Lucene search
K

11 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:20 a.m.3 views

SUSE CVE-2018-1000041

GNOME librsvg version before commit c6ddf2ed4d768fd88adbea2b63f575cd523022ea contains a Improper input validation vulnerability in rsvg-io.c that can result in the victim's Windows username and NTLM password hash being leaked to remote attackers through SMB. This attack appear to be exploitable v...

8.8CVSS7AI score0.02239EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2018-0297)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.02239EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.14 views

Mageia: Security Advisory (MGASA-2018-0291)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.02239EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.11 views

SUSE: Security Advisory (SUSE-SU-2018:1288-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.02239EPSS
Exploits0References4
OSV
OSV
added 2018/06/24 10:2 p.m.4 views

MGASA-2018-0297 Updated librsvg packages fix a security vulnerability

Updated librsvg package fixes security vulnerability: It was discovered that there was an input validation vulnerability in the librsvg renderer library that could result in data being leaked to remote attackers via a specially-crafted file CVE-2018-1000041...

8.8CVSS8.6AI score0.02239EPSS
Exploits0References3
Mageia
Mageia
added 2018/06/24 10:2 p.m.25 views

Updated librsvg packages fix a security vulnerability

Updated librsvg package fixes security vulnerability: It was discovered that there was an input validation vulnerability in the librsvg renderer library that could result in data being leaked to remote attackers via a specially-crafted file CVE-2018-1000041...

8.8CVSS5.1AI score0.02239EPSS
Exploits0References2
Mageia
Mageia
added 2018/06/19 11:42 p.m.32 views

Updated librsvg packages fix a security vulnerability

Updated librsvg package fixes security vulnerability: It was discovered that there was an input validation vulnerability in the librsvg renderer library that could result in data being leaked to remote attackers via a specially-crafted file CVE-2018-1000041...

8.8CVSS5.1AI score0.02239EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/05/17 12:0 a.m.16 views

openSUSE: Security Advisory for librsvg (openSUSE-SU-2018:1310-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8.7AI score0.02239EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/05/16 12:0 a.m.19 views

SUSE SLED12 / SLES12 Security Update : librsvg (SUSE-SU-2018:1288-1)

This update for librsvg fixes the following issues : - CVE-2018-1000041: Input validation issue could lead to credentials leak. bsc1083232 Update to version 2.40.20 : + Except for emergencies, this will be the LAST RELEASE of the librsvg-2.40.x series. We are moving to 2.41, which is vastly...

8.8CVSS7.7AI score0.02239EPSS
Exploits0References4
CVE
CVE
added 2018/02/09 11:0 p.m.65 views

CVE-2018-1000041

CVE-2018-1000041 affects librsvg (renderer library used by the GNOME librsvg stack). The vulnerability is due to improper input validation in rsvg-io.c, which could cause leakage of a Windows username and NTLM password hash to remote attackers when processing a specially crafted SVG containing a ...

8.8CVSS8.4AI score0.02239EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2018/02/09 11:0 p.m.17 views

CVE-2018-1000041

GNOME librsvg version before commit c6ddf2ed4d768fd88adbea2b63f575cd523022ea contains a Improper input validation vulnerability in rsvg-io.c that can result in the victim's Windows username and NTLM password hash being leaked to remote attackers through SMB. This attack appear to be exploitable v...

8.8CVSS8.7AI score0.02239EPSS
Exploits0
Rows per page
Query Builder