Lucene search
K

8 matches found

Talos
Talos
added 2022/10/20 12:0 a.m.43 views

Abode Systems, Inc. iota All-In-One Security Kit UPnP logging format string injection vulnerabilities

Talos Vulnerability Report TALOS-2022-1583 Abode Systems, Inc. iota All-In-One Security Kit UPnP logging format string injection vulnerabilities October 20, 2022 CVE Number CVE-2022-35879,CVE-2022-35878,CVE-2022-35881,CVE-2022-35880 SUMMARY Four format string injection vulnerabilities exist in th...

8.8CVSS8.4AI score0.00792EPSS
Exploits4
Talos
Talos
added 2022/02/15 12:0 a.m.70 views

Texas Instruments CC3200 SimpleLink Solution HTTP Server /ping.html information disclosure vulnerability

Summary An information disclosure vulnerability exists in the HTTP Server /ping.html functionality of Texas Instruments CC3200 SimpleLink Solution NWP 2.9.0.0. A specially-crafted HTTP request can lead to an uninitialized read. An attacker can send an HTTP request to trigger this vulnerability...

5.3CVSS5.4AI score0.01363EPSS
Exploits1
Talos
Talos
added 2020/03/23 12:0 a.m.61 views

Videolabs libmicrodns 0.1.0 resource record recursive label uncompression denial-of-service vulnerability

Summary An exploitable denial-of-service vulnerability exists in the resource record-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing compressed labels in mDNS messages, the compression pointer is followed without checking for recursion, leading to a denial of service. An attack...

7.5CVSS7.4AI score0.02396EPSS
Exploits1
seebug.org
seebug.org
added 2017/10/19 12:0 a.m.35 views

Pidgin MXIT MultiMX Message Code Execution Vulnerability(CVE-2016-2374)

DESCRIPTION An exploitable memory corruption vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT MultiMX message sent via the server can result in an out-of-bounds write leading to memory disclosure and code execution. CVSSv3 SCORE 8.1...

6.8CVSS8.3AI score0.03228EPSS
Exploits1
seebug.org
seebug.org
added 2017/10/13 12:0 a.m.40 views

Hancom Hangul Office HShow!NXDeleteLineObj+0x47269 Code Execution Vulnerability(CVE-2016-4292)

Description This vulnerability was discovered within the Hangul HShow application which is part of the Hangul Office Suite. Hangul Office is published by Hancom, Inc. and is considered one of the more popular Office suites used within South Korea. When opening a Hangul HShow Document .hpt and...

6.8CVSS7.9AI score0.0209EPSS
Exploits2
Talos
Talos
added 2017/07/20 12:0 a.m.47 views

Corel PHOTO-PAINT X8 TIFF Filter Code Execution Vulnerability

Summary A remote out of bound write vulnerability exists in the TIFF parsing functionality of Core PHOTO-PAINT X8 18.1.0.661. A specially crafted TIFF file can cause a vulnerability resulting in potential memory corruption. An attacker can send the victim a specific TIFF file to trigger this...

8.8CVSS8.1AI score0.01207EPSS
Exploits1
Talos
Talos
added 2016/06/14 12:0 a.m.38 views

Ruby pack_pack Use After Free Vulnerability

Talos Vulnerability Report TALOS-2016-0033 Ruby packpack Use After Free Vulnerability June 14, 2016 CVE Number CVE-2016-2338 DESCRIPTION An exploitable User After Free vulnerability exists in the packpack function of Ruby. In packpack function each element of array which should be “pack”, based o...

9.8CVSS9.5AI score0.04644EPSS
Exploits3
Talos
Talos
added 2016/05/10 12:0 a.m.38 views

7zip UDF CInArchive::ReadFileItem Code Execution Vulnerability

Summary An out of bound read vulnerability exists in the CInArchive::ReadFileItem method functionality of 7zip for handling UDF files that can lead to denial of service or code execution. Tested Versions 7-Zip 32 15.05 beta 7-Zip 64 9.20 Product URLs http://www.7-zip.org/ Details...

8.8CVSS8.2AI score0.09795EPSS
Exploits2
Rows per page
Query Builder