Lucene search
+L

9 matches found

cve
cve
added 2026/05/22 8:59 p.m.90 views

CVE-2026-41071

CVE-2026-41071 affects libheif up to version 1.21.2. A crafted HEIF sequence file where the saiz box declares more samples than actually exist can trigger a heap‑buffer‑overflow (out‑of‑bounds read) in the SampleAuxInfoReader constructor when parsing via heif_context_read_from_file. The reader it...

8.1CVSS5.8AI score0.00302EPSS
Exploits1References2Affected Software1
ptsecurity
ptsecurity
added 2026/02/14 12:0 a.m.7 views

PT-2026-8207

In the Linux kernel, the following vulnerability has been resolved: procfs: avoid fetching build ID while holding VMA lock Fix PROCMAP QUERY to fetch optional build ID only after dropping mmap lock or per-VMA lock, whichever was used to lock VMA under question, to avoid deadlock reported by syzbo...

5.2AI score0.0009EPSS
Exploits0References4
nvd
nvd
added 2024/06/25 4:15 a.m.26 views

CVE-2024-23150

A maliciously crafted PRT file, when parsed in odxugdll.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

7.8CVSS0.00389EPSS
Exploits0References1
osv
osv
added 2023/05/16 5:15 p.m.6 views

CVE-2023-32991

A cross-site request forgery CSRF vulnerability in Jenkins SAML Single Sign OnSSO Plugin 2.0.2 and earlier allows attackers to send an HTTP request to an attacker-specified URL and parse the response as XML, or parse a local file on the Jenkins controller as XML...

8.8CVSS7.3AI score0.00681EPSS
Exploits0References1
metasploit
metasploit
added 2023/01/11 7:51 p.m.184 views

Gather MinIO Client Key

This module searches for MinIO Client credentials on a Windows host. Module Options msf use post/multi/gather/minioclient msf postminioclient show actions ...actions... msf postminioclient set ACTION msf postminioclient show options ...show and set options... msf postminioclient run This module...

7.1AI score
Exploits0
osv
osv
added 2022/10/19 2:15 p.m.5 views

UBUNTU-CVE-2022-43037

An issue was discovered in Bento4 1.6.0-639. There is a memory leak in the function AP4File::ParseStream in /Core/Ap4File.cpp...

6.5CVSS6.6AI score0.00586EPSS
Exploits1References3
cnnvd
cnnvd
added 2022/09/30 12:0 a.m.7 views

Bento4 代码问题漏洞

Bento4 is an open source C++ library for reading and writing MP4 files. A denial of service vulnerability exists in Bento4 version 1.6.0-639, which stems from a null pointer dereference in AP4File::ParseStream in Core/Ap4File.cpp. An attacker could exploit the vulnerability to cause a denial of...

5.5CVSS6.6AI score0.00273EPSS
Exploits1References2
nessus
nessus
added 2018/11/02 12:0 a.m.50 views

F5 Networks BIG-IP : Multiple Wireshark vulnerabilities (K34035645)

CVE-2018-7320 In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the SIGCOMP protocol dissector could crash. This was addressed in epan/dissectors/packet-sigcomp.c by validating operand offsets. CVE-2018-7321 In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-thrift.c had a lar...

7.5CVSS7.3AI score0.02743EPSS
Exploits3References24
redhat
redhat
added 2014/10/13 9:6 p.m.4 views

libX11: Multiple integer overflows leading to heap-based buffer-overflows

Multiple integer overflows in X.org libX11 1.5.99.901 1.6 RC1 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the 1 XQueryFont, 2 XF86BigfontQueryFont, 3 XListFontsWithInfo, 4 XGetMotionEvents, 5 XListHosts, 6...

6.8CVSS7.2AI score0.01395EPSS
Exploits0References5
Rows per page
Query Builder