Lucene search
K

180 matches found

OSV
OSV
added 2021/11/09 1:15 p.m.1 views

DEBIAN-CVE-2021-43519

Stack overflow in luaresume of ldo.c in Lua Interpreter 5.1.05.4.4 allows attackers to perform a Denial of Service via a crafted script file...

5.5CVSS6.2AI score0.01136EPSS
Exploits1References1
OSV
OSV
added 2021/06/09 8:15 p.m.1 views

DEBIAN-CVE-2021-0089

Observable response discrepancy in some IntelR Processors may allow an authorized user to potentially enable information disclosure via local access...

6.5CVSS6.2AI score0.00372EPSS
Exploits0References1
OSV
OSV
added 2021/05/21 5:15 p.m.3 views

DEBIAN-CVE-2018-25013

A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ShiftBytes...

9.1CVSS8.6AI score0.02051EPSS
Exploits0References1
OSV
OSV
added 2021/04/26 5:15 p.m.1 views

DEBIAN-CVE-2021-21209

Inappropriate implementation in storage in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS7.2AI score0.01009EPSS
Exploits0References1
OSV
OSV
added 2021/04/06 8:15 a.m.2 views

DEBIAN-CVE-2020-36307

Redmine before 4.0.7 and 4.1.x before 4.1.1 has stored XSS via textile inline links...

6.1CVSS5.9AI score0.00696EPSS
Exploits0References1
OSV
OSV
added 2021/04/02 6:15 p.m.2 views

DEBIAN-CVE-2020-10001

An input validation issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. A malicious application may be able to read restricted memory...

5.5CVSS6.2AI score0.01037EPSS
Exploits0References1
OSV
OSV
added 2021/03/26 10:15 p.m.1 views

DEBIAN-CVE-2021-29264

An issue was discovered in the Linux kernel through 5.11.10. drivers/net/ethernet/freescale/gianfar.c in the Freescale Gianfar Ethernet driver allows attackers to cause a system crash because a negative fragment size is calculated in situations involving an rx queue overrun when jumbo packets are...

5.5CVSS6.3AI score0.00272EPSS
Exploits0References1
OSV
OSV
added 2021/01/06 9:15 p.m.1 views

DEBIAN-CVE-2020-8265

Node.js versions before 10.23.1, 12.20.1, 14.15.4, 15.5.1 are vulnerable to a use-after-free bug in its TLS implementation. When writing to a TLS enabled socket, node::StreamBase::Write calls node::TLSWrap::DoWrite with a freshly allocated WriteWrap object as first argument. If the DoWrite method...

8.1CVSS7AI score0.09009EPSS
Exploits1References1
OSV
OSV
added 2020/12/31 9:15 a.m.4 views

DEBIAN-CVE-2020-35919

An issue was discovered in the net2 crate before 0.2.36 for Rust. It has false expectations about the std::net::SocketAddr memory representation...

5.5CVSS5.4AI score0.00384EPSS
Exploits1References1
OSV
OSV
added 2020/11/02 9:15 p.m.1 views

DEBIAN-CVE-2020-28038

WordPress before 5.5.2 allows stored XSS via post slugs...

6.1CVSS6.5AI score0.02611EPSS
Exploits0References1
OSV
OSV
added 2020/10/16 2:15 p.m.1 views

DEBIAN-CVE-2020-26682

In libass 0.14.0, the assoutlineconstruct's call to outlinestroke causes a signed integer overflow...

8.8CVSS8.1AI score0.01811EPSS
Exploits1References1
OSV
OSV
added 2020/10/06 2:15 a.m.2 views

DEBIAN-CVE-2020-26571

The gemsafe GPK smart card software driver in OpenSC before 0.21.0-rc1 has a stack-based buffer overflow in scpkcs15emugemsafeGPKinit...

5.5CVSS6.7AI score0.00401EPSS
Exploits0References1
OSV
OSV
added 2020/10/02 9:15 a.m.4 views

DEBIAN-CVE-2020-25741

fdctrlwritedata in hw/block/fdc.c in QEMU 5.0.0 has a NULL pointer dereference via a NULL block pointer for the current drive...

3.2CVSS6.2AI score0.00456EPSS
Exploits0References1
OSV
OSV
added 2020/09/23 10:15 p.m.1 views

DEBIAN-CVE-2020-25601

An issue was discovered in Xen through 4.14.x. There is a lack of preemption in evtchnreset / evtchndestroy. In particular, the FIFO event channel model allows guests to have a large number of event channels active at a time. Closing all of these when resetting all event channels or when cleaning...

5.5CVSS6AI score0.00424EPSS
Exploits0References1
OSV
OSV
added 2020/09/05 4:15 a.m.1 views

DEBIAN-CVE-2020-15709

Versions of add-apt-repository before 0.98.9.2, 0.96.24.32.14, 0.96.20.10, and 0.92.37.8ubuntu0.1esm1, printed a PPA personal package archive description to the terminal as-is, which allowed PPA owners to provide ANSI terminal escapes to modify terminal contents in unexpected ways...

5.5CVSS5.6AI score0.00313EPSS
Exploits0References1
OSV
OSV
added 2020/08/14 7:15 p.m.2 views

DEBIAN-CVE-2020-15694

In Nim 1.2.4, the standard library httpClient fails to properly validate the server response. For example, httpClient.get.contentLength does not raise any error if a malicious server provides a negative Content-Length...

7.5CVSS7.3AI score0.02331EPSS
Exploits1References1
OSV
OSV
added 2020/07/06 2:15 p.m.2 views

DEBIAN-CVE-2020-15569

PlayerGeneric.cpp in MilkyTracker through 1.02.00 has a use-after-free in the PlayerGeneric destructor...

5.5CVSS5.7AI score0.00746EPSS
Exploits0References1
OSV
OSV
added 2020/06/25 7:15 p.m.2 views

DEBIAN-CVE-2020-11538

In libImaging/SgiRleDecode.c in Pillow through 7.0.0, a number of out-of-bounds reads exist in the parsing of SGI image files, a different issue than CVE-2020-5311...

8.1CVSS6.2AI score0.02514EPSS
Exploits0References1
OSV
OSV
added 2020/06/24 11:15 a.m.2 views

DEBIAN-CVE-2020-15007

A buffer overflow in the MLoadDefaults function in mmisc.c in id Tech 1 aka Doom engine allows arbitrary code execution via an unsafe usage of fscanf, because it does not limit the number of characters to be read in a format argument...

9.8CVSS9.6AI score0.02297EPSS
Exploits0References1
OSV
OSV
added 2020/06/19 5:15 p.m.4 views

DEBIAN-CVE-2020-8162

A client side enforcement of server side security vulnerability exists in rails 5.2.4.2 and rails 6.0.3.1 ActiveStorage's S3 adapter that allows the Content-Length of a direct file upload to be modified by an end user bypassing upload limits...

7.5CVSS6.9AI score0.03065EPSS
Exploits1References1
Rows per page
Query Builder