Lucene search
K

3836 matches found

OSV
OSV
added 2020/03/30 10:15 p.m.12 views

CVE-2020-11105

An issue was discovered in USC iLab cereal through 1.3.0. It employs caching of std::sharedptr values, using the raw pointer address as a unique identifier. This becomes problematic if an std::sharedptr variable goes out of scope and is freed, and a new std::sharedptr is allocated at the same...

9.8CVSS6.8AI score
Exploits0References1
AlpineLinux
AlpineLinux
added 2020/03/30 10:15 p.m.16 views

CVE-2020-11104

An issue was discovered in USC iLab cereal through 1.3.0. Serialization of an initialized C/C++ long double variable into a BinaryArchive or PortableBinaryArchive leaks several bytes of stack or heap memory, from which sensitive information such as memory layout or private keys can be gleaned if...

5.3CVSS1.3AI score0.01534EPSS
Exploits1
Prion
Prion
added 2020/03/30 10:15 p.m.14 views

Design/Logic Flaw

An issue was discovered in USC iLab cereal through 1.3.0. It employs caching of std::sharedptr values, using the raw pointer address as a unique identifier. This becomes problematic if an std::sharedptr variable goes out of scope and is freed, and a new std::sharedptr is allocated at the same...

7.5CVSS9.3AI score0.01977EPSS
Exploits1References1Affected Software1
AlpineLinux
AlpineLinux
added 2020/03/30 10:15 p.m.21 views

CVE-2020-11105

An issue was discovered in USC iLab cereal through 1.3.0. It employs caching of std::sharedptr values, using the raw pointer address as a unique identifier. This becomes problematic if an std::sharedptr variable goes out of scope and is freed, and a new std::sharedptr is allocated at the same...

9.8CVSS1.3AI score0.01977EPSS
Exploits1
Cvelist
Cvelist
added 2020/03/30 9:30 p.m.13 views

CVE-2020-11105

An issue was discovered in USC iLab cereal through 1.3.0. It employs caching of std::sharedptr values, using the raw pointer address as a unique identifier. This becomes problematic if an std::sharedptr variable goes out of scope and is freed, and a new std::sharedptr is allocated at the same...

9.4AI score0.01977EPSS
Exploits1References1
GitLab Advisory Database
GitLab Advisory Database
added 2020/03/30 12:0 a.m.17 views

Release of Invalid Pointer or Reference

An issue was discovered in USC iLab cereal. It employs caching of std::sharedptr values, using the raw pointer address as a unique identifier. This becomes problematic if a std::sharedptr variable goes out of scope and is freed, and a new std::sharedptr is allocated at the same address...

9.8CVSS1.6AI score0.01977EPSS
Exploits1References1Affected Software1
Apple
Apple
added 2020/03/24 12:0 a.m.62 views

About the security content of macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra

About the security content of macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra This document describes the security content of macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra. About Apple security updates F...

9.8CVSS9.7AI score0.03295EPSS
Exploits2References1Affected Software3
CNVD
CNVD
added 2020/03/23 12:0 a.m.2 views

HDF5 Buffer Overflow Vulnerability (CNVD-2020-21017)

HDF5 is a suite of tools for managing and storing different types of data. The product supports managing, manipulating, viewing and analyzing data and generating files in portable formats. A buffer overflow vulnerability exists in the 'H5Olayoutdecode' function of the H5Olayout.c file in HDF5...

5.5CVSS9.2AI score0.0144EPSS
Exploits1References1
OSV
OSV
added 2020/03/22 6:15 p.m.2 views

DEBIAN-CVE-2020-10811

An issue was discovered in HDF5 through 1.12.0. A heap-based buffer over-read exists in the function H5Olayoutdecode located in H5Olayout.c. It allows an attacker to cause Denial of Service...

5.5CVSS7.3AI score0.0144EPSS
Exploits1References1
OSV
OSV
added 2020/03/22 6:15 p.m.3 views

UBUNTU-CVE-2020-10811

An issue was discovered in HDF5 through 1.12.0. A heap-based buffer over-read exists in the function H5Olayoutdecode located in H5Olayout.c. It allows an attacker to cause Denial of Service...

5.5CVSS7.3AI score0.0144EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2020/03/22 12:0 a.m.3 views

PT-2020-6976 · Hdf5 +3 · Hdf5 +3

Name of the Vulnerable Software and Affected Versions: HDF5 versions through 1.12.0 Description: The issue is related to a heap-based buffer over-read in the H5O layout decode function located in H5Olayout.c. This can allow an attacker to cause a Denial of Service. The vulnerability is associated...

9.8CVSS6AI score0.02948EPSS
Exploits21References134
CNVD
CNVD
added 2020/03/10 12:0 a.m.2 views

ThemeREX Addons Remote Code Execution Vulnerability

WordPress plugin ThemeREX Addons is a plugin that works with various ThemeREX themes, featuring several theme enhancements and widgets that extend the functionality of the theme in question. A remote code execution vulnerability exists in versions of ThemeREX Addons prior to 2020-03-09. The...

9.8CVSS8AI score0.08877EPSS
Exploits2References1
OSV
OSV
added 2020/02/27 9:15 p.m.3 views

CVE-2020-3836

An access issue was addressed with improved memory management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. A malicious application may be able to determine kernel memory layout...

5.5CVSS6AI score0.00322EPSS
Exploits0References4
Prion
Prion
added 2020/02/27 9:15 p.m.19 views

Memory corruption

An access issue was addressed with improved memory management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. A malicious application may be able to determine kernel memory layout...

2.1CVSS5.2AI score0.00322EPSS
Exploits0References4Affected Software5
Cvelist
Cvelist
added 2020/02/27 8:45 p.m.15 views

CVE-2020-3836

An access issue was addressed with improved memory management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. A malicious application may be able to determine kernel memory layout...

5.4AI score0.00322EPSS
Exploits0References4
CVE
CVE
added 2020/02/27 8:45 p.m.95 views

CVE-2020-3836

CVE-2020-3836 is an Apple kernel memory-management issue disclosed as an access problem that could allow a malicious, local app to determine the kernel memory layout. The vulnerability affects multiple Apple OSes: iOS 13.3.1, iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, and watchOS 6.1.2. ...

5.5CVSS5.2AI score0.00322EPSS
Exploits0References4Affected Software5
Tenable Nessus
Tenable Nessus
added 2020/02/13 12:0 a.m.50 views

openSUSE Security Update : systemd (openSUSE-2020-208)

This update for systemd fixes the following issues : - CVE-2020-1712 bscbsc1162108 Fix a heap use-after-free vulnerability, when asynchronous Polkit queries were performed while handling Dbus messages. A local unprivileged attacker could have abused this flaw to crash systemd services or...

7.8CVSS6.5AI score0.0046EPSS
Exploits0References16
CNVD
CNVD
added 2020/02/12 12:0 a.m.3 views

Adobe FrameMaker Stack Overflow Vulnerability (CNVD-2020-04709)

Adobe FrameMaker is a page layout software provided by the American company Audobee Adobe. A stack overflow vulnerability exists in Adobe FrameMaker. An attacker can exploit the vulnerability to execute arbitrary code...

8.8CVSS7.6AI score0.06231EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/02/05 12:0 a.m.29 views

openSUSE Security Update : upx (openSUSE-2020-163)

This update for upx to version 3.96 fixes the following issues : - CVE-2019-1010048: Fixed a denial of service in PackLinuxElf32::PackLinuxElf32help1 boo1141777. - CVE-2019-14296: Fixed a denial of service in canUnpack boo1143839. - CVE-2019-20021: Fixed a heap-based buffer over-read in canUnpack...

7.8CVSS6.6AI score0.02495EPSS
Exploits4References11
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.55 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1672)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.2AI score0.98745EPSS
Exploits8References2
Rows per page
Query Builder