Lucene search
K

800 matches found

Positive Technologies
Positive Technologies
added 2022/10/06 12:0 a.m.3 views

PT-2022-17488 · Qualcomm · Qualcomm Snapdragon

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to memory corruption in WLAN due to an integer overflow leading to a buffer overflow while parsing GTK frames. This affects various Qualcomm Snapdragon...

9.8CVSS8.4AI score0.00438EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2022/10/03 12:0 a.m.5 views

The vulnerability of the sdp_cstate_alloc_buf function in the Bluetooth technology stack for Linux BlueZ, which allows a hacker to cause a service failure.

The vulnerability of the sdpcstateallocbuf function in the Bluetooth technology stack for Linux BlueZ is related to the lack of memory release when processing a linked list of cstates. Exploiting this vulnerability allows an attacker to cause a service failure...

6.5CVSS6.4AI score0.01101EPSS
Exploits1References16Affected Software10
Positive Technologies
Positive Technologies
added 2022/09/30 12:0 a.m.6 views

PT-2022-26096 · Bento4 · Bento4

Name of the Vulnerable Software and Affected Versions: Bento4 version 1.6.0-639 Description: An issue was discovered in the function AP4 DataBuffer::ReallocateBuffer in Core/Ap4DataBuffer.cpp, which leads to excessive memory consumption. Recommendations: For Bento4 version 1.6.0-639, consider...

5.5CVSS5.2AI score0.00288EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2022/09/20 1:42 p.m.10 views

kernel: ice: arfs: fix use-after-free when freeing @rx_cpu_rmap

In the Linux kernel, the following vulnerability has been resolved: ice: arfs: fix use-after-free when freeing @rxcpurmap The CI testing bots triggered the following splat: 718.203054 BUG: KASAN: use-after-free in freeirqcpurmap+0x53/0x80 718.206349 Read of size 4 at addr ffff8881bd127e00 by task...

7.8CVSS6.2AI score0.0026EPSS
Exploits0References5
CNNVD
CNNVD
added 2022/09/18 12:0 a.m.2 views

Vim 资源管理错误漏洞

Vim is a cross-platform text editor. versions prior to Vim 9.0.0490 are vulnerable to a resource management error, which stems from the existence of a memory reuse after release issue. No detailed vulnerability details are currently available...

7.8CVSS6.7AI score0.00475EPSS
Exploits1References14
Positive Technologies
Positive Technologies
added 2022/09/16 12:0 a.m.5 views

PT-2022-24659 · Huawei · Emui +2

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to a double free vulnerability in the storage module. This means that memory is freed twice, which can lead to unexpected behavior...

9.8CVSS9.2AI score0.00531EPSS
Exploits0References4
OSV
OSV
added 2022/08/26 4:15 p.m.10 views

CVE-2021-3669

A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts which could lead to resource exhaustion and DoS...

5.5CVSS7.2AI score0.00281EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/08/09 12:0 a.m.4 views

PT-2022-23211

Name of the Vulnerable Software and Affected Versions Apache Avro Rust SDK versions prior to 0.14.0 Description The issue allows a Reader to consume memory beyond the allowed constraints, leading to out of memory on the system. This affects Rust applications using the Apache Avro Rust SDK...

7.5CVSS7.1AI score0.01276EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2022/08/04 4:46 a.m.3 views

ant: excessive memory allocation when reading a specially crafted TAR archive

When reading a specially crafted TAR archive an Apache Ant build can be made to allocate large amounts of memory that finally leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. Apache Ant prior to 1.9.16 and 1.10.11 were affected...

5.5CVSS7.1AI score0.02511EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/08/02 7:58 a.m.4 views

OpenJDK: Excessive memory allocation in HashMap and HashSet (Utility, 8266097)

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Utility. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated...

5.3CVSS7.4AI score0.06468EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/08/02 12:0 a.m.7 views

PT-2022-22638 · Unknown · Teamplus Pro

Name of the Vulnerable Software and Affected Versions: Teamplus Pro affected versions not specified Description: The issue is related to an 'allocation of resource without limits or throttling' problem in the community discussion function. A remote attacker with general user privileges can post a...

7.7CVSS6.3AI score0.00821EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/07/20 12:0 a.m.4 views

PT-2022-21499 · Apple · Macos Monterey +7

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 15.6 iPadOS versions prior to 15.6 macOS Big Sur versions prior to 11.6.8 watchOS versions prior to 8.7 tvOS versions prior to 15.6 macOS Monterey versions prior to 12.5 macOS Catalina versions prior to Security Update...

5.5CVSS5.3AI score0.00238EPSS
Exploits0References11
OSV
OSV
added 2022/07/18 7:16 p.m.4 views

CLSA-2022-1658171795 Fixed CVE-2022-31625 in php

CVE-2022-31625: fix free of uninitialized memory leading to RCE...

8.1CVSS7.2AI score0.03437EPSS
Exploits1References1
OSV
OSV
added 2022/07/06 11:35 a.m.5 views

SUSE-SU-2022:2297-1 Security update for python-Twisted

This update for python-Twisted fixes the following issues: - CVE-2022-21716: Fixed that ssh server accepts an infinite amount of data using all the available memory bsc1196739...

7.5CVSS7.6AI score0.03608EPSS
Exploits1References3
OSV
OSV
added 2022/06/28 1:15 p.m.1 views

UBUNTU-CVE-2021-41690

DCMTK through 3.6.6 does not handle memory free properly. The malloced memory for storing all file information are recorded in a global variable LST and are not freed properly. Sending specific requests to the dcmqrdb program can incur a memory leak. An attacker can use it to launch a DoS attack...

7.5CVSS6.9AI score0.01595EPSS
Exploits0References6
OSV
OSV
added 2022/06/20 10:8 a.m.4 views

SUSE-SU-2022:2117-1 Security update for python-Twisted

This update for python-Twisted fixes the following issues: - CVE-2022-21716: Fixed that ssh server accepts an infinite amount of data using all the available memory bsc1196739...

7.5CVSS7.6AI score0.03608EPSS
Exploits1References3
OSV
OSV
added 2022/06/14 9:56 a.m.6 views

SUSE-SU-2022:2070-1 Security update for python-Twisted

This update for python-Twisted fixes the following issues: - CVE-2022-21716: Fixed that ssh server accepts an infinite amount of data using all the available memory bsc1196739...

7.5CVSS7.6AI score0.03608EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/06/10 6:15 p.m.4 views

CVE-2022-31287

An issue was discovered in Bento4 v1.2. There is an allocation size request error in /Ap4RtpAtom.cpp...

5.5CVSS6AI score0.00655EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2022/06/10 6:15 p.m.26 views

CVE-2022-31285

An issue was discovered in Bento4 1.2. The allocator is out of memory in /Source/C++/Core/Ap4Array.h...

5.5CVSS6.1AI score0.00655EPSS
Exploits1References1
Prion
Prion
added 2022/06/10 6:15 p.m.16 views

Design/Logic Flaw

An issue was discovered in Bento4 1.2. The allocator is out of memory in /Source/C++/Core/Ap4Array.h...

4.3CVSS5.5AI score0.00655EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder