Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.24 views

Mageia: Security Advisory (MGASA-2018-0282)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.2AI score0.41185EPSS
Exploits1References5
exploitpack
exploitpackadded 2019/09/12 12:0 a.m.37 views

Microsoft DirectWrite - Out-of-Bounds Read in sfac_GetSbitBitmap While Processing TTF Fonts

Microsoft DirectWrite - Out-of-Bounds Read in sfacGetSbitBitmap While Processing TTF Fonts Microsoft DirectWrite is a modern Windows API for high-quality text rendering. A majority of its code resides in the DWrite.dll user-mode library. It is used by a variety of widely used desktop programs suc...

0.6AI score
Exploits0
0day.today
0day.todayadded 2019/09/12 12:0 a.m.72 views

Microsoft DirectWrite - Out-of-Bounds Read in sfac_GetSbitBitmap While Processing TTF Fonts Exploit

Microsoft DirectWrite is a modern Windows API for high-quality text rendering. A majority of its code resides in the DWrite.dll user-mode library. It is used by a variety of widely used desktop programs such as web browsers and constitutes an attack surface for memory corruption bugs, as it...

6.5CVSS7.1AI score0.19555EPSS
Exploits1
0day.today
0day.todayadded 2019/09/12 12:0 a.m.75 views

Microsoft DirectWrite - Invalid Read in SplicePixel While Processing OTF Fonts Exploit

Microsoft DirectWrite is a modern Windows API for high-quality text rendering. A majority of its code resides in the DWrite.dll user-mode library. It is used by a variety of widely used desktop programs such as the Chrome, Firefox and Edge browsers and constitutes an attack surface for memory...

6.5CVSS6.5AI score0.3048EPSS
Exploits1
OSV
OSVadded 2018/06/27 8:1 a.m.3 views

SUSE-SU-2018:1820-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following security issue: - CVE-2018-6126: Prevent heap buffer overflow in rasterizing paths in SVG with Skia bsc1096449...

8.8CVSS9.4AI score0.41185EPSS
Exploits1References3
Mageia
Mageiaadded 2018/06/14 6:14 p.m.35 views

Updated firefox packages fix security vulnerability

A heap buffer overflow can occur in the Skia library when rasterizing paths using a maliciously crafted SVG file with anti-aliasing turned off. This results in a potentially exploitable crash CVE-2018-6126...

8.8CVSS2AI score0.41185EPSS
Exploits1References3
Mageia
Mageiaadded 2014/03/15 4:26 p.m.31 views

Updated freetype2 packages fix security vulnerabilities

It was reported that Freetype before 2.5.3 suffers from an out-of-bounds stack-based read/write flaw in cf2hintmapbuild in the CFF rasterizing code, which could lead to a buffer overflow CVE-2014-2240. It was also reported that Freetype before 2.5.3 has a denial-of-service vulnerability in the CF...

7.5CVSS6.7AI score0.02382EPSS
Exploits3References3
Gentoo Linux
Gentoo Linuxadded 2007/10/12 12:0 a.m.25 views

T1Lib: Buffer overflow

Background T1Lib is a library for rasterizing bitmaps from Adobe Type 1 fonts. Description Hamid Ebadi discovered a boundary error in the intT1EnvGetCompletePath function which can lead to a buffer overflow when processing an overly long filename. Impact A remote attacker could entice a user to...

7.5CVSS7.4AI score0.31178EPSS
Exploits1
Rows per page
Query Builder