CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. Using crafted input, an attacker can cause a call to vaarg on an empty...

7.5CVSS7.5AI score0.00367EPSS

Exploits0References3

AlpineLinux•added 2024/12/11 7:16 p.m.•12 views

CVE-2024-47778

GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been discovered in gstwavparseadtlchunk within gstwavparse.c. This vulnerability arises due to insufficient validation of the size parameter, which can exceed the bounds of the data buffer. ...

7.5CVSS6.5AI score0.0046EPSS

Exploits0References4

Cvelist•added 2024/12/11 7:1 p.m.•13 views

CVE-2024-47596 GHSL-2024-244: GStreamer has an OOB-read in FOURCC_SMI_ parsing

GStreamer is a library for constructing graphs of media-handling components. An OOB-read has been discovered in the qtdemuxparsesvq3stsddata function within qtdemux.c. In the FOURCCSMI case, seqhsize is read from the input file without proper validation. If seqhsize is greater than the remaining...

5.1CVSS0.00212EPSS

Exploits0References3

Veracode•added 2022/09/19 7:48 p.m.•12 views

Denial Of Service (DoS)

fis-gtm is vulnerable to denial of service. The vulnerability exists in due to memory segmentation fault which allows an attacker to cause an application crash by providing malicious input...

7.5CVSS4.5AI score0.00367EPSS

Exploits0References4Affected Software1

OSV•added 2022/04/15 6:15 p.m.•14 views

CVE-2021-44503

An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. Using crafted input, an attacker can cause a call to vaarg on an empty variadic parameter list, most likely causing a memory segmentation fault...

7.5CVSS6.9AI score

Exploits0References3

NVD•added 2022/04/15 6:15 p.m.•10 views

CVE-2021-44503

7.5CVSS0.00367EPSS

Exploits0References3

NVD•added 2022/04/15 6:15 p.m.•12 views

CVE-2021-44504

An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. Using crafted input, an attacker can cause a size variable, stored as an signed int, to equal an extremely large value, which is interpreted as a negative value during a check. This value is then used in a memc...

7.5CVSS0.00528EPSS

Exploits0References3

UbuntuCve•added 2022/04/15 6:15 p.m.•32 views

CVE-2021-44504

7.5CVSS7.1AI score0.00528EPSS

Exploits0References3

Prion•added 2022/04/15 6:15 p.m.•11 views

Design/Logic Flaw

5CVSS7.5AI score0.00367EPSS

Exploits0References3Affected Software1

UbuntuCve•added 2022/04/15 6:15 p.m.•25 views

CVE-2021-44503

7.5CVSS7.2AI score0.00367EPSS

Exploits0References3

OSV•added 2022/04/15 6:15 p.m.•0 views

UBUNTU-CVE-2021-44503

7.5CVSS5.8AI score0.00367EPSS

Exploits0References4

CVE•added 2022/04/15 5:51 p.m.•78 views

CVE-2021-44503

CVE-2021-44503 affects FIS GT.M through V7.0-000 (related to the YottaDB code base). Using crafted input, an attacker can trigger a call to va_arg on an empty variadic parameter list, most likely causing a memory segmentation fault. The vulnerability is described across multiple sources as a memo...

7.5CVSS7.4AI score0.00367EPSS

Exploits0References3Affected Software1

Cvelist•added 2022/04/15 5:51 p.m.•11 views

CVE-2021-44503

7.7AI score0.00367EPSS

Exploits0References3

Debian CVE•added 2022/04/15 5:51 p.m.•46 views

CVE-2021-44503

7.5CVSS7.4AI score0.00367EPSS

Exploits0

CNNVD•added 2022/04/15 12:0 a.m.•1 views

FIS GT.M 缓冲区错误漏洞

FIS GT.M is a database platform. A security vulnerability exists in FIS GT.M versions prior to V7.0-000, which can be exploited by an attacker to call vaarg on an empty variable argument list, resulting in a memory segmentation error...

7.5CVSS5.6AI score0.00367EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by