Lucene search
+L

87 matches found

cnvd
cnvd
added 2020/11/26 12:0 a.m.4 views

Mongodb Server Input Validation Error Vulnerability (CNVD-2020-67315)

Mongodb Server is the United States Mongodb company's set of open source NoSQL database . The database provides collection-oriented storage , dynamic query , data replication and automatic failover and other functions . A security vulnerability exists in MongoDB Server that originates from the...

6.5CVSS6.8AI score0.01246EPSS
Exploits0References1
osv
osv
added 2020/11/23 4:15 p.m.12 views

UBUNTU-CVE-2019-2392

A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries, which use the $mod operator to overflow negative values. This issue affects: MongoDB Inc. MongoDB Server v4.4 versions prior to 4.4.1; v4.2 versions prior to 4.2.9; v4.0 versions prio...

6.5CVSS6.6AI score0.01246EPSS
Exploits0References3
prion
prion
added 2020/11/23 4:15 p.m.18 views

Input validation

A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries, which use the $mod operator to overflow negative values. This issue affects: MongoDB Inc. MongoDB Server v4.4 versions prior to 4.4.1; v4.2 versions prior to 4.2.9; v4.0 versions prio...

4CVSS6.4AI score0.01246EPSS
Exploits0References1Affected Software1
cve
cve
added 2020/11/23 3:25 p.m.183 views

CVE-2019-2392

CVE-2019-2392 affects MongoDB Server. A user authorized to perform database queries can cause a denial of service by sending specially crafted queries that use the $mod operator to overflow negative values. Affected versions include MongoDB Server v4.4 prior to 4.4.1; v4.2 prior to 4.2.9; v4.0 pr...

6.5CVSS6.5AI score0.01246EPSS
Exploits0References1Affected Software1
cnvd
cnvd
added 2020/04/24 12:0 a.m.3 views

OpenConnect Input Validation Error Vulnerability

OpenConnect is an open source application for connecting to virtual private networks. A security vulnerability exists in OpenConnect 8.08 and earlier versions, which stems from the program failing to properly handle negative values returned by calls to the 'X509check' function. An attacker could...

5.9CVSS6.7AI score0.01695EPSS
Exploits0References1
veracode
veracode
added 2020/04/01 12:38 a.m.25 views

Integer Overflows

Poppler vulnerable to integer overflows. The attack is possible because it doesn't check for negative values of stream length, leading to an Integer Overflow...

6.5CVSS4AI score0.01907EPSS
Exploits0References13Affected Software2
cnvd
cnvd
added 2019/02/26 12:0 a.m.3 views

PHP has an unspecified vulnerability (CNVD-2019-42542)

PHP PHP: Hypertext Preprocessor, PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language jointly maintained by the PHPGroup and the open source community. The language is mainly used for Web development, supports a variety of databases and operating systems. A...

9.8CVSS6.6AI score0.03065EPSS
Exploits1References1
cnvd
cnvd
added 2018/12/04 12:0 a.m.5 views

QEMU integer overflow vulnerability (CNVD-2018-25188)

QEMU aka Quick Emulator is a set of simulation processor software developed by French programmer Fabrice Bellard. The software is fast and cross-platform. An integer overflow vulnerability exists in the Bluetooth subsystem in QEMU, which stems from the program's failure to properly handle negativ...

5.7CVSS6.7AI score0.00877EPSS
Exploits0References1
osv
osv
added 2018/11/29 4:29 a.m.1 views

DEBIAN-CVE-2018-19623

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm.c by disallowing certain negative values...

7.5CVSS8.9AI score0.04155EPSS
Exploits1References1
ubuntucve
ubuntucve
added 2018/11/29 4:29 a.m.35 views

CVE-2018-19623

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm.c by disallowing certain negative values...

7.5CVSS7AI score0.04155EPSS
Exploits1References4
osv
osv
added 2018/11/29 4:29 a.m.3 views

UBUNTU-CVE-2018-19623

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm.c by disallowing certain negative values...

7.5CVSS7.2AI score0.04155EPSS
Exploits1References5
prion
prion
added 2018/06/08 1:29 a.m.14 views

Design/Logic Flaw

xfind/search in Ximdex 4.0 has XSS via the filternvalue parameters for non-negative values of n, as demonstrated by n equal to 0 through 12...

4.3CVSS5.9AI score0.00865EPSS
Exploits1References1Affected Software1
osv
osv
added 2018/01/12 11:29 p.m.6 views

CVE-2017-13195

In the ihevcdparsesps function of ihevcdparseheaders.c, several parameter values could be negative which could lead to negative indexes which could lead to an infinite loop. This could lead to a remote denial of service of a critical system process with no additional execution privileges needed...

7.5CVSS5.9AI score0.0173EPSS
Exploits0References3
prion
prion
added 2018/01/12 11:29 p.m.23 views

Design/Logic Flaw

In the ihevcdparsesps function of ihevcdparseheaders.c, several parameter values could be negative which could lead to negative indexes which could lead to an infinite loop. This could lead to a remote denial of service of a critical system process with no additional execution privileges needed...

7.8CVSS7.4AI score0.0173EPSS
Exploits0References3Affected Software1
prion
prion
added 2016/12/28 7:59 a.m.35 views

Memory corruption

The socksetsockopt function in net/core/sock.c in the Linux kernel before 4.8.14 mishandles negative values of sksndbuf and skrcvbuf, which allows local users to cause a denial of service memory corruption and system crash or possibly have unspecified other impact by leveraging the CAPNETADMIN...

7.2CVSS7.5AI score0.01566EPSS
Exploits8References12Affected Software1
nessus
nessus
added 2016/09/02 12:0 a.m.24 views

SUSE SLED12 / SLES12 Security Update : libvirt (SUSE-SU-2016:2053-1)

This update for libvirt fixes one security issue : - CVE-2016-5008: Empty VNC password disables authentication. bsc987527 Additionally, the update includes the following non-security fixes : - Improve waiting for block job readines in virsh. bsc989755 - Parse negative values in augeas lenses...

9.8CVSS6.9AI score0.03623EPSS
Exploits0References8
osv
osv
added 2016/04/18 12:59 a.m.4 views

CVE-2016-2414

The Minikin library in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not properly consider negative size values in font data, which allows remote attackers to cause a denial of service memory corruption and reboot loop via a crafted font, aka internal bug 26413177...

6.2CVSS7.3AI score0.00405EPSS
Exploits1References4
hackerone
hackerone
added 2015/07/06 4:12 p.m.32 views

Enter: Potential for financial loss, negative Values for "Buy fee" and "Sell Fee"

Issue It is possible to set negative values for the Buy Fee and Sell Fee, which will cause unexpected transfers etc. as these settings override the settings at the location. PoC 1. Go to the Operator Wallet's Settings. 2. Click on the users tab. 3. Select any user. 4. Go to settings tab of that...

6.8AI score
Exploits0
redhat
redhat
added 2015/03/17 5:58 p.m.3 views

freetype: integer overflow in pcf_get_encodings() leading to NULL pointer dereference

Multiple integer signedness errors in the pcfgetencodings function in pcf/pcfread.c in FreeType before 2.5.4 allow remote attackers to cause a denial of service integer overflow, NULL pointer dereference, and application crash via a crafted PCF file that specifies negative values for the first...

4.3CVSS5.9AI score0.0418EPSS
Exploits1References4
osv
osv
added 2015/02/08 11:59 a.m.1 views

DEBIAN-CVE-2014-9670

Multiple integer signedness errors in the pcfgetencodings function in pcf/pcfread.c in FreeType before 2.5.4 allow remote attackers to cause a denial of service integer overflow, NULL pointer dereference, and application crash via a crafted PCF file that specifies negative values for the first...

4.3CVSS7.2AI score0.0418EPSS
Exploits1References1
Rows per page
Query Builder