CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2506 matches found

Cvelist•added 2025/01/17 8:37 a.m.•14 views

CVE-2024-11139

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could allow local attackers to exploit these issues to potentially execute arbitrary code when opening a malicious project file...

4.6CVSS0.00228EPSS

Exploits0References1

CVE•added 2025/01/17 8:37 a.m.•44 views

CVE-2024-11139

CVE-2024-11139 affects Schneider Electric EcoStruxure Power Build Rapsody. A CWE-119-style memory-bounds vulnerability (buffer bounds) may allow local attackers to execute arbitrary code when opening a malicious project file. Reported impact is memory corruption with potential for local code exec...

4.6CVSS7.6AI score0.00228EPSS

Exploits0References1

BDU FSTEC•added 2025/01/17 12:0 a.m.•3 views

The vulnerability of the Ivanti EPM endpoint management software, related to reading data beyond the buffer in memory, allows a hacker to trigger a service failure.

The vulnerability of the Ivanti EPM endpoint management software is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow a remote attacker to cause service failures...

7.8CVSS7.5AI score0.02128EPSS

Exploits0References2

BDU FSTEC•added 2025/01/17 12:0 a.m.•4 views

The vulnerability of the Ivanti EPM endpoint management software, related to reading data beyond the buffer in memory, allows a hacker to trigger a service failure.

7.8CVSS7.5AI score0.02186EPSS

Exploits0References2

BDU FSTEC•added 2025/01/17 12:0 a.m.•18 views

The vulnerability of the Ivanti EPM endpoint management software, related to reading data beyond the buffer in memory, allows a hacker to trigger a service failure.

7.8CVSS7.5AI score0.01961EPSS

Exploits0References2

Positive Technologies•added 2025/01/14 12:0 a.m.•3 views

PT-2025-1056 · Microsoft · Windows Telephony Service +1

Name of the Vulnerable Software and Affected Versions: Windows Telephony Service affected versions not specified Description: The issue is related to a remote code execution problem in the Windows Telephony Service. It involves a buffer overflow in dynamic memory, which can be exploited by a remo...

10CVSS9.9AI score0.01624EPSS

Exploits0References8

BDU FSTEC•added 2025/01/13 12:0 a.m.•2 views

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations beyond the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations outside of the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created website...

6.5CVSS7.8AI score0.1307EPSS

Exploits0References25Affected Software11

Redos•added 2025/01/09 12:0 a.m.•16 views

ROS-20250109-08

The ungetbyte and ungetc methods of StringIO string handler for Ruby programming language are vulnerable to with an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker, acting remotely, to affect the confidentiality of protected information...

9.8CVSS6.9AI score0.02364EPSS

Exploits0

BDU FSTEC•added 2025/01/08 12:0 a.m.•4 views

The vulnerability of the Teamcenter Visualization lifecycle management system and the Siemens Tecnomatix Plant Simulation software environment, related to the execution of operations beyond the buffer in memory, allows attackers to trigger service failures or execute arbitrary code.

The vulnerability of the Teamcenter Visualization lifecycle management system and the Siemens Tecnomatix Plant Simulation software environment relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to trigger service failures or...

7.8CVSS6.2AI score0.00237EPSS

Exploits0References4Affected Software2

BDU FSTEC•added 2025/01/06 12:0 a.m.•2 views

The vulnerability of the cache_create() function in the dm-cache component (drivers/md/dm-cache-target.c) of the Linux kernel allows a hacker to induce a service failure.

The vulnerability of the cachecreate function in the dm-cache component of the Linux kernel lies in the fact that the operation exceeds the memory buffer boundaries. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.1CVSS6.9AI score0.00262EPSS

Exploits0References32Affected Software7

BDU FSTEC•added 2025/01/06 12:0 a.m.•4 views

The vulnerability of the Adobe Substance 3D Modeler software for 3D modeling lies in buffer overflows in dynamic memory, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Substance 3D Modeler software for 3D modeling is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially crafted file...

7.8CVSS6.3AI score0.00484EPSS

Exploits0References2Affected Software1

OSV•added 2025/01/03 12:54 p.m.•4 views

OESA-2025-1010 hplip security update

The Hewlett-Packard Linux Imaging and Printing Project provides drivers for HP printers and multi-function peripherals. Security Fixes: The HP Linux Imaging and Printing HPLIP software may potentially be affected by memory buffer overflow.CVE-2020-6923...

5.7CVSS7.2AI score0.00298EPSS

Exploits0References2

OSV•added 2024/12/29 12:15 p.m.•0 views

UBUNTU-CVE-2024-56756

In the Linux kernel, the following vulnerability has been resolved: nvme-pci: fix freeing of the HMB descriptor table The HMB descriptor table is sized to the maximum number of descriptors that could be used for a given device, but nvmeallochostmem could break out of the loop earlier on memory...

5.5CVSS6.1AI score0.00215EPSS

Exploits0References50

Vulnrichment•added 2024/12/29 11:30 a.m.•2 views

CVE-2024-56756 nvme-pci: fix freeing of the HMB descriptor table

7.4AI score0.00215EPSS

Exploits0References8

NVD•added 2024/12/19 7:15 p.m.•10 views

CVE-2020-6923

The HP Linux Imaging and Printing HPLIP software may potentially be affected by memory buffer overflow...

5.7CVSS0.00298EPSS

Exploits0References1

OSV•added 2024/12/19 7:15 p.m.•9 views

CVE-2020-6923

The HP Linux Imaging and Printing HPLIP software may potentially be affected by memory buffer overflow...

5.7AI score

Exploits0References1

Vulnrichment•added 2024/12/19 6:16 p.m.•10 views

CVE-2020-6923 HP Linux Imaging and Printing Software - Potential Memory Buffer Overflow

The HP Linux Imaging and Printing HPLIP software may potentially be affected by memory buffer overflow...

5.7CVSS7.1AI score0.00298EPSS

Exploits0References1

CVE•added 2024/12/19 6:16 p.m.•66 views

CVE-2020-6923

CVE-2020-6923 affects HP Linux Imaging and Printing (HPLIP). Connected sources document memory buffer overflow risk in HPLIP and publicly acknowledge a fix in SUSE/openSUSE advisories: hplip update to version 3.24.4 resolves CVE-2020-6923. Ubuntu USN-7202-1 also references the same CVE with an ad...

5.7CVSS5.8AI score0.00298EPSS

Exploits0References1

Cvelist•added 2024/12/19 6:16 p.m.•15 views

CVE-2020-6923 HP Linux Imaging and Printing Software - Potential Memory Buffer Overflow

The HP Linux Imaging and Printing HPLIP software may potentially be affected by memory buffer overflow...

5.7CVSS0.00298EPSS

Exploits0References1