Lucene search
K

168 matches found

OSV
OSV
added 2020/09/23 1:15 a.m.5 views

CVE-2019-1736

A vulnerability in the firmware of the Cisco UCS C-Series Rack Servers could allow an authenticated, physical attacker to bypass Unified Extensible Firmware Interface UEFI Secure Boot validation checks and load a compromised software image on an affected device. The vulnerability is due to improp...

6.6CVSS6.5AI score0.00247EPSS
Exploits0References1
NVD
NVD
added 2020/08/12 6:15 p.m.30 views

CVE-2020-7374

Documalis Free PDF Editor version 5.7.2.26 and Documalis Free PDF Scanner version 5.7.2.122 do not appropriately validate the contents of JPEG images contained within a PDF. Attackers can exploit this vulnerability to trigger a buffer overflow on the stack and gain remote code execution as the us...

7.8CVSS6.7AI score0.03094EPSS
Exploits1References1
CNVD
CNVD
added 2020/06/04 12:0 a.m.8 views

Cisco IOS XE Data Forgery Issue Vulnerability (CNVD-2020-31991)

Cisco IOS XE is the United States Cisco Cisco company's set of operating system developed for its network equipment. A data forgery vulnerability exists in software image validation in Cisco IOS XE, which arises from a program not properly checking the code area used to manage the digital signatu...

7.2CVSS7.2AI score0.00268EPSS
Exploits0References1
OSV
OSV
added 2019/10/10 8:15 p.m.6 views

CVE-2019-9534

The Cobham EXPLORER 710, firmware version 1.07, does not validate its firmware image. Development scripts left in the firmware can be used to upload a custom firmware image that the device runs. This could allow an unauthenticated, local attacker to upload their own firmware that could be used to...

7.8CVSS7.1AI score0.00227EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/10/10 12:0 a.m.5 views

PT-2019-19691 · Cobham · Cobham Explorer 710

Name of the Vulnerable Software and Affected Versions: Cobham EXPLORER 710 firmware version 1.07 Description: The issue concerns the lack of firmware image validation in the device. Development scripts that were left in the firmware can be exploited to upload a custom firmware image. This could...

7.8CVSS7.4AI score0.00227EPSS
Exploits0References2
CNVD
CNVD
added 2019/09/27 12:0 a.m.4 views

Cisco Catalyst 3850 Series Switches and 9300 Series Switches IOS XE Data Forgery Issue Vulnerability

Cisco Catalyst 3850 Series Switches and Cisco Catalyst 9300 Series Switches are both products of Cisco Systems. the Cisco Catalyst 3850 Series Switches is a 3850 Series Switch. Cisco Catalyst 9300 Series Switches is a 9300 series switch.IOS XE is an operating system developed for its network...

7.2CVSS6.8AI score0.00237EPSS
Exploits0References1
Prion
Prion
added 2019/08/26 5:15 p.m.14 views

Design/Logic Flaw

Limesurvey before 3.17.10 does not validate both the MIME type and file extension of an image...

5CVSS7.6AI score0.01205EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/08/26 4:51 p.m.61 views

CVE-2019-15640

CVE-2019-15640 affects LimeSurvey prior to 3.17.10, where the application does not validate both the MIME type and file extension of an uploaded image. The available data indicate a content-type/extension validation flaw that could affect image handling; CVSS metrics from NVD show a base score of...

7.5CVSS7.6AI score0.01205EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2019/06/05 5:29 p.m.4 views

CVE-2019-1880

A vulnerability in the BIOS upgrade utility of Cisco Unified Computing System UCS C-Series Rack Servers could allow an authenticated, local attacker to install compromised BIOS firmware on an affected device. The vulnerability is due to insufficient validation of the firmware image file. An...

4.4CVSS5.8AI score0.00208EPSS
Exploits0References2
OSV
OSV
added 2018/08/25 12:29 a.m.12 views

CVE-2018-15869

An Amazon Web Services AWS developer who does not specify the --owners flag when describing images via AWS CLI, and therefore not properly validating source software per AWS recommended security best practices, may unintentionally load an undesired and potentially malicious Amazon Machine Image A...

5.3CVSS7AI score
Exploits0References2
Prion
Prion
added 2018/07/09 7:29 p.m.18 views

Code injection

GIGABYTE BRIX UEFI firmware does not cryptographically validate images prior to updating the system firmware. Additionally, the firmware updates are served over HTTP. An attacker can make arbitrary modifications to firmware images without being detected...

10CVSS9.4AI score0.01597EPSS
Exploits1References3Affected Software2
NVD
NVD
added 2018/07/09 7:29 p.m.17 views

CVE-2017-3198

GIGABYTE BRIX UEFI firmware does not cryptographically validate images prior to updating the system firmware. Additionally, the firmware updates are served over HTTP. An attacker can make arbitrary modifications to firmware images without being detected...

10CVSS9.5AI score0.01597EPSS
Exploits1References3
CVE
CVE
added 2018/07/09 7:0 p.m.186 views

CVE-2017-3198

CVE-2017-3198 affects GIGABYTE BRIX UEFI firmware for GB-BSi7H-6500 (vF6) and GB-BXi7-5775 (vF2). The root cause is lack of cryptographic validation of firmware images and HTTP delivery of updates, enabling an attacker to modify firmware images without detection and potentially install persistent...

10CVSS9.5AI score0.01597EPSS
In wildExploits1References3Affected Software1
CNVD
CNVD
added 2018/06/26 12:0 a.m.3 views

Micro Focus Solutions Business Manager Code Execution Vulnerability

Micro Focus Solutions Business Manager SBM is a suite of business process automation management solutions from Micro Focus UK. The solution is primarily used for process automation, including software development lifecycle and IT business process management. A remote code execution vulnerability...

9.8CVSS9.8AI score0.02314EPSS
Exploits0References1
Hacker One
Hacker One
added 2018/05/26 1:26 p.m.20 views

Monero: forum.getmonero.org Shell upload

Summary: The method uploadProfile in the UsersController allows an attacker to upload a shell to the target server due to lack of image validation. Description: Steps To Reproduce: 1. Open POC https://forum.getmonero.org/uploads/profile/lNobodyl1527340454.php or...

7.1AI score
Exploits0
NVD
NVD
added 2018/02/06 4:29 p.m.19 views

CVE-2014-5282

Docker before 1.3 does not properly validate image IDs, which allows remote attackers to redirect to another image through the loading of untrusted images via 'docker load'...

8.1CVSS8.1AI score0.01348EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2018/02/06 4:29 p.m.18 views

CVE-2014-5282

Docker before 1.3 does not properly validate image IDs, which allows remote attackers to redirect to another image through the loading of untrusted images via 'docker load'...

8.1CVSS7.1AI score0.01348EPSS
Exploits0References1
OSV
OSV
added 2018/02/06 4:29 p.m.7 views

CVE-2014-5282

Docker before 1.3 does not properly validate image IDs, which allows remote attackers to redirect to another image through the loading of untrusted images via 'docker load'...

8.1CVSS6.8AI score
Exploits0References3
CVE
CVE
added 2018/02/06 4:0 p.m.53 views

CVE-2014-5282

CVE-2014-5282 affects Docker before 1.3. The issue is improper validation of image IDs during docker load, allowing remote attackers to redirect to a different image by loading untrusted images. Public references across multiple feeds confirm the vulnerability and its impact, with no explicit exp...

8.1CVSS7.9AI score0.01348EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2017/07/21 5:18 p.m.32 views

CVE-2017-11449

coders/mpc.c in ImageMagick before 7.0.6-1 does not enable seekable streams and thus cannot validate blob sizes, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via an image received from stdin...

8.8CVSS6.1AI score0.03389EPSS
Exploits0References1
Rows per page
Query Builder