Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

783 matches found

CVE
CVEadded 2018/06/12 2:0 p.m.51 views

CVE-2018-12247

CVE-2018-12247 affects mruby 1.4.1. The issue is a NULL pointer dereference in mrb_class caused by certain .clone usage, where mrb_obj_clone in kernel.c copies flags other than MRB_FLAG_IS_FROZEN (e.g., the embedded flag). This can lead to crashes when the affected path is triggered. Connected so...

7.5CVSS7.5AI score0.00275EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2018/06/12 2:0 p.m.22 views

CVE-2018-12248

An issue was discovered in mruby 1.4.1. There is a heap-based buffer over-read associated with OPENTER because mrbgems/mruby-fiber/src/fiber.c does not extend the stack in cases of many arguments to fiber...

7.7AI score0.00274EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2018/06/12 2:0 p.m.16 views

CVE-2018-12248

An issue was discovered in mruby 1.4.1. There is a heap-based buffer over-read associated with OPENTER because mrbgems/mruby-fiber/src/fiber.c does not extend the stack in cases of many arguments to fiber...

7.5CVSS7.7AI score0.00274EPSS
Exploits0
Cvelist
Cvelistadded 2018/06/12 2:0 p.m.15 views

CVE-2018-12249

An issue was discovered in mruby 1.4.1. There is a NULL pointer dereference in mrbclassreal because "class BasicObject" is not properly supported in class.c...

8.5AI score0.00659EPSS
Exploits1References3
CVE
CVEadded 2018/06/12 2:0 p.m.63 views

CVE-2018-12248

The CVE-2018-12248 entry concerns mruby 1.4.1, where a heap-based buffer over-read occurs in the OP_ENTER path when fiber is invoked with many arguments. The underlying cause is that mrbgems/mruby-fiber/src/fiber.c does not extend the stack sufficiently for large argument lists. Affects mruby 1.4...

7.5CVSS7.6AI score0.00274EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2018/06/12 2:0 p.m.75 views

CVE-2018-12249

Summary of CVE-2018-12249 : The issue is in mruby 1.4.1, causing a NULL pointer dereference in function mrb_class_real due to improper support for the object literal "BasicObject" in class.c . This is a vulnerability in the mruby interpreter affecting code paths that interact with BasicObject sem...

7.5CVSS7.8AI score0.00659EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVEadded 2018/06/12 2:0 p.m.27 views

CVE-2018-12249

An issue was discovered in mruby 1.4.1. There is a NULL pointer dereference in mrbclassreal because "class BasicObject" is not properly supported in class.c...

7.5CVSS7.5AI score0.00659EPSS
Exploits1
RubySec
RubySecadded 2018/06/12 12:0 a.m.17 views

Null pointer dereference in mrb_class

An issue was discovered in mruby 1.4.1. There is a NULL pointer dereference in mrbclass, related to certain .clone usage, because mrbobjclone in kernel.c copies flags other than the MRBFLAGISFROZEN flag e.g., the embedded flag...

7.5CVSS6.8AI score0.00275EPSS
Exploits0References1Affected Software1
RubySec
RubySecadded 2018/06/12 12:0 a.m.13 views

Heap buffer overflow in OP_ENTER

An issue was discovered in mruby 1.4.1. There is a heap-based buffer over-read associated with OPENTER because a heap-based mrbgems/mruby-fiber/src/fiber.c does not extend the stack in cases of many arguments to fiber...

7.5CVSS7AI score0.00274EPSS
Exploits0References1Affected Software1
RubySec
RubySecadded 2018/06/12 12:0 a.m.26 views

Null pointer dereference in mrb_class_real

An issue was discovered in mruby 1.4.1. There is a NULL pointer dereference in mrbclassreal because "class BasicObject" is not properly supported in class.c...

7.5CVSS6.9AI score0.00659EPSS
Exploits1References1Affected Software1
CNVD
CNVDadded 2018/06/06 12:0 a.m.1 views

mruby Denial of Service Vulnerability (CNVD-2018-14714)

mruby is a lightweight implementation of the Ruby language. A security vulnerability exists in the 'initcopy' function of the kernel.c file in mruby version 1.4.1. An attacker can exploit this vulnerability to cause a denial of service uninitialized pointer usage and application crash...

9.8CVSS8.9AI score0.00567EPSS
Exploits1References1
NVD
NVDadded 2018/06/05 1:29 p.m.10 views

CVE-2018-11743

The initcopy function in kernel.c in mruby 1.4.1 makes initializecopy calls for TTICLASS objects, which allows attackers to cause a denial of service mrbhashkeys uninitialized pointer and application crash or possibly have unspecified other impact...

9.8CVSS9.8AI score0.00567EPSS
Exploits1References3
OSV
OSVadded 2018/06/05 1:29 p.m.9 views

CVE-2018-11743

The initcopy function in kernel.c in mruby 1.4.1 makes initializecopy calls for TTICLASS objects, which allows attackers to cause a denial of service mrbhashkeys uninitialized pointer and application crash or possibly have unspecified other impact...

9.8CVSS9.9AI score
Exploits0References3
Prion
Prionadded 2018/06/05 1:29 p.m.11 views

Code injection

The initcopy function in kernel.c in mruby 1.4.1 makes initializecopy calls for TTICLASS objects, which allows attackers to cause a denial of service mrbhashkeys uninitialized pointer and application crash or possibly have unspecified other impact...

7.5CVSS9.7AI score0.00567EPSS
Exploits1References3Affected Software2
OSV
OSVadded 2018/06/05 1:29 p.m.0 views

DEBIAN-CVE-2018-11743

The initcopy function in kernel.c in mruby 1.4.1 makes initializecopy calls for TTICLASS objects, which allows attackers to cause a denial of service mrbhashkeys uninitialized pointer and application crash or possibly have unspecified other impact...

9.8CVSS7.3AI score0.00567EPSS
Exploits1References1
OSV
OSVadded 2018/06/05 1:29 p.m.1 views

UBUNTU-CVE-2018-11743

The initcopy function in kernel.c in mruby 1.4.1 makes initializecopy calls for TTICLASS objects, which allows attackers to cause a denial of service mrbhashkeys uninitialized pointer and application crash or possibly have unspecified other impact...

9.8CVSS7.3AI score0.00567EPSS
Exploits1References3
Cvelist
Cvelistadded 2018/06/05 1:0 p.m.12 views

CVE-2018-11743

The initcopy function in kernel.c in mruby 1.4.1 makes initializecopy calls for TTICLASS objects, which allows attackers to cause a denial of service mrbhashkeys uninitialized pointer and application crash or possibly have unspecified other impact...

9.8AI score0.00567EPSS
Exploits1References3
CVE
CVEadded 2018/06/05 1:0 p.m.57 views

CVE-2018-11743

CVE-2018-11743 affects mruby 1.4.1. Root cause: in kernel.c, init_copy calls initialize_copy for TT_ICLASS objects. Impact: can cause a denial of service via an uninitialized pointer used by mrb_hash_keys and may have unspecified other impact, including application crash. Exploitation details are...

9.8CVSS9.6AI score0.00567EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVEadded 2018/06/05 1:0 p.m.16 views

CVE-2018-11743

The initcopy function in kernel.c in mruby 1.4.1 makes initializecopy calls for TTICLASS objects, which allows attackers to cause a denial of service mrbhashkeys uninitialized pointer and application crash or possibly have unspecified other impact...

9.8CVSS9.8AI score0.00567EPSS
Exploits1
RubySec
RubySecadded 2018/06/05 12:0 a.m.15 views

Use of uninitialized pointer in mrb_hash_keys

The initcopy function in kernel.c in mruby 1.4.1 makes initializecopy calls for TTICLASS objects, which allows attackers to cause a denial of service mrbhashkeys uninitialized pointer and application crash or possibly have unspecified other impact...

9.8CVSS7.4AI score0.00567EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder