Lucene search
K

1390 matches found

Positive Technologies
Positive Technologies
added 2023/09/18 12:0 a.m.5 views

PT-2023-36021 · Git +1 · Icu

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type of UNKNOWN WRITE. The crash state involves the icu 74::Calendar::set function, as indicated by the calendar fuzzer.c...

6.9AI score
Exploits0References2
Kitploit
Kitploit
added 2023/07/10 12:30 p.m.177 views

WPAxFuzz - A Full-Featured Open-Source Wi-Fi Fuzzer

This tool is capable of fuzzing either any management, control or data frame of the 802.11 protocol or the SAE exchange. For the management, control or data frames, you can choose either the "standard" mode where all of the frames transmitted have valid size values or the "random" mode where the...

7.5CVSS6.9AI score0.02686EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2023/07/06 5:15 p.m.23 views

CVE-2023-37454

An issue was discovered in the Linux kernel through 6.4.2. A crafted UDF filesystem image causes a use-after-free write operation in the udfputsuper and udfcloselvid functions in fs/udf/super.c. NOTE: the suse.com reference has a different perspective about this...

5.5CVSS6.7AI score0.00361EPSS
Exploits1References5
OSV
OSV
added 2023/07/01 12:0 a.m.38 views

ASB-A-275041864

In multiple functions of binder.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS8.7AI score0.00194EPSS
Exploits0References2
Kitploit
Kitploit
added 2023/06/17 12:30 p.m.26 views

Firefly - Black Box Fuzzer For Web Applications

Firefly is an advanced black-box fuzzer and not just a standard asset discovery tool. Firefly provides the advantage of testing a target with a large number of built-in checks to detect behaviors in the target. Note: Firefly is in a very new stage v1.0 but works well for now, if the target does n...

7.3AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/05/13 12:0 a.m.4 views

PT-2025-49491

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.3.0-syzkaller-12049-g58390c8ce1bd Description The Linux kernel usbtmc driver had a flaw where it did not check the direction of 0-length ioctl control messages. This could lead to issues when a user submits an...

7.8CVSS7.1AI score0.00462EPSS
Exploits2References909
Kitploit
Kitploit
added 2023/05/06 12:30 p.m.28 views

Fuzztruction - Prototype Of A Fuzzer That Does Not Directly Mutate Inputs (As Most Fuzzers Do) But Instead Uses A So-Called Generator Application To Produce An Input For Our Fuzzing Target

Fuzztruction is an academic prototype of a fuzzer that does not directly mutate inputs as most fuzzers do but instead uses a so-called generator application to produce an input for our fuzzing target. As programs generating data usually produce the correct representation, our fuzzer mutates the...

7.4AI score
Exploits0References14
SUSE CVE
SUSE CVE
added 2023/02/15 3:36 a.m.1 views

SUSE CVE-2021-45940

libbpf 0.6.0 and 0.6.1 has a heap-based buffer overflow 4 bytes in bpfobjectopen called from bpfobjectopenmem and bpf-object-fuzzer.c...

5.1CVSS8.9AI score0.01132EPSS
Exploits1References3
0day.today
0day.today
added 2023/01/22 12:0 a.m.390 views

wolfSSL 5.5.0 Session Resumption Denial Of Service Vulnerability

wolfSSL versions prior to 5.5.0 suffer from a denial of service condition related to session resumption. When a TLS 1.3 client connects to a wolfSSL server and SSLclear is called on its session, the server crashes with a segmentation fault. The bug occurs after a client performs a handshake again...

7.5CVSS0.1AI score0.02121EPSS
Exploits2
Packet Storm
Packet Storm
added 2023/01/20 12:0 a.m.329 views

Solaris 10 dtprintinfo / libXm / libXpm Security Issues

-- HNS-2022-01 - HN Security Advisory - https://security.humanativaspa.it/ Title: Multiple vulnerabilities in Solaris dtprintinfo and libXm/libXpm Products: Common Desktop Environment 1.6, Motif 2.1, X.Org libXpm Date: 2023-01-18 Oracle vulnerability tracking numbers: S1597707 - Arbitrary printer...

7.5CVSS0.3AI score0.08052EPSS
Exploits2
Positive Technologies
Positive Technologies
added 2022/12/14 12:0 a.m.4 views

PT-2022-36814 · Git +1 · Kimageformats

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap-use-after-free READ 3 crash has been reported. The crash occurs in the HEIFHandler::ensureDecoder and HEIFHandler::read functions, as seen in the...

7AI score
Exploits0References2
OSV
OSV
added 2022/12/01 12:0 a.m.22 views

ASB-A-239210579

In toLanguageTag of LocaleListCache.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation...

9.8CVSS9.4AI score0.06649EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2022/10/06 12:26 p.m.4 views

protobuf-java: potential DoS in the parsing procedure for binary data

A flaw was found in protobuf-java. Google Protocol Buffer protobuf-java allows the interleaving of com.google.protobuf.UnknownFieldSet fields. By persuading a victim to open specially-crafted content, a remote attacker could cause a timeout in the ProtobufFuzzer function, resulting in a denial of...

7.5CVSS7.2AI score0.01655EPSS
Exploits1References6
Kitploit
Kitploit
added 2022/09/19 11:30 a.m.98 views

CATS - REST API Fuzzer And Negative Testing Tool For OpenAPI Endpoints

REST API fuzzer and negative testing tool. Run thousands of self-healing API tests within minutes with no coding effort! Comprehensive : tests are generated automatically based on a large number scenarios and cover every field and header Intelligent : tests are generated based on data types and...

6.4AI score
Exploits0References24
Positive Technologies
Positive Technologies
added 2022/09/10 12:0 a.m.1 views

PT-2022-37269 · Git +1 · Fluent-Bit

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-double-free crash. The crash occurs in the flb sds destroy function, which is called by flb parser conf file in the config...

6.9AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/08/13 12:0 a.m.5 views

PT-2022-37179 · Net Snmp · Net-Snmp

Name of the Vulnerable Software and Affected Versions: netsnmp affected versions not specified Description: The issue is related to a heap-buffer-overflow read. Technical details include the netsnmp memdup function and the file snmp api fuzzer.c. Recommendations: At the moment, there is no...

6.8AI score
Exploits0References2
RedHat Linux
RedHat Linux
added 2022/08/04 4:46 a.m.3 views

protobuf-java: potential DoS in the parsing procedure for binary data

A flaw was found in protobuf-java. Google Protocol Buffer protobuf-java allows the interleaving of com.google.protobuf.UnknownFieldSet fields. By persuading a victim to open specially-crafted content, a remote attacker could cause a timeout in the ProtobufFuzzer function, resulting in a denial of...

7.5CVSS7.2AI score0.01655EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2022/07/31 12:0 a.m.8 views

Fedora: Security Advisory for golang-github-liamg-scout (FEDORA-2022-ea8f4e232d)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Fedora
Fedora
added 2022/07/30 1:57 a.m.13 views

[SECURITY] Fedora 36 Update: golang-github-liamg-scout-0.15.1-5.fc36

A lightweight URL fuzzer and spider: Discover a web server's undisclosed file s, directories and VHOSTs...

7.3AI score
Exploits0
Fedora
Fedora
added 2022/07/30 1:55 a.m.13 views

[SECURITY] Fedora 36 Update: ffuf-1.0.2-7.fc36

Fast web fuzzer written in Go...

1.5AI score
Exploits0
Rows per page
Query Builder