Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2019-20433

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libaspell.a in GNU Aspell before 0.60.8 has a buffer over-read for a string ending with a single '\0' byte, if the encoding is set to ucs-2 or ucs-4 outside of...

9.1CVSS7.5AI score0.01739EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.19 views

RHEL 7 : aspell (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - aspell: UCS-2 and UCS-4 null-terminated string handling OOB read CVE-2019-20433 - libaspell.a in GNU Aspe...

9.1CVSS7.8AI score0.03259EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.22 views

RHEL 8 : aspell (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - aspell: UCS-2 and UCS-4 null-terminated string handling OOB read CVE-2019-20433 - libaspell.a in GNU Aspe...

9.1CVSS9.8AI score0.03259EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.25 views

RHEL 6 : aspell (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - aspell: UCS-2 and UCS-4 null-terminated string handling OOB read CVE-2019-20433 - libaspell.a in GNU Aspe...

8.5AI score0.03259EPSS
Exploits0References3
Rosalinux
Rosalinux
added 2021/07/02 4:32 p.m.31 views

Advisory ROSA-SA-2021-1806

Software: aspell 0.60.6.1 OS: Cobalt 7.9 CVE-ID: CVE-2019-20433 CVE-Crit: CRITICAL CVE-DESC: libaspell.a in GNU Aspell before 0.60.8 has a buffer reread for a string ending with one byte '\ 0' if the encoding is set to ucs-2 or ucs-4 outside the application. , as shown by the ASPELLCONF environme...

9.1CVSS7.2AI score0.01739EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/06/10 12:0 a.m.48 views

SUSE SLES11 Security Update : php53 (SUSE-SU-2020:14289-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2020:14289-1 advisory. - In PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0, PHP DirectoryIterator class accepts filenames with embedded \0 byte and...

9.1CVSS7.4AI score0.08818EPSS
Exploits4References19
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2020:2807-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.4AI score0.01739EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.24 views

SUSE SLES12 Security Update : aspell (SUSE-SU-2020:2807-1)

This update for aspell fixes the following security issue : CVE-2019-20433: Fixed a buffer over-read when processing strings ending with a single '\0' byte with ucs-2 and ucs-4 encoding bsc1161982. Note that Tenable Network Security has extracted the preceding description block directly from the...

9.1CVSS7.6AI score0.01739EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/02/19 12:0 a.m.69 views

SUSE SLES12 Security Update : php72 (SUSE-SU-2020:0397-1)

This update for php72 fixes the following issues : Security issues fixed : CVE-2020-7059: Fixed an out-of-bounds read in phpstriptagsex bsc1162629. CVE-2020-7060: Fixed a global buffer-overflow in mbflfiltconvbig5wchar bsc1162632. CVE-2019-20433: Fixed a buffer over-read when processing strings...

9.1CVSS7.3AI score0.08888EPSS
Exploits2References10
Circl
Circl
added 2020/01/27 9:37 p.m.8 views

CVE-2019-20433

creationtimestamp| type| source ---|---|--- 2020-01-27 21:37:49+00:00| seen| https://t.me/cveNotify/456...

9.1CVSS7.3AI score0.01739EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2020/01/27 3:15 p.m.26 views

CVE-2019-20433

libaspell.a in GNU Aspell before 0.60.8 has a buffer over-read for a string ending with a single '\0' byte, if the encoding is set to ucs-2 or ucs-4 outside of the application, as demonstrated by the ASPELLCONF environment variable...

9.1CVSS7AI score0.01739EPSS
Exploits0References2
CVE
CVE
added 2020/01/27 2:3 p.m.80 views

CVE-2019-20433

The CVE-2019-20433 issue affects GNU Aspell’s libaspell.a prior to 0.60.8, where a buffer over-read can occur for a string ending with a single ASCII NUL (’\0’) when the encoding is UCS-2 or UCS-4 outside the application, as demonstrated by the ASPELL_CONF environment variable. The vulnerability ...

9.1CVSS9AI score0.01739EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/01/27 2:3 p.m.41 views

CVE-2019-20433

libaspell.a in GNU Aspell before 0.60.8 has a buffer over-read for a string ending with a single '\0' byte, if the encoding is set to ucs-2 or ucs-4 outside of the application, as demonstrated by the ASPELLCONF environment variable...

9.2AI score0.01739EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2020/01/27 2:3 p.m.55 views

CVE-2019-20433

libaspell.a in GNU Aspell before 0.60.8 has a buffer over-read for a string ending with a single '\0' byte, if the encoding is set to ucs-2 or ucs-4 outside of the application, as demonstrated by the ASPELLCONF environment variable...

9.1CVSS7.6AI score0.01739EPSS
Exploits0
Rows per page
Query Builder