CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8956 matches found

CNNVD•added 2022/02/24 12:0 a.m.•3 views

radare2 资源管理错误漏洞

radare2 is a set of libraries and tools for working with binary files. A security vulnerability exists in radare2 versions prior to 5.6.4, which stems from a missing initialization assignment to an array in the software code, and can be exploited by an attacker to achieve a denial of service...

6.8CVSS7.2AI score0.00324EPSS

Exploits1References6

RedHat Linux•added 2022/02/22 5:47 p.m.•2 views

python-pillow: improperly initializes ImagePath.Path in path_getbbox() in path.c

A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to improperly initializing the ImagePath. This flaw allows an attacker to access unauthorized memory that causes memory access errors, incorrect results, or crashes...

6.5CVSS5.8AI score0.00095EPSS

Exploits0References5

RedHat Linux•added 2022/02/22 5:47 p.m.•63 views

Important: Red Hat Security Advisory: python-pillow security update

An update for python-pillow is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS6.9AI score0.02781EPSS

Exploits0References3

RedHat Linux•added 2022/02/22 5:2 p.m.•2 views

kernel: double free in bluetooth subsystem when the HCI device initialization fails

A flaw double-free memory corruption in the Linux kernel HCI device initialization subsystem was found in the way user attach malicious HCI TTY Bluetooth device. A local user could use this flaw to crash the system...

5.5CVSS6.7AI score0.00024EPSS

Exploits1References5

RedHat Linux•added 2022/02/22 3:58 p.m.•2 views

python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c

A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to a buffer over-read and improper initialization. This flaw allows an attacker to unauthorized memory access that causes memory access errors, incorrect results, or crashes...

6.5CVSS5.9AI score0.00137EPSS

Exploits0References5

Zero Day Initiative•added 2022/02/22 12:0 a.m.•29 views

(0Day) Fuji Electric Alpha5 C5V File Parsing Uninitialized Pointer Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Fuji Electric Alpha5. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS3.3AI score0.00167EPSS

Exploits0

ATTACKERKB•added 2022/02/18 8:15 p.m.•2 views

CVE-2021-46617

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.0.80. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS7.6AI score0.00621EPSS

Exploits0References3Affected Software1

NVD•added 2022/02/18 8:15 p.m.•10 views

CVE-2021-46617

7.8CVSS0.00621EPSS

Exploits0References2

NVD•added 2022/02/18 8:15 p.m.•14 views

CVE-2021-46631

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS0.00621EPSS

Exploits0References2

OSV•added 2022/02/18 8:15 p.m.•1 views

CVE-2021-46617

7.8CVSS7.5AI score

Exploits0References2

NVD•added 2022/02/18 8:15 p.m.•18 views

CVE-2021-46570

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.16.0.80. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

7.8CVSS0.00621EPSS

Exploits0References2

ATTACKERKB•added 2022/02/18 8:15 p.m.•3 views

CVE-2021-46570

7.8CVSS6AI score0.00621EPSS

Exploits0References3Affected Software1

OSV•added 2022/02/18 8:15 p.m.•1 views

CVE-2021-46570

7.8CVSS5AI score

Exploits0References2

NVD•added 2022/02/18 8:15 p.m.•12 views

CVE-2021-46566

7.8CVSS0.0066EPSS

Exploits0References2

Prion•added 2022/02/18 8:15 p.m.•21 views

Design/Logic Flaw

6.8CVSS7.3AI score0.00621EPSS

Exploits0References2Affected Software3

Prion•added 2022/02/18 8:15 p.m.•12 views

Design/Logic Flaw

6.8CVSS7.8AI score0.00621EPSS

Exploits0References2Affected Software2

Cvelist•added 2022/02/18 7:44 p.m.•15 views

CVE-2021-46570

7.8CVSS7.5AI score0.00621EPSS

Exploits0References2

Cvelist•added 2022/02/18 7:44 p.m.•20 views

CVE-2021-46566

7.8CVSS8AI score0.0066EPSS

Exploits0References2

Tenable Nessus•added 2022/02/11 12:0 a.m.•35 views

SUSE SLES12 Security Update : kernel (SUSE-SU-2022:0362-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0362-1 advisory. - The BPF subsystem in the Linux kernel before 4.17 mishandles situations with a long jump over an instruction sequence where inner...

7.8CVSS7.2AI score0.00874EPSS

Exploits4References74

Prion•added 2022/02/10 7:15 p.m.•23 views

Buffer overflow

On Xilinx Zynq-7000 SoC devices, physical modification of an SD boot image allows for a buffer overflow attack in the ROM. Because the Zynq-7000's boot image header is unencrypted and unauthenticated before use, an attacker can modify the boot header stored on an SD card so that a secure image...

4.6CVSS6.8AI score0.00073EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by