CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1332 matches found

RedhatCVE•added 2016/05/30 12:48 p.m.•35 views

CVE-2016-5116

gdxbm.c in the GD Graphics Library aka libgd before 2.2.0, as used in certain custom PHP 5.5.x configurations, allows context-dependent attackers to obtain sensitive information from process memory or cause a denial of service stack-based buffer under-read and application crash via a long name...

9.1CVSS4.8AI score0.02396EPSS

Exploits0References2

BDU FSTEC•added 2016/05/23 12:0 a.m.•4 views

The vulnerabilities of PDF viewer programs such as Adobe Reader, Adobe Reader Document Cloud, and PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat allow attackers to obtain confidential information.

The vulnerabilities of PDF viewer programs such as Adobe Reader and Adobe Reader Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to the lack of protection for operational data. Exploiting these vulnerabilities can allow a malicious...

5CVSS7.5AI score0.02038EPSS

Exploits0References2Affected Software2

BDU FSTEC•added 2016/05/23 12:0 a.m.•2 views

5CVSS7.5AI score0.0219EPSS

Exploits0References2Affected Software2

Tenable Nessus•added 2016/05/18 12:0 a.m.•55 views

F5 Networks BIG-IP : OpenSSL vulnerability (K12824341)

The ASN1TFLGCOMBINE implementation in crypto/asn1/tasndec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by...

5.3CVSS6.9AI score0.03481EPSS

Exploits1References2

OSV•added 2016/05/11 11:0 a.m.•3 views

CVE-2016-1092

Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allow attackers to obtain sensitive information from process memory via unspecified vectors, a different...

7.5CVSS5.8AI score

Exploits0References3

NVD•added 2016/05/11 11:0 a.m.•14 views

CVE-2016-1092

7.5CVSS7.4AI score0.02038EPSS

Exploits0References3

Prion•added 2016/05/11 11:0 a.m.•18 views

Design/Logic Flaw

5CVSS7.2AI score0.0219EPSS

Exploits0References3Affected Software4

NVD•added 2016/05/11 10:59 a.m.•13 views

CVE-2016-1079

7.5CVSS7.4AI score0.0219EPSS

Exploits0References4

Prion•added 2016/05/11 10:59 a.m.•16 views

Design/Logic Flaw

5CVSS7.2AI score0.0219EPSS

Exploits0References4Affected Software4

NVD•added 2016/04/18 10:59 a.m.•16 views

CVE-2016-1651

fxcodec/codec/fxcodecjpxopj.cpp in PDFium, as used in Google Chrome before 50.0.2661.75, does not properly implement the sycc420torgb and sycc422torgb functions, which allows remote attackers to obtain sensitive information from process memory or cause a denial of service out-of-bounds read via...

8.1CVSS8.4AI score0.0162EPSS

Exploits0References11

Debian CVE•added 2016/04/18 10:0 a.m.•28 views

CVE-2016-1651

Removed by vendor...

8.1CVSS8.9AI score0.0162EPSS

Exploits0

NVD•added 2016/04/18 12:59 a.m.•19 views

CVE-2016-2419

media/libmedia/IDrm.cpp in mediaserver in Android 6.x before 2016-04-01 does not initialize a certain key-request data structure, which allows attackers to obtain sensitive information from process memory, and consequently bypass an unspecified protection mechanism, via unspecified vectors, as...

10CVSS9AI score0.00201EPSS

Exploits0References2

NVD•added 2016/04/18 12:59 a.m.•19 views

CVE-2016-2418

media/libmedia/IOMX.cpp in mediaserver in Android 6.x before 2016-04-01 does not initialize certain metadata buffer pointers, which allows attackers to obtain sensitive information from process memory, and consequently bypass an unspecified protection mechanism, via unspecified vectors, as...

10CVSS9.2AI score0.00201EPSS

Exploits0References2

NVD•added 2016/04/18 12:59 a.m.•16 views

CVE-2016-2417

media/libmedia/IOMX.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not initialize a parameter data structure, which allows attackers to obtain sensitive information from process memory, and consequently bypass an unspecified...

10CVSS9AI score0.13164EPSS

Exploits1References3

Prion•added 2016/04/18 12:59 a.m.•19 views

Design/Logic Flaw

10CVSS6.5AI score0.00201EPSS

Exploits0References2Affected Software1

Prion•added 2016/04/18 12:59 a.m.•19 views

Design/Logic Flaw

10CVSS6.8AI score0.00201EPSS

Exploits0References2Affected Software1

UbuntuCve•added 2016/04/18 12:59 a.m.•24 views

CVE-2016-2417

10CVSS7.2AI score0.13164EPSS

Exploits1References3

Cvelist•added 2016/04/18 12:0 a.m.•24 views

CVE-2016-2417

8.4AI score0.13164EPSS

Exploits1References3

CNVD•added 2016/02/11 12:0 a.m.•2 views

Microsoft Internet Explorer Information Disclosure Vulnerability (CNVD-2016-01023)

Microsoft Internet Explorer is a popular web browser introduced by Microsoft and bundled with the Windows operating system. An information disclosure vulnerability exists in Microsoft Internet Explorer 9 through 11 that could allow a remote attacker to obtain sensitive information from process...

4.3CVSS6AI score0.13958EPSS

Exploits2References1

Prion•added 2016/02/10 11:59 a.m.•21 views

Information disclosure

WinForms in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows remote attackers to obtain sensitive information from process memory via crafted icon data, aka "Windows Forms Information Disclosure Vulnerability."...

5CVSS6.4AI score0.17158EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by