Lucene search
+L

246 matches found

CVE
CVE
added 2022/08/11 12:52 a.m.73 views

CVE-2022-38155

Summary (facts from provided docs): Samsung mTower

7.5CVSS7.3AI score0.00897EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/08/11 12:52 a.m.34 views

CVE-2022-38155

TEEMalloc in Samsung mTower through 0.3.0 allows a trusted application to achieve Excessive Memory Allocation via a large len value, as demonstrated by a Numaker-PFM-M2351 TEE kernel crash...

7.5AI score0.00897EPSS
Exploits1References2
OSV
OSV
added 2022/08/11 12:52 a.m.16 views

CVE-2022-38155

TEEMalloc in Samsung mTower through 0.3.0 allows a trusted application to achieve Excessive Memory Allocation via a large len value, as demonstrated by a Numaker-PFM-M2351 TEE kernel crash...

7.5CVSS6.7AI score0.00897EPSS
Exploits1References4
Amazon
Amazon
added 2022/08/08 12:0 a.m.74 views

Important: golang

Issue Overview: A null pointer dereference vulnerability was found in golang. When using the library's ssh server without specifying an option for GSSAPIWithMICConfig, it is possible for an attacker to craft an ssh client connection using the authentication method and cause the server to panic...

9.8CVSS8.2AI score0.10299EPSS
Exploits4
OSV
OSV
added 2022/06/28 7:51 p.m.5 views

GSD-2022-1003811 bpf: Fix excessive memory allocation in stack_map_alloc()

bpf: Fix excessive memory allocation in stackmapalloc This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.198 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/06/28 7:35 p.m.13 views

GSD-2022-1003654 bpf: Fix excessive memory allocation in stack_map_alloc()

bpf: Fix excessive memory allocation in stackmapalloc This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.121 by commit...

7.2AI score
Exploits0
Prion
Prion
added 2022/06/16 6:15 p.m.16 views

Memory corruption

OPC UA .NET Standard Stack 1.04.368 allows remote attacker to cause a crash via a crafted message that triggers excessive memory allocation...

5CVSS7.3AI score0.0133EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/06/08 12:0 a.m.58 views

RHEL 7 : java-1.7.1-ibm (RHSA-2022:4957)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:4957 advisory. IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IB...

5.3CVSS6.4AI score0.06468EPSS
Exploits0References13
UbuntuCve
UbuntuCve
added 2022/05/16 3:15 a.m.39 views

CVE-2022-30775

xpdf 4.04 allocates excessive memory when presented with crafted input. This can be triggered by for example sending a crafted PDF document to the pdftoppm binary. It is most easily reproduced with the DCMAKECXXCOMPILER=afl-clang-fast++ option...

5.5CVSS6.8AI score0.00804EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/05/16 12:0 a.m.6 views

Xpdf 安全漏洞

Xpdf is an open source PDF reader from FOO Labs. The product supports decoding files in LZW compressed format and reading encrypted PDF files. A security vulnerability exists in Xpdf version 4.04, which stems from an excessive memory allocation when displaying well-designed input...

5.5CVSS6.5AI score0.00804EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/04/27 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2022:1417-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.7AI score0.0262EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2022/03/01 12:0 a.m.34 views

EulerOS 2.0 SP5 : libwebp (EulerOS-SA-2022-1275)

According to the versions of the libwebp package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in libwebp in versions before 1.0.1. When reading a file libwebp allocates an excessive amount of memory. The highest threat fr...

7.5CVSS7.2AI score0.01966EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/02/12 12:0 a.m.39 views

EulerOS Virtualization 3.0.6.0 : libwebp (EulerOS-SA-2022-1081)

According to the versions of the libwebp package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ShiftBytes. The highest threat...

9.8CVSS7.2AI score0.0223EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/02/01 12:0 a.m.58 views

RHEL 8 : java-1.8.0-ibm (RHSA-2022:0345)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0345 advisory. IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE ...

9.8CVSS6.7AI score0.14839EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2022/01/28 12:0 a.m.47 views

Scientific Linux Security Update : java-1.8.0-openjdk on SL7.x i686/x86_64 (2022:0306)

The remote Scientific Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the SLSA-2022:0306-1 advisory. - OpenJDK: Incomplete deserialization class filtering in ObjectInputStream Serialization, 8264934 CVE-2022-21248 - OpenJDK: Insufficient URI chec...

5.3CVSS6.3AI score0.08346EPSS
Exploits0References13
RedHat Linux
RedHat Linux
added 2022/01/24 11:39 a.m.6 views

OpenJDK: Excessive memory allocation in TIFF*Decompressor (ImageIO, 8274096)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: ImageIO. Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows...

5.3CVSS7.4AI score0.03216EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/01/24 12:0 a.m.46 views

RHEL 7 : java-11-openjdk (RHSA-2022:0204)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0204 advisory. The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fixe...

5.3CVSS6.5AI score0.08346EPSS
Exploits0References34
OSV
OSV
added 2021/11/24 4:18 p.m.5 views

CLSA-2021-1637770725 Fixed 56 CVEs in binutils

CVE-2017-7223: Fix global buffer overflow of size 1 - CVE-2017-7224: Fix invalid write of size 1 while disassembling - CVE-2017-7225: Fix NULL pointer dereference and an invalid write - CVE-2017-7226: Fix heap-based buffer over-read of size 4049 - CVE-2017-7227: Fix heap-based buffer overflow -...

9.8CVSS7.1AI score0.08506EPSS
Exploits13References1
RedHat Linux
RedHat Linux
added 2021/11/11 6:30 p.m.2 views

OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8267735)

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: ImageIO. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated...

5.3CVSS6.9AI score0.06322EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/11/11 6:30 p.m.4 views

OpenJDK: Excessive memory allocation in HashMap and HashSet (Utility, 8266097)

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Utility. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated...

5.3CVSS7.4AI score0.06468EPSS
Exploits0References4
Rows per page
Query Builder