Lucene search
K

49 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-42755

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00237EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 12:20 p.m.3 views

Malicious code in @fnt-cmd/template-engine (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSV
OSV
added 2024/06/25 12:20 p.m.7 views

MAL-2024-7075 Malicious code in @fnt-cmd/core (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 12:20 p.m.3 views

Malicious code in @fnt-cmd/core (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
RedHat Linux
RedHat Linux
added 2024/01/25 8:16 a.m.4 views

FreeType: Segmentation violation via FNT_Size_Request

A segmentation fault was found in the FreeType library. This flaw allows an attacker to attempt access to a memory location in a way that could cause an application to halt or crash, leading to a denial of service...

7.5CVSS7.3AI score0.02816EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2022/11/22 12:0 a.m.7 views

The vulnerability of the FNT_Size_Request function in the FreeType library, which allows a hacker to trigger a service failure

The vulnerability of the FNTSizeRequest function in the FreeType library relates to reading data from within allowable buffer limits. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

7.8CVSS7.2AI score0.02816EPSS
Exploits0References13Affected Software7
NVD
NVD
added 2022/11/15 9:15 p.m.16 views

CVE-2022-3377

Horner Automation's Cscape version 9.90 SP 6 and prior does not properly validate user-supplied data. If a user opens a maliciously formed FNT file, then an attacker could execute arbitrary code within the current process by accessing an uninitialized pointer, leading to an out-of-bounds memory...

7.8CVSS0.00237EPSS
Exploits0References1
OSV
OSV
added 2022/11/15 9:15 p.m.5 views

CVE-2022-3377

Horner Automation's Cscape version 9.90 SP 6 and prior does not properly validate user-supplied data. If a user opens a maliciously formed FNT file, then an attacker could execute arbitrary code within the current process by accessing an uninitialized pointer, leading to an out-of-bounds memory...

7.8CVSS6AI score0.00237EPSS
Exploits0References1
Prion
Prion
added 2022/11/15 9:15 p.m.20 views

Design/Logic Flaw

Horner Automation's Cscape version 9.90 SP 6 and prior does not properly validate user-supplied data. If a user opens a maliciously formed FNT file, then an attacker could execute arbitrary code within the current process by accessing an uninitialized pointer, leading to an out-of-bounds memory...

4.4CVSS7.8AI score0.00237EPSS
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2022/11/08 10:2 a.m.6 views

FreeType: Segmentation violation via FNT_Size_Request

A segmentation fault was found in the FreeType library. This flaw allows an attacker to attempt access to a memory location in a way that could cause an application to halt or crash, leading to a denial of service...

7.5CVSS7.3AI score0.02816EPSS
Exploits0References4
OSV
OSV
added 2022/10/27 11:15 p.m.5 views

CVE-2022-3379

Horner Automation's Cscape version 9.90 SP7 and prior does not properly validate user-supplied data. If a user opens a maliciously formed FNT file, then an attacker could execute arbitrary code within the current process by writing outside the memory buffer...

7.8CVSS6AI score0.00231EPSS
Exploits0References1
OSV
OSV
added 2022/10/27 11:15 p.m.4 views

CVE-2022-3378

Horner Automation's Cscape version 9.90 SP 7 and prior does not properly validate user-supplied data. If a user opens a maliciously formed FNT file, then an attacker could execute arbitrary code within the current process by accessing an uninitialized pointer, leading to an out-of-bounds memory...

7.8CVSS6AI score0.00237EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/10/27 10:17 p.m.17 views

CVE-2022-3377

Horner Automation's Cscape version 9.90 SP 6 and prior does not properly validate user-supplied data. If a user opens a maliciously formed FNT file, then an attacker could execute arbitrary code within the current process by accessing an uninitialized pointer, leading to an out-of-bounds memory...

7.8CVSS8AI score0.00237EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/10/27 10:13 p.m.39 views

CVE-2022-3378

Horner Automation's Cscape version 9.90 SP 7 and prior does not properly validate user-supplied data. If a user opens a maliciously formed FNT file, then an attacker could execute arbitrary code within the current process by accessing an uninitialized pointer, leading to an out-of-bounds memory...

7.8CVSS8AI score0.00237EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/10/27 10:13 p.m.7 views

CVE-2022-3378

Horner Automation's Cscape version 9.90 SP 7 and prior does not properly validate user-supplied data. If a user opens a maliciously formed FNT file, then an attacker could execute arbitrary code within the current process by accessing an uninitialized pointer, leading to an out-of-bounds memory...

7.8CVSS7.8AI score0.00237EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/10/27 10:11 p.m.13 views

CVE-2022-3379

Horner Automation's Cscape version 9.90 SP7 and prior does not properly validate user-supplied data. If a user opens a maliciously formed FNT file, then an attacker could execute arbitrary code within the current process by writing outside the memory buffer...

7.8CVSS7.9AI score0.00231EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/10/27 12:0 a.m.6 views

PT-2022-21870 · Horner Automation · Cscape

Name of the Vulnerable Software and Affected Versions: Horner Automation's Cscape version 9.90 SP 7 and prior Description: The issue arises from improper validation of user-supplied data. If a user opens a maliciously formed FNT file, an attacker could execute arbitrary code within the current...

7.8CVSS7.7AI score0.00237EPSS
Exploits0References2
OSV
OSV
added 2022/05/18 11:3 a.m.6 views

OESA-2022-1655 freetype security update

FreeType is written in C, designed to be small,efficient, highly customizable, and portable while capable of producing high-quality output glyph images of most vector and bitmap font formats Security Fixes: FreeType commit 1e2eb65048f75c64b68708efed6ce904c31f3b2f was discovered to contain a heap...

9.8CVSS8.4AI score0.0339EPSS
Exploits2References4
Microsoft CVE
Microsoft CVE
added 2022/05/06 7:0 a.m.5 views

FreeType commit 53dfdcd8198d2b3201a23c4bad9190519ba918db was discovered to contain a segmentation violation via the function FNT_Size_Request.

...

7.5CVSS7.3AI score0.02816EPSS
Exploits0
OSV
OSV
added 2022/04/22 2:15 p.m.2 views

ALPINE-CVE-2022-27405

FreeType commit 53dfdcd8198d2b3201a23c4bad9190519ba918db was discovered to contain a segmentation violation via the function FNTSizeRequest...

7.5CVSS7.3AI score0.02816EPSS
Exploits0References1
Rows per page
Query Builder