CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in LibOFX 0.9.14. There is a NULL pointer dereference in the function OFXApplication::startElement in the file lib/ofxsgml.cpp, as...

8.8CVSS7.7AI score0.00698EPSS

Exploits1References2

Packet Storm News•added 2025/05/23 12:0 a.m.•2 views

Gentoo Linux Security Advisory 201908-26

Gentoo Linux Security Advisory 201908-26 - Multiple vulnerabilities have been found in libofx, the worst of which could result in the arbitrary execution of code. Versions less than 0.9.14 are affected...

8.8CVSS7.4AI score0.00747EPSS

Exploits4

Tenable Nessus•added 2024/08/25 12:0 a.m.•12 views

SUSE SLED12 / SLES12 Security Update : libofx (SUSE-SU-2024:3007-1)

The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3007-1 advisory. - CVE-2019-9656: Fixed null pointer dereference in function OFXApplication:startElement in lib/ofxsgml.cpp bsc1129596...

8.8CVSS7.9AI score0.00698EPSS

Exploits1References4

OSV•added 2024/08/23 2:46 p.m.•8 views

SUSE-SU-2024:3007-1 Security update for libofx

This update for libofx fixes the following issues: - CVE-2019-9656: Fixed null pointer dereference in function OFXApplication:startElement in lib/ofxsgml.cpp bsc1129596...

8.8CVSS8.6AI score0.00698EPSS

Exploits1References3

OSV•added 2024/06/15 12:0 a.m.•3 views

OPENSUSE-SU-2024:10964-1 libofx-0.10.1-1.9 on GA media

These are all security issues fixed in the libofx-0.10.1-1.9 package on the GA media of openSUSE Tumbleweed...

8.8CVSS7.1AI score0.00747EPSS

Exploits2References2

OpenVAS•added 2023/03/08 12:0 a.m.•16 views

Debian: Security Advisory (DLA-1192-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.6AI score0.00747EPSS

Exploits2References3

SUSE CVE•added 2023/02/15 4:52 a.m.•1 views

SUSE CVE-2017-2816

An exploitable buffer overflow vulnerability exists in the tag parsing functionality of LibOFX 0.9.11. A specially crafted OFX file can cause a write out of bounds resulting in a buffer overflow on the stack. An attacker can construct a malicious OFX file to trigger this vulnerability...

6.3CVSS7.6AI score0.00747EPSS

Exploits1References6

SUSE CVE•added 2023/02/15 4:39 a.m.•2 views

SUSE CVE-2017-14731

ofxprocfile in ofxpreproc.cpp in LibOFX 0.9.12 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted file, as demonstrated by an ofxdump call...

6.5CVSS6.9AI score0.00318EPSS

Exploits1References5

SUSE CVE•added 2023/02/15 4:14 a.m.•1 views

SUSE CVE-2019-9656

An issue was discovered in LibOFX 0.9.14. There is a NULL pointer dereference in the function OFXApplication::startElement in the file lib/ofxsgml.cpp, as demonstrated by ofxdump...

5.3CVSS7AI score0.00698EPSS

Exploits1References4

OpenVAS•added 2022/10/14 12:0 a.m.•7 views

Mageia: Security Advisory (MGASA-2022-0368)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score

Exploits0References8

OSV•added 2022/10/13 8:5 p.m.•3 views

MGASA-2022-0368 Updated libofx packages fix security vulnerability

The updated packages fix memory issues in libofx. rhbz2127755...

7.2AI score

Exploits0References7

Mageia•added 2022/10/13 8:5 p.m.•12 views

Updated libofx packages fix security vulnerability

The updated packages fix memory issues in libofx. rhbz2127755...

2.1AI score

Exploits0References6

Positive Technologies•added 2022/10/13 12:0 a.m.•1 views

PT-2022-37579 · Libofx · Libofx

Name of the Vulnerable Software and Affected Versions: libofx affected versions not specified Description: The issue concerns memory problems in libofx. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...

7AI score

Exploits0References8

OpenVAS•added 2022/09/30 12:0 a.m.•8 views

Fedora: Security Advisory for libofx (FEDORA-2022-c9028047bf)

7.5AI score

Exploits0References2

Fedora•added 2022/09/29 2:20 a.m.•15 views

[SECURITY] Fedora 35 Update: libofx-0.10.7-2.fc35

This is the LibOFX library. It is a API designed to allow applications to very easily support OFX command responses, usually provided by financial institutions. See http://www.ofx.net/ofx/default.asp for details and specification...

1AI score

Exploits0

OpenVAS•added 2022/09/29 12:0 a.m.•5 views

Fedora: Security Advisory for libofx (FEDORA-2022-95000d85e2)

7.5AI score

Exploits0References2

Fedora•added 2022/09/28 12:11 p.m.•17 views

[SECURITY] Fedora 36 Update: libofx-0.10.7-2.fc36

1AI score

Exploits0

Rows per page