Lucene search
K

17 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:9 p.m.14 views

CVE-2020-35965

decodeframe in libavcodec/exr.c in FFmpeg 4.3.1 has an out-of-bounds write because of errors in calculations of when to perform memset zero operations...

7.5CVSS6.8AI score0.02263EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2020/10/22 12:0 a.m.10 views

The vulnerability of the Virtual COM Port Driver (VSPD) of the Windows Storage Services data storage service on Windows operating systems allows a malicious actor to escalate their privileges and gain unauthorized access to protected information.

The vulnerability of the Virtual COM Port Driver VSPD of the Windows Storage Services data storage service in Windows operating systems is related to file operation processing errors. Exploiting this vulnerability can allow attackers to enhance their privileges and gain unauthorized access to...

7.8CVSS7.2AI score0.01021EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2020/10/22 12:0 a.m.10 views

The vulnerability of the Windows iSCSI Target service in the Windows operating system allows a hacker to escalate their privileges.

The vulnerability of the Windows iSCSI Target service in the Windows operating system is related to file operation processing errors. Exploiting this vulnerability can allow attackers to enhance their privileges through a specially created application...

7.8CVSS7.2AI score0.009EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2020/10/07 12:0 a.m.7 views

The vulnerability of the Windows Storage Services data storage service on Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Windows Storage Services data storage service in Windows operating systems is related to file operation processing errors. Exploiting this vulnerability can allow attackers to enhance their privileges through a specially created application...

7.8CVSS7.2AI score0.00931EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2020/09/29 12:0 a.m.8 views

The vulnerability of the Windows Language Pack Installer component on Windows operating systems allows a malicious individual to execute processes under privileged access.

The vulnerability of the Windows Language Pack Installer component in Windows operating systems is related to file operation errors. Exploiting this vulnerability can allow an attacker to execute processes in privileged mode using a specially created application...

5.5CVSS6.4AI score0.00956EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2020/09/22 12:0 a.m.5 views

The vulnerability of the Windows Storage Services data storage service on Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Windows Storage Services data storage service in Windows operating systems is related to file operation processing errors. Exploiting this vulnerability can allow attackers to enhance their privileges through a specially created application...

7.8CVSS7.2AI score0.01098EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2020/07/23 12:0 a.m.6 views

The vulnerability of the Connected User Experiences and Telemetry Services for Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Connected User Experiences and Telemetry Services for Windows operating systems is related to file operation processing errors. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information through a specially created application...

5.5CVSS6.2AI score0.01224EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2020/06/30 12:0 a.m.6 views

The vulnerability of the Microsoft Internet Information Server (IIS) server allows for unauthorized access by attackers, enabling them to escalate their privileges. This vulnerability is related to the Windows Background Intelligent Transfer Service (BITS), which operates on Windows operating systems.

The vulnerability of the Microsoft Internet Information Server IIS server, due to the Windows Background Intelligent Transfer Service BITS, affects operating systems running on Windows. This vulnerability is related to file operation processing errors. Exploiting this vulnerability can allow an...

9CVSS7.5AI score0.03366EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2020/03/25 12:0 a.m.5 views

The vulnerability of the Provisioning Runtime component in Windows operating systems allows attackers to escalate their privileges.

The vulnerability of the Provisioning Runtime component in Windows operating systems is related to errors in file operation handling. Exploiting this vulnerability can allow an attacker to gain increased privileges by executing non-privileged code on the target system...

7.8CVSS7.3AI score0.00756EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2020/03/25 12:0 a.m.6 views

The vulnerability of the Windows device installation dispatcher allows a perpetrator to execute processes with elevated privileges.

The vulnerability of the Windows device management agent is related to errors in file operations. Exploiting this vulnerability allows an attacker to execute processes with elevated privileges using a specially created application...

4.2CVSS7.3AI score0.00876EPSS
Exploits0References3
CNVD
CNVD
added 2019/12/19 12:0 a.m.3 views

GitLab Information Disclosure Vulnerability (CNVD-2020-12723)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. An information disclosure vulnerability exists in GitLab...

7.5CVSS6.1AI score0.01852EPSS
Exploits1References1
OSV
OSV
added 2019/11/20 7:15 p.m.9 views

CVE-2015-1607

kbx/keybox-search.c in GnuPG before 1.4.19, 2.0.x before 2.0.27, and 2.1.x before 2.1.2 does not properly handle bitwise left-shifts, which allows remote attackers to cause a denial of service invalid read operation via a crafted keyring file, related to sign extensions and "memcpy with overlappi...

5.5CVSS5.4AI score
Exploits0References14
CNVD
CNVD
added 2019/11/09 12:0 a.m.3 views

HP Inkjet printers information disclosure vulnerability

HP Inkjet printers are an Inkjet series of printers from Hewlett-Packard HP in the United States. A security vulnerability exists in HP Inkjet printers. The vulnerability arises from errors in the configuration of the networked system or in the operation of the product. The vulnerability can be...

5.2CVSS6.5AI score0.004EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/24 12:0 a.m.1 views

Dnsmasq Information Disclosure Vulnerability (CNVD-2019-39404)

Dnsmasq is a lightweight, easy-to-configure DNS forwarder and DHCP server. An information disclosure vulnerability exists in Dnsmasq, which arises from errors in configuration and other errors in the operation of a network system or product, and can be exploited by an unauthorized attacker to...

4.3CVSS7.3AI score0.02664EPSS
Exploits0References1
CNVD
CNVD
added 2019/07/31 12:0 a.m.4 views

Linux kernel information disclosure vulnerability (CNVD-2019-38262)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. An information disclosure vulnerability exists in versions of Linux kernel prior to 4.18.7. The vulnerability stems from errors in configuration and other errors in th...

3.3CVSS7.2AI score0.00463EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/07/11 12:0 a.m.4 views

The vulnerability of the Storage Service component in Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Storage Service component in Windows operating systems is related to errors in file operation processing. Exploiting this vulnerability can allow attackers to increase their privileges...

7.8CVSS5.5AI score0.0107EPSS
Exploits0References2
CNVD
CNVD
added 2019/04/02 12:0 a.m.2 views

IBM InfoSphere Information Server Information Disclosure Vulnerability (CNVD-2020-17612)

IBM InfoSphere Information Server is a set of data integration platforms from IBM in the United States. The platform can be used to integrate data information obtained from various sources. An information disclosure vulnerability exists in IBM InfoSphere Information Server, which arises from erro...

6.5CVSS6AI score0.01464EPSS
Exploits0References1
Rows per page
Query Builder