Lucene search
K

1890 matches found

Symantec
Symantec
added 2019/10/15 12:0 a.m.15 views

Oracle Retail Customer Management and Segmentation Foundation Remote Security Vulnerability

Description Oracle Retail Customer Management and Segmentation Foundation is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Segment' component is affected. This vulnerability affects the following supported versions: 17.0 Technologies...

1.4AI score
Exploits0References1Affected Software1
Akamai Blog
Akamai Blog
added 2019/10/11 8:0 p.m.139 views

Optimizing Video Streaming Performance with Origin-Assisted Prefetching

Online video streaming is everywhere today. It's available on the smallest hand-held devices to the largest of screens in our living rooms. Magically and for the most part, it works and provides a very captivating experience. However, if you step back to look at the overall architecture, media...

6.8AI score
Exploits0
Akamai Blog
Akamai Blog
added 2019/10/11 8:0 p.m.116 views

How to Scale Addressable Advertising with Low Latency for Live Streaming

Written by: David Springfall, Founder and CTO of Yospace Under David's technical and strategic leadership, Yospace pioneered server-side ad insertion and established itself as the global leader in OTT stream monetisation. The Yospace technology supports full one-to-one personalisation and provide...

0.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2019/10/10 10:3 p.m.31 views

CVE-2017-5482

Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode without -w which...

9.8CVSS1.4AI score0.05504EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2019/10/10 10:3 p.m.29 views

CVE-2017-5204

Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode without -w which...

9.8CVSS1.4AI score0.05997EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2019/10/10 4:9 a.m.25 views

CVE-2016-7937

Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode without -w which...

9.8CVSS1.4AI score0.03172EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2019/10/09 10:11 a.m.50 views

CVE-2017-2583

Linux kernel built with the Kernel-based Virtual Machine CONFIGKVM support was vulnerable to an incorrect segment selectorSS value error. The error could occur while loading values into the SS register in long mode. A user or process inside a guest could use this flaw to crash the guest, resultin...

8.4CVSS2.5AI score0.00582EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/10/08 12:0 a.m.13 views

PT-2019-5864 · Imagemagick +5 · Imagemagick +5

Name of the Vulnerable Software and Affected Versions: ImageMagick versions prior to 7.0.9-0 Description: A flaw was found in ImageMagick in MagickCore/segment.c, where an attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math...

9.8CVSS6.5AI score0.89855EPSS
Exploits78References366
BDU FSTEC
BDU FSTEC
added 2019/09/27 12:0 a.m.4 views

The vulnerability of the Segment component in Oracle Retail Customer Engagement software allows a hacker to gain read access to data or cause a partial service disruption.

The vulnerability of the Segment component in Oracle Retail Customer Engagement software relates to lack of access control. Exploiting this vulnerability could allow a malicious actor to gain read-only access to data or cause partial service disruption by sending specially crafted HTTP requests...

6.1CVSS5.5AI score0.00875EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2019/08/29 7:15 p.m.13 views

CVE-2019-14778

The mkv::virtualsegmentc::seek method of demux/mkv/virtualsegment.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free...

7.8CVSS8.7AI score0.01455EPSS
Exploits0References8
OSV
OSV
added 2019/08/29 7:15 p.m.1 views

DEBIAN-CVE-2019-14778

The mkv::virtualsegmentc::seek method of demux/mkv/virtualsegment.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free...

7.8CVSS7.3AI score0.01455EPSS
Exploits0References1
myhack58
myhack58
added 2019/08/29 12:0 a.m.107 views

Non-stack format string exploit techniques-vulnerability warning-the black bar safety net

On Linux the stack format string vulnerability in the use of online has many explanations, but non-stack format string vulnerability few people introduced. This is mainly over weekends SUCTF game playfmt topic, for example, detail about the bss segment or on the heap format strings the use of...

7AI score
Exploits0
OSV
OSV
added 2019/08/29 12:0 a.m.3 views

UBUNTU-CVE-2019-14778

The mkv::virtualsegmentc::seek method of demux/mkv/virtualsegment.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free...

7.8CVSS7.1AI score0.01455EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/08/15 5:47 p.m.3 views

mysql: Server: Connection Handling unspecified vulnerability (CPU Jan 2019)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Connection Handling. Supported versions that are affected are 5.6.42 and prior, 5.7.24 and prior and 8.0.13 and prior. Difficult to exploit vulnerability allows low privileged attacker with access to the physical...

6.4CVSS6.8AI score0.02487EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/08/14 7:0 a.m.3 views

mysql: Server: Connection Handling unspecified vulnerability (CPU Jan 2019)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Connection Handling. Supported versions that are affected are 5.6.42 and prior, 5.7.24 and prior and 8.0.13 and prior. Difficult to exploit vulnerability allows low privileged attacker with access to the physical...

6.4CVSS6.8AI score0.02487EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.40 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : kernel-rt Multiple Vulnerabilities (NS-SA-2019-0165)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has kernel-rt packages installed that are affected by multiple vulnerabilities: - Uncacheable memory on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information...

7.8CVSS7.3AI score0.98745EPSS
Exploits4References5
Prion
Prion
added 2019/08/06 7:15 p.m.15 views

Buffer overflow

Buffer overflow in PTP Picture Transfer Protocol of EOS series digital cameras EOS-1D X firmware version 2.1.0 and earlier, EOS-1D X MKII firmware version 1.1.6 and earlier, EOS-1D C firmware version 1.4.1 and earlier, EOS 5D MARK III firmware version 1.3.5 and earlier, EOS 5D MARK IV firmware...

7.2CVSS7.1AI score0.00825EPSS
Exploits1References5Affected Software66
RedHat Linux
RedHat Linux
added 2019/08/06 12:54 p.m.2 views

elfutils: segmentation fault in elf64_xlatetom in libelf/elf32_xlatetom.c

An issue was discovered in elfutils 0.175. A segmentation fault can occur in the function elf64xlatetom in libelf/elf32xlatetom.c, due to dwflsegmentreportmodule not checking whether the dyn data read from a core file is truncated. A crafted input can cause a program crash, leading to...

5.5CVSS6.9AI score0.01388EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2019/08/06 12:54 p.m.10 views

elfutils: invalid memory address dereference was discovered in dwfl_segment_report_module.c in libdwfl

An invalid memory address dereference was discovered in dwflsegmentreportmodule.c in libdwfl in elfutils through v0.174. The vulnerability allows attackers to cause a denial of service application crash with a crafted ELF file, as demonstrated by considernotes...

5.5CVSS7.2AI score0.01464EPSS
Exploits1References4
CNVD
CNVD
added 2019/07/30 12:0 a.m.3 views

Dolibarr ERP/CRM Command Execution Vulnerability

Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A code execution vulnerability exists in Dolibarr ERP/CRM. The...

8.5CVSS7.5AI score0.02236EPSS
Exploits1References1
Rows per page
Query Builder