CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2241 matches found

Apple•added 2020/06/25 7:44 a.m.•104 views

About the security content of watchOS 5.3 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.8CVSS0.8AI score0.13114EPSS

Exploits13Affected Software1

OpenVAS•added 2020/06/23 12:0 a.m.•9 views

Fedora: Security Advisory for opencv (FEDORA-2020-f411f78fb0)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score

Exploits0References2

Apple•added 2020/06/22 4:31 a.m.•68 views

About the security content of tvOS 13.3.1 - Apple Support

9.3CVSS0.4AI score0.16111EPSS

Exploits1Affected Software1

Apple•added 2020/06/19 10:46 a.m.•163 views

About the security content of iOS 13.4 and iPadOS 13.4 - Apple Support

9.8CVSS0.5AI score0.04406EPSS

Exploits2Affected Software2

OSV•added 2020/06/09 5:15 p.m.•2 views

CVE-2020-9789

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing a maliciously crafted image may...

8.8CVSS7.5AI score0.02482EPSS

Exploits0References7

OSV•added 2020/06/09 5:15 p.m.•2 views

CVE-2020-9790

8.8CVSS6AI score0.02479EPSS

Exploits0References7

NVD•added 2020/06/09 5:15 p.m.•19 views

CVE-2020-9790

9.3CVSS8.3AI score0.02479EPSS

Exploits0References7

Prion•added 2020/06/09 5:15 p.m.•14 views

Design/Logic Flaw

9.3CVSS8.6AI score0.02479EPSS

Exploits0References7Affected Software7

Debian•added 2020/06/07 1:39 p.m.•76 views

[SECURITY] [DLA 2236-1] graphicsmagick security update

Package : graphicsmagick Version : 1.3.20-3+deb8u11 CVE ID : CVE-2020-12672 Debian Bug : 960000 A vulnerability was discovered in graphicsmagick, a collection of image processing tools, that results in a heap buffer overwrite when magnifying MNG images. For Debian 8 "Jessie", this problem has bee...

7.5CVSS7.6AI score0.02853EPSS

Exploits1

Hacker One•added 2020/06/06 1:25 a.m.•16 views

Mail.ru: ICQ Android APP remote DoS

Memory corruption issue on GIF image processing leads to ICQ for Android application crash with potential for code execution. before testing and reporting DoS conditions please check @mailru rules and scope description to avoid signal/reputation loss, not every DoS report is accepted...

3.1AI score

Exploits0

Github Security Blog•added 2020/05/18 5:41 p.m.•105 views

Pillow Temporary file name leakage

The 1 JpegImagePlugin.py and 2 EpsImagePlugin.py scripts in Python Image Library PIL 1.1.7 and earlier and Pillow before 2.3.1 uses the names of temporary files on the command line, which makes it easier for local users to conduct symlink attacks by listing the processes...

2.1CVSS8.7AI score0.00448EPSS

Exploits1References9Affected Software1

Talos•added 2020/05/05 12:0 a.m.•57 views

Accusoft ImageGear TIFF fill_in_raster buffer copy operation code execution vulnerability

Summary An exploitable code execution vulnerability exists in the TIFF fillinraster function of the igcore19d.dll library of Accusoft ImageGear 19.4, 19.5 and 19.6. A specially crafted TIFF file can cause an out-of-bounds write, resulting in remote code execution. An attacker can provide a...

9.8CVSS9.1AI score0.03597EPSS

Exploits1

Tenable Nessus•added 2020/04/30 12:0 a.m.•109 views

Fedora 30 : php-horde-horde (2020-fd8761fd13)

horde 5.2.22 - jan SECURITY: Protect image processing service from rendering active SVG content within the browser. - jan SECURITY: Fix XSS vulnerabilities in administration interface. - jan Support Redis Sentinel configuration Michael Menge , Request 14998. - jan Use file hashing for detecting...

5.4AI score

Exploits0References1

RedHat Linux•added 2020/04/28 3:31 p.m.•4 views

exiv2: heap-based buffer overflow in Exiv2::ul2Data in types.cpp

Exiv2::ul2Data in types.cpp in Exiv2 v0.26 allows remote attackers to cause a denial of service heap-based buffer overflow via a crafted image file...

6.5CVSS6AI score0.01903EPSS

Exploits1References4

Source Incite•added 2020/04/25 12:0 a.m.•25 views

SRC-2020-0017 : Foxit Reader Heap Buffer Overflow Remote Code Execution vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

8.8CVSS8.8AI score0.01799EPSS

Exploits1

OSV•added 2020/04/24 4:15 p.m.•1 views

DEBIAN-CVE-2020-6822

On 32-bit builds, an out of bounds write could have occurred when processing an image larger than 4 GB in GMPDecodeData. It is possible that with enough effort this could have been exploited to run arbitrary code. This vulnerability affects Thunderbird 68.7.0, Firefox ESR 68.7, and Firefox 75...

8.8CVSS8.6AI score0.01293EPSS

Exploits0References1

OSV•added 2020/04/24 4:15 p.m.•8 views

CVE-2020-6822

8.8CVSS9.2AI score

Exploits0References5

Prion•added 2020/04/24 4:15 p.m.•25 views

Out-of-bounds

6.8CVSS8.8AI score0.01293EPSS

Exploits0References5Affected Software3