Lucene search
K

6686 matches found

Tenable Nessus
Tenable Nessus
added 2018/01/25 12:0 a.m.33 views

Debian DSA-4097-1 : poppler - security update

Multiple vulnerabilities were discovered in the poppler PDF rendering library, which could result in denial of service or the execution of arbitrary code if a malformed PDF file is processed. This update also fixes a regression in the handling of Type 3 fonts. C Tenable Network Security, Inc. The...

8.8CVSS7.8AI score0.01968EPSS
Exploits1References6
OSV
OSV
added 2018/01/24 3:29 p.m.1 views

ALPINE-CVE-2017-12182

xorg-x11-server before 1.19.5 was missing length validation in XFree86 DRI extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code...

9.8CVSS7.7AI score0.04314EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2018/01/24 12:0 a.m.44 views

Debian: Security Advisory (DSA-4097-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.2AI score0.01968EPSS
Exploits1References4
Fedora
Fedora
added 2018/01/18 9:11 p.m.38 views

[SECURITY] Fedora 26 Update: webkitgtk4-2.18.5-1.fc26

WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3...

5.6CVSS1.8AI score0.93838EPSS
Exploits11
Fedora
Fedora
added 2018/01/10 2:16 a.m.31 views

[SECURITY] Fedora 27 Update: poppler-0.57.0-7.fc27

poppler is a PDF rendering library...

8.8CVSS2.3AI score0.01968EPSS
Exploits1
Fedora
Fedora
added 2018/01/10 2:15 a.m.25 views

[SECURITY] Fedora 27 Update: mupdf-1.12.0-1.fc27

MuPDF is a lightweight PDF viewer and toolkit written in portable C. The renderer in MuPDF is tailored for high quality anti-aliased graphics. MuPDF renders text with metrics and spacing accurate to within fractions of a pixel for the highest fidelity in reproducing the look of a printed page on...

7.8CVSS0.6AI score0.01579EPSS
Exploits0
Fedora
Fedora
added 2018/01/09 4:53 p.m.33 views

[SECURITY] Fedora 26 Update: poppler-0.52.0-11.fc26

poppler is a PDF rendering library...

8.8CVSS2.3AI score0.01968EPSS
Exploits1
Fedora
Fedora
added 2018/01/09 4:52 p.m.31 views

[SECURITY] Fedora 26 Update: webkitgtk4-2.18.4-1.fc26

WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3...

8.8CVSS1.8AI score0.024EPSS
Exploits0
Ubuntu
Ubuntu
added 2018/01/08 2:3 p.m.52 views

USN-3517-1: poppler vulnerabilities

It was discovered that poppler incorrectly handled certain files. If a user or automated system were tricked into opening a crafted PDF file, an attacker could execute arbitrary. CVE-2017-1000456 It was discovered that poppler incorrectly handled certain files. If a user or automated system were...

8.8CVSS7AI score0.02585EPSS
Exploits2
OpenVAS
OpenVAS
added 2018/01/08 12:0 a.m.30 views

Debian: Security Advisory (DLA-1228-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.01968EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/01/04 12:0 a.m.32 views

Debian DLA-1228-1 : poppler security update

Jason Crain discovered a overflow vulnerability in the poppler PDF rendering library. For Debian 7 'Wheezy', this issue has been fixed in poppler version 0.18.4-6+deb7u5. We recommend that you upgrade your poppler packages. NOTE: Tenable Network Security has extracted the preceding description...

8.8CVSS7.5AI score0.01968EPSS
Exploits1References3
Fedora
Fedora
added 2017/12/28 2:56 a.m.36 views

[SECURITY] Fedora 27 Update: webkitgtk4-2.18.4-1.fc27

WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3...

8.8CVSS1.8AI score0.024EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2017/12/26 12:0 a.m.6 views

The vulnerability of Google Chrome browser’s Blink rendering module allows a hacker to execute arbitrary code.

The vulnerability of the Blink rendering module in Google Chrome browsers is related to incorrect type conversion. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted HTML page from a remote location...

8.8CVSS8.1AI score0.03362EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/12/26 12:0 a.m.6 views

The vulnerability of Blink rendering module in Google Chrome browsers allows attackers to trigger false browser messages.

The vulnerability of Google Chrome’s Blink engine exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to trigger false browser messages using a specially created HTML page...

4.7CVSS7.6AI score0.01247EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2017/12/26 12:0 a.m.5 views

The vulnerability of Google Chrome’s Blink rendering module allows a hacker to obtain values of the URL fragments.

The vulnerability of Google Chrome’s Blink rendering module is related to errors in the Content Security Policy CSP reporting mechanism. Exploiting this vulnerability allows a malicious actor to obtain fragment values from URLs through a specially crafted HTML page...

4.3CVSS7.6AI score0.01167EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/12/21 12:0 a.m.5 views

The vulnerability of Google Chrome’s Blink rendering module allows a hacker to display a custom interface in a tab that is not controlled by the hacker.

The vulnerability of Google Chrome’s Blink rendering module is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to display a user interface in a tab that the attacker does not control, using a specially crafted HTML page...

4.3CVSS7.7AI score0.01353EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/12/21 12:0 a.m.7 views

The vulnerability of Google Chrome’s Blink rendering module allows a hacker to perform readout operations beyond the buffer in memory.

The vulnerability of Google Chrome’s Blink rendering module relates to the use of memory after deallocation. Exploiting this vulnerability allows a remote attacker to read beyond the buffer in memory using a specially crafted HTML page...

8.8CVSS7.9AI score0.01478EPSS
Exploits0References9Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/12/21 12:0 a.m.4 views

The vulnerability of Google Chrome’s Blink rendering module allows a hacker to display a custom interface in a tab that is not controlled by the hacker.

The vulnerability of Google Chrome’s Blink rendering module is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to display a user interface in a tab that the attacker does not control, using a specially crafted HTML page...

6.1CVSS7.7AI score0.01122EPSS
Exploits0References7Affected Software1
Gentoo Linux
Gentoo Linux
added 2017/12/14 12:0 a.m.41 views

WebKitGTK+: Multiple vulnerabilities

Background WebKitGTK+ is a full-featured port of the WebKit rendering engine, suitable for projects requiring any kind of web integration, from hybrid HTML/CSS applications to full-fledged web browsers. Description Multiple vulnerabilities have been discovered in WebKitGTK+. Please review the...

8.8CVSS9.2AI score0.06712EPSS
Exploits40
Microsoft CVE
Microsoft CVE
added 2017/12/12 8:0 a.m.21 views

Scripting Engine Memory Corruption Vulnerability

A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploit...

7.6CVSS7.9AI score0.08643EPSS
Exploits0
Rows per page
Query Builder