Lucene search
K

33 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2021-3055

Malicious code in bioql PyPI...

5.5CVSS5.5AI score0.00124EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/06/12 12:0 a.m.7 views

EulerOS 2.0 SP11 : abseil-cpp (EulerOS-SA-2025-1645)

According to the versions of the abseil-cpp package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : There exists a heap buffer overflow vulnerable in Abseil-cpp. The sized constructors, reserve, and rehash methods of absl::flat,nodehashset,map...

9.8CVSS7.1AI score0.00563EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 3:27 p.m.7 views

CVE-2020-28371

An issue was discovered in ReadyTalk Avian 1.2.0 before 2020-10-27. The FileOutputStream.write method in FileOutputStream.java has a boundary check to prevent out-of-bounds memory read/write operations. However, an integer overflow leads to bypassing this check and achieving the out-of-bounds...

9.8CVSS7.1AI score0.01715EPSS
Exploits0
Rockylinux
Rockylinux
added 2025/03/17 8:16 p.m.10 views

freerdp security update

An update is available for freerdp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released...

9.8CVSS7.2AI score0.0375EPSS
Exploits2
NVD
NVD
added 2025/01/03 4:15 a.m.12 views

CVE-2024-53837

In prepareresponse of lwisperiodicio.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS0.0008EPSS
Exploits0References1
CVE
CVE
added 2025/01/02 11:58 p.m.172 views

CVE-2024-43097

CVE-2024-43097 : The issue is a possible out-of-bounds write in SkRegion.cpp in resizeToAtLeast caused by an integer overflow, which could lead to local privilege escalation with no user interaction required. The vulnerability is referenced across multiple advisories for Mozilla components (Firef...

7.8CVSS7.2AI score0.00258EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2024/12/11 6:51 p.m.11 views

CVE-2024-47537

GStreamer is a library for constructing graphs of media-handling components. The program attempts to reallocate the memory pointed to by stream-samples to accommodate stream-nsamples + samplescount elements of type QtDemuxSample. The problem is that samplescount is read from the input file. And i...

9.8CVSS8.4AI score0.00956EPSS
Exploits0
CVE
CVE
added 2024/12/11 6:51 p.m.120 views

CVE-2024-47537

CVE-2024-47537 affects GStreamer, specifically gstreamer1-plugins-good. The issue arises in the isomp4/qtdemux.c path where the program reallocates stream->samples to hold stream->n_samples + samples_count, with samples_count read from input. If samples_count is large, an integer overflow c...

9.8CVSS6.6AI score0.00956EPSS
Exploits0References4Affected Software1
AlpineLinux
AlpineLinux
added 2024/12/11 6:51 p.m.23 views

CVE-2024-47537

GStreamer is a library for constructing graphs of media-handling components. The program attempts to reallocate the memory pointed to by stream-samples to accommodate stream-nsamples + samplescount elements of type QtDemuxSample. The problem is that samplescount is read from the input file. And i...

9.8CVSS6.7AI score0.00956EPSS
Exploits0References4
OSV
OSV
added 2024/11/24 12:44 a.m.12 views

CVE-2024-11236 Integer overflow in the firebird and dblib quoters causing OOB writes

In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, uncontrolled long string inputs to ldapescape function on 32-bit systems can cause an integer overflow, resulting in an out-of-bounds write...

9.8CVSS6.7AI score0.02079EPSS
Exploits1References5
CNVD
CNVD
added 2024/04/25 12:0 a.m.11 views

Unspecified Vulnerability in FreeRDP (CNVD-2024-23305)

FreeRDP is an open source implementation of the Remote Desktop Protocol RDP from the FreeRDP team. A security vulnerability existed prior to FreeRDP version 3.5.0, which stemmed from the vulnerability of FreeRDP-based clients to integer overflow and out-of-bounds writes. No details of the...

9.8CVSS6.9AI score0.02275EPSS
Exploits0References1
Amazon
Amazon
added 2024/04/01 12:0 a.m.50 views

Important: thunderbird

Issue Overview: AppendEncodedAttributeValue, ExtraSpaceNeededForAttrEncoding and AppendEncodedCharacters could have experienced integer overflows, causing underallocation of an output buffer leading to an out of bounds write. This vulnerability affects Firefox 124, Firefox ESR 115.9, and...

8.8CVSS8.4AI score0.00971EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2023/11/14 12:0 a.m.28 views

RHEL 8 : libfastjson (RHSA-2023:6976)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:6976 advisory. The libfastjson library provides essential JavaScript Object Notation JSON handling functions. The library enables users to construct JSON objects in...

7.8CVSS6.8AI score0.01888EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2022/11/17 12:0 a.m.4 views

CVE-2022-42533

In sharedmetadatainit of SharedMetadata.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

7.8AI score0.00093EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/02/18 12:0 a.m.32 views

SUSE SLES15 Security Update : json-c (SUSE-SU-2022:0184-2)

The remote SUSE Linux SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2022:0184-2 advisory. - CVE-2020-12762: Fixed integer overflow and out-of-bounds write. bsc1171479 Tenable has extracted the preceding description block directly from the SU...

7.8CVSS6.9AI score0.01888EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2022/01/26 12:0 a.m.14 views

SUSE: Security Advisory (SUSE-SU-2022:0184-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.01888EPSS
Exploits1References4
OSV
OSV
added 2021/08/07 6:15 p.m.10 views

CVE-2021-38166

In kernel/bpf/hashtab.c in the Linux kernel through 5.13.8, there is an integer overflow and out-of-bounds write when many elements are placed in a single bucket. NOTE: exploitation might be impractical without the CAPSYSADMIN capability...

7.8CVSS8AI score
Exploits0References6
Veracode
Veracode
added 2021/04/05 7:36 a.m.19 views

Denial Of Service (DoS)

openexr is vulnerable to denial of service DoS. The vulnerability exists through a flaw in OpenEXR's deep tile sample size calculations in versions before 3.0.0-beta, that could trigger an integer overflow, subsequently leading to an out-of-bounds read...

5.5CVSS4.4AI score0.0096EPSS
Exploits0References6Affected Software5
Tenable Nessus
Tenable Nessus
added 2021/03/11 12:0 a.m.31 views

EulerOS Virtualization 2.9.0 : open-iscsi (EulerOS-SA-2021-1639)

According to the versions of the open-iscsi package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, an...

8.2CVSS7.2AI score0.03912EPSS
Exploits0References4
OSV
OSV
added 2020/12/28 4:15 a.m.17 views

CVE-2020-35738

WavPack 5.3.0 has an out-of-bounds write in WavpackPackSamples in packutils.c because of an integer overflow in a malloc argument. NOTE: some third-parties claim that there are later "unofficial" releases through 5.3.2, which are also affected...

6.1CVSS7.1AI score
Exploits0References6
Rows per page
Query Builder