101 matches found
CVE-2021-46168
Spin v6.5.1 was discovered to contain an out-of-bounds write in lex at spinlex.c...
UBUNTU-CVE-2021-46168
Spin v6.5.1 was discovered to contain an out-of-bounds write in lex at spinlex.c...
CVE-2021-46168
Spin v6.5.1 was discovered to contain an out-of-bounds write in lex at spinlex.c...
CVE-2021-46168
CVE-2021-46168 affects Spin v6.5.1, where an out-of-bounds write is triggered in the lex() function (spinlex.c). The vulnerability is evidenced across multiple sources (e.g., NVD, Red Hat, OSV, CVE records) with CVSS metrics indicating Moderate to High impact on availability locally, and no confi...
Spin缓冲区错误漏洞
Spin is an open source software verification tool . It is used for explicit state logic model checking. A security vulnerability exists in Spin that stems from an out-of-bounds write found to be included in spinlex.c's lex...
Lex Li vscode-restructuredtext access control error vulnerability
Lex Li vscode-restructuredtext is a Lex Li open source application. This extension provides rich reStructuredText language support for Visual Studio Code.An access control error vulnerability exists in versions prior to Lex Li vscode-restructuredtext 146.0.0, which stems from the inclusion of an...
ALPINE-CVE-2020-24240
GNU Bison before 3.7.1 has a use-after-free in obstackfree in lib/obstack.c called from gramlex when a '\0' byte is encountered. NOTE: there is a risk only if Bison is used with untrusted input, and the observed bug happens to cause unsafe behavior with a specific compiler/architecture. The bug...
OSV-2020-734 Heap-buffer-overflow in Sass::Prelexer::quoted_string
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15890 Crash type: Heap-buffer-overflow READ 1 Crash state: Sass::Prelexer::quotedstring char const Sass::Parser::lex& Sass::Parser::parsevalueschema...
OSV-2020-685 Global-buffer-overflow in backup
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=18464 Crash type: Global-buffer-overflow READ 1 Crash state: backup peek lexconfig...
OSV-2020-279 Global-buffer-overflow in lex_multiline_string
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=18562 Crash type: Global-buffer-overflow READ 3 Crash state: lexmultilinestring lexnext parsekeyvalue...
lex-connect.net Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1065879 Security Researcher geeknik Helped patch 8815 vulnerabilities Received 8 Coordinated Disclosure badges Received 20 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting lex-connect.net website an...
Honeywell MIDAS-E-LEX Gas Detector Detection
Binary data 762171.prm...
eur-lex.europa.eu XSS vulnerability
Open Bug Bounty ID: OBB-644746 Description| Value ---|--- Affected Website:| eur-lex.europa.eu Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
LibSass 'lex' Function Denial of Service Vulnerability
LibSass is an open source written in C using Sass CSS extension language parser . A security vulnerability exists in the 'lex' function of the parser.hpp file in LibSass version 3.4.5. A remote attacker can exploit this vulnerability to cause a denial of service stack consumption with the help of...
DEBIAN-CVE-2017-11554
There is a stack consumption vulnerability in the lex function in parser.hpp as used in sassc in LibSass 3.4.5. A crafted input will lead to a remote denial of service...
UBUNTU-CVE-2017-11554
There is a stack consumption vulnerability in the lex function in parser.hpp as used in sassc in LibSass 3.4.5. A crafted input will lead to a remote denial of service...
CVE-2017-11554
CVE-2017-11554 affects LibSass 3.4.5 (lex function in parser.hpp, as used by sassc). The vulnerability is a stack-consumption DoS triggered by crafted input, enabling remote denial of service. Multiple connected sources corroborate the issue and its impact. OpenSUSE/SUSE advisories and OSV/NVD en...
eur-lex.europa.eu XSS vulnerability
Vulnerable URL: http://eur-lex.europa.eu/legal-content/DA/TXT/?toc=%3C/SCript%3E%3CsvG/onLoad=prompt%28%22OPENBUGBOUNTY%22%29%3E=uriserv:OJ.C.2012.326.01.s002.01.DAN Details: Description| Value ---|--- Patched:| No Latest check for patch:| 31.07.2017 Vulnerability type:| XSS Vulnerability status:...
TK-Lex - External URLs, Unsafe deleting, WebView JavaScript enabled vulnerabilities
HackApp vulnerability scanner discovered that application TK-Lex published at the 'play' market has multiple vulnerabilities...
lex-line.com.ua Open Redirect vulnerability
Vulnerable URL: http://www.lex-line.com.ua/out.php?link=https://www.xssposed.org/ Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 11:33 GMT Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| 3454737 Google...