Lucene search
K

3836 matches found

OSV
OSV
added 2020/09/03 12:0 p.m.15 views

RUSTSEC-2020-0038 Memory safety issues in `compact::Vec`

compact::Vec contains multiple memory safety issues. 1. It mishandles large capacity and causes out-of-bound access in 32-bit / allocator layout mismatch in 64-bit. 2. remove is not panic-safe and causes double-free when an index larger than the length is provided...

7.5CVSS7.5AI score0.0139EPSS
Exploits2References3
Microsoft KB
Microsoft KB
added 2020/09/02 12:0 a.m.10 views

February 25, 2020—KB4537818 (OS Build 17763.1075)

February 25, 2020—KB4537818 OS Build 17763.1075 For more information about the various types of Windows updates, such as critical, security, driver, service packs, and so on, please see the following article. Highlights Updates an issue that prevents the speech application from opening for severa...

7.1AI score
Exploits0
Talos Blog
Talos Blog
added 2020/08/24 7:44 a.m.23 views

Vulnerability Spotlight: Use-after-free vulnerability in Google Chrome WebGL could lead to code execution

Marcin Towalski of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw. The Google Chrome web browser contains a use-after-free vulnerability in its WebGL component that could allow a user to execute arbitrary code in the context of the browser process. This vulnerability specifically...

1.4AI score
Exploits0
OSV
OSV
added 2020/08/17 7:15 p.m.1 views

CVE-2020-1578

An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization ASLR bypass. An attacker who successfully exploited the vulnerability could retrieve the memory address of a...

4.7CVSS6.1AI score0.00948EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2020/08/17 12:0 a.m.2 views

PT-2020-20042 · Nextcloud +1 · Nextcloud Desktop Client +1

Name of the Vulnerable Software and Affected Versions: NextCloud Desktop Client version 2.6.4 Description: A memory corruption issue exists due to missing Address Space Layout Randomization ASLR and Data Execution Prevention DEP protections in the Windows version of the software, allowing memory...

7.8CVSS5.7AI score0.01401EPSS
Exploits3References14
Positive Technologies
Positive Technologies
added 2020/08/11 12:0 a.m.2 views

PT-2020-3708 · Microsoft · Windows Kernel +1

Name of the Vulnerable Software and Affected Versions: Windows kernel affected versions not specified Description: An information disclosure issue exists in the Windows kernel, potentially allowing an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization...

4.7CVSS4.4AI score0.00948EPSS
Exploits0References6
Gitee
Gitee
added 2020/08/05 5:23 p.m.2 views

WhyNot-HEAP-Exploitation

This repository is for a proof-of-concept PoC exploit for a vulnerability in the glibc library, specifically targeting the House of Force attack. The House of Force attack is a type of attack that exploits the way glibc handles memory allocation and deallocation, allowing an attacker to control t...

7.5AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2020/08/05 12:0 a.m.7 views

The vulnerability of the Layout Templates component of the Oracle BI Publisher software allows a malicious individual to gain access to read, modify, add, or delete data.

The vulnerability of the Layout Templates component in the Oracle BI Publisher reporting software is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to read, modify, add, or delete data using the HTTP protocol...

7.2CVSS7.2AI score0.01218EPSS
Exploits0References2Affected Software1
Apple
Apple
added 2020/07/27 8:13 a.m.37 views

About the security content of watchOS 3 - Apple Support

For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. For more information about security, see the Apple Product Security...

10CVSS0.7AI score0.08628EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2020/07/20 12:0 a.m.2 views

Microsoft Windows Resource Policy Component Information Disclosure Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An information disclosure vulnerability exists in the Microsoft Windows Resource Policy...

5.5CVSS6.2AI score0.01225EPSS
Exploits0References1
CNVD
CNVD
added 2020/07/16 12:0 a.m.3 views

Unspecified Vulnerability in Oracle Fusion Middleware BI Publisher Layout Templates Component

Oracle Fusion Middleware Oracle Fusion Middleware is a set of Oracle's Oracle business innovation platform for enterprise and cloud environments. The platform provides middleware, software collection and other functions. BI Publisher formerly known as XML Publisher is one of the reporting...

7.2CVSS9.1AI score0.01218EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2020/07/15 5:34 p.m.10 views

CVE-2020-14696

Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware component: Layout Templates. Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

7.2CVSS6.5AI score0.01218EPSS
Exploits0References1
OSV
OSV
added 2020/07/14 5:37 a.m.11 views

OSV-2020-827 Use-of-uninitialized-value in llvm_ks::isIntN

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22920 Crash type: Use-of-uninitialized-value Crash state: llvmks::isIntN X86AsmBackend::applyFixup llvmks::MCAssembler::layout...

7.2AI score
Exploits0References1
OSV
OSV
added 2020/06/24 1:15 p.m.1 views

DEBIAN-CVE-2020-12862

An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-082...

4.3CVSS6AI score0.01077EPSS
Exploits1References1
Amazon
Amazon
added 2020/06/17 12:0 a.m.25 views

Important: fribidi

Issue Overview: A buffer overflow in the fribidigetparembeddinglevelsex function in lib/fribidi-bidi.c of GNU FriBidi through 1.0.7 allows an attacker to cause a denial of service or possibly execute arbitrary code by delivering crafted text content to a user, when this content is then rendered b...

7.8CVSS8.6AI score0.02182EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2020/06/11 9:37 p.m.7 views

Kernel: net: using kernel space address bits to derive IP ID may potentially break KASLR

A flaw was found in the way the Linux kernel derived the IP ID field from a partial kernel space address returned by a nethashmix function. A remote user could observe this IP ID field to extract the kernel address bits used to derive its value, which may result in leaking the hash key and...

7.5CVSS7.2AI score0.03252EPSS
Exploits0References5
OSV
OSV
added 2020/06/09 5:15 p.m.4 views

CVE-2020-9832

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.5. A malicious application may be able to determine kernel memory layout...

5.5CVSS6AI score0.0069EPSS
Exploits0References1
NVD
NVD
added 2020/06/09 5:15 p.m.19 views

CVE-2020-9831

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15.5. A malicious application may be able to determine kernel memory layout...

5.5CVSS5.1AI score0.00722EPSS
Exploits0References1
OSV
OSV
added 2020/06/09 5:15 p.m.2 views

CVE-2020-9809

An information disclosure issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application may be able to determine kernel memory layout...

5.5CVSS6AI score0.00872EPSS
Exploits0References4
NVD
NVD
added 2020/06/09 5:15 p.m.17 views

CVE-2020-9797

An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application may be able to determine another application's memory layout...

5.5CVSS5AI score0.00819EPSS
Exploits0References4
Rows per page
Query Builder