Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5956 matches found

Debian CVE
Debian CVEadded 2014/12/26 8:0 p.m.22 views

CVE-2010-1441

Multiple heap-based buffer overflows in VideoLAN VLC media player before 1.0.6 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted byte stream to the 1 A/52, 2 DTS, or 3 MPEG Audio decoder...

7.5CVSS7.6AI score0.01795EPSS
Exploits0
Cvelist
Cvelistadded 2014/12/26 8:0 p.m.16 views

CVE-2010-1441

Multiple heap-based buffer overflows in VideoLAN VLC media player before 1.0.6 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted byte stream to the 1 A/52, 2 DTS, or 3 MPEG Audio decoder...

7.7AI score0.01795EPSS
Exploits0References2
NVD
NVDadded 2014/12/15 6:59 p.m.14 views

CVE-2014-1569

The definitelengthdecoder function in lib/util/quickder.c in Mozilla Network Security Services NSS before 3.16.2.4 and 3.17.x before 3.17.3 does not ensure that the DER encoding of an ASN.1 length is properly formed, which allows remote attackers to conduct data-smuggling attacks by using a long...

7.5CVSS6.4AI score0.03635EPSS
Exploits4References15
Cvelist
Cvelistadded 2014/12/15 5:27 p.m.20 views

CVE-2014-1569

The definitelengthdecoder function in lib/util/quickder.c in Mozilla Network Security Services NSS before 3.16.2.4 and 3.17.x before 3.17.3 does not ensure that the DER encoding of an ASN.1 length is properly formed, which allows remote attackers to conduct data-smuggling attacks by using a long...

3.6AI score0.03635EPSS
Exploits4References15
Tenable Nessus
Tenable Nessusadded 2014/12/15 12:0 a.m.34 views

Mandriva Linux Security Advisory : flac (MDVSA-2014:239)

Updated flac packages fix security vulnerabilities : In libFLAC before 1.3.1, a stack overflow CVE-2014-8962 and a heap overflow CVE-2014-9028, which may result in arbitrary code execution, can be triggered by passing a maliciously crafted .flac file to the libFLAC decoder. %NASLMINLEVEL 70300 C...

7.5CVSS5.6AI score0.25739EPSS
Exploits0References3
OSV
OSVadded 2014/12/15 12:0 a.m.0 views

UBUNTU-CVE-2014-1569

The definitelengthdecoder function in lib/util/quickder.c in Mozilla Network Security Services NSS before 3.16.2.4 and 3.17.x before 3.17.3 does not ensure that the DER encoding of an ASN.1 length is properly formed, which allows remote attackers to conduct data-smuggling attacks by using a long...

7.5CVSS7.3AI score0.03635EPSS
Exploits4References7
OSV
OSVadded 2014/12/05 12:0 a.m.22 views

DLA-99-1 flac - security update

Bulletin has no description...

7.5CVSS6AI score0.25739EPSS
Exploits0
0day.today
0day.todayadded 2014/12/04 12:0 a.m.32 views

Cisco OpenH264 Heap Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on applications using vulnerable versions of Cisco OpenH264. The specific flaw exists within the decoder logic. By providing malformed H.264 data to the decoder, an attacker can overwrite a heap buffer. This could result in the...

7.5CVSS7.3AI score0.03043EPSS
Exploits1
Zero Day Initiative
Zero Day Initiativeadded 2014/12/03 12:0 a.m.20 views

Cisco OpenH264 Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on applications using vulnerable versions of Cisco OpenH264. The specific flaw exists within the decoder logic. By providing malformed H.264 data to the decoder, an attacker can force a dangling pointer to be referenced after it...

7.5CVSS7.1AI score0.02128EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiativeadded 2014/12/03 12:0 a.m.24 views

Cisco OpenH264 Heap Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on applications using vulnerable versions of Cisco OpenH264. The specific flaw exists within the decoder logic. By providing malformed H.264 data to the decoder, an attacker can overwrite a heap buffer. This could result in the...

7.5CVSS7.2AI score0.03043EPSS
Exploits1References1
Huawei
Huaweiadded 2014/12/02 12:0 a.m.31 views

Security Advisory-Multiple Vulnerabilities on Huawei P2 Smartphone

This security advisory SA describes two vulnerabilities. The decoder driver of P2 was found to allow any application to read or write to an arbitrary memory address. HWPSIRT-2014-0401 This Vulnerability has been assigned Common Vulnerabilities and Exposures CVE ID: CVE-2014-2273. The Kingsoft...

8.1CVSS8.4AI score0.01795EPSS
Exploits1Affected Software1
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.53 views

[ MDVSA-2014:226 ] imagemagick

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:226 http://www.mandriva.com/en/support/security/ Package : imagemagick Date : November 25, 2014 Affected: Business Server 1.0 Problem Description: Updated imagemagick packages fix security vulnerabilities:...

4.3CVSS6.1AI score0.00602EPSS
Exploits0
NVD
NVDadded 2014/11/26 3:59 p.m.17 views

CVE-2014-9028

Heap-based buffer overflow in streamdecoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file...

7.5CVSS7.7AI score0.25739EPSS
Exploits0References13
OSV
OSVadded 2014/11/26 3:59 p.m.1 views

DEBIAN-CVE-2014-8962

Stack-based buffer overflow in streamdecoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file...

7.5CVSS7.9AI score0.14653EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2014/11/26 12:0 a.m.31 views

OracleVM 2.1 : krb5 (OVMSA-2009-0003)

The remote OracleVM system is missing necessary patches to address critical security updates : CVE-2009-0844 The getinputtoken function in the SPNEGO implementation in MIT Kerberos 5 aka krb5 1.5 through 1.6.3 allows remote attackers to cause a denial of service daemon crash and possibly obtain...

10CVSS7.5AI score0.50005EPSS
Exploits3References5
OSV
OSVadded 2014/11/26 12:0 a.m.2 views

UBUNTU-CVE-2014-9028

Heap-based buffer overflow in streamdecoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file...

7.5CVSS6.4AI score0.25739EPSS
Exploits0References3
OSV
OSVadded 2014/11/26 12:0 a.m.0 views

UBUNTU-CVE-2014-8962

Stack-based buffer overflow in streamdecoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file...

7.5CVSS6.4AI score0.14653EPSS
Exploits0References5
Mageia
Mageiaadded 2014/11/22 10:54 a.m.38 views

Updated imagemagick packages fix security vulnerabilities

ImageMagick is vulnerable to a denial of service due to out-of-bounds memory accesses in the resize code CVE-2014-8354, PCX parser CVE-2014-8355, DCM decoder CVE-2014-8562, and JPEG decoder CVE-2014-8716...

6.5CVSS6.3AI score0.00602EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2014/11/12 12:0 a.m.25 views

CVE-2014-8716

The JPEG decoder in ImageMagick before 6.8.9-9 allows local users to cause a denial of service out-of-bounds memory access and crash...

6.2CVSS6.9AI score0.00056EPSS
Exploits0References3
OSV
OSVadded 2014/11/12 12:0 a.m.1 views

UBUNTU-CVE-2014-8716

The JPEG decoder in ImageMagick before 6.8.9-9 allows local users to cause a denial of service out-of-bounds memory access and crash...

6.2CVSS6.9AI score0.00056EPSS
Exploits0References4
Rows per page
Query Builder