Lucene search
K

39 matches found

NVD
NVD
added 2023/10/21 12:15 a.m.10 views

CVE-2023-45682

stbvorbis is a single file MIT licensed library for processing ogg vorbis files. A crafted file may trigger out of bounds read in DECODE macro when var is negative. As it can be seen in the definition of DECODERAW a negative var is a valid value. This issue may be used to leak internal memory...

7.1CVSS5.7AI score0.0056EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2023/10/21 12:15 a.m.16 views

CVE-2023-45682

stbvorbis is a single file MIT licensed library for processing ogg vorbis files. A crafted file may trigger out of bounds read in DECODE macro when var is negative. As it can be seen in the definition of DECODERAW a negative var is a valid value. This issue may be used to leak internal memory...

7.1CVSS6.7AI score0.0056EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2023/10/20 11:26 p.m.21 views

CVE-2023-45661 Wild address read in stbi__gif_load_next in stb_image

stbimage is a single file MIT licensed library for processing images. A crafted image file may trigger out of bounds memcpy read in stbigifloadnext. This happens because twoback points to a memory address lower than the start of the buffer out. This issue may be used to leak internal memory...

6.5CVSS6.7AI score0.00574EPSS
Exploits0References6
NVD
NVD
added 2023/08/25 9:15 p.m.43 views

CVE-2023-40166

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer read overflow in FileManager::detectLanguageFromTextBegining . The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. ...

5.5CVSS5.9AI score0.00471EPSS
Exploits1References1
Prion
Prion
added 2023/08/25 9:15 p.m.21 views

Heap overflow

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer read overflow in FileManager::detectLanguageFromTextBegining . The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. ...

1.9CVSS6.2AI score0.00471EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/25 8:20 p.m.14 views

CVE-2023-40166 Notepad++ heap buffer read overflow in FileManager::detectLanguageFromTextBegining

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer read overflow in FileManager::detectLanguageFromTextBegining . The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. ...

5.5CVSS7.2AI score0.00471EPSS
Exploits1References1
OSV
OSV
added 2023/07/20 1:15 a.m.6 views

CVE-2022-28734

Out-of-bounds write when handling split HTTP headers; When handling split HTTP headers, GRUB2 HTTP code accidentally moves its internal data buffer point by one position. This can lead to a out-of-bound write further when parsing the HTTP request, writing a NULL byte past the buffer. It's...

7CVSS8.3AI score0.01131EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2023/03/09 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-1507)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.02211EPSS
Exploits8References2
SUSE CVE
SUSE CVE
added 2023/02/15 3:47 a.m.8 views

SUSE CVE-2021-4159

A vulnerability was found in the Linux kernel's EBPF verifier when handling internal data structures. Internal memory locations could be returned to userspace. A local attacker with the permissions to insert eBPF code to the kernel can use this to leak internal kernel memory details defeating som...

5.5CVSS6.4AI score0.00236EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2023/02/09 12:0 a.m.61 views

Ubuntu 18.04 LTS : Linux kernel (Qualcomm Snapdragon) vulnerabilities (USN-5862-1)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5862-1 advisory. It was discovered that an out-of-bounds write vulnerability existed in the Video for Linux 2 V4L2 implementation in the Linux kernel. A local attacker...

7CVSS7.6AI score0.04947EPSS
Exploits1References12
Positive Technologies
Positive Technologies
added 2023/01/18 12:0 a.m.8 views

PT-2023-2420 · Omron · Omron Cs Series

Name of the Vulnerable Software and Affected Versions: Omron CJ-series and CS-series PLCs, all versions Description: The issue is related to the lack of authentication for a critical function in Omron CS/CJ controllers. An attacker with network access to the affected PLC may use a network protoco...

8.6CVSS7.4AI score0.00536EPSS
Exploits0References9
Veracode
Veracode
added 2023/01/17 5:3 p.m.30 views

Memory Corruption

linux is vulnerable to Memory Corruption. The vulnerability exists in drivers/usb/mon/monbin.c in usbmon which allows a user-space client to corrupt the monitor's internal memory...

6.7CVSS7.6AI score0.00325EPSS
Exploits0References7Affected Software4
UbuntuCve
UbuntuCve
added 2022/08/24 4:15 p.m.72 views

CVE-2021-4159

A vulnerability was found in the Linux kernel's EBPF verifier when handling internal data structures. Internal memory locations could be returned to userspace. A local attacker with the permissions to insert eBPF code to the kernel can use this to leak internal kernel memory details defeating som...

4.4CVSS6.7AI score0.00236EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2022/02/04 12:0 a.m.16 views

CVE-2022-0264

A vulnerability was found in the Linux kernel's eBPF verifier when handling internal data structures. Internal memory locations could be returned to userspace. A local attacker with the permissions to insert eBPF code to the kernel can use this to leak internal kernel memory details defeating som...

5.5CVSS6.8AI score0.00255EPSS
Exploits0
Prion
Prion
added 2021/06/09 2:15 p.m.28 views

Input validation

SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method CDrawRaster::LoadImageFromMemory whic...

4.3CVSS6AI score0.01208EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2021/05/20 12:0 a.m.7 views

dns-packet 信息泄露漏洞

dns-packet is a software application. An abstraction encodes a dependency model for encoding/decoding DNS packets. A security vulnerability exists in Mathias Buus dns-packet versions prior to 5.2.2, which can be exploited by an attacker to expose internal application memory over an unencrypted...

7.7CVSS7.4AI score0.01425EPSS
Exploits0References5
OSV
OSV
added 2019/05/13 2:29 p.m.4 views

CVE-2018-19990

In the /HNAP1/SetWiFiVerifyAlpha message, the WPSPIN parameter is vulnerable, and the vulnerability affects D-Link DIR-822 B1 202KRb06 devices. In the SetWiFiVerifyAlpha.php source code, the WPSPIN parameter is saved in the $rphyinf1."/media/wps/enrollee/pin" and $rphyinf2."/media/wps/enrollee/pi...

9.8CVSS5.8AI score0.41606EPSS
Exploits3References1
Cvelist
Cvelist
added 2018/05/31 8:0 p.m.20 views

CVE-2016-10519

A security issue was found in bittorrent-dht before 5.1.3 that allows someone to send a specific series of messages to a listening peer and get it to reveal internal memory...

7.4AI score0.01637EPSS
Exploits0References2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.24 views

Ifenslave 0.0.7 Argument Local Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/7682/info ifenslave for Linux has been reported prone to a buffer overflow vulnerability. The issue is reportedly due to a lack of sufficient bounds checking performed on user-supplied data before it is copied into an...

7.1AI score
Exploits0
Rows per page
Query Builder