CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9265 matches found

OSV•added 2017/03/20 4:59 p.m.•9 views

CVE-2015-8985

The popfailstack function in the GNU C Library aka glibc or libc6 allows context-dependent attackers to cause a denial of service assertion failure and application crash via vectors related to extended regular expression processing...

5.9CVSS6.1AI score

Exploits0References7

NVD•added 2017/03/20 4:59 p.m.•24 views

CVE-2015-8985

5.9CVSS5.6AI score0.03001EPSS

Exploits0References4

OSV•added 2017/03/20 4:59 p.m.•2 views

DEBIAN-CVE-2015-8985

5.9CVSS7.1AI score0.03001EPSS

Exploits0References1

UbuntuCve•added 2017/03/20 4:59 p.m.•33 views

CVE-2015-8985

5.9CVSS6.9AI score0.03001EPSS

Exploits0References2

Prion•added 2017/03/20 4:59 p.m.•15 views

Design/Logic Flaw

4.3CVSS6.8AI score0.03001EPSS

Exploits0References4Affected Software1

Cvelist•added 2017/03/20 4:0 p.m.•27 views

CVE-2015-8985

5.5AI score0.03001EPSS

Exploits0References4

CVE•added 2017/03/20 4:0 p.m.•133 views

CVE-2015-8985

CVE-2015-8985 affects the GNU C Library (glibc). The vulnerability lies in pop_fail_stack, where an assertion failure can be triggered via vectors related to extended regular expression processing, enabling a context-dependent attacker to cause a denial of service (crash) in the affected applicat...

5.9CVSS5.4AI score0.03001EPSS

Exploits0References4Affected Software1

Debian CVE•added 2017/03/20 4:0 p.m.•28 views

CVE-2015-8985

5.9CVSS6.3AI score0.03001EPSS

Exploits0

Positive Technologies•added 2017/03/20 12:0 a.m.•4 views

PT-2017-4265 · Gnu +2 · Gnu C Library +2

Name of the Vulnerable Software and Affected Versions: GNU C Library affected versions not specified Description: The issue is related to the pop fail stack function in the GNU C Library, which can be exploited by attackers to cause a denial of service, resulting in an assertion failure and...

9.8CVSS6.9AI score0.074EPSS

Exploits12References87

Fedora•added 2017/02/22 5:56 p.m.•30 views

[SECURITY] Fedora 24 Update: pcre-8.40-2.fc24

PCRE, Perl-compatible regular expression, library has its own native API, b ut a set of wrapper functions that are based on the POSIX API are also supplied in the libpcreposix library. Note that this just provides a POSIX calling interface to PCRE: the regular expressions themselves still follow...

7.5CVSS2AI score0.04546EPSS

Exploits0

RedhatCVE•added 2017/02/21 9:49 a.m.•29 views

CVE-2017-6004

The compilebracketmatchingpath function in pcrejitcompile.c in PCRE through 8.x before revision 1680 e.g., the PHP 7.1.1 bundled version allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted regular expression...

7.5CVSS5.5AI score0.04546EPSS

Exploits0References1

Hacker One•added 2017/02/20 11:45 p.m.•29 views

Pornhub: http://ht.pornhub.com/ stored XSS in widget stylesheet

The researcher discovered a way to include JavaScript content through the CSS editor by leveraging the expression dynamic property...

0.2AI score

Exploits0

OSV•added 2017/02/17 2:59 a.m.•2 views

CVE-2016-6233

The 1 order and 2 group methods in ZendDbSelect in the Zend Framework before 1.12.19 might allow remote attackers to conduct SQL injection attacks via vectors related to use of the character pattern \w in a regular expression...

9.8CVSS5.9AI score0.02047EPSS

Exploits1References6

Prion•added 2017/02/17 2:59 a.m.•13 views

Sql injection

7.5CVSS8.1AI score0.02047EPSS

Exploits1References6Affected Software2

UbuntuCve•added 2017/02/17 2:59 a.m.•25 views

CVE-2016-6233

9.8CVSS7.3AI score0.02047EPSS

Exploits1References2

UbuntuCve•added 2017/02/16 11:59 a.m.•31 views

CVE-2017-6004