Lucene search
K

17002 matches found

Tenable Nessus
Tenable Nessus
added 2019/12/23 12:0 a.m.55 views

EulerOS 2.0 SP5 : binutils (EulerOS-SA-2019-2686)

According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils through 2.31. There is a heap-bas...

7.8CVSS6.8AI score0.01802EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2019/12/21 12:0 a.m.4 views

PT-2019-6405 · Gnu +2 · Binutils +2

Name of the Vulnerable Software and Affected Versions: binutils versions prior to 2.34 Description: The issue is related to a flaw in the /bfd/pef.c component of the GNU Binutils software development tool, which is associated with null pointer dereference errors. An attacker can exploit this flaw...

7.8CVSS6.1AI score0.02752EPSS
Exploits18References83
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/20 2:31 p.m.41 views

Security Bulletin: Multiple Vulnerabilities in GNU binutils affects IBM Watson Studio Local

Summary Multiple Vulnerabilities in GNU binutils affects IBM Watson Studio Local Vulnerability Details CVEID: CVE-2018-1000876 DESCRIPTION: binutils version 2.32 and earlier contains a Integer Overflow vulnerability in objdump, bfdgetdynamicrelocupperbound,bfdcanonicalizedynamicreloc that can...

7.8CVSS1.3AI score0.02265EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/20 1:55 p.m.34 views

Security Bulletin: Multiple Vulnerabilities in GNU C Library affects IBM Watson Studio Local

Summary Multiple Vulnerabilities in GNU C Library affects IBM Watson Studio Local Vulnerability Details CVEID: CVE-2019-7309 DESCRIPTION: In the GNU C Library aka glibc or libc6 through 2.29, the memcmp function for the x32 architecture can incorrectly return zero indicating that the inputs are...

9.8CVSS0.3AI score0.05804EPSS
Exploits7Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/20 1:52 p.m.37 views

Security Bulletin: Multiple Vulnerabilities in GNU Binutils affects Watson Studio Local

Summary Multiple Vulnerabilities in GNU Binutils affects Watson Studio Local Vulnerability Details CVEID: CVE-2018-18701 DESCRIPTION: An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31. There is a stack consumption vulnerability resulting from infinite...

7.8CVSS1.3AI score0.0669EPSS
Exploits33Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/12/20 12:0 a.m.41 views

Amazon Linux AMI : libidn2 (ALAS-2019-1327)

idn2toascii4i in lib/lookup.c in GNU libidn2 before 2.1.1 has a heap-based buffer overflow via a long domain string. CVE-2019-18224 GNU libidn2 before 2.2.0 fails to perform the roundtrip checks specified in RFC3490 Section 4.2 when converting A-labels to U-labels. This makes it possible in some...

9.8CVSS7.2AI score0.03708EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/12/19 12:0 a.m.32 views

EulerOS 2.0 SP3 : binutils (EulerOS-SA-2019-2558)

According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The aout32swapstdrelocout function in aoutx.h in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils before 2.31...

9.8CVSS7.3AI score0.08111EPSS
Exploits20References59
Tenable Nessus
Tenable Nessus
added 2019/12/18 12:0 a.m.21 views

EulerOS 2.0 SP3 : tar (EulerOS-SA-2019-2673)

According to the version of the tar package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Directory traversal vulnerability in the safernamesuffix function in GNU tar 1.14 through 1.29 might allow remote attackers to bypass an intended...

7.5CVSS7.8AI score0.15155EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2019/12/18 12:0 a.m.25 views

Dovecot < 2.2.7 Authentication Bypass Vulnerability

Dovecot is prone to an authentication bypass vulnerability. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

5.8CVSS7.8AI score0.01457EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/12/18 12:0 a.m.37 views

EulerOS 2.0 SP3 : patch (EulerOS-SA-2019-2645)

According to the versions of the patch package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in GNU patch before 2.7.6. Out-of-bounds access within pchwriteline in pch.c can possibly lead to DoS via a crafted input...

9.3CVSS6.8AI score0.06096EPSS
Exploits2References6
OpenVAS
OpenVAS
added 2019/12/17 12:0 a.m.8 views

Oracle Application / HTTP Server Detection (HTTP)

HTTP based detection of the Oracle Application Server AS or Oracle HTTP Server. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9AI score
Exploits0References2
Amazon
Amazon
added 2019/12/13 12:0 a.m.91 views

Medium: libidn2

Issue Overview: idn2toascii4i in lib/lookup.c in GNU libidn2 before 2.1.1 has a heap-based buffer overflow via a long domain string. CVE-2019-18224 GNU libidn2 before 2.2.0 fails to perform the roundtrip checks specified in RFC3490 Section 4.2 when converting A-labels to U-labels. This makes it...

9.8CVSS8.1AI score0.03708EPSS
Exploits1
0day.today
0day.today
added 2019/12/11 12:0 a.m.294 views

Inim Electronics Smartliving SmartLAN 6.x - Unauthenticated Server-Side Request Forgery Vulnerabilit

Exploit for hardware platform in category web applications Exploit Title: Inim Electronics Smartliving SmartLAN 6.x - Unauthenticated Server-Side Request Forgery Author: LiquidWorm Product web page: https://www.inim.biz Link:...

7.1AI score
Exploits0
Ubuntu
Ubuntu
added 2019/12/10 1:49 p.m.64 views

USN-4218-1: GNU C Library vulnerability

Jakub Wilk discovered that GNU C Library incorrectly handled certain memory alignments. An attacker could possibly use this issue to execute arbitrary code or cause a crash...

9.8CVSS8AI score0.04778EPSS
Exploits0
OSV
OSV
added 2019/12/10 1:49 p.m.3 views

USN-4218-1 eglibc vulnerability

Jakub Wilk discovered that GNU C Library incorrectly handled certain memory alignments. An attacker could possibly use this issue to execute arbitrary code or cause a crash...

9.8CVSS7.5AI score0.04778EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2019/12/09 12:0 a.m.9 views

SYS.2.2.2.A21

Ziel des Bausteins SYS.2.2.2 ist der Schutz von Informationen, die durch und auf Windows 8.1-Clients verarbeiten werden. Die Kern-Anforderung Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it...

7.3AI score
Exploits0References1
OpenVAS
OpenVAS
added 2019/12/09 12:0 a.m.9 views

SYS.2.2.2.A7

Ziel des Bausteins SYS.2.2.2 ist der Schutz von Informationen, die durch und auf Windows 8.1-Clients verarbeiten werden. Die Standard-Anforderung Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify...

7.3AI score
Exploits0References1
Zero Science Lab
Zero Science Lab
added 2019/12/09 12:0 a.m.91 views

Inim Electronics Smartliving SmartLAN/G/SI <=6.x Hard-coded Credentials

Summary SmartLiving anti-intrusion control panel and security system provides important features rarely found in residential, commercial or industrial application systems of its kind. This optimized-performance control panel provides first-rate features such as: graphic display, text-to-speech,...

5.7AI score
Exploits0
Fedora
Fedora
added 2019/12/08 1:3 a.m.49 views

[SECURITY] Fedora 30 Update: oniguruma-6.9.2-4.fc30

Oniguruma is a regular expressions library. The characteristics of this library is that different character encoding for every regular expression object can be specified. supported APIs: GNU regex, POSIX and Oniguruma native...

9.8CVSS3.2AI score0.10539EPSS
Exploits6
OSV
OSV
added 2019/12/05 2:15 p.m.3 views

DEBIAN-CVE-2019-19602

fpregsstatevalid in arch/x86/include/asm/fpu/internal.h in the Linux kernel before 5.4.2, when GCC 9 is used, allows context-dependent attackers to cause a denial of service memory corruption or possibly have unspecified other impact because of incorrect fpufpregsownerctx caching, as demonstrated...

6.1CVSS7.2AI score0.00608EPSS
Exploits1References1
Rows per page
Query Builder