CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Ivan 'd0znpp' Novikov•added 2021/12/22 3:48 p.m.•17 views

Explanation of what Java API is ❓ Types. Examples

When the two most viable and essential application/software development comes together, programmers are allowed to have unmatched functionality. Java API Application Programming Interface is the perfect example of how to attain this. Acknowledged as a crucial entity for internal and open...

7.9AI score

CNVD•added 2021/12/22 12:0 a.m.•16 views

Open Design Alliance Drawings SDK Out-of-Bounds Read Vulnerability (CNVD-2022-01423)

Open Design Alliance Drawings SDK is a software development kit for drawing design applications from Open Design Alliance, Inc. The package provides access to data in .dwg and .dgn through a convenient, object-oriented API, providing a C API, support for repair files, support for the . This...

7.8CVSS4.5AI score0.00418EPSS

CNVD•added 2021/12/22 12:0 a.m.•19 views

Open Design Alliance Drawings SDK Out-of-Bounds Writing Vulnerability (CNVD-2022-01424)

Open Design Alliance Drawings SDK is a software development kit for drawing design applications from Open Design Alliance, Inc. The SDK provides access to data in .dwg and .dgn through a convenient, object-oriented API, providing a C API, support for repair files, support for the . The...

7.8CVSS4.2AI score0.00367EPSS

CNVD•added 2021/11/29 12:0 a.m.•28 views

Ruby has unspecified vulnerabilities (CNVD-2022-06510)

Ruby is a cross-platform, object-oriented, dynamically typed programming language. versions prior to Ruby 3.0.3 contain a security vulnerability that can be exploited by attackers to spoof the security prefix in cookie names so that vulnerable applications can be spoofed...

7.5CVSS3.7AI score0.00765EPSS

CNNVD•added 2021/11/29 12:0 a.m.•2 views

Open Design Alliance Drawings SDK 缓冲区错误漏洞

Open Design Alliance Drawings SDK is a software development kit for drawing design applications from Open Design Alliance, Inc. The development package provides access to data in .dwg and .dgn through a convenient, object-oriented API that provides a C API, support for repair files, support for...

7.8CVSS5.7AI score0.00294EPSS

Exploits0References3

CNVD•added 2021/11/22 12:0 a.m.•14 views

Open Design Alliance Drawings SDK Resource Management Error Vulnerability

7.8CVSS3.7AI score0.00533EPSS

CNVD•added 2021/11/15 12:0 a.m.•14 views

Drawings SDK out-of-bounds read vulnerability (CNVD-2021-94906)

Drawings SDK is a development kit from the Open Design Alliance that gives you access to all .dwg and .dgn data via an object-oriented API that lets you create and edit any type of .dwg and .dgn drawing file. OBJ file reader in versions of Drawings SDK prior to 2022.11 An out-of-bounds read...

7.8CVSS3.2AI score0.00367EPSS

RedHat Linux•added 2021/11/09 5:55 p.m.•62 views

Moderate: Red Hat Security Advisory: python3 security update

An update for python3 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

5.7CVSS6.8AI score0.00081EPSS

Exploits0References4

OSV•added 2021/11/09 8:26 a.m.•29 views

ALSA-2021:4160 Moderate: python39:3.9 and python39-devel:3.9 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

9.8CVSS7.3AI score0.02048EPSS

Exploits6References8

AlmaLinux•added 2021/11/02 7:48 a.m.•47 views

Moderate: python3 security update

4CVSS7.4AI score0.00629EPSS

SonarSource Blog•added 2021/10/19 12:0 a.m.•33 views

Squirrel Sandbox Escape allows Code Execution in Games and Cloud Services

SquirrelLang is an interpreted, open-source programming language that is used by video games and cloud services for customization and plugin development. For example, the extremely popular game Counter-Strike: Global Offensive CS:GO attracts millions of players on a monthly basis and utilizes the...

0.2AI score0.02698EPSS

Exploits1

Ubuntu•added 2021/10/04 12:4 p.m.•178 views

USN-4973-2: Python vulnerability

USN-4973-1 fixed this vulnerability previously, but it was re-introduced in python3.8 in focal because of the SRU in LP: 1928057. This update fixes the problem. Original advisory details: It was discovered that the Python stdlib ipaddress API incorrectly handled octal strings. A remote attacker...

9.8CVSS7.5AI score0.02048EPSS

AlmaLinux•added 2021/09/21 7:12 a.m.•13 views

python3 bug fix and enhancement update

1.1AI score

AlmaLinux•added 2021/09/21 7:9 a.m.•18 views

python-ldap bug fix and enhancement update

The python-ldap packages provide an object-oriented API for working with LDAP within Python programs. It allows access to LDAP directory servers by using the OpenLDAP 2.x libraries, and contains modules for other LDAP-related tasks including processing LDIF, LDAPURLs, LDAPv3 schema, etc.. Bug Fix...

2AI score

Ubuntu•added 2021/09/16 5:27 p.m.•145 views

USN-5083-1: Python vulnerabilities

It was discovered that Python incorrectly handled certain RFCs. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 16.04 ESM. CVE-2021-3733 It was discovered that Python incorrectly handled certain server responses. An attacker could possibly u...

7.5CVSS7AI score0.00629EPSS

Exploits2

Ivan 'd0znpp' Novikov•added 2021/08/16 9:10 a.m.•129 views

Broken Object Level Authorization☝️ — What you need to know

Broken Object Level Authorization☝️ — What you need to know What is Broken Object Level Authorisation? Broken Object Level Authorisation all starts with an object. Objects should be looked at in the context of “Object Oriented Programming”, what I mean with that is objects are the things you think...

7.3AI score