Lucene search
K

2316 matches found

Tenable Nessus
Tenable Nessus
added 2019/05/14 12:0 a.m.31 views

EulerOS Virtualization for ARM 64 3.0.1.0 : binutils (EulerOS-SA-2019-1377)

According to the versions of the binutils package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - concatfilename in dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30,...

7.8CVSS6.7AI score0.03467EPSS
Exploits4References11
OpenVAS
OpenVAS
added 2019/05/14 12:0 a.m.57 views

Apple Mac OS X Security Updates (HT210119) - 02

Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.2AI score0.04442EPSS
Exploits2References3
OSV
OSV
added 2019/05/13 4:29 p.m.5 views

CVE-2018-4029

An exploitable code execution vulnerability exists in the HTTP request-parsing function of the NT9665X Chipset firmware running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. A specially crafted packet can cause an unlimited and arbitrary write to memory, resulting in code execution...

9.8CVSS6.3AI score0.02853EPSS
Exploits1References1
Prion
Prion
added 2019/05/13 4:29 p.m.15 views

Remote code execution

An exploitable code execution vulnerability exists in the HTTP request-parsing function of the NT9665X Chipset firmware running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. A specially crafted packet can cause an unlimited and arbitrary write to memory, resulting in code execution...

7.5CVSS9.7AI score0.02853EPSS
Exploits1References1Affected Software1
RedHat Linux
RedHat Linux
added 2019/05/13 5:3 a.m.6 views

mozilla: Integer overflow in Skia

Incorrect convexity calculations in Skia in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page...

6.5CVSS7.4AI score0.01192EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/05/13 5:3 a.m.4 views

Mozilla: Ionmonkey type confusion with __proto__ mutations

Incorrect handling of proto mutations may lead to type confusion in IonMonkey JIT code and can be leveraged for arbitrary memory read and write. This vulnerability affects Firefox 66.0.1, Firefox ESR 60.6.1, and Thunderbird 60.6.1...

8.8CVSS7.4AI score0.07387EPSS
Exploits4References5
Talos
Talos
added 2019/05/13 12:0 a.m.142 views

Novatek NT9665X HFS Recv buffer overflow code execution vulnerability

Summary An exploitable code execution vulnerability exists in the HTTP request-parsing function of the NT9665X Chipset firmware running on the Anker Roav A1 Dashcam, version “RoavA1SWV1.9.” A specially crafted packet can cause an unlimited and arbitrary write to memory, resulting in code executio...

10CVSS9.3AI score0.02853EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2019/05/10 12:0 a.m.34 views

EulerOS Virtualization 2.5.3 : libssh2 (EulerOS-SA-2019-1362)

According to the versions of the libssh2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An integer overflow flaw which could lead to an out of bounds write was discovered in libssh2 in the way packets are read from th...

9.3CVSS7.4AI score0.09219EPSS
Exploits0References5
OSV
OSV
added 2019/05/03 8:29 p.m.5 views

CVE-2019-11037

In PHP imagick extension in versions between 3.3.0 and 3.4.4, writing to an array of values in ImagickKernel::fromMatrix function did not check that the address will be within the allocated array. This could lead to out of bounds write to memory if the function is called with the data controlled ...

9.8CVSS9.4AI score
Exploits0References11
Cvelist
Cvelist
added 2019/05/03 7:28 p.m.26 views

CVE-2019-11037 Out of bounds memory write in PHP Imagick extension

In PHP imagick extension in versions between 3.3.0 and 3.4.4, writing to an array of values in ImagickKernel::fromMatrix function did not check that the address will be within the allocated array. This could lead to out of bounds write to memory if the function is called with the data controlled ...

4.9CVSS9.4AI score0.01972EPSS
Exploits0References11
Prion
Prion
added 2019/04/26 5:29 p.m.32 views

Type confusion

Incorrect handling of proto mutations may lead to type confusion in IonMonkey JIT code and can be leveraged for arbitrary memory read and write. This vulnerability affects Firefox 66.0.1, Firefox ESR 60.6.1, and Thunderbird 60.6.1...

6.8CVSS8.1AI score0.07387EPSS
Exploits4References6Affected Software3
AlpineLinux
AlpineLinux
added 2019/04/26 4:9 p.m.669 views

CVE-2019-9813

Incorrect handling of proto mutations may lead to type confusion in IonMonkey JIT code and can be leveraged for arbitrary memory read and write. This vulnerability affects Firefox 66.0.1, Firefox ESR 60.6.1, and Thunderbird 60.6.1...

8.8CVSS8.5AI score0.07387EPSS
Exploits4
CVE
CVE
added 2019/04/26 4:9 p.m.317 views

CVE-2019-9813

CVE-2019-9813 describes an IonMonkey JIT type confusion caused by incorrect handling of proto mutations, enabling potential arbitrary memory read/write. Affected products include Firefox prior to 66.0.1, Firefox ESR prior to 60.6.1, and Thunderbird prior to 60.6.1. The underlying issue is a type-...

8.8CVSS8.2AI score0.07387EPSS
Exploits4References6Affected Software2
OSV
OSV
added 2019/04/09 6:29 p.m.2 views

CVE-2019-9133

When processing subtitles format media file, KMPlayer version 2018.12.24.14 or lower doesn't check object size correctly, which leads to integer underflow then to memory out-of-bound read/write. An attacker can exploit this issue by enticing an unsuspecting user to open a malicious file...

5.5CVSS5.8AI score0.01714EPSS
Exploits0References3
Prion
Prion
added 2019/04/08 4:29 p.m.17 views

Remote code execution

An arbitrary memory write vulnerability exists in the dualonsrv.exe module in Honeywell Experion PKS R40x before R400.6, R41x before R410.6, and R43x before R430.2, that could lead to possible remote code execution or denial of service. Honeywell strongly encourages and recommends all customers...

7.5CVSS8.2AI score0.03465EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2019/04/08 4:29 p.m.16 views

CVE-2014-5435

An arbitrary memory write vulnerability exists in the dualonsrv.exe module in Honeywell Experion PKS R40x before R400.6, R41x before R410.6, and R43x before R430.2, that could lead to possible remote code execution or denial of service. Honeywell strongly encourages and recommends all customers...

9.8CVSS9.8AI score0.03465EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/04/08 3:25 p.m.14 views

CVE-2014-5435

An arbitrary memory write vulnerability exists in the dualonsrv.exe module in Honeywell Experion PKS R40x before R400.6, R41x before R410.6, and R43x before R430.2, that could lead to possible remote code execution or denial of service. Honeywell strongly encourages and recommends all customers...

9.8AI score0.03465EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2019/03/29 1:49 p.m.26 views

CVE-2018-12182

Insufficient memory write check in SMM service for EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access...

6.7CVSS4.4AI score0.00412EPSS
Exploits0References3
CNVD
CNVD
added 2019/03/29 12:0 a.m.2 views

EDK2 Memory Write Vulnerability

EDK2 is a set of cross-platform firmware development environment based on UEFI and PI specifications. A security vulnerability exists in EDK2's SMM service that stems from the program's failure to adequately perform memory write checks. A local attacker could exploit the vulnerability to elevate...

6.7CVSS6.4AI score0.00412EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2019/03/28 2:52 p.m.5 views

Mozilla: Ionmonkey type confusion with __proto__ mutations

Incorrect handling of proto mutations may lead to type confusion in IonMonkey JIT code and can be leveraged for arbitrary memory read and write. This vulnerability affects Firefox 66.0.1, Firefox ESR 60.6.1, and Thunderbird 60.6.1...

8.8CVSS7.4AI score0.07387EPSS
Exploits4References5
Rows per page
Query Builder