CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1188 matches found

Cvelist•added 2022/10/11 12:0 a.m.•16 views

CVE-2022-41172

Due to lack of proper memory management, when a victim opens a manipulated AutoCAD .dxf, TeighaTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflo...

8.2AI score0.0019EPSS

Exploits0References2

Positive Technologies•added 2022/10/11 12:0 a.m.•2 views

PT-2022-25001 · Sap · Sap 3D Visual Enterprise Author

Name of the Vulnerable Software and Affected Versions: SAP 3D Visual Enterprise Author version 9 Description: The issue arises due to improper memory management. When a victim opens a manipulated SolidWorks Part .sldprt file in SAP 3D Visual Enterprise Author, it can trigger Remote Code Execution...

7.8CVSS7.8AI score0.0019EPSS

Exploits0References7

Github Security Blog•added 2022/06/16 11:48 p.m.•19 views

Potential segfault in `localtime_r` invocations

Impact Unix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires an environment variable to be set in a different thread than the affected functions. This may occur without the user's knowledge, notably in a third-party library...

3.6AI score

Exploits0References4Affected Software1

OSV•added 2022/06/16 11:48 p.m.•0 views

GHSA-CQPR-PCM7-M3JC Potential segfault in `localtime_r` invocations

5.8AI score

Exploits0References4

Veracode•added 2022/03/30 3:25 p.m.•4 views

Buffer Overflows

nbd-server is vulnerable to heap-based buffer overflow. The vulnerability exist because a value of 0xffffffff in the name length field will cause a zero-sized buffer to be allocated for the name, resulting in a write to a dangling pointer which allows an attacker to send crafted messages which...

9.8CVSS9.4AI score0.00185EPSS

Exploits1References12Affected Software1

OSV•added 2022/03/06 6:15 a.m.•1 views

DEBIAN-CVE-2022-26495

In nbd-server in nbd before 3.24, there is an integer overflow with a resultant heap-based buffer overflow. A value of 0xffffffff in the name length field will cause a zero-sized buffer to be allocated for the name, resulting in a write to a dangling pointer. This issue exists for the NBDOPTINFO,...

9.8CVSS8.8AI score0.00185EPSS

Exploits1References1

OSV•added 2022/01/28 12:0 a.m.•0 views

UBUNTU-CVE-2022-22942

The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling 'file' pointer...

7.8CVSS6.7AI score0.13534EPSS

Exploits3References11

OpenVAS•added 2021/07/07 12:0 a.m.•54 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2021-2132)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.01671EPSS

Exploits3References2

Positive Technologies•added 2021/06/16 12:0 a.m.•2 views

PT-2024-11247 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a possible use-after-free in the smsc75xx bind function. The commit 46a8b29c6306 "net: usb: fix memory leak in smsc75xx bind" fails to clean up the work schedul...

9.8CVSS6.7AI score0.05243EPSS

Exploits8References1211

Oracle linux•added 2021/06/15 12:0 a.m.•228 views

Unbreakable Enterprise kernel-container security update

4.14.35-2047.504.2.el7 - md/raid1: properly indicate failure when ending a failed write request Paul Clements Orabug: 32887159 - video: hypervfb: Add ratelimit on error message Michael Kelley Orabug: 32856879 - Drivers: hv: vmbus: Initialize unloadevent statically Andrea Parri Microsoft Orabug:...

6.7CVSS7.3AI score0.00198EPSS

Exploits0

Tenable Nessus•added 2021/05/26 12:0 a.m.•234 views

Oracle Linux 8 : curl (ELSA-2021-1610)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-1610 advisory. - curl: Inferior OCSP verification CVE-2020-8286 - libcurl: FTP wildcard stack overflow CVE-2020-8285 - curl: trusting FTP PASV responses CVE-2020-8284...

7.5CVSS6.6AI score0.00742EPSS

Exploits3References5

Positive Technologies•added 2021/05/10 12:0 a.m.•2 views

PT-2024-11093 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability has been resolved in the Linux kernel related to the usb: dwc3: gadget. The issue arises when the gadget structure is freed before freeing the endpoints, resulting in a...

5.5CVSS6.6AI score0.00021EPSS

Exploits0References21

OSV•added 2021/02/04 11:2 a.m.•1 views

OESA-2021-1004 curl security update

cURL is a computer software project providing a library libcurl and command-line tool curl for transferring data using various protocols.\r\n\r\n Security Fixes:\r\n\r\n Due to use of a dangling pointer, libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending...

7.5CVSS7AI score0.00742EPSS

Exploits3References5

OSV•added 2020/12/31 2:32 p.m.•6 views

MGASA-2020-0482 Updated curl packages fix security vulnerabilities

Due to use of a dangling pointer, libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data. CVE-2020-8231. A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl...

7.5CVSS6AI score0.00742EPSS

Exploits3References10