Lucene search
K

562 matches found

NVD
NVD
added 2022/07/08 7:15 p.m.16 views

CVE-2022-35411

rpc.py through 0.6.0 allows Remote Code Execution because an unpickle occurs when the "serializer: pickle" HTTP header is sent. In other words, although JSON not Pickle is the default data format, an unauthenticated client can cause the data to be processed with unpickle...

9.8CVSS0.45862EPSS
Exploits7References4
RedHat Linux
RedHat Linux
added 2022/06/28 7:58 a.m.4 views

nodejs-json-schema: Prototype pollution vulnerability

The json-schema Node.JS library was vulnerable to prototype pollution during the validation of a JSON object. An attacker, able to provide a specially crafted JSON file for validation, could use this flaw to modify the behavior of the node program, to, for example, execute arbitrary code...

9.8CVSS7.6AI score0.03563EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/06/23 12:0 a.m.2 views

libdwarf 缓冲区错误漏洞

libdwarf is a library and command line tool for reading and writing the DWARF2 standardized debug data format. A security vulnerability exists in libdwarf version 0.4.0, which stems from a heap-based buffer over-read in libdwarf...

8.1CVSS7.9AI score0.0114EPSS
Exploits1References5
OSV
OSV
added 2022/01/21 9:15 p.m.3 views

DEBIAN-CVE-2021-46243

An untrusted pointer dereference vulnerability exists in HDF5 v1.13.1-1 via the function H5Odtypedecodehelper at hdf5/src/H5Odtype.c. This vulnerability can lead to a Denial of Service DoS...

6.5CVSS6.8AI score0.00954EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/01/21 12:0 a.m.5 views

HDF5 数字错误漏洞

HDF5 is a suite of tools for managing and storing different types of data from HDF USA. The product supports managing, manipulating, viewing and analyzing data and generating files in portable formats. A security vulnerability exists in HDF5 v1.13.1-1, which can be exploited by an attacker to...

6.5CVSS7.5AI score0.00959EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/01/21 12:0 a.m.4 views

HDF5 代码问题漏洞

HDF5 is a suite of tools for managing and storing different types of data from HDF, Inc. The product supports managing, manipulating, viewing and analyzing data and generating files in a portable format. HDF5 v1.13.1-1 contains a security vulnerability that can be exploited by attackers to perfor...

6.5CVSS5.6AI score0.00954EPSS
Exploits1References2
OSV
OSV
added 2022/01/05 9:15 p.m.4 views

DEBIAN-CVE-2021-45832

A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 at at hdf5/src/H5Eint.c, which causes a Denial of Service context-dependent...

5.5CVSS5.5AI score0.00666EPSS
Exploits1References1
OSV
OSV
added 2022/01/05 8:15 p.m.4 views

DEBIAN-CVE-2021-45830

A heap-based buffer overflow vulnerability exists in HDF5 1.13.1-1 via H5Faddrdecodelen in /hdf5/src/H5Fint.c, which could cause a Denial of Service...

5.5CVSS8.8AI score0.00701EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2022/01/05 12:0 a.m.4 views

PT-2022-7542 · Hdf5 +3 · Hdf5 +3

Name of the Vulnerable Software and Affected Versions: HDF5 version 1.13.1-1 Description: A Stack-based Buffer Overflow issue exists in the H5D create chunk file map hyper function in /hdf5/src/H5Dchunk.c, which can cause a Denial of Service. The vulnerability is related to writing beyond memory...

9.8CVSS7AI score0.02402EPSS
Exploits10References80
Positive Technologies
Positive Technologies
added 2022/01/05 12:0 a.m.5 views

PT-2022-7550 · Hdf5 +2 · Hdf5 +2

Name of the Vulnerable Software and Affected Versions: HDF5 version 1.13.1-1 Description: A Stack-based Buffer Overflow issue exists in the HDF5 library, specifically in the file H5Eint.c, which can cause a Denial of Service. This issue is related to uncontrolled recursion. The exploitation of th...

5.5CVSS7.6AI score0.00666EPSS
Exploits1References17
OSV
OSV
added 2022/01/03 10:15 p.m.2 views

DEBIAN-CVE-2021-45829

HDF5 1.13.1-1 is affected by: segmentation fault, which causes a Denial of Service...

5.5CVSS6.3AI score0.00672EPSS
Exploits1References1
CNVD
CNVD
added 2021/12/17 12:0 a.m.22 views

JT Utilities and JTTK Buffer Overflow Vulnerability (CNVD-2021-101010)

JT is a publicly released data format developed by Siemens Digital Industry Software.JT Open Toolkit also known as JTTK is developer-oriented application programming interface API JT-enabled software.JT Open Toolkit is a read and write toolkit.JT Utilities and JTTK file parsing vulnerabilities. A...

7.8CVSS4.8AI score0.00869EPSS
Exploits0References1
CNVD
CNVD
added 2021/12/17 12:0 a.m.23 views

JT Utilities and JTTK file parsing vulnerabilities

JT is a publicly released data format developed by Siemens Digital Industry Software.JT Open Toolkit also known as JTTK is developer-oriented application programming interface API JT-enabled software.JT Open Toolkit is a read and write toolkit.JT Utilities and JTTK file parsing vulnerabilities. A...

7.8CVSS3.3AI score0.00814EPSS
Exploits0References1
CNVD
CNVD
added 2021/12/17 12:0 a.m.19 views

JT Utilities and JTTK File Parsing Vulnerability (CNVD-2021-101002)

JT is a publicly released data format developed by Siemens Digital Industry Software.JT Open Toolkit also known as JTTK is developer-oriented application programming interface API JT-enabled software.JT Open Toolkit is a read and write toolkit.JT Utilities and JTTK file parsing vulnerabilities. A...

7.8CVSS4.8AI score0.00814EPSS
Exploits0References1
CNVD
CNVD
added 2021/12/17 12:0 a.m.25 views

JT Utilities and JTTK Buffer Overflow Vulnerability (CNVD-2021-101000)

JT is a publicly released data format developed by Siemens Digital Industry Software.JT Open Toolkit also known as JTTK is developer-oriented application programming interface API JT-enabled software.JT Open Toolkit is a read and write toolkit.JT Utilities and JTTK file parsing vulnerabilities. A...

7.8CVSS4.8AI score0.00814EPSS
Exploits0References1
CNVD
CNVD
added 2021/12/17 12:0 a.m.19 views

JT Utilities and JTTK Buffer Overflow Vulnerability (CNVD-2021-101003)

JT is a publicly released data format developed by Siemens Digital Industry Software.JT Open Toolkit also known as JTTK is developer-oriented application programming interface API JT-enabled software.JT Open Toolkit is a read and write toolkit.JT Utilities and JTTK file parsing vulnerabilities. A...

7.8CVSS4.8AI score0.00814EPSS
Exploits0References1
CNVD
CNVD
added 2021/12/17 12:0 a.m.23 views

JT Utilities and JTTK File Parsing Vulnerability (CNVD-2021-101008)

JT is a publicly released data format developed by Siemens Digital Industry Software.JT Open Toolkit also known as JTTK is developer-oriented application programming interface API JT-enabled software.JT Open Toolkit is a read and write toolkit.JT Utilities and JTTK file parsing vulnerabilities. A...

7.8CVSS4.8AI score0.00814EPSS
Exploits0References1
CNVD
CNVD
added 2021/12/17 12:0 a.m.22 views

JT Utilities and JTTK File Parsing Vulnerability (CNVD-2021-101009)

JT is a publicly released data format developed by Siemens Digital Industry Software.JT Open Toolkit also known as JTTK is developer-oriented application programming interface API JT-enabled software.JT Open Toolkit is a read and write toolkit.JT Utilities and JTTK file parsing vulnerabilities. A...

4.3CVSS3.2AI score0.0053EPSS
Exploits0References1
CNVD
CNVD
added 2021/12/17 12:0 a.m.26 views

JT Utilities and JTTK File Parsing Vulnerability (CNVD-2021-101004)

JT is a publicly released data format developed by Siemens Digital Industry Software.JT Open Toolkit also known as JTTK is developer-oriented application programming interface API JT-enabled software.JT Open Toolkit is a read and write toolkit.JT Utilities and JTTK file parsing vulnerabilities. A...

7.8CVSS4.8AI score0.00814EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/12/14 12:0 a.m.5 views

Siemens JT Utilities 资源管理错误漏洞

JT is a publicly available data format developed by Siemens Digital Industry Software and is widely used for communication, visualization, numerical modeling, etc. The JT Utility provides a series of command line utilities that can be used to support application development and reuse of JT. The J...

7.8CVSS6.1AI score0.00855EPSS
Exploits0References5
Rows per page
Query Builder