Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

SUSE CVE
SUSE CVEadded 2023/02/15 4:5 a.m.1 views

SUSE CVE-2019-20394

A double-free is present in libyang before v1.0-r3 in the function yyparse when a type statement in used in a notification statement. Applications that use libyang to parse untrusted input yang files may be vulnerable to this flaw, which would cause a crash or potentially code execution...

8.8CVSS7.4AI score0.00212EPSS
Exploits1References3
RedHat Linux
RedHat Linuxadded 2021/05/18 3:4 p.m.2 views

libyang: double-free in yyparse() when a type statement is used in a notification statement

A double-free flaw occurs in libyang in function yyparse when a type statement is used in a notification statement. Applications that use libyang to process untrusted input YANG files may be vulnerable to this flaw, possibly causing a crash or potential code execution...

8.8CVSS7.3AI score0.00212EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2020/01/23 9:39 a.m.25 views

CVE-2019-20394

A double-free flaw occurs in libyang in function yyparse when a type statement is used in a notification statement. Applications that use libyang to process untrusted input YANG files may be vulnerable to this flaw, possibly causing a crash or potential code execution...

8.8CVSS4.6AI score0.00212EPSS
Exploits1References3
Veracode
Veracodeadded 2020/01/23 9:15 a.m.16 views

Denial Of Service (DoS)

libyang.so is vulnerable to denial of service DoS. A double free error occurs due to the use of type statement in notification statement in the function lysparsepath, causing an application or arbitrary code execution...

8.8CVSS5.6AI score0.00212EPSS
Exploits1References5Affected Software2
Prion
Prionadded 2020/01/22 10:15 p.m.14 views

Double free

A double-free is present in libyang before v1.0-r3 in the function yyparse when a type statement in used in a notification statement. Applications that use libyang to parse untrusted input yang files may be vulnerable to this flaw, which would cause a crash or potentially code execution...

6.8CVSS8.7AI score0.00212EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2020/01/22 10:15 p.m.4 views

UBUNTU-CVE-2019-20394

A double-free is present in libyang before v1.0-r3 in the function yyparse when a type statement in used in a notification statement. Applications that use libyang to parse untrusted input yang files may be vulnerable to this flaw, which would cause a crash or potentially code execution...

8.8CVSS5.8AI score0.00212EPSS
Exploits1References6
Positive Technologies
Positive Technologiesadded 2020/01/22 12:0 a.m.1 views

PT-2020-1238 · Libyang · Libyang

Name of the Vulnerable Software and Affected Versions: libyang versions prior to v1.0-r3 Description: A double-free issue is present in the yyparse function when a type statement is used in a notification statement. This affects applications that use libyang to parse untrusted input yang files,...

8.8CVSS6.7AI score0.00292EPSS
Exploits7References42
Debian CVE
Debian CVEadded 2020/01/22 12:0 a.m.19 views

CVE-2019-20394

A double-free is present in libyang before v1.0-r3 in the function yyparse when a type statement in used in a notification statement. Applications that use libyang to parse untrusted input yang files may be vulnerable to this flaw, which would cause a crash or potentially code execution...

8.8CVSS8.8AI score0.00212EPSS
Exploits1
Rows per page
Query Builder