Lucene search
K

134 matches found

OSV
OSV
added 2020/12/07 4:15 p.m.3 views

CVE-2020-26513

An issue was discovered in Intland codeBeamer ALM 10.x through 10.1.SP4. The ReqIF XML data, used by the codebeamer ALM application to import projects, is parsed by insecurely configured software components, which can be abused for XML External Entity Attacks...

5.5CVSS6.1AI score0.00905EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2020/12/07 12:0 a.m.6 views

PT-2020-16433 · Intland · Codebeamer Alm

Name of the Vulnerable Software and Affected Versions: Intland codeBeamer ALM versions 10.x through 10.1.SP4 Description: An issue was discovered in the way Intland codeBeamer ALM parses ReqIF XML data used for importing projects. The software components are insecurely configured, allowing for XM...

5.5CVSS5.4AI score0.00905EPSS
Exploits1References6
OSV
OSV
added 2020/02/18 6:15 p.m.2 views

DEBIAN-CVE-2015-7505

Stack-based buffer overflow in the gifnextLZW function in libnsgif.c in Libnsgif 0.1.2 allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted LZW stream in a GIF file...

8.8CVSS7.8AI score0.02876EPSS
Exploits2References1
RedHat Linux
RedHat Linux
added 2019/11/05 9:14 p.m.3 views

qt5-qtbase: QImage allocation failure in qgifhandler

An issue was discovered in Qt before 5.11.3. A malformed GIF image causes a NULL pointer dereference in QGifHandler resulting in a segmentation fault...

8.8CVSS5.8AI score0.02424EPSS
Exploits0References4
Veracode
Veracode
added 2019/05/02 4:41 a.m.33 views

Arbitrary Code Execution Or Denial Of Service (DoS)

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

8.8CVSS9.3AI score0.11079EPSS
Exploits10References29Affected Software3
PyPA
PyPA
added 2019/04/24 5:29 p.m.7 views

PYSEC-2019-210

NULL pointer dereference in Google TensorFlow before 1.12.2 could cause a denial of service via an invalid GIF file...

6.5CVSS6.7AI score0.00453EPSS
Exploits0References2Affected Software1
PyPA
PyPA
added 2019/04/24 5:29 p.m.6 views

PYSEC-2019-235

NULL pointer dereference in Google TensorFlow before 1.12.2 could cause a denial of service via an invalid GIF file...

6.5CVSS6.7AI score0.00453EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2019/04/24 4:30 p.m.3 views

CVE-2019-9635

NULL pointer dereference in Google TensorFlow before 1.12.2 could cause a denial of service via an invalid GIF file...

6.5CVSS6.7AI score0.00453EPSS
Exploits0
OSV
OSV
added 2019/04/09 8:30 p.m.5 views

CVE-2019-7360

An exploitable use-after-free vulnerability in the DXF-parsing functionality in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018, Autodesk AutoCAD Architecture 2018, Autodesk AutoCAD Electrical 2018, Autodesk AutoCAD Map 3D 2018, Autodesk AutoCAD Mechanical 2018, Autodesk AutoCAD MEP 2018,...

7.8CVSS5.8AI score0.01644EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2018/12/13 12:0 a.m.6 views

The vulnerability of PDF viewing and editing programs such as Adobe Acrobat, Adobe Reader, and Adobe Acrobat Document Cloud, related to the manipulation of the null pointer, allows attackers to execute arbitrary code.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat, Adobe Reader, Adobe Acrobat Document Cloud, and Adobe Reader Document Cloud are related to the handling of the null pointer. Exploiting these vulnerabilities allows a malicious actor to execute arbitrary code using a...

9.3CVSS7.7AI score0.27821EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2018/10/26 12:0 a.m.5 views

The vulnerability of Adobe Acrobat and Adobe Reader PDF viewer/editor programs, related to writing beyond the buffer in memory, allows a perpetrator to execute arbitrary code.

The vulnerability of Adobe Acrobat and Adobe Reader PDF viewer/editor programs lies in the writing of data beyond the buffer limit in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created GIF file...

10CVSS7.8AI score0.13459EPSS
Exploits0References5
OSV
OSV
added 2018/09/24 2:29 p.m.5 views

DEBIAN-CVE-2018-17436

ReadCode in decompress.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service invalid write access via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file...

6.5CVSS6.7AI score0.01312EPSS
Exploits1References1
CNVD
CNVD
added 2018/04/28 12:0 a.m.2 views

Foxit Reader GIF DataSubBlock Out-of-Bounds Read Information Disclosure Vulnerability

Foxit Reader is a small PDF document viewer and printing program. Foxit Reader has a security vulnerability in the parsing of the DataSubBlock structure of GIF graphics, which can be exploited by an attacker to obtain sensitive information due to a lack of proper validation of user-supplied data...

6.5CVSS6.5AI score0.02536EPSS
Exploits0References1
OSV
OSV
added 2018/04/24 7:29 p.m.2 views

ALPINE-CVE-2017-14450

A buffer overflow vulnerability exists in the GIF image parsing functionality of SDL2image-2.0.2. A specially crafted GIF image can lead to a buffer overflow on a global section. An attacker can display an image to trigger this vulnerability...

7.1CVSS7.4AI score0.01583EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2018/04/24 12:0 a.m.5 views

PT-2018-5052 · Corel · Core Photo-Paint X8

Name of the Vulnerable Software and Affected Versions: Core PHOTO-PAINT X8 version 18.1.0.661 Description: A memory corruption vulnerability exists in the GIF parsing functionality. This issue can be triggered by a specially crafted GIF file, potentially resulting in code execution. An attacker c...

8.8CVSS8.5AI score0.02214EPSS
Exploits1References4
OSV
OSV
added 2018/03/26 12:0 a.m.3 views

UBUNTU-CVE-2017-18254

An issue was discovered in ImageMagick 7.0.7. A memory leak vulnerability was found in the function WriteGIFImage in coders/gif.c, which allow remote attackers to cause a denial of service via a crafted file...

6.5CVSS6.7AI score0.01777EPSS
Exploits0References3
CNVD
CNVD
added 2018/01/18 12:0 a.m.1 views

PHP GD Graphics Library Denial of Service Vulnerability

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community.GD Graphics Library also known as libgd or libgd2 is an open source library for dynamically creating images developed by American software...

5.5CVSS6.4AI score0.13204EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2018/01/12 12:0 a.m.10 views

The vulnerability of the GIF loader in the imlib2 library allows a hacker to trigger a service failure or gain access to confidential data.

The vulnerability of the imlib2 GIF library loader exists due to a read buffer overflow error. Exploiting this vulnerability can allow an attacker to cause service failures or gain access to confidential data using a specially created GIF image...

8.2CVSS7.8AI score0.02784EPSS
Exploits0References7Affected Software3
CNVD
CNVD
added 2017/12/07 12:0 a.m.4 views

GNU Libextractor Denial of Service Vulnerability (CNVD-2018-00306)

GNU Libextractor is a set of libraries developed by the GNU Project for extracting metadata from files. A security vulnerability exists in GNU Libextractor version 1.6. A remote attacker can exploit this vulnerability to cause a denial of service null pointer backreference and application crash...

6.5CVSS6.8AI score0.0236EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2017/12/06 5:29 p.m.4 views

CVE-2017-17440

GNU Libextractor 1.6 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted GIF, IT Impulse Tracker, NSFE, S3M Scream Tracker 3, SID, or XM eXtended Module file, as demonstrated by the EXTRACTORxmextractmethod function in...

6.5CVSS5.6AI score0.0236EPSS
Exploits1References10
Rows per page
Query Builder