Lucene search
K

16992 matches found

OSV
OSV
added 2019/09/09 5:15 p.m.3 views

UBUNTU-CVE-2019-16166

GNU cflow through 1.6 has a heap-based buffer over-read in the nexttoken function in parser.c...

6.5CVSS6.8AI score0.01113EPSS
Exploits0References3
Prion
Prion
added 2019/09/09 5:15 p.m.17 views

Heap overflow

GNU cflow through 1.6 has a heap-based buffer over-read in the nexttoken function in parser.c...

4.3CVSS6.5AI score0.01113EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCve
added 2019/09/09 5:15 p.m.21 views

CVE-2019-16166

GNU cflow through 1.6 has a heap-based buffer over-read in the nexttoken function in parser.c...

6.5CVSS6.7AI score0.01113EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/09/09 3:37 p.m.36 views

CVE-2019-16165

GNU cflow through 1.6 has a use-after-free in the reference function in parser.c...

6.3AI score0.01114EPSS
Exploits0References1
CVE
CVE
added 2019/09/09 3:37 p.m.62 views

CVE-2019-16165

GNU cflow up to version 1.6 is affected by a use-after-free in the reference function of parser.c, per CVE-2019-16165. Exploitation could lead to denial of service or arbitrary code execution, as described across multiple sources. The issue is tied to memory management in the parser and is presen...

6.5CVSS6.3AI score0.01114EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2019/09/09 3:37 p.m.20 views

CVE-2019-16165

GNU cflow through 1.6 has a use-after-free in the reference function in parser.c...

6.5CVSS6.4AI score0.01114EPSS
Exploits0
Debian CVE
Debian CVE
added 2019/09/09 3:37 p.m.20 views

CVE-2019-16166

GNU cflow through 1.6 has a heap-based buffer over-read in the nexttoken function in parser.c...

6.5CVSS6.5AI score0.01113EPSS
Exploits0
CVE
CVE
added 2019/09/09 3:37 p.m.56 views

CVE-2019-16166

GNU cflow versions up to 1.6 are affected by a heap-based buffer over-read in the nexttoken function of parser.c (CVE-2019-16166). The issue is documented across multiple sources (NVD, OSV, SUSE, Debian/Ubuntu OSV entries) and consistently references the same core flaw in parser.c. Public referen...

6.5CVSS6.5AI score0.01113EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/09/09 3:37 p.m.23 views

CVE-2019-16166

GNU cflow through 1.6 has a heap-based buffer over-read in the nexttoken function in parser.c...

6.5AI score0.01113EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2019/09/09 12:0 a.m.33 views

Fedora Update for exim FEDORA-2019-467fcbb10a

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS9.8AI score0.35736EPSS
Exploits3References2
Fedora
Fedora
added 2019/09/08 3:9 a.m.47 views

[SECURITY] Fedora 29 Update: exim-4.92.2-1.fc29

Exim is a message transfer agent MTA developed at the University of Cambridge for use on Unix systems connected to the Internet. It is freely available under the terms of the GNU General Public Licence. In style it is similar to Smail 3, but its facilities are more general. There is a great deal ...

10CVSS1.5AI score0.35736EPSS
Exploits3
Fedora
Fedora
added 2019/09/08 3:0 a.m.38 views

[SECURITY] Fedora 30 Update: exim-4.92.2-1.fc30

Exim is a message transfer agent MTA developed at the University of Cambridge for use on Unix systems connected to the Internet. It is freely available under the terms of the GNU General Public Licence. In style it is similar to Smail 3, but its facilities are more general. There is a great deal ...

10CVSS1.5AI score0.35736EPSS
Exploits3
OpenVAS
OpenVAS
added 2019/09/07 12:0 a.m.9 views

Fedora Update for libgcrypt FEDORA-2019-1f05925d82

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Fedora
Fedora
added 2019/09/06 12:36 p.m.21 views

[SECURITY] Fedora 30 Update: libgcrypt-1.8.5-1.fc30

Libgcrypt is a general purpose crypto library based on the code used in GNU Privacy Guard. This is a development version...

2.5AI score
Exploits0
GithubExploit
GithubExploit
added 2019/09/06 12:12 p.m.272 views

Exploit for Out-of-bounds Write in Google Android

AutomatedRoot !GitHubhttps://img.shields.io/github/license/...

7.8CVSS7.5AI score0.01299EPSS
Exploits2
Positive Technologies
Positive Technologies
added 2019/09/06 12:0 a.m.4 views

PT-2021-3327 · Gnu +9 · Glibc +9

Name of the Vulnerable Software and Affected Versions: glibc versions through 2.32 Description: The issue is related to a buffer over-read in the iconv feature of the GNU C Library when processing invalid multi-byte input sequences in the EUC-KR encoding. This could potentially allow a remote...

9.8CVSS6.6AI score0.13614EPSS
Exploits40References239
Packet Storm
Packet Storm
added 2019/09/04 12:0 a.m.1042 views

Cisco Device Hardcoded Credentials / GNU glibc / BusyBox

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple vulnerabilities product: Cisco RV340, Cisco RV340W, Cisco RV345, Cisco RV345P, Cisco RV260, Cisco RV260P, Cisco RV260W, Cisco 160, Cisco 160W vulnerable version:...

7.8CVSS0.5AI score0.89557EPSS
Exploits46
OpenVAS
OpenVAS
added 2019/09/03 12:0 a.m.103 views

MongoDB 3.4 < 3.4.22, 3.6 < 3.6.14, 4.0 < 4.0.11 Code Execution Vulnerability - Windows

An unprivileged user or program on Microsoft Windows which can create OpenSSL configuration files in a fixed location may cause utility programs shipped with MongoDB server to run attacker defined code as the user running the utility. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptio...

8.2CVSS7.4AI score0.01011EPSS
Exploits0References1
NVD
NVD
added 2019/09/02 11:15 p.m.23 views

CVE-2019-15847

The POWER9 backend in GNU Compiler Collection GCC before version 10 could optimize multiple calls of the builtindarn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operation was not specified. For example, within a single...

7.5CVSS7.4AI score0.03207EPSS
Exploits0References4
OSV
OSV
added 2019/09/02 11:15 p.m.2 views

ALPINE-CVE-2019-15847

The POWER9 backend in GNU Compiler Collection GCC before version 10 could optimize multiple calls of the builtindarn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operation was not specified. For example, within a single...

7.5CVSS7AI score0.03207EPSS
Exploits0References1
Rows per page
Query Builder