CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

OSV•added 2020/07/01 12:0 a.m.•11 views

OSV-2020-570 Global-buffer-overflow in decode_tlv

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=13542 Crash type: Global-buffer-overflow READ 4 Crash state: decodetlv dissectnoe calldissectorwork...

7.2AI score

Exploits0References1

CNVD•added 2017/07/18 12:0 a.m.•1 views

FreeRADIUS 'decode_tlv()' function memory leak vulnerability

FreeRADIUS is a set of software that implements the RADIUS protocol from the FreeRADIUS Server project. The software is mainly used for account authentication management, bookkeeping management and Internet account management, etc. and contains a Radius server, a client library for BSD protocol...

7.5CVSS6.7AI score0.01594EPSS

Exploits0References1

Oracle linux•added 2017/07/18 12:0 a.m.•58 views

freeradius security update

2.2.6-7 - Resolves: Bug1469115 CVE-2017-10979 freeradius: Out-of-bounds write in radcoalesce - Resolves: Bug1469118 CVE-2017-10978 freeradius: Out-of-bounds read/write due to improper output buffer size check in makesecret - Resolves: Bug1469120 CVE-2017-10980 freeradius: Memory leak in decodetlv...

9.8CVSS1.7AI score0.30218EPSS

Exploits0

NVD•added 2017/07/17 5:29 p.m.•12 views

CVE-2017-10980

An FR-GV-203 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Memory leak in decodetlv" and a denial of service...

7.5CVSS8.4AI score0.01594EPSS

Exploits0References5

CVE•added 2017/07/17 4:0 p.m.•84 views

CVE-2017-10980

FreeRADIUS 2.x prior to version 2.2.10 is affected by CVE-2017-10980: a DHCP memory leak in decode_tlv that can lead to denial of service. The connected Nessus/Debian/RHEL/MiracleLinux advisories enumerate this issue among other FreeRADIUS memory/overflow concerns, but the provided documents do n...

7.5CVSS8.1AI score0.01594EPSS

Exploits0References5Affected Software1