Lucene search
K

214 matches found

OpenVAS
OpenVAS
added 2022/09/15 12:0 a.m.25 views

Adobe Photoshop Multiple Vulnerabilities (APSB21-109) - Windows

Adobe Photoshop is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS6.5AI score0.01979EPSS
Exploits0References1
CNVD
CNVD
added 2022/05/25 12:0 a.m.19 views

epub2txt2 denial of service vulnerability

epub2txt is a simple command-line utility for extracting text from an EPUB document and optionally rearranging it to fit a specific number of columns of text to be displayed. epub2txt2 version v2.04 is vulnerable to a denial-of-service vulnerability stemming from an integer overflow error in the...

4.3CVSS4.5AI score0.00568EPSS
Exploits1Affected Software1
RedhatCVE
RedhatCVE
added 2022/05/17 4:10 p.m.58 views

CVE-2022-22976

A flaw was found in Spring Framework. The encoder does not perform any salt rounds when using the BCrypt class with the maximum work factor 31 due to an integer overflow error...

5.3CVSS2.8AI score0.02139EPSS
Exploits0References4
PyPA
PyPA
added 2021/11/05 8:15 p.m.6 views

PYSEC-2021-390

TensorFlow is an open source platform for machine learning. In affected versions TensorFlow allows tensor to have a large number of dimensions and each dimension can be as large as desired. However, the total number of elements in a tensor must fit within an int64t. If an overflow occurs,...

5.5CVSS7.1AI score0.00307EPSS
Exploits2References6Affected Software1
Positive Technologies
Positive Technologies
added 2021/11/05 12:0 a.m.5 views

PT-2021-23171 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.7.0 TensorFlow versions 2.6.1 and earlier TensorFlow versions 2.5.2 and earlier TensorFlow versions 2.4.4 and earlier Description: In affected versions, if tf.image.resize is called with a large input argument,...

5.5CVSS5.4AI score0.0023EPSS
Exploits1References15
Code423n4
Code423n4
added 2021/09/29 12:0 a.m.11 views

IndexPool.sol#_pow() Wrong implementation

Handle WatchPug Vulnerability details function powuint256 a, uint256 n internal pure returns uint256 output output = n % 2 != 0 ? a : BASE; for n /= 2; n != 0; n /= 2 a = a a; if n % 2 != 0 output = output a; 1. a a without div by BASE will accumulate decimals unexpectedly and leads to overflow...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2021/08/13 12:0 a.m.23 views

Adobe Reader DC Continuous Security Update (APSB21-51) - Mac OS X

The host is missing an important security update according to Adobe August update. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...

9.3CVSS5.8AI score0.66052EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/08/12 12:0 a.m.19 views

Adobe Acrobat DC Continuous Security Update (APSB21-51) - Windows

The host is missing an important security update according to Adobe August update. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...

9.3CVSS5.8AI score0.66052EPSS
Exploits0References1
OSV
OSV
added 2021/08/07 6:15 p.m.5 views

AZL-6581 CVE-2021-38166 affecting package kernel for versions less than 5.10.78.1-1

In kernel/bpf/hashtab.c in the Linux kernel through 5.13.8, there is an integer overflow and out-of-bounds write when many elements are placed in a single bucket. NOTE: exploitation might be impractical without the CAPSYSADMIN capability...

7.8CVSS6.7AI score0.0032EPSS
Exploits0References1
ThreatPost
ThreatPost
added 2021/02/05 3:47 p.m.226 views

Google Chrome Zero-Day Afflicts Windows, Mac Users

Google is warning of a zero-day vulnerability in its V8 open-source web engine that’s being actively exploited by attackers. A patch has been issued in version 88 of Google’s Chrome browser — specifically, version 88.0.4324.150 for Windows, Mac and Linux. This update will roll out over the coming...

6.8CVSS9.9AI score0.19815EPSS
Exploits0References16
Microsoft CVE
Microsoft CVE
added 2020/09/25 7:0 a.m.5 views

Akka HTTP versions <= 10.0.5 Illegal Media Range in Accept Header Causes StackOverflowError Leading to Denial of Service

...

7.5CVSS7AI score0.01103EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/19 12:49 a.m.51 views

Security Bulletin: Multiple vulnerabilities in openssl, gnutl, mysql, kernel, glibc, ntp shipped with SmartCloud Entry Appliance

Summary Multiple vulnerabilities have been idintified in openssl, gnutl, mysql, kernel, glibc and ntp shipped with SmartCloud Entry Appliance. SmartCloud Entry Appliance has addressed the vulnerabilities. Vulnerability Details CVEID: CVE-2016-8610 DESCRIPTION: The SSL/TLS protocol is vulnerable t...

10CVSS1.5AI score0.83524EPSS
Exploits109Affected Software1
OSV
OSV
added 2020/01/05 10:15 p.m.5 views

UBUNTU-CVE-2019-19911

There is a DoS vulnerability in Pillow before 6.2.2 caused by FpxImagePlugin.py calling the range function on an unvalidated 32-bit integer if the number of bands is large. On Windows running 32-bit Python, this results in an OverflowError or MemoryError due to the 2 GB limit. However, on Linux...

7.5CVSS6.7AI score0.02118EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.31 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : ghostscript Multiple Vulnerabilities (NS-SA-2019-0035)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has ghostscript packages installed that are affected by multiple vulnerabilities: - The settextdistance function in devices/vector/gdevpdts.c in the pdfwrite component in Artifex Ghostscript through 9.22 does not prevent...

9.3CVSS7.4AI score0.92499EPSS
Exploits4References5
OpenVAS
OpenVAS
added 2019/04/26 12:0 a.m.34 views

Google Chrome Security Updates (stable-channel-update-for-desktop_23-2019-04) - Mac OS X

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

8.8CVSS7.5AI score0.01872EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/04/09 12:0 a.m.44 views

EulerOS Virtualization 2.5.4 : ghostscript (EulerOS-SA-2019-1215)

According to the versions of the ghostscript package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The settextdistance function in devices/vector/gdevpdts.c in the pdfwrite component in Artifex Ghostscript through 9.22 does...

9.3CVSS7.4AI score0.92499EPSS
Exploits4References5
OpenVAS
OpenVAS
added 2019/02/14 12:0 a.m.33 views

Adobe Acrobat Reader DC (Continuous Track) Security Updates (APSB19-07) - Windows

Adobe Acrobat Reader DC Continuous Track is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS9.2AI score0.44503EPSS
Exploits5References1
OpenVAS
OpenVAS
added 2018/04/12 12:0 a.m.28 views

Adobe Digital Editions Multiple Information Disclosure Vulnerabilities (APSB18-13) - Mac OS X

Adobe Digital Edition is prone to multiple information disclosure vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS6.3AI score0.06212EPSS
Exploits1References2
Veracode
Veracode
added 2018/04/02 4:57 a.m.46 views

Overflow In Multiplication Procedure

OpenSSL is vulnerable to an overflow error in AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. This bug can be used to compromise private key information for certain situations and DH1024. It does affect processors supporting AVX2 but not ADX extensions e.g.,...

5.9CVSS6.4AI score0.13411EPSS
Exploits0References27Affected Software14
OpenVAS
OpenVAS
added 2018/03/22 12:0 a.m.53 views

Mozilla Thunderbird Security Advisories (MFSA2018-04, MFSA2018-04) - Mac OS X

Mozilla Thunderbird is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:thunderbird";...

9.8CVSS8.1AI score0.07262EPSS
Exploits0References1
Rows per page
Query Builder