Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4756 matches found

Vulnrichment
Vulnrichmentadded 2024/06/04 9:0 p.m.14 views

CVE-2024-32975 Envoy crashes in QuicheDataReader::PeekVarInt62Length()

Envoy is a cloud-native, open source edge and service proxy. There is a crash at QuicheDataReader::PeekVarInt62Length. It is caused by integer underflow in the QuicStreamSequencerBuffer::PeekRegion implementation...

5.9CVSS6.8AI score0.00693EPSS
Exploits1References1
Cvelist
Cvelistadded 2024/06/04 9:0 p.m.21 views

CVE-2024-32975 Envoy crashes in QuicheDataReader::PeekVarInt62Length()

Envoy is a cloud-native, open source edge and service proxy. There is a crash at QuicheDataReader::PeekVarInt62Length. It is caused by integer underflow in the QuicStreamSequencerBuffer::PeekRegion implementation...

5.9CVSS5.7AI score0.00693EPSS
Exploits1References1
OSV
OSVadded 2024/06/04 9:0 p.m.3 views

CVE-2024-32975 Envoy crashes in QuicheDataReader::PeekVarInt62Length()

Envoy is a cloud-native, open source edge and service proxy. There is a crash at QuicheDataReader::PeekVarInt62Length. It is caused by integer underflow in the QuicStreamSequencerBuffer::PeekRegion implementation...

5.9CVSS6.7AI score0.00693EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2024/06/04 12:0 a.m.1 views

PT-2024-25022 · Envoy · Envoy

Name of the Vulnerable Software and Affected Versions: Envoy affected versions not specified Description: The issue is related to a crash at QuicheDataReader::PeekVarInt62Length caused by an integer underflow in the QuicStreamSequencerBuffer::PeekRegion implementation. This affects Envoy, a...

7.5CVSS8.1AI score0.00693EPSS
Exploits1References8
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.21 views

RHEL 5 : openoffice.org (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libreoffice: Bookmarks in DOC documents are insufficiently checked causing memory corruption CVE-2015-521...

6.8CVSS8.7AI score0.13826EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.46 views

RHEL 8 : freerdp (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - freerdp: Integer Overflow leading to Heap Overflow in freerdpbitmapplanarcontextreset CVE-2024-22211 -...

9.8CVSS7.6AI score0.0375EPSS
Exploits13References23
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.17 views

RHEL 6 : libksba (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libksba: integer underflow flaw leading to a heap-based buffer overflow in ksbaoidtostr CVE-2014-9087 -...

7.5CVSS8.2AI score0.05167EPSS
Exploits0References7
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.20 views

RHEL 7 : libksba (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libksba: integer underflow flaw leading to a heap-based buffer overflow in ksbaoidtostr CVE-2014-9087 -...

7.5CVSS8.2AI score0.05167EPSS
Exploits0References7
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.23 views

RHEL 6 : autotrace (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - ..CVE-2017-9200 autotrace: Multiple security issues CVE-2017-9200 - Integer underflow in the inputbmpread...

9.8CVSS8.4AI score0.02468EPSS
Exploits0References51
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.22 views

RHEL 7 : busybox (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - busybox: Integer underflow in archival/libarchive/decompressunlzma.c CVE-2017-15874 - The getnextblock...

5.5CVSS6.4AI score0.01316EPSS
Exploits3References3
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.18 views

RHEL 8 : openvswitch (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - dpdk: librtevhost Integer truncation in vhostusercheckandallocqueuepair CVE-2020-10723 - openvswitch:...

9.8CVSS8AI score0.01324EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.26 views

RHEL 5 : perl (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - perl: heap buffer overflow in pppack.c CVE-2018-6913 - issafe in the File::Temp module for Perl does not...

7.8CVSS8.7AI score0.1199EPSS
Exploits6References10
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.12 views

RHEL 7 : tcpdump (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - tcpdump: SMB data printing mishandled CVE-2018-10105 - Integer underflow in the olsrprint function in...

9.8CVSS7.4AI score0.06816EPSS
Exploits5References27
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.19 views

RHEL 6 : openssl098e (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openssl: double-free in policy checks CVE-2011-4109 - The DTLS implementation in OpenSSL before 0.9.8s an...

9.3CVSS8AI score0.28154EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.19 views

RHEL 6 : tcpdump (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - tcpdump: multiple overflow issues in protocol decoding CVE-2017-5486 - Integer underflow in the olsrprint...

9.8CVSS9.2AI score0.18814EPSS
Exploits13References140
Zero Day Initiative
Zero Day Initiativeadded 2024/05/31 12:0 a.m.14 views

(Pwn2Own) Sonos Era 100 SMB2 Message Handling Integer Underflow Information Disclosure Vulnerability

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Sonos Era 100 smart speakers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of SMB2 messages. The issue results from the...

4.3CVSS6.7AI score0.00419EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/05/22 12:0 a.m.44 views

(Pwn2Own) Microsoft Windows CLFS Integer Underflow Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Common Log Fil...

8.8CVSS7AI score0.05275EPSS
Exploits0References1
NVD
NVDadded 2024/05/17 2:15 p.m.16 views

CVE-2024-35827

In the Linux kernel, the following vulnerability has been resolved: iouring/net: fix overflow check in iorecvmsgmshotprep The "controllen" variable is type sizet unsigned long. Casting it to int could lead to an integer underflow. The checkaddoverflow function considers the type of the destinatio...

5.5CVSS7.5AI score0.00209EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2024/05/17 1:41 p.m.14 views

CVE-2024-35827 io_uring/net: fix overflow check in io_recvmsg_mshot_prep()

In the Linux kernel, the following vulnerability has been resolved: iouring/net: fix overflow check in iorecvmsgmshotprep The "controllen" variable is type sizet unsigned long. Casting it to int could lead to an integer underflow. The checkaddoverflow function considers the type of the destinatio...

6.9AI score0.00209EPSS
Exploits0References5
CVE
CVEadded 2024/05/17 1:41 p.m.150 views

CVE-2024-35827

CVE-2024-35827 stems from a Linux kernel issue in io_uring/net where an overflow check in io_recvmsg_mshot_prep() mis-handles a size_t controllen cast to int, enabling an overflow/underflow mismatch. The root cause is described as casting controllen (size_t) to int fixes the overflow check in che...

5.5CVSS6.9AI score0.00209EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder