Lucene search
K

156 matches found

OSV
OSV
added 2021/09/20 4:15 p.m.2 views

UBUNTU-CVE-2021-39593

An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function swfFontExtractDefineFontInfo located in swftext.c. It allows an attacker to cause Denial of Service...

5.5CVSS5.8AI score0.00639EPSS
Exploits1References3
CNNVD
CNNVD
added 2020/12/31 12:0 a.m.6 views

QEMU 缓冲区错误漏洞

QEMU Quick Emulator is a set of simulation processor software by Fabrice Bellard, a French individual developer. The software is fast and cross-platform. QEMU 4.1.0 suffers from a security vulnerability that stems from an out-of-bounds read flaw found in the ATI VGA implementation. It occurs in t...

6.5CVSS6.8AI score0.0033EPSS
Exploits0References4
CNNVD
CNNVD
added 2020/12/29 12:0 a.m.6 views

Bigpipe predefine security breach

Bigpipe Predefine is a code library for managing Object.defineProperties objects in the Javascript language by the Bigpipe individual developers. A security vulnerability exists in predefine versions 0.0.0 through 0.1.2 that can be exploited by an attacker to cause a denial of service and...

9.8CVSS6.1AI score0.02944EPSS
Exploits1References3
CNVD
CNVD
added 2020/10/29 12:0 a.m.2 views

osCommerce Phoenix CE Cross-Site Request Forgery Vulnerability

OsCommerce is an e-commerce and online store management software program.CE Phoenix is the official community version of osCommerce. A cross-site request forgery vulnerability exists in admin/definelanguage.php in osCommerce CE Phoenix versions prior to 1.0.5.4. No details of the vulnerability ar...

8.8CVSS6.8AI score0.00602EPSS
Exploits1References1
OSV
OSV
added 2020/10/28 3:15 p.m.5 views

CVE-2020-27975

osCommerce Phoenix CE before 1.0.5.4 allows admin/definelanguage.php CSRF...

8.8CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2020/09/03 5:12 p.m.74 views

GHSA-9PCF-H8Q9-63F6 Sandbox Breakout / Arbitrary Code Execution in safe-eval

All versions of safe-eval are vulnerable to Sandbox Escape leading to Remote Code Execution. A payload chaining a function's callee and caller constructors can escape the sandbox and execute arbitrary code. For example, the payload = const targetKey = Object.keysthis0; Object.definePropertythis,...

8.2AI score
Exploits0References1
Snyk
Snyk
added 2020/08/14 9:36 a.m.4 views

Prototype Pollution

Overview deeps is a Highly performant utilities to manage deeply nested objects. get, set, merge, flatten, diff etc. Affected versions of this package are vulnerable to Prototype Pollution via the set function. POC: const deeps = require'deeps'; deeps.set, 'proto.polluted', true;...

9.8CVSS9AI score0.01916EPSS
Exploits1References2
OSV
OSV
added 2020/08/05 2:15 p.m.2 views

DEBIAN-CVE-2020-17353

scm/define-stencil-commands.scm in LilyPond through 2.20.0, and 2.21.x through 2.21.4, when -dsafe is used, lacks restrictions on embedded-ps and embedded-svg, as demonstrated by including dangerous PostScript code...

9.8CVSS8.5AI score0.02371EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2020/08/05 12:55 p.m.16 views

CVE-2020-17353

scm/define-stencil-commands.scm in LilyPond through 2.20.0, and 2.21.x through 2.21.4, when -dsafe is used, lacks restrictions on embedded-ps and embedded-svg, as demonstrated by including dangerous PostScript code...

9.8CVSS9.5AI score0.02371EPSS
Exploits0
OSV
OSV
added 2020/02/10 4:15 p.m.4 views

CVE-2019-19659

A CSRF vulnerability exists in the Web File Manager's Edit Accounts functionality of Rumpus FTP Server 8.2.9.1. By exploiting it, an attacker can take over a user account by changing the password, update users' details, and escalate privileges via RAPR/DefineUsersSet.html...

8.8CVSS7.3AI score0.0049EPSS
Exploits0References2
OSV
OSV
added 2019/08/05 7:15 p.m.3 views

DEBIAN-CVE-2019-14665

Brandy 1.20.1 has a heap-based buffer overflow in definearray in variables.c via crafted BASIC source code...

5.5CVSS6.2AI score0.00842EPSS
Exploits1References1
OSV
OSV
added 2019/08/05 7:15 p.m.2 views

UBUNTU-CVE-2019-14665

Brandy 1.20.1 has a heap-based buffer overflow in definearray in variables.c via crafted BASIC source code...

5.5CVSS6.3AI score0.00842EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2019/05/07 4:22 a.m.4 views

ghostscript: forceput in DefineResource is still accessible (700576)

It was found that the forceput operator could be extracted from the DefineResource method. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER...

7.3CVSS7.1AI score0.02642EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2019/04/04 12:0 a.m.4 views

The vulnerability of the DefineResource method in the Ghostscript file conversion program allows a attacker to escalate their privileges.

The vulnerability of the DefineResource method in the Ghostscript file conversion program is related to insecure management of privileges. Exploiting this vulnerability could allow a malicious actor, operating remotely, to increase their privileges...

7.5CVSS6.6AI score0.02642EPSS
Exploits0References5Affected Software2
RedHat Linux
RedHat Linux
added 2019/03/21 5:13 p.m.7 views

ghostscript: forceput in DefineResource is still accessible (700576)

It was found that the forceput operator could be extracted from the DefineResource method. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER...

7.3CVSS7.1AI score0.02642EPSS
Exploits0References5
OSV
OSV
added 2019/03/21 12:0 p.m.3 views

UBUNTU-CVE-2019-3838

It was found that the forceput operator could be extracted from the DefineResource method in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER...

7.3CVSS5.7AI score0.02642EPSS
Exploits0References3
Hacker One
Hacker One
added 2019/01/17 10:56 a.m.22 views

Notepad++: Security check failure or stack buffer overrun (crash)

poc.py 1 Run poc.py 2 Open notepad++.exe 3 Go to "Define language..." 4 Use tab "Comment and Number" 5 Open 1stfield.txt and copy content to clipboard 6 Paste clipboard on "Comment line style in field Open" 7 Open 2ndfield.txt and copy content to clipboard 8 Paste clipboard on "Comment line style...

0.5AI score
Exploits0
OSV
OSV
added 2018/11/14 3:29 p.m.4 views

CVE-2018-6064

Type Confusion in the implementation of defineGetter in V8 in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.3AI score0.06892EPSS
Exploits2References7
Positive Technologies
Positive Technologies
added 2018/10/28 12:0 a.m.2 views

PT-2018-3934 · Libreoffice +4 · Libwpd +4

Name of the Vulnerable Software and Affected Versions: libwpd version 0.10.2 Description: The issue is related to a NULL pointer dereference in the WP6ContentListener::defineTable function, which can lead to a denial of service attack. This is associated with errors in pointer handling. The...

7.8CVSS5AI score0.01488EPSS
Exploits1References40
RedHat Linux
RedHat Linux
added 2018/04/10 3:23 p.m.3 views

kernel: drm/vmwgfx: fix integer overflow in vmw_surface_define_ioctl()

An out-of-bounds write vulnerability was found in the Linux kernel's vmwsurfacedefineioctl function, in the 'drivers/gpu/drm/vmwgfx/vmwgfxsurface.c' file. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely...

7.8CVSS7.1AI score0.0038EPSS
Exploits0References4
Rows per page
Query Builder