Lucene search
+L

1069 matches found

OSV
OSV
added 2025/02/26 2:10 a.m.13 views

CVE-2022-49318 f2fs: remove WARN_ON in f2fs_is_valid_blkaddr

In the Linux kernel, the following vulnerability has been resolved: f2fs: remove WARNON in f2fsisvalidblkaddr Syzbot triggers two WARNs in f2fsisvalidblkaddr and isbitmapvalid. For example, in f2fsisvalidblkaddr, if type is DATAGENERICENHANCE or DATAGENERICENHANCEREAD, it invokes WARNON if blkadd...

5.5CVSS5AI score0.00247EPSS
Exploits0References9
F5 Networks
F5 Networks
added 2025/02/19 8:4 p.m.15 views

K000149304: OpenSSL vulnerability CVE-2024-6119

Security Advisory Description Issue summary: Applications performing certificate name checks e.g., TLS clients checking server certificates may attempt to read an invalid memory address resulting in abnormal termination of the application process. Impact summary: Abnormal termination of an...

7.5CVSS7.7AI score0.66594EPSS
Exploits0Affected Software3
Github Security Blog
Github Security Blog
added 2025/01/29 10:21 p.m.10 views

fast-fault has a segmentation fault due to lack of bound check

In this case, the "fastfloat::common::AsciiStr::first" method within the "AsciiStr" struct uses the unsafe keyword to reading from memory without performing bounds checking. Specifically, it directly dereferences a pointer offset by "self.ptr". Because of the above reason, the method accesses...

7.5AI score
Exploits0References3Affected Software1
Redos
Redos
added 2025/01/13 12:0 a.m.14 views

ROS-20250113-01

A vulnerability in the OpenSSL library is related to reading the wrong address in memory when comparing subject names otherName of an X.509 certificate. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service. remotely to cause a denial of service...

7.5CVSS6.8AI score0.66594EPSS
Exploits0
OSV
OSV
added 2025/01/08 3:15 a.m.2 views

CVE-2024-56438

Vulnerability of improper memory address protection in the HUKS module Impact: Successful exploitation of this vulnerability may affect availability...

7.5CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2025/01/08 3:15 a.m.16 views

CVE-2024-56438

Vulnerability of improper memory address protection in the HUKS module Impact: Successful exploitation of this vulnerability may affect availability...

7.5CVSS0.00196EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/08 2:4 a.m.9 views

CVE-2024-56438

Vulnerability of improper memory address protection in the HUKS module Impact: Successful exploitation of this vulnerability may affect availability...

6CVSS6.9AI score0.00196EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/08 2:4 a.m.25 views

CVE-2024-56438

Vulnerability of improper memory address protection in the HUKS module Impact: Successful exploitation of this vulnerability may affect availability...

6CVSS0.00196EPSS
Exploits0References1
CVE
CVE
added 2025/01/08 2:4 a.m.51 views

CVE-2024-56438

The CVE-2024-56438 entry concerns Huawei HarmonyOS: the HUKS module has an improper memory address protection vulnerability. Affected component is the HUKS module within HarmonyOS; root cause is memory address protection weakness that can impact availability. Publicly disclosed details across con...

7.5CVSS6AI score0.00196EPSS
Exploits0References1Affected Software2
Positive Technologies
Positive Technologies
added 2025/01/08 12:0 a.m.4 views

PT-2025-3282 · Unknown · Huks Module

Name of the Vulnerable Software and Affected Versions: HUKS module affected versions not specified Description: The issue is related to improper memory address protection in the HUKS module. Successful exploitation of this vulnerability may affect availability. Recommendations: At the moment, the...

7.5CVSS6.8AI score0.00196EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2024/11/21 7:14 p.m.11 views

CVE-2024-50220

In the Linux kernel, the following vulnerability has been resolved: fork: do not invoke uffd on fork if error occurs Patch series "fork: do not expose incomplete mm on fork". During fork we may place the virtual memory address space into an inconsistent state before the fork operation is complete...

5.5CVSS6.8AI score0.00167EPSS
Exploits0References4
NVD
NVD
added 2024/10/24 9:15 p.m.43 views

CVE-2024-48426

A segmentation fault SEGV was detected in the SortByPTypeProcess::Execute function in the Assimp library during fuzz testing with AddressSanitizer. The crash occurred due to a read access to an invalid memory address 0x1000c9714971...

6.2CVSS0.00228EPSS
Exploits1References1
AlpineLinux
AlpineLinux
added 2024/10/24 9:15 p.m.40 views

CVE-2024-48426

A segmentation fault SEGV was detected in the SortByPTypeProcess::Execute function in the Assimp library during fuzz testing with AddressSanitizer. The crash occurred due to a read access to an invalid memory address 0x1000c9714971...

6.2CVSS7AI score0.00228EPSS
Exploits1References1
CVE
CVE
added 2024/10/24 12:0 a.m.64 views

CVE-2024-48426

The connected documents describe CVE-2024-48426 affecting the Assimp library, specifically a segmentation fault in SortByPTypeProcess::Execute triggered by a read access to an invalid memory address during fuzz testing with AddressSanitizer (address 0x1000c9714971). Impact is crash of the applica...

6.2CVSS6.9AI score0.00228EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2024/10/24 12:0 a.m.7 views

assimp 安全漏洞

assimp is an assimp open source library. It is used to import and export various 3D model formats. A security vulnerability exists in assimp that stems from allowing read access to an invalid memory address 0x1000c9714971...

6.2CVSS6.1AI score0.00228EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/10/24 12:0 a.m.49 views

CVE-2024-48426

A segmentation fault SEGV was detected in the SortByPTypeProcess::Execute function in the Assimp library during fuzz testing with AddressSanitizer. The crash occurred due to a read access to an invalid memory address 0x1000c9714971...

0.00228EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2024/10/24 12:0 a.m.47 views

CVE-2024-48426

A segmentation fault SEGV was detected in the SortByPTypeProcess::Execute function in the Assimp library during fuzz testing with AddressSanitizer. The crash occurred due to a read access to an invalid memory address 0x1000c9714971...

6.2CVSS6.3AI score0.00228EPSS
Exploits1
Cvelist
Cvelist
added 2024/10/21 6:1 p.m.19 views

CVE-2024-49935 ACPI: PAD: fix crash in exit_round_robin()

In the Linux kernel, the following vulnerability has been resolved: ACPI: PAD: fix crash in exitroundrobin The kernel occasionally crashes in cpumaskclearcpu, which is called within exitroundrobin, because when executing clearbitnr, addr with nr set to 0xffffffff, the address calculation may caus...

0.00247EPSS
Exploits0References8
CVE
CVE
added 2024/10/21 11:53 a.m.154 views

CVE-2024-47687

The CVE-2024-47687 issue affects the Linux kernel mlx5/vdpa path. It fixes an invalid MR resource destroy where error paths could release uninitialized MR resources. The patch adds a missing check in mlx5_vdpa_destroy_mr_resources() to block destroying non-initialized MR resources, addressing a N...

5.5CVSS4.8AI score0.00234EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2024/10/21 12:0 a.m.9 views

PT-2024-28778 · Unknown · Boa Web Server +1

Name of the Vulnerable Software and Affected Versions: Vilo 5 Mesh WiFi System versions 5.16.1.33 and earlier Description: The issue is related to an information leak in the Boa webserver, which allows remote, unauthenticated attackers to leak memory addresses of uClibc and the stack. This can be...

4.3CVSS6.9AI score0.00251EPSS
Exploits1References6
Rows per page
Query Builder