CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3095 matches found

CNNVD•added 2023/04/11 12:0 a.m.•4 views

Bento4 缓冲区错误漏洞

Bento4 is an open source C++ library for reading and writing MP4 files. A denial of service vulnerability exists in Bento4 version v1.6.0-639, which stems from the AP4TrunAtom::SetDataOffsetint function in Ap4TrunAtom.h containing a segmentation violation. An attacker can exploit this vulnerabili...

5.5CVSS5.4AI score0.00291EPSS

Exploits1References3

Microsoft CVE•added 2023/03/25 7:0 a.m.•3 views

In the Linux kernel before 6.1.3 fs/ntfs3/inode.c does not validate the attribute name offset. An unhandled page fault may occur.

...

7.8CVSS6.9AI score0.00266EPSS

Exploits0

SUSE CVE•added 2023/03/21 3:14 a.m.•4 views

SUSE CVE-2022-48424

In the Linux kernel before 6.1.3, fs/ntfs3/inode.c does not validate the attribute name offset. An unhandled page fault may occur...

7.8CVSS6.4AI score0.00266EPSS

Exploits0References3

Tenable Nessus•added 2023/03/20 12:0 a.m.•32 views

CBL Mariner 2.0 Security Update: kernel (CVE-2022-47520)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-47520 advisory. - An issue was discovered in the Linux kernel before 6.0.11. Missing offset validation in...

7.1CVSS6.7AI score0.00307EPSS

Exploits0References2

Tenable Nessus•added 2023/03/20 12:0 a.m.•47 views

CBL Mariner 2.0 Security Update: vim (CVE-2022-1420)

The version of vim installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-1420 advisory. - Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4774. CVE-2022-1420 Note that Nessu...

6.8CVSS6.7AI score0.01418EPSS

Exploits1References2

OSV•added 2023/03/19 3:15 a.m.•28 views

CVE-2022-48424

In the Linux kernel before 6.1.3, fs/ntfs3/inode.c does not validate the attribute name offset. An unhandled page fault may occur...

7.8CVSS5.9AI score

Exploits0References3

OSV•added 2023/03/19 3:15 a.m.•3 views

DEBIAN-CVE-2022-48424

In the Linux kernel before 6.1.3, fs/ntfs3/inode.c does not validate the attribute name offset. An unhandled page fault may occur...

7.8CVSS6.3AI score0.00266EPSS

Exploits0References1

OSV•added 2023/03/19 3:15 a.m.•5 views

AZL-25693 CVE-2022-48424 affecting package kernel for versions less than 5.15.102.1-3

In the Linux kernel before 6.1.3, fs/ntfs3/inode.c does not validate the attribute name offset. An unhandled page fault may occur...

7.8CVSS6.6AI score0.00266EPSS

Exploits0References1

OSV•added 2023/03/19 3:15 a.m.•1 views

UBUNTU-CVE-2022-48424

In the Linux kernel before 6.1.3, fs/ntfs3/inode.c does not validate the attribute name offset. An unhandled page fault may occur...

7.8CVSS6.7AI score0.00266EPSS

Exploits0References11

CNNVD•added 2023/03/19 12:0 a.m.•2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in versions of Linux kernel prior to 6.1.3, which stems from fs/ntfs3/inode.c not checking attribute name offsets, resulting in a possible...

7.8CVSS6.5AI score0.00266EPSS

Exploits0References9

Debian CVE•added 2023/03/19 12:0 a.m.•44 views

CVE-2022-48424

In the Linux kernel before 6.1.3, fs/ntfs3/inode.c does not validate the attribute name offset. An unhandled page fault may occur...

7.8CVSS7AI score0.00266EPSS

Exploits0

Positive Technologies•added 2023/03/17 12:0 a.m.•3 views

PT-2023-16993 · Mp4V2 · Mp4V2

Name of the Vulnerable Software and Affected Versions: MP4v2 version 2.1.2 Description: A vulnerability was found in the function mp4v2::impl::MP4Track::GetSampleFileOffset of the file mp4track.cpp. The manipulation leads to denial of service. An attack has to be approached locally. The exploit h...

5.5CVSS7AI score0.00368EPSS

Exploits1References11

NVD•added 2023/03/10 9:15 p.m.•18 views

CVE-2022-25694

Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM...

8.4CVSS8.6AI score0.00123EPSS

Exploits0References1

NVD•added 2023/03/10 9:15 p.m.•17 views

CVE-2022-25709

Memory corruption in modem due to use of out of range pointer offset while processing qmi msg...

8.4CVSS8.6AI score0.00123EPSS

Exploits0References1

Prion•added 2023/03/10 9:15 p.m.•21 views

Memory corruption

Memory corruption in modem due to use of out of range pointer offset while processing qmi msg...

4.3CVSS7.8AI score0.00123EPSS

Exploits0References1

Vulnrichment•added 2023/03/07 4:43 a.m.•12 views

CVE-2022-25709 Use of Out-of-range Pointer Offset in Data Modem

Memory corruption in modem due to use of out of range pointer offset while processing qmi msg...

8.4CVSS7.3AI score0.00123EPSS

Exploits0References1

Veracode•added 2023/03/06 5:26 p.m.•23 views

Denial Of Service (DoS)

Linux kernel is vulnerable to Denial Of Service DoS. The vulnerability exists due to the missing offset validation in hif.c in the WILC1000 wireless driver which can trigger an out-of-bounds read when parsing a Robust Security Network RSN information element from a Netlink packet...

7.1CVSS6.7AI score0.00307EPSS

Exploits0References6Affected Software1

OSV•added 2023/03/03 8:15 p.m.•2 views

CVE-2023-27566

Cubism Core in Live2D Cubism Editor 4.2.03 allows out-of-bounds write via a crafted Section Offset Table or Count Info Table in an MOC3 file...

7.8CVSS7.1AI score0.00579EPSS

Exploits1References4

CNNVD•added 2023/03/03 12:0 a.m.•3 views

Live2D 缓冲区错误漏洞

Live2D is a deformation tool that can be used in a variety of situations from Live2D. A security vulnerability exists in Live2D Cubism Editor version 4.2.03, which stems from allowing out-of-bounds writes through carefully crafted cross-section offset tables or count information tables in MOC3...

7.8CVSS7.3AI score0.00579EPSS

Exploits1References5