CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

671 matches found

UbuntuCve•added 2021/08/16 8:15 p.m.•18 views

CVE-2021-21859

An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. The striboxread function is used when processing atoms using the 'stri' FOURCC code. An attacker can convince a user to open a video to trigger...

8.8CVSS7.2AI score0.01601EPSS

Exploits1References2

Prion•added 2021/08/16 8:15 p.m.•14 views

Heap overflow

An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an improper memory allocation resulting in a heap-based buffer overflow that causes memory corruption...

6.8CVSS8.7AI score0.01632EPSS

Exploits1References2Affected Software2

OSV•added 2021/08/16 8:15 p.m.•1 views

UBUNTU-CVE-2021-21859

8.8CVSS7.3AI score0.01601EPSS

Exploits1References3

OSV•added 2021/08/16 8:15 p.m.•0 views

UBUNTU-CVE-2021-21860

8.8CVSS7.5AI score0.01632EPSS

Exploits1References3

CVE•added 2021/08/16 7:7 p.m.•91 views

CVE-2021-21861

GPAC (Project on Advanced Content) library v1.0.1 contains an exploitable integer truncation in MPEG-4 decoding, specifically when processing the hdlr FOURCC, leading to improper memory allocation and a heap-based buffer overflow that can cause memory corruption when a user opens a crafted video....

8.8CVSS8.6AI score0.01632EPSS

Exploits1References2Affected Software1

Cvelist•added 2021/08/16 7:7 p.m.•19 views

CVE-2021-21861

An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. When processing the 'hdlr' FOURCC code, a specially crafted MPEG-4 input can cause an improper memory allocation resulting in a heap-based buffer...

8.8CVSS9AI score0.01632EPSS

Exploits1References2

CVE•added 2021/08/16 7:7 p.m.•98 views

CVE-2021-21860

GPAC Project on Advanced Content library v1.0.1 contains an exploitable integer truncation in MPEG-4 decoding that causes improper memory allocation and a heap-based buffer overflow, leading to memory corruption. The vulnerability is triggered by a specially crafted MPEG-4 input (FOURCC trik) and...

8.8CVSS8.6AI score0.01632EPSS

Exploits1References2Affected Software1

Cvelist•added 2021/08/16 7:7 p.m.•17 views

CVE-2021-21860

8.8CVSS9AI score0.01632EPSS

Exploits1References2

Debian CVE•added 2021/08/16 7:7 p.m.•23 views

CVE-2021-21860

8.8CVSS8.8AI score0.01632EPSS

Exploits1

CVE•added 2021/08/16 7:7 p.m.•90 views

CVE-2021-21859

GPAC Project on Advanced Content library (GPAC) is affected by CVE-2021-21859. The vulnerability is an exploitable integer truncation in the MPEG-4 decoding path, specifically involving the stri_box_read function used when processing atoms with the 'stri' FOURCC code in GPAC version 1.0.1. An att...

8.8CVSS8.4AI score0.01601EPSS

Exploits1References2Affected Software1

Cvelist•added 2021/08/16 7:7 p.m.•19 views

CVE-2021-21859

8.8CVSS8.8AI score0.01601EPSS

Exploits1References2

Debian CVE•added 2021/08/16 7:7 p.m.•19 views

CVE-2021-21859

8.8CVSS8.6AI score0.01601EPSS

Exploits1

Positive Technologies•added 2021/08/16 12:0 a.m.•5 views

PT-2021-6554 · Gpac · Gpac Project On Advanced Content Library

Name of the Vulnerable Software and Affected Versions: GPAC Project on Advanced Content library version 1.0.1 Description: An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality. The stri box read function is used when processing atoms using the 'stri'...

9.3CVSS8.9AI score0.02019EPSS

Exploits24References73

RedhatCVE•added 2021/07/29 2:25 p.m.•72 views

CVE-2021-37600

An integer truncation flaw was found in util-linux that potentially causes a buffer overflow if an attacker can use system resources that lead to a large number in the /proc/sysvipc/sem file. The highest threat from this vulnerability is to system availability...

5.5CVSS3.3AI score0.00661EPSS

Exploits1References3

NVD•added 2021/07/08 11:15 a.m.•21 views

CVE-2021-32461

Trend Micro Password Manager Consumer version 5.0.0.1217 and below is vulnerable to an Integer Truncation Privilege Escalation vulnerability which could allow a local attacker to trigger a buffer overflow and escalate privileges on affected installations. An attacker must first obtain the ability...

7.8CVSS0.00369EPSS

Exploits0References2

OSV•added 2021/07/08 11:15 a.m.•6 views

CVE-2021-32461

7.8CVSS7.6AI score0.00369EPSS

Exploits0References2

Prion•added 2021/07/08 11:15 a.m.•18 views

Privilege escalation

7.2CVSS8AI score0.00369EPSS

Exploits0References2Affected Software1

Cvelist•added 2021/07/08 10:54 a.m.•24 views

CVE-2021-32461

8.2AI score0.00369EPSS

Exploits0References2

Zero Day Initiative•added 2021/07/05 12:0 a.m.•65 views

Trend Micro Password Manager Integer Truncation Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Password Manager. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Tre...

7CVSS4.9AI score0.00369EPSS

Exploits0References1

CNNVD•added 2021/06/28 12:0 a.m.•4 views

Trend Micro Password Manager 输入验证错误漏洞

Trend Micro Password Manager is a secure password management solution from Trend Micro. runc is a CLI Command Line Interface tool for generating and running containers according to the OCI specification. An input validation error vulnerability exists in Trend Micro Password Manager that stems fro...

7.8CVSS8.3AI score0.00369EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by