Lucene search
K

1297 matches found

Positive Technologies
Positive Technologies
added 2022/02/11 12:0 a.m.3 views

PT-2022-7271 · Libde265 +3 · Libde265 +3

Name of the Vulnerable Software and Affected Versions: Libde265 version 1.0.8 Description: The issue is related to a heap-buffer-overflow vulnerability in the put qpel 0 0 fallback 16 function, located in fallback-motion.cc, which is part of the Libde265 video codec implementation. This...

9.8CVSS6.5AI score0.0202EPSS
Exploits46References200
Code423n4
Code423n4
added 2022/01/19 12:0 a.m.7 views

L2Migrator calls wrong function on bondingManager

Handle harleythedog Vulnerability details Impact In L2Migrator, the function bondFor calls the function "bondForWithHint" on the bondingManager. This function does not exist anywhere in the protocol: the correct function name is simply "bondWithHint". This is a run-time issue the contracts will...

6.8AI score
Exploits0
OSV
OSV
added 2022/01/12 10:44 p.m.13 views

GHSA-7W54-GP8X-F33M Potential exposure of tokens to an Unauthorized Actor

Impact When using this library as a way to programmatically communicate with Replit in a standalone fashion, if there are multiple failed attempts to contact Replit through a WebSocket, the library will attempt to communicate using a fallback poll-based proxy. The URL of the proxy has changed, so...

6.5CVSS7AI score0.0112EPSS
Exploits0References4
NVD
NVD
added 2022/01/11 3:15 p.m.34 views

CVE-2022-21671

@replit/crosis is a JavaScript client that speaks Replit's container protocol. A vulnerability that involves exposure of sensitive information exists in versions prior to 7.3.1. When using this library as a way to programmatically communicate with Replit in a standalone fashion, if there are...

8.1CVSS0.0112EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/01/11 3:5 p.m.6 views

CVE-2022-21671 Potential exposure of Replit tokens to an Unauthorized Actor in @replit/crosis

@replit/crosis is a JavaScript client that speaks Replit's container protocol. A vulnerability that involves exposure of sensitive information exists in versions prior to 7.3.1. When using this library as a way to programmatically communicate with Replit in a standalone fashion, if there are...

8.1CVSS6.6AI score0.0112EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/01/11 12:0 a.m.4 views

PT-2022-15025 · Replit · @Replit/Crosis

Name of the Vulnerable Software and Affected Versions: @replit/crosis versions prior to 7.3.1 Description: A vulnerability exists that involves exposure of sensitive information. When using the library to communicate with Replit in a standalone fashion, if there are multiple failed attempts to...

8.1CVSS7AI score0.0112EPSS
Exploits0References7
OSV
OSV
added 2022/01/10 11:15 p.m.38 views

CVE-2021-36410

A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function putepelhvfallback when running program dec265...

5.5CVSS3.9AI score
Exploits0References3
OSV
OSV
added 2022/01/10 11:15 p.m.2 views

DEBIAN-CVE-2021-36410

A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function putepelhvfallback when running program dec265...

5.5CVSS6.2AI score0.00859EPSS
Exploits1References1
NVD
NVD
added 2022/01/10 11:15 p.m.16 views

CVE-2021-36410

A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function putepelhvfallback when running program dec265...

5.5CVSS0.00859EPSS
Exploits1References3
OSV
OSV
added 2022/01/10 11:15 p.m.2 views

ALPINE-CVE-2021-36410

A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function putepelhvfallback when running program dec265...

5.5CVSS7.5AI score0.00859EPSS
Exploits1References1
OSV
OSV
added 2022/01/10 11:15 p.m.3 views

UBUNTU-CVE-2021-36410

A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function putepelhvfallback when running program dec265...

5.5CVSS7.1AI score0.00859EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2022/01/10 11:15 p.m.35 views

CVE-2021-36410

A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function putepelhvfallback when running program dec265...

5.5CVSS6.8AI score0.00859EPSS
Exploits1References3
Prion
Prion
added 2022/01/10 11:15 p.m.28 views

Stack overflow

A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function putepelhvfallback when running program dec265...

4.3CVSS5.6AI score0.00859EPSS
Exploits1References3Affected Software2
Cvelist
Cvelist
added 2022/01/10 12:0 a.m.25 views

CVE-2021-36410

A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function putepelhvfallback when running program dec265...

7.5AI score0.00859EPSS
Exploits1References3
AlpineLinux
AlpineLinux
added 2022/01/10 12:0 a.m.41 views

CVE-2021-36410

A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function putepelhvfallback when running program dec265...

5.5CVSS7.2AI score0.00859EPSS
Exploits1
Debian CVE
Debian CVE
added 2022/01/10 12:0 a.m.34 views

CVE-2021-36410

A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function putepelhvfallback when running program dec265...

5.5CVSS6.3AI score0.00859EPSS
Exploits1
OSV
OSV
added 2021/12/27 10:15 p.m.10 views

CVE-2021-45884

In Brave Desktop 1.17 through 1.33 before 1.33.106, when CNAME-based adblocking and a proxying extension with a SOCKS fallback are enabled, additional DNS requests are issued outside of the proxying extension using the system's DNS settings, resulting in information disclosure. NOTE: this issue...

7.5CVSS6.7AI score
Exploits0References4
CNNVD
CNNVD
added 2021/12/27 12:0 a.m.5 views

Brave 信息泄露漏洞

Brave is a fast, private and secure web browser from Brave USA. Brave Desktop suffers from an information disclosure vulnerability that originates in Brave Desktop 1.17 through 1.33 prior to 1.33.106, when cname-based adblocking and proxy extensions with SOCKS fallback are enabled, that uses the...

7.5CVSS7.4AI score0.02679EPSS
Exploits1References5
OSV
OSV
added 2021/12/23 9:12 a.m.5 views

SUSE-RU-2021:4173-1 Recommended update for samba

This update for samba fixes the following issues: The username map advice from the CVE-2020-25717 advisory note has undesired side effects for the local nt token. Fallback to a SID/UID based mapping if the name based lookup fails bsc1192849...

8.5CVSS7.9AI score0.01612EPSS
Exploits0References3
OSV
OSV
added 2021/12/23 6:15 a.m.3 views

UBUNTU-CVE-2021-45463

loadcache in GEGL before 0.4.34 allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This is caused by use of the system library function for execution of the ImageMagick convert fallback in magick-load. NOTE: GEGL releases before 0.4.34 are used in GIM...

7.8CVSS7.2AI score0.01439EPSS
Exploits0References8
Rows per page
Query Builder