Lucene search
+L

322 matches found

CVE
CVE
added 2017/04/20 5:0 p.m.48 views

CVE-2016-4293

The CVE-2016-4293 vulnerability affects Hancom Office 2014 VP. It occurs in Hangul Hcell documents when parsing 0x088e records in the Workbook stream: the 0x088e structure exposes table_style_length and pivot_style_length fields (at offsets 0x10 and 0x12) that are used to copy strings into the CB...

7.8CVSS7.9AI score0.03617EPSS
Exploits2References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/03/30 12:0 a.m.35 views

CentOS 7 : openjpeg (CESA-2017:0838)

An update for openjpeg is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

8.8CVSS7.5AI score0.07114EPSS
Exploits2References7
OpenVAS
OpenVAS
added 2017/03/30 12:0 a.m.35 views

CentOS Update for openjpeg CESA-2017:0838 centos7

Check the version of openjpeg SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882686";...

8.8CVSS6.4AI score0.07114EPSS
Exploits2References2
CVE
CVE
added 2017/03/24 3:0 p.m.158 views

CVE-2017-5337

CVE-2017-5337 is a GnuTLS vulnerability involving multiple heap-based buffer overflows in read_attribute triggered by crafted OpenPGP certificates. Affected versions are GnuTLS builds before 3.3.26 and 3.5.x before 3.5.8. The connected materials confirm the root cause as heap overflows in read_at...

9.8CVSS8.5AI score0.06179EPSS
Exploits0References12Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/03/23 12:0 a.m.53 views

Amazon Linux AMI : openjpeg (ALAS-2017-807)

Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in OpenJPEG. A specially crafted JPEG2000 image could cause an application using OpenJPEG to crash or, potentially, execute arbitrary code. CVE-2016-5139 , CVE-2016-5158 , CVE-2016-5159 , CVE-2016-7163 A...

8.8CVSS7.7AI score0.07114EPSS
Exploits1References6
Amazon
Amazon
added 2017/03/22 12:0 a.m.42 views

Medium: openjpeg

Issue Overview: Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in OpenJPEG. A specially crafted JPEG2000 image could cause an application using OpenJPEG to crash or, potentially, execute arbitrary code. CVE-2016-5139, CVE-2016-5158, CVE-2016-5159, CVE-2016-716...

8.8CVSS9AI score0.07114EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2017/03/20 12:0 a.m.68 views

RHEL 6 : openjpeg (RHSA-2017:0559)

An update for openjpeg is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

8.8CVSS7.6AI score0.07114EPSS
Exploits1References11
CVE
CVE
added 2017/02/13 9:0 p.m.64 views

CVE-2016-5805

CVE-2016-5805 concerns heap-based buffer overflow flaws in Delta Electronics PLC software: WPLSoft (versions before V2.42.11), ISPSoft (before 3.02.11), and PMSoft (before 2.10.10). Exploitation could allow arbitrary code execution or denial of service by parsing of DVP/LAD/other file formats, as...

7.8CVSS7.6AI score0.01708EPSS
Exploits0References2Affected Software3
OpenVAS
OpenVAS
added 2017/02/03 12:0 a.m.35 views

VMware Workstation Player Multiple Code Execution Vulnerabilities (Feb 2017) - Windows

VMware Workstation Player is prone to multiple code execution vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.8CVSS7.8AI score0.01522EPSS
Exploits3References5
RedhatCVE
RedhatCVE
added 2017/01/11 3:47 p.m.29 views

CVE-2017-5337

Multiple heap-based buffer overflows in the readattribute function in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allow remote attackers to have unspecified impact via a crafted OpenPGP certificate...

9.8CVSS7.7AI score0.06179EPSS
Exploits0References1
Debian
Debian
added 2017/01/05 3:53 p.m.94 views

[SECURITY] [DSA 3753-1] libvncserver security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3753-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 05, 2017 https://www.debian.org/security/faq -...

7.5CVSS2.9AI score0.03748EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/01/05 12:0 a.m.20 views

Debian Security Advisory DSA 3753-1 (libvncserver - security update)

It was discovered that libvncserver, a collection of libraries used to implement VNC/RFB clients and servers, incorrectly processed incoming network packets. This resulted in several heap-based buffer overflows, allowing a rogue server to either cause a DoS by crashing the client, or potentially...

7.5CVSS0.7AI score0.03748EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2016/11/29 11:47 p.m.30 views

CVE-2016-9675

A vulnerability was found in the patch for CVE-2013-6045 for OpenJPEG. A specially crafted JPEG2000 image, when read by an application using OpenJPEG, could cause heap-based buffer overflows leading to a crash or possible code execution...

7.8CVSS3.8AI score0.05515EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2016/09/14 8:48 a.m.25 views

CVE-2016-7167

Multiple integer overflow flaws leading to heap-based buffer overflows were found in the way curl handled escaping and unescaping of data. An attacker could potentially use these flaws to crash an application using libcurl by sending a specially crafted input to the affected libcurl functions...

7.5CVSS2.9AI score0.11737EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/09/11 10:59 a.m.21 views

CVE-2016-5154

Multiple heap-based buffer overflows in PDFium, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allow remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted JBig2 image...

8.8CVSS7.4AI score0.01412EPSS
Exploits0References2
OSV
OSV
added 2016/08/29 9:26 a.m.10 views

SUSE-SU-2016:2174-1 Security update for Linux Kernel Live Patch 0 for SLE 12 SP1

This update for the Linux Kernel 3.12.49-11 fixes several issues. The following security bugs were fixed: - CVE-2016-6480: Race condition in the ioctlsendfib function in drivers/scsi/aacraid/commctrl.c in the Linux kernel allowed local users to cause a denial of service out-of-bounds access or...

7.8CVSS7.2AI score0.05676EPSS
Exploits10References7
Cvelist
Cvelist
added 2016/06/27 10:0 a.m.26 views

CVE-2016-5829

Multiple heap-based buffer overflows in the hiddevioctlusage function in drivers/hid/usbhid/hiddev.c in the Linux kernel through 4.6.3 allow local users to cause a denial of service or possibly have unspecified other impact via a crafted 1 HIDIOCGUSAGES or 2 HIDIOCSUSAGES ioctl call...

7.8AI score0.00458EPSS
Exploits0References30
Debian CVE
Debian CVE
added 2016/06/27 10:0 a.m.62 views

CVE-2016-5829

Multiple heap-based buffer overflows in the hiddevioctlusage function in drivers/hid/usbhid/hiddev.c in the Linux kernel through 4.6.3 allow local users to cause a denial of service or possibly have unspecified other impact via a crafted 1 HIDIOCGUSAGES or 2 HIDIOCSUSAGES ioctl call...

7.8CVSS7.2AI score0.00458EPSS
Exploits0
ArchLinux
ArchLinux
added 2016/06/20 12:0 a.m.47 views

lib32-flashplugin: multiple issues

CVE-2016-4122, CVE-2016-4123, CVE-2016-4124, CVE-2016-4125, CVE-2016-4127, CVE-2016-4128, CVE-2016-4129, CVE-2016-4130, CVE-2016-4131, CVE-2016-4132, CVE-2016-4133, CVE-2016-4134, CVE-2016-4137, CVE-2016-4141, CVE-2016-4150, CVE-2016-4151, CVE-2016-4152, CVE-2016-4153, CVE-2016-4154,...

10CVSS3AI score0.25419EPSS
Exploits8References37
ArchLinux
ArchLinux
added 2016/06/19 12:0 a.m.55 views

flashplugin: multiple issues

CVE-2016-4122, CVE-2016-4123, CVE-2016-4124, CVE-2016-4125, CVE-2016-4127, CVE-2016-4128, CVE-2016-4129, CVE-2016-4130, CVE-2016-4131, CVE-2016-4132, CVE-2016-4133, CVE-2016-4134, CVE-2016-4137, CVE-2016-4141, CVE-2016-4150, CVE-2016-4151, CVE-2016-4152, CVE-2016-4153, CVE-2016-4154,...

10CVSS2.8AI score0.25419EPSS
Exploits8References37
Rows per page
Query Builder