in Python APIs where a user may cause an uncontrolled resource consumption issue by a long running CV-CUDA Python process. A successful exploit of this vulnerability may lead to denial of service and data loss...
Security Bulletin: NVIDIA CV-CUDA - August 2024
NVIDIA has released a software update for NVIDIA® CV-CUDA®. To protect your system, download and install this software update from the Releases tab on the CV-CUDA Github page. Go to NVIDIA Product Security. Details This section provides a summary of potential vulnerabilities that this security...
Rocky Linux 9 : python-jwcrypto (RLSA-2024:2559)
The remote Rocky Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RLSA-2024:2559 advisory. - JWCrypto implements JWK, JWS, and JWE specifications using python-cryptography. Prior to version 1.5.6, an attacker can cause a denial of service attack by...
cv-warehouse.com Cross Site Scripting vulnerability OBB-3846273
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2023-32855
In aee, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07909204; Issue ID: ALPS07909204...
CVE-2023-47850
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PeepSo Community by PeepSo – Social Network, Membership, Registration, User Profiles allows Stored XSS.This issue affects Community by PeepSo – Social Network, Membership, Registration, User...
cv-stuttgart.de Improper Access Control vulnerability OBB-3764923
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
OSV-2023-444 Heap-buffer-overflow in opj_jp2_apply_pclr
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=59450 Crash type: Heap-buffer-overflow READ 4 Crash state: opjjp2applypclr opjjp2decode cv::detail::Jpeg2KOpjDecoderBase::readData...