CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5150 matches found

OSV•added 2018/01/11 9:29 p.m.•1 views

DEBIAN-CVE-2018-5336

In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the JSON, XML, NTP, XMPP, and GDB dissectors could crash. This was addressed in epan/tvbparse.c by limiting the recursion depth...

7.5CVSS7.7AI score0.01011EPSS

Exploits0References1

OSV•added 2018/01/11 9:29 p.m.•25 views

CVE-2018-5336

In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the JSON, XML, NTP, XMPP, and GDB dissectors could crash. This was addressed in epan/tvbparse.c by limiting the recursion depth...

7.5CVSS6.9AI score

Exploits0References7

Cvelist•added 2018/01/11 9:0 p.m.•19 views

CVE-2018-5336

In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the JSON, XML, NTP, XMPP, and GDB dissectors could crash. This was addressed in epan/tvbparse.c by limiting the recursion depth...

6.1AI score0.01011EPSS

Exploits0References7

AlpineLinux•added 2018/01/11 9:0 p.m.•46 views

CVE-2018-5336

In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the JSON, XML, NTP, XMPP, and GDB dissectors could crash. This was addressed in epan/tvbparse.c by limiting the recursion depth...

7.5CVSS6.3AI score0.01011EPSS

Exploits0

CVE•added 2018/01/11 9:0 p.m.•122 views

CVE-2018-5336

The CVE-2018-5336 issue affects Wireshark, specifically versions 2.4.0–2.4.3 and 2.2.0–2.2.11. The JSON, XML, NTP, XMPP, and GDB dissectors could crash due to excessive recursion. The vulnerability was fixed by limiting recursion in epan/tvbparse.c. No exploits are documented in the provided sour...

7.5CVSS6AI score0.01011EPSS

Exploits0References7Affected Software1

Kaspersky•added 2018/01/11 12:0 a.m.•237 views

KLA11176 Multiple DoS vulnerabilities in Wireshark

Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. A recursion depth error in epan/tvbparse.c can be exploited remotely via a malformed packet to cause denial ...

7.5CVSS7.7AI score0.01011EPSS

Exploits0References6

OSV•added 2017/12/09 6:29 a.m.•2 views

CVE-2017-16419

An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, and 11.0.22 and earlier versions. The issue is a stack exhaustion problem within the JavaScript API, where the computation does not...

6.5CVSS5.8AI score0.02832EPSS

Exploits0References3

NVD•added 2017/12/09 6:29 a.m.•12 views

CVE-2017-16419

6.5CVSS6.8AI score0.02832EPSS

Exploits0References3

Tenable Nessus•added 2017/12/01 12:0 a.m.•34 views

Debian DLA-1194-1 : libxml2 security update

CVE-2017-16931 parser.c in libxml2 before 2.9.5 mishandles parameter-entity references because the NEXTL macro calls the xmlParserHandlePEReference function in the case of a '%' character in a DTD name. CVE-2017-16932 parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in paramet...

9.8CVSS7.2AI score0.21755EPSS

Exploits0References4

Debian•added 2017/11/30 2:5 p.m.•74 views

[SECURITY] [DLA 1194-1] libxml2 security update

Package : libxml2 Version : 2.8.0+dfsg1-7+wheezy11 CVE ID : CVE-2017-16931 CVE-2017-16932 CVE-2017-16931 parser.c in libxml2 before 2.9.5 mishandles parameter-entity references because the NEXTL macro calls the xmlParserHandlePEReference function in the case of a % character in a DTD name...

9.8CVSS7.8AI score0.21755EPSS

Exploits0

RedhatCVE•added 2017/11/24 3:50 p.m.•39 views

CVE-2017-16932

parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in parameter entities...

7.5CVSS3.6AI score0.21755EPSS

Exploits0References1

CNVD•added 2017/11/24 12:0 a.m.•1 views

libxml2 parser.c File Denial of Service Vulnerability

libxml2 is the GNOME project team developed a C-based library for parsing XML documents, which supports multiple encoding formats, Xpath parsing, Well-formed and valid validation. A denial of service vulnerability exists in the parser.c file in versions of libxml2 prior to 2.9.5, which stems from...

7.5CVSS6.9AI score0.21755EPSS

Exploits0References1

NVD•added 2017/11/23 9:29 p.m.•14 views

CVE-2017-16932

parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in parameter entities...

7.5CVSS6.3AI score0.21755EPSS

Exploits0References12

OSV•added 2017/11/23 9:29 p.m.•1 views

ALPINE-CVE-2017-16932

parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in parameter entities...

7.5CVSS7AI score0.21755EPSS

Exploits0References1