Lucene search
K

257 matches found

Prion
Prion
added 2023/06/19 5:15 a.m.20 views

Information disclosure

Access of memory location after end of buffer issue exists in TELLUS v4.0.15.0 and TELLUS Lite v4.0.15.0. Opening a specially crafted V8 file may lead to information disclosure and/or arbitrary code execution...

4.4CVSS7.7AI score0.00245EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2023/06/19 12:0 a.m.20 views

CVE-2023-32270

Access of memory location after end of buffer issue exists in TELLUS v4.0.15.0 and TELLUS Lite v4.0.15.0. Opening a specially crafted V8 file may lead to information disclosure and/or arbitrary code execution...

7.9AI score0.00245EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/03/21 12:0 a.m.47 views

Amazon Linux 2023 : golang, golang-bin, golang-misc (ALAS2023-2023-048)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-048 advisory. A vulnerability was found in archive/zip of the Go standard library. Applications written in Go can panic or potentially exhaust system memory when parsing malformed ZIP files. CVE-2021-33196 A...

9.8CVSS7.4AI score0.10299EPSS
Exploits8References56
Prion
Prion
added 2023/03/15 9:15 p.m.22 views

Code injection

OpenSIPS is a Session Initiation Protocol SIP server implementation. Prior to versions 3.1.7 and 3.2.4, sending a malformed Via header to OpenSIPS triggers a segmentation fault when the function calctagsuffix is called. A specially crafted Via header, which is deemed correct by the parser, will...

5CVSS7.5AI score0.00971EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2023/02/17 12:0 a.m.22 views

LS ELECTRIC XBC-DN32U Denial of Service Vulnerability

LS ELECTRIC XBC-DN32U is a PLC programmable logic controller from LS ELECTRIC Korea.A denial of service vulnerability exists in the LS ELECTRIC XBC-DN32U. The vulnerability stems from the fact that the device will stop functioning when accessing a memory location outside of the communication...

7.5CVSS7.6AI score0.00663EPSS
Exploits0References1
ICS
ICS
added 2023/02/09 12:0 a.m.39 views

LS ELECTRIC XBC-DN32U

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: LS ELECTRIC, LS Industrial Systems LSIS Co. Ltd Equipment: XBC-DN32U Vulnerabilities: Missing Authentication for Critical Function, Improper Access Control, Cleartext Transmission of Sensitive...

9.8CVSS8AI score0.00724EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2023/01/31 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2023-1303)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.6AI score0.12272EPSS
Exploits50References2
Tenable Nessus
Tenable Nessus
added 2023/01/30 12:0 a.m.38 views

EulerOS Virtualization 3.0.2.2 : vim (EulerOS-SA-2023-1303)

According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - vim is vulnerable to Heap-based Buffer Overflow CVE-2021-3778, CVE-2021-3872, CVE-2021-3927, CVE-2021-3984, CVE-2021-4019,...

8.8CVSS7.3AI score0.12272EPSS
Exploits50References51
Tenable Nessus
Tenable Nessus
added 2023/01/06 12:0 a.m.40 views

EulerOS Virtualization 3.0.2.6 : vim (EulerOS-SA-2023-1053)

According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - vim is vulnerable to Heap-based Buffer Overflow CVE-2021-3778, CVE-2021-3872, CVE-2021-3927, CVE-2021-3984, CVE-2021-4019,...

8.8CVSS7.2AI score0.01792EPSS
Exploits15References16
OSV
OSV
added 2022/11/15 9:15 p.m.5 views

CVE-2022-20826

A vulnerability in the secure boot implementation of Cisco Secure Firewalls 3100 Series that are running Cisco Adaptive Security Appliance ASA Software or Cisco Firepower Threat Defense FTD Software could allow an unauthenticated attacker with physical access to the device to bypass the secure bo...

6.8CVSS5.9AI score0.00323EPSS
Exploits0References1
OSV
OSV
added 2022/10/14 5:15 p.m.4 views

CVE-2022-41303

A user may be tricked into opening a malicious FBX file which may exploit a use-after-free vulnerability in Autodesk FBX SDK 2020 version causing the application to reference a memory location controlled by an unauthorized third party, thereby running arbitrary code on the system...

7.8CVSS6AI score0.00351EPSS
Exploits0References1
Prion
Prion
added 2022/10/14 5:15 p.m.30 views

Double free

A user may be tricked into opening a malicious FBX file which may exploit a use-after-free vulnerability in Autodesk FBX SDK 2020 version causing the application to reference a memory location controlled by an unauthorized third party, thereby running arbitrary code on the system...

4.4CVSS7.8AI score0.00351EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/10/10 12:0 a.m.24 views

EulerOS Virtualization 3.0.6.0 : vim (EulerOS-SA-2022-2594)

According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - vim is vulnerable to Out-of-bounds Read CVE-2021-4166, CVE-2021-4193 - vim is vulnerable to Use After Free CVE-2021-4192 - vim is...

9.8CVSS7.1AI score0.26583EPSS
Exploits40References41
Tenable Nessus
Tenable Nessus
added 2022/10/09 12:0 a.m.33 views

EulerOS Virtualization 3.0.6.6 : vim (EulerOS-SA-2022-2541)

According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - vim is vulnerable to Heap-based Buffer Overflow CVE-2021-3927, CVE-2021-3984, CVE-2021-4019, CVE-2022-0213 - vim is vulnerable to Us...

8.8CVSS7.5AI score0.12272EPSS
Exploits33References34
OpenVAS
OpenVAS
added 2022/09/15 12:0 a.m.25 views

Adobe Photoshop Multiple Vulnerabilities (APSB21-109) - Windows

Adobe Photoshop is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS6.5AI score0.01979EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/08/21 12:0 a.m.59 views

GLSA-202208-32 : Vim, gVim: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202208-32 Vim, gVim: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in Vim and gVim. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block...

9.8CVSS7.3AI score0.12272EPSS
Exploits92References106
Veracode
Veracode
added 2022/08/12 7:33 p.m.25 views

Denial Of Service (DoS)

vim is vulnerable to denial of service. The vulnerability exist because there is an out of bounds read in github repository which can allow the attacker to read sensitive information from other memory location or cause a crash when the code reads a variable amount of data and assumes that a...

7.8CVSS7.4AI score0.01309EPSS
Exploits1References9Affected Software1
Prion
Prion
added 2022/07/30 12:15 a.m.17 views

Information disclosure

Trend Micro Security 2021 and 2022 Consumer is vulnerable to an Out-Of-Bounds Read Information Disclosure Vulnerability that could allow an attacker to read sensitive information from other memory locations and cause a crash on an affected machine...

3.2CVSS5.7AI score0.00284EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/07/26 10:15 p.m.8 views

CVE-2022-31205

In Omron CS series, CJ series, and CP series PLCs through 2022-05-18, the password for access to the Web UI is stored in memory area D1449...D1452 and can be read out using the Omron FINS protocol without any further authentication...

7.5CVSS5.8AI score0.00543EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/07/26 10:15 p.m.3 views

CVE-2022-31205

In Omron CS series, CJ series, and CP series PLCs through 2022-05-18, the password for access to the Web UI is stored in memory area D1449...D1452 and can be read out using the Omron FINS protocol without any further authentication...

7.5CVSS7.1AI score0.00543EPSS
Exploits0References3
Rows per page
Query Builder