Lucene search
K

40 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux - уязвимость в chromium

The use of “after free” in DevTools in Google Chrome before version 111.0.5563.64 allowed a remote attacker who had convinced the user to engage in direct UI interaction to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...

8.8CVSS7.3AI score0.00114EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2026/04/06 7:24 p.m.125 views

Exploit for Out-of-bounds Write in Gnu Glibc

CTT-Vsyslog-Vortex-CVE-2023-6246 CVE-2023-6246 glibc vsyslog...

8.4CVSS7.1AI score0.26964EPSS
Exploits7
GithubExploit
GithubExploit
added 2026/03/02 3:36 p.m.140 views

Binary_Exploitation_Material

Binary Exploitation Material Personal collection of binary ex...

6AI score
Exploits0
GithubExploit
GithubExploit
added 2026/01/07 4:33 a.m.143 views

binary-exploitation-labs

Binary Exploitation Labs This repository is my long-term pu...

7.7AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.1 views

EUVD-2019-4802

Malware in sbrugna...

8.8CVSS7.4AI score0.00297EPSS
Exploits1References14
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-55538

Malicious code in bioql PyPI...

8.1CVSS6.6AI score0.00295EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 10:49 a.m.6 views

CVE-2024-21502

Versions of the package fastecdsa before 2.3.2 are vulnerable to Use of Uninitialized Variable on the stack, via the curvemathmul function in src/curveMath.c, due to being used and interpreted as user-defined type. Depending on the variable's actual value it could be arbitrary free, arbitrary...

7.5CVSS6.8AI score0.00148EPSS
Exploits1References1
OSV
OSV
added 2025/01/22 8:15 p.m.2 views

AZL-56041 CVE-2025-0611 affecting package nodejs 20.14.0-13

Object corruption in V8 in Google Chrome prior to 132.0.6834.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.2CVSS7.3AI score0.00637EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/22 7:22 p.m.11 views

CVE-2025-0611

Object corruption in V8 in Google Chrome prior to 132.0.6834.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.1AI score0.00637EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/01/21 12:0 a.m.9 views

Amazon Corretto Java 11.x < 11.0.26.4.1 Vulnerability

The version of Amazon Corretto installed on the remote host is 11 prior to 11.0.26.4.1. It is, therefore, affected by a vulnerability as referenced in the corretto-11-2025-Jan-21 advisory. - Versions of the package fastecdsa before 2.3.2 are vulnerable to Use of Uninitialized Variable on the stac...

7.5CVSS7.5AI score0.00148EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2024/12/18 2:32 a.m.3 views

gstreamer1-plugins-good: OOB-write in convert_to_s334_1a

A flaw was found in the GStreamer library. An out-of-bounds write in the MP4/MOV demuxer when handling CEA608 Closed Caption tracks can lead to crashes for certain input files. This vulnerability allows a malicious third party to trigger a crash of the application and perform code execution throu...

9.8CVSS6.1AI score0.00442EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/12/16 3:58 p.m.2 views

gstreamer1-plugins-good: OOB-write in isomp4/qtdemux.c

A flaw was found in the GStreamer library. An integer overflow in the MP4/MOV demuxer's sample table parser can lead to out-of-bounds writes and NULL-pointer dereferences for certain input files. This vulnerability allows a malicious third party to trigger an application crash and, in the case of...

9.8CVSS6.2AI score0.00442EPSS
Exploits0References7
Redos
Redos
added 2024/06/26 12:0 a.m.16 views

ROS-20240625-07

Vulnerability in tiff.c file of ImageMagick console graphic editor related to buffer overflow in the heap. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS6.7AI score0.00035EPSS
Exploits0
OSV
OSV
added 2024/02/24 6:30 a.m.3 views

GHSA-PH86-G9R3-5QW4 Uninitialized Variable in fastecdsa

Versions of the package fastecdsa before 2.3.2 use an Uninitialized Variable on the stack, via the curvemathmul function in src/curveMath.c, due to being used and interpreted as user-defined type. Depending on the variable's actual value it could be arbitrary free, arbitrary realloc, null pointer...

7.5CVSS7.5AI score0.00148EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2024/02/24 6:30 a.m.7 views

Uninitialized Variable in fastecdsa

Versions of the package fastecdsa before 2.3.2 use an Uninitialized Variable on the stack, via the curvemathmul function in src/curveMath.c, due to being used and interpreted as user-defined type. Depending on the variable's actual value it could be arbitrary free, arbitrary realloc, null pointer...

7.5CVSS6.8AI score0.00148EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2024/02/24 5:15 a.m.13 views

CVE-2024-21502

Versions of the package fastecdsa before 2.3.2 are vulnerable to Use of Uninitialized Variable on the stack, via the curvemathmul function in src/curveMath.c, due to being used and interpreted as user-defined type. Depending on the variable's actual value it could be arbitrary free, arbitrary...

7.5CVSS7.6AI score0.00148EPSS
Exploits1References4
OSV
OSV
added 2024/02/24 5:15 a.m.10 views

CVE-2024-21502

Versions of the package fastecdsa before 2.3.2 are vulnerable to Use of Uninitialized Variable on the stack, via the curvemathmul function in src/curveMath.c, due to being used and interpreted as user-defined type. Depending on the variable's actual value it could be arbitrary free, arbitrary...

7.5CVSS7.6AI score
Exploits0References4
OSV
OSV
added 2024/02/24 5:15 a.m.17 views

PYSEC-2024-39

Versions of the package fastecdsa before 2.3.2 are vulnerable to Use of Uninitialized Variable on the stack, via the curvemathmul function in src/curveMath.c, due to being used and interpreted as user-defined type. Depending on the variable's actual value it could be arbitrary free, arbitrary...

7.5CVSS7.2AI score0.00148EPSS
Exploits1References5
Prion
Prion
added 2024/02/24 5:15 a.m.24 views

Null pointer dereference

Versions of the package fastecdsa before 2.3.2 are vulnerable to Use of Uninitialized Variable on the stack, via the curvemathmul function in src/curveMath.c, due to being used and interpreted as user-defined type. Depending on the variable's actual value it could be arbitrary free, arbitrary...

5CVSS7.2AI score0.00148EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/02/24 5:0 a.m.12 views

CVE-2024-21502

Versions of the package fastecdsa before 2.3.2 are vulnerable to Use of Uninitialized Variable on the stack, via the curvemathmul function in src/curveMath.c, due to being used and interpreted as user-defined type. Depending on the variable's actual value it could be arbitrary free, arbitrary...

7.5CVSS7.7AI score0.00148EPSS
Exploits1References4
Rows per page
Query Builder