123 matches found
kernel: a malicious USB device in the drivers/input/ff-memless.c leads to use-after-free
A use-after-free flaw was found in the Linux kernel’s input device driver functionality when unplugging a device. A user with physical access could use this flaw to crash the system...
ff-michelhausen.at Cross Site Scripting vulnerability OBB-1429365
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
kernel: a malicious USB device in the drivers/input/ff-memless.c leads to use-after-free
A use-after-free flaw was found in the Linux kernel’s input device driver functionality when unplugging a device. A user with physical access could use this flaw to crash the system...
ff-irsingen.de Cross Site Scripting vulnerability OBB-1327572
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
ff-marula.com Cross Site Scripting vulnerability OBB-1282669
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
kernel: a malicious USB device in the drivers/input/ff-memless.c leads to use-after-free
A use-after-free flaw was found in the Linux kernel’s input device driver functionality when unplugging a device. A user with physical access could use this flaw to crash the system...
PT-2021-6496 · Libde265 +4 · Libde265 +4
Name of the Vulnerable Software and Affected Versions: libde265 version 1.0.4 Description: The issue is related to a heap buffer overflow in the ff hevc put unweighted pred 8 sse function. This can be exploited via a crafted file, potentially allowing a remote attacker to access confidential data...
DEBIAN-CVE-2019-19524
In the Linux kernel before 5.3.12, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver, aka CID-fa3a5a1880c9...
Design/Logic Flaw
In the Linux kernel before 5.3.12, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver, aka CID-fa3a5a1880c9...
UBUNTU-CVE-2019-19524
In the Linux kernel before 5.3.12, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver, aka CID-fa3a5a1880c9...
CVE-2019-19524
CVE-2019-19524 affects the Linux kernel (before 5.3.12) with a use-after-free in drivers/input/ff-memless.c caused by a malicious USB device, leading to kernel panics. upstream patch available (e.g., ChangeLog-5.3.12) and vendor advisories reference mitigations and fixes. The connected documents ...
Fedora Update for mediaconch FEDORA-2019-7155125125
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] Fedora 28 Update: mediaconch-18.03.2-7.fc28
MediaConch is an implementation checker, policy checker, reporter, and fixer that targets preservation-level audiovisual files specifically Matroska, Linear Pulse Code Modulation LPCM and FF Video Codec 1 FFV1. This project is maintained by MediaArea and funded by PREFORMA. This package includes...
ff-gresten.at XSS vulnerability
Open Bug Bounty ID: OBB-699980 Description| Value ---|--- Affected Website:| ff-gresten.at Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden...
ff-pipes.com XSS vulnerability
Open Bug Bounty ID: OBB-681128 Description| Value ---|--- Affected Website:| ff-pipes.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
TCExam Cross-Site Scripting Vulnerability (CNVD-2018-13449)
TCExam is a web-based open source online examination system for online test question generation, management and other aspects. A cross-site scripting vulnerability exists in versions of TCExam prior to 14.1.2. A remote attacker can exploit this vulnerability to inject arbitrary Web script or HTML...
ffc-gera.de XSS vulnerability
Open Bug Bounty ID: OBB-608305 Description| Value ---|--- Affected Website:| ffc-gera.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
ff-fanshop.de XSS vulnerability
Open Bug Bounty ID: OBB-598422 Description| Value ---|--- Affected Website:| ff-fanshop.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
ff-bz.com XSS vulnerability
Open Bug Bounty ID: OBB-570152 Description| Value ---|--- Affected Website:| ff-bz.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
WePay: Reflected XSS in the IE 11 / Edge (latest versions) on the stage-go.wepay.com
Description Hello. I discovered Reflected XSS on the stage-go.wepay.com. Browsers & OS tested The XSS checked in the latest IE 11 and Edge on Windows 7. Not checked on Windows 10. POC IE 11 or Edge...