Lucene search
K

14 matches found

CNNVD
CNNVD
added 2025/12/27 12:0 a.m.3 views

NanoMQ 资源管理错误漏洞

NanoMQ is a lightweight and fast MQTT Broker for IoT edge platforms open-sourced by EMQ USA. A resource management error vulnerability exists in NanoMQ versions prior to 0.24.2, which stems from a data contention issue with the subscription information list that could lead to a reuse crash after...

7.5CVSS6.3AI score0.00323EPSS
Exploits1References3
CNNVD
CNNVD
added 2025/10/30 12:0 a.m.6 views

Kitware VTK 安全漏洞

Kitware VTK is a 3D image generation software from Kitware open source. A security vulnerability exists in Kitware VTK version 9.5.0, which stems from heap-release reuse when processing GLTF files, and could lead to accessing freed string members...

6.5CVSS6.4AI score0.00256EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/01/12 12:0 a.m.4 views

live555 Security Breach

Live555 is a cross-platform C++ open source project that provides a solution for streaming media, which implements support for standard streaming media transport protocols such as RTP/RTCP, RTSP, SIP, etc. A security vulnerability exists in live555 version number 2023.05.10, which stems from a...

9.8CVSS6.8AI score0.0087EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/10/04 12:0 a.m.4 views

WhatsApp Competitive Conditions Issue Vulnerability

WhatsApp is a suite of mobile applications from the American company WhatsApp that use the Internet to send text messages. The application uses contact information in a smartphone to find contacts using the software to send text, images, etc. A security vulnerability exists in WhatsApp that stems...

5CVSS6.5AI score0.00202EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/10/04 12:0 a.m.4 views

WhatsApp Competitive Conditions Issue Vulnerability

WhatsApp is a suite of mobile applications from the American company WhatsApp that use the Internet to send text messages. The application uses contact information in a smartphone to find contacts using the software to transmit text, images, etc. WhatsApp suffers from a security vulnerability tha...

5.6CVSS6.5AI score0.00236EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/11/10 12:0 a.m.4 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser from Google, Inc. A security vulnerability exists in Google Chrome that stems from the presence of heap reuse after heap release...

7.5CVSS7.9AI score0.18325EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/08/16 12:0 a.m.4 views

tifig 资源管理错误漏洞

tifig is a Monostream open source fast HEIF image converter for thumbnails. A security vulnerability exists in tifig version v0.2.2, which stems from a heap-release reuse of its temInfoEntry function...

5.5CVSS5.7AI score0.00302EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/04/18 12:0 a.m.4 views

OpenSC 资源管理错误漏洞

OpenSC is an open source smart card tool and middleware. A resource management error vulnerability exists in scpkcs15freetokeninfo prior to OpenSC version 0.22.0, which stems from a heap multiple release issue found in scpkcs15freetokeninfo...

5.3CVSS6.5AI score0.0203EPSS
Exploits0References6
CNVD
CNVD
added 2022/01/25 12:0 a.m.25 views

HDF5 Denial of Service Vulnerability (CNVD-2022-07232)

HDF5 is a suite of tools for managing and storing different types of data from HDF, Inc. The product supports managing, manipulating, viewing and analyzing data, and generating files in portable formats.A security vulnerability exists in HDF5 v1.13.1-1, which stems from a heap-release-after-reuse...

8.8CVSS2.5AI score0.01164EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/08/10 12:0 a.m.4 views

FFmpeg 资源管理错误漏洞

FFmpeg is a set of open source computer programs that can be used to record, convert, and stream digital audio and video under the LGPL or GPL license. avfreep function in libavutil/mem.c in FFmpeg version 4.2 is vulnerable to a heap-release post-reuse vulnerability. An attacker can exploit this...

8.8CVSS6.1AI score0.01719EPSS
Exploits1References7
CNNVD
CNNVD
added 2021/08/10 12:0 a.m.4 views

FFmpeg 资源管理错误漏洞

FFmpeg is a set of open source computer programs that can be used to record, convert digital audio and video, and convert them to streams under the LGPL or GPL license. mpegmuxwritepacket function in libavformat/mpegenc.c in FFmpeg version 4.2 suffers from a heap-release post-reuse vulnerability...

6.5CVSS5.7AI score0.00917EPSS
Exploits1References7
CNVD
CNVD
added 2018/06/01 12:0 a.m.2 views

ImageMagick memory misreference vulnerability (CNVD-2018-12311)

ImageMagick is a software for creating, editing, and compositing images that can read, convert, and write images in many formats. A memory misreference vulnerability exists in the ReadMATImage function in coders/mat.c in ImageMagick 7.0.7-36 Q16. An attacker can exploit this vulnerability with th...

8.8CVSS7AI score0.02081EPSS
Exploits0References1
seebug.org
seebug.org
added 2013/01/10 12:0 a.m.49 views

Mozilla Firefox Mesa堆释放后重用漏洞

BUGTRAQ ID: 57197 CVECAN ID: CVE-2013-0763 Firefox是一款非常流行的开源WEB浏览器。SeaMonkey是开源的Web浏览器、邮件和新闻组客户端、IRC会话客户端和HTML编辑器。Thunderbird是一个邮件客户端,支持IMAP、POP邮件协议以及HTML邮件格式。 Mozilla Firefox 18, ESR 17.0.1的Mesa内存在重置WebGL画布时会触发堆释放后重用漏洞,可导致远程代码执行。 0 Mozilla Firefox 18.0 Mozilla Firefox ESR 17.0.1 Mozilla Firefox...

10CVSS6.9AI score0.04395EPSS
Exploits1
seebug.org
seebug.org
added 2013/01/10 12:0 a.m.116 views

Mozilla Firefox gfxTextRun::ShrinkToLigatureBoundaries堆释放后重用漏洞

BUGTRAQ ID: 57198 CVECAN ID: CVE-2013-0771 Firefox是一款非常流行的开源WEB浏览器。SeaMonkey是开源的Web浏览器、邮件和新闻组客户端、IRC会话客户端和HTML编辑器。Thunderbird是一个邮件客户端,支持IMAP、POP邮件协议以及HTML邮件格式。 Mozilla Firefox 18, ESR 17.0.1的gfxTextRun::ShrinkToLigatureBoundaries内存在堆释放后重用漏洞,可导致远程代码执行。 0 Mozilla Firefox 18.0 Mozilla Firefox ESR...

9.3CVSS3.5AI score0.05334EPSS
Exploits1
Rows per page
Query Builder