Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

UbuntuCve
UbuntuCveadded 2021/09/13 9:15 p.m.48 views

CVE-2021-41054

tftpdfile.c in atftp through 0.7.4 has a buffer overflow because buffer-size handling does not properly consider the combination of data, OACK, and other options...

7.5CVSS7.3AI score0.00758EPSS
Exploits1References3
Debian CVE
Debian CVEadded 2021/09/13 8:43 p.m.31 views

CVE-2021-41054

tftpdfile.c in atftp through 0.7.4 has a buffer overflow because buffer-size handling does not properly consider the combination of data, OACK, and other options...

7.5CVSS8AI score0.00758EPSS
Exploits1
Cvelist
Cvelistadded 2021/09/13 8:43 p.m.23 views

CVE-2021-41054

tftpdfile.c in atftp through 0.7.4 has a buffer overflow because buffer-size handling does not properly consider the combination of data, OACK, and other options...

8.1AI score0.00758EPSS
Exploits1References3
CNNVD
CNNVDadded 2021/09/13 12:0 a.m.2 views

atftp 安全漏洞

atftp is a client implementation of the TFTP protocol. A security vulnerability exists in tftpdfile.c in ATFTP 0.7.4 and earlier versions, which stems from buffer size handling that does not properly account for combinations of data, OACK, and other options...

7.5CVSS7.6AI score0.00758EPSS
Exploits1References7
Tenable Nessus
Tenable Nessusadded 2019/09/16 12:0 a.m.36 views

FreeBSD : curl -- multiple vulnerabilities (9fb4e57b-d65a-11e9-8a5f-e5c82b486287)

curl security problems : CVE-2019-5481: FTP-KRB double-free libcurl can be told to use kerberos over FTP to a server, as set with the CURLOPTKRBLEVEL option. During such kerberos FTP data transfer, the server sends data to curl in blocks with the 32 bit size of each block first and then that amou...

9.8CVSS6.5AI score0.09715EPSS
Exploits0References6
OSV
OSVadded 2019/09/11 8:0 a.m.7 views

CURL-CVE-2019-5482 TFTP small blocksize heap buffer overflow

libcurl contains a heap buffer overflow in the function tftpreceivepacket that receives data from a TFTP server. It can call recvfrom with the default size for the buffer rather than with the size that was used to allocate it. Thus, the content that might overwrite the heap memory is controlled b...

9.8CVSS8.8AI score0.09715EPSS
Exploits0
FreeBSD
FreeBSDadded 2019/09/11 12:0 a.m.41 views

curl -- multiple vulnerabilities

curl security problems: CVE-2019-5481: FTP-KRB double-free libcurl can be told to use kerberos over FTP to a server, as set with the CURLOPTKRBLEVEL option. During such kerberos FTP data transfer, the server sends data to curl in blocks with the 32 bit size of each block first and then that amoun...

9.8CVSS1.4AI score0.09715EPSS
Exploits0References3
Hacker One
Hacker Oneadded 2019/08/29 3:52 p.m.51 views

curl: Heap buffer overflow in TFTP when using small blksize

Summary: With a TFTP server that does not send OACK, but instead starts anyway with first block with 512 bytes block size, the curl library fails to assume default 512 bytes blocks. Instead it detects EOF and does not return an error code. Consequence is a truncated file that is 512 bytes without...

7.5CVSS9AI score0.15484EPSS
Exploits1
CVE
CVEadded 2009/09/09 10:0 p.m.50 views

CVE-2009-3115

CVE-2009-3115 affects SolarWinds TFTP Server versions up to 9.2.0.111 and earlier. The vulnerability is a denial of service caused by crafting an Option Acknowledgement (OACK) request, potentially stopping the service and impacting availability. Public exploit coverage is noted in some sources, a...

5CVSS6.8AI score0.06109EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder