Lucene search
K

34 matches found

BDU FSTEC
BDU FSTEC
added 2022/04/25 12:0 a.m.7 views

The vulnerability of the `stream_get_meta_data` function in the PHP programming language exists due to insufficient checks on input data, allowing attackers to compromise the integrity of the information.

The vulnerability of the streamgetmetadata function in the PHP programming language exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to compromise the integrity of information...

7.8CVSS7.2AI score0.02297EPSS
Exploits1References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/11/10 12:0 a.m.5 views

The vulnerability of the Mac OS X operating system arises from insufficient checks on the data entered by users in the kernel subsystem of the operating system. This allows attackers to trigger a service failure.

The vulnerability of the Mac OS X operating system arises from insufficient checks on the data entered by users in the kernel subsystem of the operating system. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

7.8CVSS6.8AI score0.01706EPSS
Exploits0References8Affected Software5
CNNVD
CNNVD
added 2021/11/09 12:0 a.m.5 views

Samba 权限许可和访问控制问题漏洞

Samba is the standard Windows interoperability suite for Linux and Unix. Samba suffers from a permission permission and access control issue vulnerability that stems from multiple flaws found in the way samba AD DC implements access and consistency checks for stored data. An attacker could exploi...

8.8CVSS7.5AI score0.01606EPSS
Exploits0References22
CNNVD
CNNVD
added 2021/01/12 12:0 a.m.7 views

Open Source Matters Joomla Security Vulnerability

Joomla is an open source, cross-platform content management system CMS developed by the U.S. Open Source Matters team using PHP and MySQL. A security vulnerability exists in Joomla 3.0.0 through 3.9.23, which stems from the program not performing data checks properly and can be exploited by...

5.3CVSS6AI score0.01134EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2020/06/22 12:0 a.m.6 views

The vulnerability of the core/get_menudiv.php component of the Dolibarr resource planning and customer relationship management system allows a hacker to gain unauthorized access to protected information.

The vulnerability of the core/getmenudiv.php component of the Dolibarr resource planning and customer relationship management system is related to the lack of checks on the correctness of the provided data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain...

9CVSS7.6AI score0.01955EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2020/05/26 8:11 p.m.5 views

ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c

A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution...

8.8CVSS7.9AI score0.0329EPSS
Exploits1References5
OSV
OSV
added 2019/04/23 2:29 p.m.1 views

DEBIAN-CVE-2019-11470

The cineon parsing component in ImageMagick 7.0.8-26 Q16 allows attackers to cause a denial-of-service uncontrolled resource consumption by crafting a Cineon image with an incorrect claimed image size. This occurs because ReadCINImage in coders/cin.c lacks a check for insufficient image data in a...

6.5CVSS7.3AI score0.03643EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2018/02/07 12:0 a.m.3 views

The vulnerability in the implementation of the anti-virus and phishing protection functions for Mozilla Firefox, Firefox ESR, and the email client Thunderbird allows attackers to carry out phishing attacks.

The vulnerability in the implementation of malware protection functions for Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to errors in the process of checking uploaded files, which are encoded using “blob:“ and “data:“. Exploiting this vulnerability allows a malicious...

8.3CVSS7.7AI score0.01232EPSS
Exploits0References15Affected Software10
BDU FSTEC
BDU FSTEC
added 2017/11/14 12:0 a.m.6 views

The vulnerability of the Mac OS X operating system’s file component, which allows a hacker to trigger a service failure

The vulnerability of the Mac OS X operating system’s file component exists due to insufficient checks on input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

9.8CVSS7.7AI score0.01352EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/11/14 12:0 a.m.6 views

The vulnerability of the Mac OS X operating system’s file component, which allows a hacker to trigger a service failure

The vulnerability of the Mac OS X operating system’s file component exists due to insufficient checks on input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

9.8CVSS7.7AI score0.01352EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2017/08/08 12:0 a.m.3 views

ImageMagick Denial of Service Vulnerability (CNVD-2017-20999)

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A denial of service vulnerability exists in the 'ReadImage' function of the MagickCore/constitute.c file in ImageMagic...

6.5CVSS6.7AI score0.00888EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2017/06/30 12:0 a.m.8 views

The vulnerability of the RPMB process in the Android operating system allows a hacker to bypass certificate verification.

The vulnerability of the RPMB process in the Android operating system exists due to insufficient checking of input data. Exploiting this vulnerability allows a malicious actor to bypass certificate verification...

9.3CVSS7.2AI score0.00578EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2017/05/09 5:13 p.m.6 views

jasper: insufficient SIZ marker segment data sanity checks

The calcstepsizes function in jpcdec.c in JasPer before 1.900.17 allows remote attackers to cause a denial of service assertion failure via a crafted file...

5.5CVSS7.4AI score0.01949EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2016/01/10 12:0 a.m.52 views

KLA10752 Denial of service vulnerability in Microsoft Acrtive Directory Federation Services

Lack of input data checks was found in Microsoft Active Directory Federation Services. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed input to form-based authentication. Original advisories...

7.5CVSS7.6AI score0.26256EPSS
Exploits0References4
Rows per page
Query Builder