CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3211 matches found

OSV•added 2018/09/03 7:29 p.m.•2 views

ALPINE-CVE-2018-16402

libelf/elfend.c in elfutils 0.173 allows remote attackers to cause a denial of service double free and application crash or possibly have unspecified other impact because it tries to decompress twice...

9.8CVSS7.5AI score0.03691EPSS

Exploits1References1

AlpineLinux•added 2018/09/03 7:0 p.m.•1 views

CVE-2018-16402

9.8CVSS6.7AI score0.03691EPSS

Exploits1

OSV•added 2018/09/03 12:0 a.m.•0 views

UBUNTU-CVE-2018-16402

9.8CVSS6.6AI score0.03691EPSS

Exploits1References3

Fedora•added 2018/08/11 6:39 p.m.•34 views

[SECURITY] Fedora 27 Update: libmspack-0.7-0.1.alpha.fc27

The purpose of libmspack is to provide both compression and decompression of some loosely related file formats used by Microsoft...

6.5CVSS2AI score0.03312EPSS

Exploits0

OSV•added 2018/08/09 8:13 p.m.•21 views

GHSA-8225-6CVR-8PQP superagent vulnerable to zip bomb attacks

Affected versions of superagent do not check the post-decompression size of ZIP compressed HTTP responses prior to decompressing. This results in the package being vulnerable to a ZIP bomb attack, where an extremely small ZIP file becomes many orders of magnitude larger when decompressed. This ma...

5.9CVSS5.8AI score0.01767EPSS

Exploits0References5

Fedora•added 2018/08/07 3:33 p.m.•33 views

[SECURITY] Fedora 28 Update: libmspack-0.7-0.1.alpha.fc28

The purpose of libmspack is to provide both compression and decompression of some loosely related file formats used by Microsoft...

6.5CVSS2AI score0.03312EPSS

Exploits0

RedhatCVE•added 2018/08/01 4:49 p.m.•23 views

CVE-2018-14682

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER macro for CHM decompression...

8.8CVSS3.3AI score0.03806EPSS

Exploits0References1

Prion•added 2018/07/28 11:29 p.m.•20 views

Design/Logic Flaw

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER macro for CHM decompression...

6.8CVSS8.4AI score0.03806EPSS

Exploits0References13Affected Software8

NVD•added 2018/07/28 11:29 p.m.•18 views

CVE-2018-14682

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER macro for CHM decompression...

8.8CVSS7.5AI score0.03806EPSS

Exploits0References13

OSV•added 2018/07/28 11:29 p.m.•2 views

ALPINE-CVE-2018-14682

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER macro for CHM decompression...

8.8CVSS7AI score0.03806EPSS

Exploits0References1

OSV•added 2018/07/28 11:29 p.m.•1 views

DEBIAN-CVE-2018-14682

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER macro for CHM decompression...

8.8CVSS6.5AI score0.03806EPSS

Exploits0References1

Cvelist•added 2018/07/28 11:0 p.m.•15 views

CVE-2018-14682

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER macro for CHM decompression...

7.6AI score0.03806EPSS

Exploits0References13

CVE•added 2018/07/28 11:0 p.m.•246 views

CVE-2018-14682

CVE-2018-14682 affects libmspack (CHM decompression) with an off-by-one error in the TOLOWER() macro in mspack/chmd.c (pre-0.7alpha). Related advisories note additional CHM/CHM-related issues (14679, 14680) and KWAD header issues (14681). Affected: libmspack; potential impact described in advisor...

8.8CVSS7.4AI score0.03806EPSS

Exploits0References13Affected Software2

Debian CVE•added 2018/07/28 11:0 p.m.•18 views

CVE-2018-14682

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER macro for CHM decompression...

8.8CVSS7.1AI score0.03806EPSS

Exploits0

AlpineLinux•added 2018/07/28 11:0 p.m.•42 views

CVE-2018-14682

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER macro for CHM decompression...

8.8CVSS7.8AI score0.03806EPSS

Exploits0

OSV•added 2018/07/28 12:0 a.m.•0 views

UBUNTU-CVE-2018-14682

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER macro for CHM decompression...

8.8CVSS6.7AI score0.03806EPSS

Exploits0References8

UbuntuCve•added 2018/07/28 12:0 a.m.•26 views

CVE-2018-14682

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER macro for CHM decompression...

8.8CVSS6.8AI score0.03806EPSS

Exploits0References7

Fedora•added 2018/07/27 4:49 p.m.•41 views

[SECURITY] Fedora 28 Update: suricata-4.0.5-1.fc28

The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic...

9.8CVSS0.2AI score0.02302EPSS

Exploits0

Fedora•added 2018/07/27 4:0 p.m.•39 views

[SECURITY] Fedora 27 Update: suricata-4.0.5-1.fc27

9.8CVSS0.2AI score0.02302EPSS

Exploits0

Prion•added 2018/07/24 3:29 p.m.•13 views

Path traversal

The dotCMS administration panel, versions 3.7.1 and earlier, "Push Publishing" feature in Enterprise Pro is vulnerable to path traversal. When "Bundle" tar.gz archives uploaded to the Push Publishing feature are decompressed, the filenames of its contents are not properly checked, allowing for...

4CVSS7.7AI score0.02788EPSS

Exploits0References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by