CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Veracode•added 2020/08/06 9:33 p.m.•24 views

Information Disclosure

FreeRDP is vulnerable to information disclosure. An out-of-bounds OOB read vulnerability in securityfipsdecrypt in libfreerdp/core/security.c due to an uninitialized value allows an attacker to retrieve confidential information...

5.5CVSS2.7AI score0.00099EPSS

Exploits0References8Affected Software2

Hacker One•added 2019/09/03 11:51 a.m.•43 views

curl: krb5: double-free in read_data() after realloc() fail

Summary: In 'lib/security.c', there is a double-free of the reference 'buf-data' on the teardown path if 'Curlsaferealloc' fails. Also, since we read 'len' from the 'fd', the sender might be able to remotely trigger a realloc failure, and then the double-free, by sending the value 0x7fffffff...

7.5CVSS1.7AI score0.03612EPSS

Exploits0

Veracode•added 2018/08/20 2:52 a.m.•35 views

Denial Of Service (DoS) Through Double-free

libcurl.so is vulnerable to denial of service DoS attacks through a double-free issue. The vulnerability exists in readdata of security.c where a double-free could occur, leading to a DoS attack...

9.8CVSS8.7AI score0.03314EPSS

Exploits0References11Affected Software5

Debian CVE•added 2018/08/01 6:0 a.m.•26 views

CVE-2016-8619

The function readdata in security.c in curl before version 7.51.0 is vulnerable to memory double free...

9.8CVSS7.6AI score0.03314EPSS

Exploits0

Cvelist•added 2018/08/01 6:0 a.m.•19 views

CVE-2016-8619

The function readdata in security.c in curl before version 7.51.0 is vulnerable to memory double free...

5.3CVSS6.5AI score0.03314EPSS

Exploits0References10

AlpineLinux•added 2018/08/01 6:0 a.m.•32 views

CVE-2016-8619

The function readdata in security.c in curl before version 7.51.0 is vulnerable to memory double free...

9.8CVSS6.8AI score0.03314EPSS

Exploits0

CVE•added 2018/08/01 6:0 a.m.•190 views

CVE-2016-8619

CVE-2016-8619 affects curl, where the Kerberos authentication path reads length fields and realloc() may be called with 0, leading to a memory double-free. This issue is documented across multiple sources (Debian DSA-3705-1 and ALAS-2016-766), identifying the vulnerable code path as read_data() i...

9.8CVSS7.7AI score0.03314EPSS

Exploits0References10Affected Software1

RedhatCVE•added 2016/11/02 8:47 a.m.•24 views

CVE-2016-8619

The function readdata in security.c in curl before version 7.51.0 is vulnerable to memory double free...

9.8CVSS3.4AI score0.03314EPSS

Exploits0References2

RedhatCVE•added 2015/10/30 9:57 a.m.•13 views

CVE-2005-2547

security.c in hcid for BlueZ 2.16, 2.17, and 2.18 allows remote attackers to execute arbitrary commands via shell metacharacters in the Bluetooth device name when invoking the PIN helper...

7.5CVSS8AI score0.01141EPSS

Exploits0References2

seebug.org•added 2015/08/31 12:0 a.m.•17 views

Wireshark ZigBee解析器输入验证漏洞

Wireshark 1.12.7之前1.12.x版本的ZigBee解析器中的epan/dissectors/packet-zbee-security.c文件中的‘dissectzbeesecure’函数存在安全漏洞，该漏洞源于程序不正确地依赖数据包数据中包含的长度字段。远程攻击者可通过发送特制的数据包利用该漏洞造成拒绝服务（应用程序崩溃）。...

7.1AI score

Exploits0

securityvulns•added 2005/08/18 12:0 a.m.•42 views

[Full-disclosure] Bluez hcid popen() explained.

kflistsatdigitalmunitiondotcom After the release of TheftOfLinkKey.txt I had several people mention that they did not quite understand why I consider the recently reported bluez vulnerability to be quite trivial. In this document I will attempt to outline an exploitable scenario for hcid using th...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by