Lucene search
+L

267 matches found

Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.29 views

SUSE SLES15 / openSUSE 15 Security Update : podofo (SUSE-SU-2024:3550-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3550-1 advisory. - CVE-2015-8981: Fixed heap overflow in the function ReadXRefSubsection bsc1023190 - CVE-2017-6840: Fixed invalid memory read in...

9.8CVSS6.8AI score0.02618EPSS
Exploits1References29
OSV
OSV
added 2024/10/08 8:33 a.m.12 views

SUSE-SU-2024:3541-1 Security update for podofo

This update for podofo fixes the following issues: - CVE-2015-8981: Fixed heap overflow in the function ReadXRefSubsection bsc1023190 - CVE-2017-6840: Fixed invalid memory read in ColorChanger::GetColorFromStack colorchanger.cpp bsc1027787 - CVE-2017-6841: Fixed NULL pointer dereference in...

9.8CVSS7.1AI score0.02618EPSS
Exploits3References23
OSV
OSV
added 2024/07/04 2:21 p.m.14 views

SUSE-SU-2024:2302-1 Security update for krb5

This update for krb5 fixes the following issues: - CVE-2024-37370: Fixed confidential GSS krb5 wrap tokens with invalid fields were errouneously accepted bsc1227186. - CVE-2024-37371: Fixed invalid memory read when processing message tokens with invalid length fields bsc1227187...

9.1CVSS8.2AI score0.01863EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.20 views

RHEL 6 : mingw-virt-viewer (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gstreamer-plugins-bad-free: Invalid memory read in gstpsdemuxparsepsm CVE-2017-5848 - The...

7.5CVSS9.6AI score0.04717EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.12 views

RHEL 6 : dosfstools (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - dosfstools: Heap-buffer-overflows in readfat and getfat functions CVE-2016-4804 - The setfat function in...

6.2CVSS6.8AI score0.00448EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.14 views

RHEL 5 : dosfstools (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - dosfstools: Heap-buffer-overflows in readfat and getfat functions CVE-2016-4804 - The setfat function in...

6.2CVSS6.8AI score0.00448EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.13 views

RHEL 7 : dosfstools (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - dosfstools: Heap-buffer-overflows in readfat and getfat functions CVE-2016-4804 - The setfat function in...

6.2CVSS6.8AI score0.00448EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.26 views

RHEL 7 : gstreamer-plugins-bad-free (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gstreamer-plugins-bad-free: Off-by-one read in gsth264parsesetcaps CVE-2016-9809 - Integer overflow in th...

9AI score0.04426EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.18 views

RHEL 5 : gstreamer-plugins-good (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gstreamer-plugins-good: Heap buffer overflow in FLIC decoder CVE-2016-9636 - The qtdemuxtagaddstrfull...

8.6AI score0.09267EPSS
Exploits4References6
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.22 views

RHEL 7 : pcre (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - pcre: stack-based buffer overflow write in pcre32copysubstring CVE-2017-7246 - In PCRE 8.41, the OPKETRMA...

8AI score0.05033EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.21 views

RHEL 7 : gstreamer-plugins-good (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gstreamer-plugins-good: Heap buffer overflow in FLIC decoder CVE-2016-9636 - The gstaacparsesinksetcaps...

8.5AI score0.09267EPSS
Exploits11References16
Tenable Nessus
Tenable Nessus
added 2023/10/23 12:0 a.m.21 views

Ubuntu 16.04 ESM : WildMIDI vulnerabilities (USN-4807-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4807-1 advisory. It was discovered that WildMIDI incorrectly handled certain MID files. A remote attacker could possibly use this issue to cause a denial of service...

7.5CVSS6.8AI score0.10772EPSS
Exploits7References5
OSV
OSV
added 2023/08/03 12:15 p.m.3 views

CVE-2023-37556

In multiple versions of multiple Codesys products, after successful authentication as a user, specific crafted network communication requests with inconsistent content can cause the CmpAppBP component to read internally from an invalid address, potentially leading to a denial-of-service condition...

6.5CVSS5.8AI score0.00519EPSS
Exploits0References1
OSV
OSV
added 2023/08/03 11:15 a.m.4 views

CVE-2023-37545

In multiple Codesys products in multiple versions, after successful authentication as a user, specific crafted network communication requests with inconsistent content can cause the CmpApp component to read internally from an invalid address, potentially leading to a denial-of-service condition...

6.5CVSS5.8AI score0.00519EPSS
Exploits0References1
Veracode
Veracode
added 2023/06/07 2:30 a.m.23 views

Denial Of Services (DoS)

libming.so is vulnerable to Denial Of Services DoS. The vulnerability exists due to an invalid memory read in the stackVal function of decompile.c, which allows an attacker to cause an application crash...

5.5CVSS6.6AI score0.00235EPSS
Exploits1References2Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 4:45 a.m.3 views

SUSE CVE-2017-8845

The lzo1xdecompress function in lzo1xd.ch in LZO 2.08, as used in lrzip 0.631, allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted archive...

5.5CVSS6AI score0.01364EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:41 a.m.4 views

SUSE CVE-2017-12935

The ReadMNGImage function in coders/png.c in GraphicsMagick 1.3.26 mishandles large MNG images, leading to an invalid memory read in the SetImageColorCallBack function in magick/image.c...

5.3CVSS6.9AI score0.01875EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 4:26 a.m.2 views

SUSE CVE-2018-12982

Invalid memory read in the PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.6-rc1 allows remote attackers to have denial-of-service impact via a crafted file...

4.3CVSS9.4AI score0.01075EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:24 a.m.4 views

SUSE CVE-2018-15378

A vulnerability in ClamAV versions prior to 0.100.2 could allow an attacker to cause a denial of service DoS condition. The vulnerability is due to an error related to the MEW unpacker within the "unmew11" function libclamav/mew.c, which can be exploited to trigger an invalid read memory access v...

7.5CVSS9.1AI score0.01315EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2023/02/15 4:13 a.m.4 views

SUSE CVE-2019-10654

The lzo1xdecompress function in liblzo2.so.2 in LZO 2.10, as used in Long Range Zip aka lrzip 0.631, allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted archive, a different vulnerability than CVE-2017-8845...

5.5CVSS5.5AI score0.01184EPSS
Exploits1References3
Rows per page
Query Builder