Lucene search
K

113 matches found

vulnrichment
vulnrichment
added 2022/05/03 8:23 p.m.10 views

CVE-2021-27431 ARM CMSIS RTOS2 Integer Overflow or Wraparound

ARM CMSIS RTOS2 versions prior to 2.1.3 are vulnerable to integer wrap-around inosRtxMemoryAlloc local malloc equivalent function, which can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or injected code execution...

7.3CVSS7.4AI score0.01048EPSS
Exploits0References1
osv
osv
added 2021/12/25 1:15 a.m.10 views

CVE-2021-45481

In WebKitGTK before 2.32.4, there is incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create, leading to a segmentation violation and application crash, a different vulnerability than CVE-2021-30889...

6.5CVSS8.5AI score
Exploits0References2
cnnvd
cnnvd
added 2021/10/19 12:0 a.m.5 views

AUVESY Versiondog 资源管理错误漏洞

AUVESY Versiondog is an automated production data and change management software solution from AUVESY Germany. a resource management error vulnerability exists in AUVESY Versiondog, which can be exploited by attackers to allocate unlimited memory buffers using API functions...

8.1CVSS5.6AI score0.00745EPSS
Exploits0References5
nvd
nvd
added 2021/07/13 8:15 a.m.15 views

CVE-2021-35517

When reading a specially crafted TAR archive, Compress can be made to allocate large amounts of memory that finally leads to an out of memory error even for very small inputs. This could be used to mount a denial of service attack against services that use Compress' tar package...

7.5CVSS0.10614EPSS
Exploits0References22
openvas
openvas
added 2021/07/07 12:0 a.m.16 views

Huawei EulerOS: Security Advisory for netpbm (EulerOS-SA-2021-2107)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.8AI score0.01291EPSS
Exploits0References2
nessus
nessus
added 2021/03/04 12:0 a.m.31 views

EulerOS Virtualization 3.0.6.6 : netpbm (EulerOS-SA-2021-1500)

According to the versions of the netpbm packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A memory allocation vulnerability was found in netpbm before 10.61. A maliciously crafted SVG file could cause the application to...

5.5CVSS5.8AI score0.01926EPSS
Exploits1References3
osv
osv
added 2020/11/28 7:15 a.m.11 views

CVE-2020-29370

An issue was discovered in kmemcacheallocbulk in mm/slub.c in the Linux kernel before 5.5.11. The slowpath lacks the required TID increment, aka CID-fd4d9c7d0c71...

7CVSS9AI score
Exploits0References4
nvd
nvd
added 2020/11/24 11:15 a.m.25 views

CVE-2019-20925

An unauthenticated client can trigger denial of service by issuing specially crafted wire protocol messages, which cause the message decompressor to incorrectly allocate memory. This issue affects MongoDB Server v4.2 versions prior to 4.2.1; MongoDB Server v4.0 versions prior to 4.0.13; MongoDB...

7.5CVSS7.4AI score0.01655EPSS
Exploits0References1
osv
osv
added 2020/11/21 12:21 p.m.6 views

MGASA-2020-0430 Updated tcpdump package fixes a security vulnerability

The ppp decapsulator in tcpdump 4.9.3 can be convinced to allocate a large amount of memory. CVE-2020-8037...

7.5CVSS7.5AI score0.03071EPSS
Exploits0References3
nvd
nvd
added 2020/01/24 3:15 p.m.26 views

CVE-2020-7226

CiphertextHeader.java in Cryptacular 1.2.3, as used in Apereo CAS and other products, allows attackers to trigger excessive memory allocation during a decode operation, because the nonce array length associated with "new byte" may depend on untrusted input within the header of encoded data...

7.5CVSS8.4AI score0.03334EPSS
Exploits1References19
openvas
openvas
added 2020/01/23 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for netpbm (EulerOS-SA-2019-2426)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.9AI score0.01926EPSS
Exploits2References2
prion
prion
added 2019/10/17 7:15 p.m.15 views

Information disclosure

An issue was discovered in Bitdefender BOX firmware versions before 2.1.37.37-34 that affects the general reliability of the product. Specially crafted packets sent to the miniupnpd implementation in result in the device allocating memory without freeing it later. This behavior can cause the...

4.9CVSS4.8AI score0.00323EPSS
Exploits0References1Affected Software1
nvd
nvd
added 2019/02/10 10:29 p.m.20 views

CVE-2019-7698

An issue was discovered in AP4Array::EnsureCapacity in Core/Ap4Array.h in Bento4 1.5.1-627. Crafted MP4 input triggers an attempt at excessive memory allocation, as demonstrated by mp42hls, a related issue to CVE-2018-20095...

6.5CVSS6.4AI score0.0121EPSS
Exploits1References1
redhatcve
redhatcve
added 2019/01/31 3:49 p.m.23 views

CVE-2019-7148

An attempted excessive memory allocation was discovered in the function readlongnames in elfbegin.c in libelf in elfutils 0.174. Remote attackers could leverage this vulnerability to cause a denial-of-service via crafted elf input, which leads to an out-of-memory exception. NOTE: The maintainers...

6.5CVSS3.9AI score0.01585EPSS
Exploits1References3
alpinelinux
alpinelinux
added 2019/01/29 12:0 a.m.73 views

CVE-2019-7148

An attempted excessive memory allocation was discovered in the function readlongnames in elfbegin.c in libelf in elfutils 0.174. Remote attackers could leverage this vulnerability to cause a denial-of-service via crafted elf input, which leads to an out-of-memory exception. NOTE: The maintainers...

6.5CVSS6.1AI score0.01585EPSS
Exploits1
cnvd
cnvd
added 2019/01/15 12:0 a.m.4 views

libIEC61850 Resource Management Error Vulnerability (CNVD-2019-43852)

libIEC61850 is an open source library for IEC 61850. A security vulnerability exists in Memorymalloc and Memorycalloc in the hal/memory/libmemory.c file in libIEC61850 version 1.3.1. An attacker can exploit this vulnerability to cause a denial of service memory leak...

7.5CVSS6.7AI score0.01456EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2019/01/11 9:0 p.m.3 views

CVE-2018-16865

An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when many entries are sent to the journal socket. A local attacker, or a remote one if systemd-journal-remote is used, may use this flaw to crash...

7.5CVSS7.9AI score0.02958EPSS
Exploits2References21
cnvd
cnvd
added 2018/12/27 12:0 a.m.4 views

Bento4 Excessive Memory Allocation Vulnerability (CNVD-2019-07053)

Bento4 is a C++ class library and tool for reading and writing ISO-MP4 files. An excessive memory allocation vulnerability in the AP4DataBuffer class in Bento4 1.5.1-627 when called from AP4HvccAtom::Create in Core/Ap4HvccAtom.cpp can be exploited by an attacker to cause a denial of service...

6.5CVSS6.8AI score0.01053EPSS
Exploits1References1
amazon
amazon
added 2018/04/26 12:0 a.m.57 views

Critical: java-1.8.0-openjdk

Issue Overview: Unbounded memory allocation during deserialization in Container AWT, 8189989 Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: AWT. Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161...

8.3CVSS5.3AI score0.15141EPSS
Exploits0
debiancve
debiancve
added 2018/04/14 2:0 p.m.45 views

CVE-2018-10114

An issue was discovered in GEGL through 0.3.32. The geglbufferiteratereadsimple function in buffer/gegl-buffer-access.c allows remote attackers to cause a denial of service write access violation or possibly have unspecified other impact via a malformed PPM file, related to improper restrictions ...

8.8CVSS9.1AI score0.01928EPSS
Exploits1
Rows per page
Query Builder