145 matches found
ImageMagick: Heap Buffer Over-Write in json and yaml encoder of a single byte due to incorrect fix
An incorrect fix that was applied in GHSA-5592-p365-24xh could result in a heap buffer over-write of a single byte...
GHSA-JQQ5-8PX3-9M6M ImageMagick: Heap Buffer Over-Write in json and yaml encoder of a single byte due to incorrect fix
An incorrect fix that was applied in GHSA-5592-p365-24xh could result in a heap buffer over-write of a single byte...
CVE-2018-10519
CMS Made Simple CMSMS 2.2.7 contains a privilege escalation vulnerability from ordinary user to admin user by arranging for the effuid value within $COOKIE$this-loginkey to equal 1, because files in the tmp/ directory are accessible through HTTP requests. NOTE: this vulnerability exists because o...
EUVD-2013-2177
Malware in sbrugna...
EUVD-2018-1320
Malware in sbrugna...
EUVD-2014-5213
Malware in sbrugna...
EUVD-2012-5424
Malware in sbrugna...
EUVD-2015-6683
Malware in sbrugna...
CVE-2024-44085
ONLYOFFICE Docs before 8.1.0 allows XSS via a GeneratorFunction Object attack against a macro. This is related to use of an immediately-invoked function expression IIFE for a macro. NOTE: this issue exists because of an incorrect fix for CVE-2021-43446 and CVE-2023-50883...
CVE-2025-27558
CVE-2025-27558 (FragAttacks in IEEE 802.11-REVme mesh) is described across connected Astra Linux advisories as a vulnerability in IEEE 802.11-REVme D1.1–D7.0 that allows an attacker to inject arbitrary frames toward devices that receive non-SSP A-MSDU frames in mesh networks using WPA/WPA2/WPA3 o...
CVE-2023-50883
ONLYOFFICE Docs before 8.0.1 allows XSS because a macro is an immediately-invoked function expression IIFE, and therefore a sandbox escape is possible by directly calling the constructor of the Function object. NOTE: this issue exists because of an incorrect fix for CVE-2021-43446...
CVE-2023-50883
ONLYOFFICE Docs before 8.0.1 allows XSS because a macro is an immediately-invoked function expression IIFE, and therefore a sandbox escape is possible by directly calling the constructor of the Function object. NOTE: this issue exists because of an incorrect fix for CVE-2021-43446...
CVE-2024-44085
ONLYOFFICE Docs before 8.1.0 allows XSS via a GeneratorFunction Object attack against a macro. This is related to use of an immediately-invoked function expression IIFE for a macro. NOTE: this issue exists because of an incorrect fix for CVE-2021-43446 and CVE-2023-50883...
CVE-2024-44085
ONLYOFFICE Docs before 8.1.0 allows XSS via a GeneratorFunction Object attack against a macro. This is related to use of an immediately-invoked function expression IIFE for a macro. NOTE: this issue exists because of an incorrect fix for CVE-2021-43446 and CVE-2023-50883...
K15637: GnuTLS vulnerability CVE-2013-2116
Security Advisory Description The gnutlsciphertext2compressed function in lib/gnutlscipher.c in GnuTLS 2.12.23 allows remote attackers to cause a denial of service buffer over-read and crash via a crafted padding length. NOTE: this might be due to an incorrect fix for CVE-2013-0169. CVE-2013-2116...
SUSE CVE-2008-1380
The JavaScript engine in Mozilla Firefox before 2.0.0.14, Thunderbird before 2.0.0.14, and SeaMonkey before 1.1.10 allows remote attackers to cause a denial of service garbage collector crash and possibly have other impacts via a crafted web page. NOTE: this is due to an incorrect fix for...
SUSE CVE-2009-1887
agent/snmpagent.c in snmpd in net-snmp 5.0.9 in Red Hat Enterprise Linux RHEL 3 allows remote attackers to cause a denial of service daemon crash via a crafted SNMP GETBULK request that triggers a divide-by-zero error. NOTE: this vulnerability exists because of an incorrect fix for CVE-2008-4309...
SUSE CVE-2016-3158
The xrstor function in arch/x86/xstate.c in Xen 4.x does not properly handle writes to the hardware FSW.ES bit when running on AMD64 processors, which allows local guest OS users to obtain sensitive register content information from another guest by leveraging pending exception and mask bits. NOT...
SUSE CVE-2016-4957
ntpd in NTP before 4.2.8p8 allows remote attackers to cause a denial of service daemon crash via a crypto-NAK packet. NOTE: this vulnerability exists because of an incorrect fix for CVE-2016-1547...
CVE-2022-2739
The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-14370, which was previously fixed via RHSA-2020:5056. This issue could possibly allow an attacker to gain access to sensitive...