CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

772 matches found

Positive Technologies•added 2020/02/17 12:0 a.m.•3 views

PT-2020-6875 · Abb · Abb Esoms

Name of the Vulnerable Software and Affected Versions: ABB eSOMS versions 6.0 through 6.0.2 Description: The issue is related to the storage of credentials in a recoverable format by the Redis data structure component used in ABB eSOMS. This can potentially allow an attacker to gain unauthorized...

6.1CVSS6.2AI score0.0005EPSS

Exploits0References6

RedhatCVE•added 2020/01/11 3:24 p.m.•24 views

CVE-2019-5064

An exploitable heap buffer overflow vulnerability exists in the data structure persistence functionality of OpenCV, before version 4.2.0. A specially crafted JSON file can cause a buffer overflow, resulting in multiple heap corruptions and potentially code execution. An attacker can provide a...

8.8CVSS4.7AI score0.02639EPSS

Exploits1References4

RedhatCVE•added 2020/01/11 3:9 p.m.•26 views

CVE-2019-5063

An exploitable heap buffer overflow vulnerability exists in the data structure persistence functionality of OpenCV 4.1.0. A specially crafted XML file can cause a buffer overflow, resulting in multiple heap corruptions and potential code execution. An attacker can provide a specially crafted file...

8.8CVSS3.5AI score0.05482EPSS

Exploits1References4

Veracode•added 2020/01/06 7:48 a.m.•26 views

Denial Of Service (DoS)

OpenCV is vulnerable to denial of service DoS. The attack is possible because there is a flaw in a data structure persistence functionality, allowing an attacker to inject a malicious JSON file to cause a buffer overflow and heap corruption...

8.8CVSS4.2AI score0.02639EPSS

Exploits1References5Affected Software1

NVD•added 2020/01/03 5:15 p.m.•18 views

CVE-2019-5064

8.8CVSS9AI score0.02639EPSS

Exploits1References4

OSV•added 2020/01/03 5:15 p.m.•17 views

CVE-2019-5064

8.8CVSS7.5AI score

Exploits0References4

OSV•added 2020/01/03 5:15 p.m.•13 views

CVE-2019-5063

8.8CVSS7.5AI score

Exploits0References3

Prion•added 2020/01/03 5:15 p.m.•18 views

Heap overflow

6.8CVSS8.9AI score0.05482EPSS

Exploits1References3Affected Software4

UbuntuCve•added 2020/01/03 5:15 p.m.•40 views

CVE-2019-5064

8.8CVSS7.5AI score0.02639EPSS

Exploits1References3

Prion•added 2020/01/03 5:15 p.m.•16 views

Heap overflow

6.8CVSS8.8AI score0.02639EPSS

Exploits1References4Affected Software4

Cvelist•added 2020/01/03 4:57 p.m.•20 views

CVE-2019-5064

8.8CVSS8.9AI score0.02639EPSS

Exploits1References4

Debian CVE•added 2020/01/03 4:57 p.m.•23 views

CVE-2019-5064

8.8CVSS9AI score0.02639EPSS

Exploits1

Debian CVE•added 2020/01/03 4:57 p.m.•23 views

CVE-2019-5063

8.8CVSS9AI score0.05482EPSS

Exploits1

Tenable Nessus•added 2019/12/23 12:0 a.m.•46 views

Xen Project Dynamic Height Handling Elevation of Privilege Vulnerability (XSA-311)

According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by a denial of service vulnerability or possibly an elevation of privilege vulnerability by triggering data-structure access during pagetable-height updates. An unauthenticated, local attack...

7.2CVSS7AI score0.00123EPSS

Exploits0References3

BDU FSTEC•added 2019/12/22 12:0 a.m.•2 views

The vulnerability of the PEAR Archive_Tar library in the Drupal CMS system allows a hacker to execute arbitrary code.

The vulnerability of the PEAR ArchiveTar library in the Drupal CMS system is related to the restoration of a dubious data structure in memory. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

9CVSS0.01047EPSS

Exploits4References5Affected Software2

OSV•added 2019/12/11 6:16 p.m.•24 views

CVE-2019-19577

An issue was discovered in Xen through 4.12.x allowing x86 AMD HVM guest OS users to cause a denial of service or possibly gain privileges by triggering data-structure access during pagetable-height updates. When running on AMD systems with an IOMMU, Xen attempted to dynamically adapt the number ...

7.2CVSS7.3AI score

Exploits0References7

Prion•added 2019/12/11 6:16 p.m.•16 views

Design/Logic Flaw

7.2CVSS7.2AI score0.00123EPSS

Exploits0References7Affected Software2

UbuntuCve•added 2019/12/11 6:16 p.m.•20 views

CVE-2019-19577

7.2CVSS6.9AI score0.00123EPSS

Exploits0References2

CVE•added 2019/12/11 4:55 p.m.•157 views

CVE-2019-19577

CVE-2019-19577 describes a race in Xen when running on AMD CPUs with an IOMMU. The code path dynamically adapts pagetables height for the IOMMU to guest address space size and updates the height without proper locking, allowing a malicious HVM guest administrator to trigger data-structure access ...

7.2CVSS7.8AI score0.00123EPSS

Exploits0References7Affected Software1

BDU FSTEC•added 2019/11/19 12:0 a.m.•2 views

The vulnerability of the FasterXML function in the Jackson-Databind Java library for JSON file grammar analysis allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the FasterXML function in the Jackson-Databind Java library for JSON file grammar analysis involves memory restoration of an unreliable data structure. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

7.5CVSS0.10392EPSS

Exploits0References8Affected Software18

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by