Lucene search
K

31 matches found

OSV
OSV
added 2023/10/25 12:38 a.m.27 views

CVE-2023-46135 Panic in SignedPayload::from_payload

rs-stellar-strkey is a Rust lib for encode/decode of Stellar Strkeys. A panic vulnerability occurs when a specially crafted payload is used.innerpayloadlen should not above 64. This vulnerability has been patched in version 0.0.8...

5.3CVSS7.3AI score0.00762EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2023/07/10 12:0 a.m.5 views

Vulnerability of the LZWDecode() function (libtiff/tif_lzw.c) in the LibTIFF library, which allows a hacker to cause a service failure

The vulnerability of the LZWDecode function libtiff/tiflzw.c in the LibTIFF library is related to the handling of the zero pointer. Exploiting this vulnerability could allow an attacker to trigger a service failure using specially created input data...

5.5CVSS6.7AI score0.00427EPSS
Exploits1References11Affected Software8
BDU FSTEC
BDU FSTEC
added 2023/05/10 12:0 a.m.9 views

The vulnerability of the jfif_decode() function in the library for encoding and decoding JPEG files, ffjpe, allows a perpetrator to cause a service failure.

The vulnerability of the jfifdecode function ffjpeg/src/jfif.c in the library for encoding and decoding JPEG files allows for the execution of operations outside of the buffer. Exploiting this vulnerability could enable a remote attacker to cause a service failure...

7.8CVSS6.8AI score0.00819EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/05/10 12:0 a.m.10 views

The vulnerability of the jfif_decode() function in the library for encoding and decoding JPEG files, ffjpeg, allows a attacker to cause a service failure.

The vulnerability of the jfifdecode function ffjpeg/src/jfif.c in the library for encoding and decoding JPEG files allows an attacker to cause a service failure...

5.5CVSS6.1AI score0.00698EPSS
Exploits1References4Affected Software1
0day.today
0day.today
added 2022/07/01 12:0 a.m.381 views

PHP Library Remote Code Execution Vulnerability

Several PHP compatibility libraries contain a potential remote code execution flaw in their jsondecode function based on having copy pasted existing vulnerable code. Affected components include the WassUp Realtime analytics WordPress plugin, AjaXplorer Core, and more. JAHx221 - RCE in copy/pasted...

0.4AI score
Exploits0
OSV
OSV
added 2020/06/25 7:15 p.m.1 views

UBUNTU-CVE-2020-10994

In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a crafted JP2 file...

5.5CVSS6.7AI score0.0142EPSS
Exploits0References8
CNVD
CNVD
added 2017/12/12 12:0 a.m.5 views

HDF5 'H5Opline_pline_decode' function out-of-bounds read vulnerability

HDF5 is a free suite of tools for managing the storage of different types of data that can be managed, manipulated, viewed, analyzed, and generated in portable formats. An out-of-bounds read vulnerability exists in the 'H5Oplineplinedecode' function of the H5Opline.c file in the libhdf5.a file in...

6.5CVSS6.7AI score0.01271EPSS
Exploits1References1
OSV
OSV
added 2014/10/31 12:0 a.m.2 views

UBUNTU-CVE-2014-8562

DCM decode in ImageMagick before 6.8.9-9 allows remote attackers to cause a denial of service out-of-bounds read...

5.5CVSS6.8AI score0.02082EPSS
Exploits0References4
exploitpack
exploitpack
added 1999/05/31 12:0 a.m.14 views

Ethereal 0.8.40.8.50.8.6 tcpdump 3.43.5 alpha - DNS Decode (1)

Ethereal 0.8.40.8.50.8.6 tcpdump 3.43.5 alpha - DNS Decode 1 // source: https://www.securityfocus.com/bid/1165/info A vulnerability exists in the DNS decode capabilities provided as part of the tcpdump sniffer, from LBL, as well as other sniffers, including Ethereal, by Gerald Combs. These sniffe...

Exploits0
Exploit DB
Exploit DB
added 1999/05/31 12:0 a.m.23 views

Ethereal 0.8.4/0.8.5/0.8.6 / tcpdump 3.4/3.5 alpha - DNS Decode (1)

// source: https://www.securityfocus.com/bid/1165/info A vulnerability exists in the DNS decode capabilities provided as part of the tcpdump sniffer, from LBL, as well as other sniffers, including Ethereal, by Gerald Combs. These sniffers will attempt to decode DNS request and queries. However, d...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 1999/05/31 12:0 a.m.24 views

Ethereal 0.8.4/0.8.5/0.8.6 / tcpdump 3.4/3.5 alpha - DNS Decode (2)

source: https://www.securityfocus.com/bid/1165/info A vulnerability exists in the DNS decode capabilities provided as part of the tcpdump sniffer, from LBL, as well as other sniffers, including Ethereal, by Gerald Combs. These sniffers will attempt to decode DNS request and queries. However, due ...

7AI score
Exploits0
Rows per page
Query Builder