CVE-2023-36193

Gifsicle v1.9.3 was discovered to contain a heap buffer overflow via the ambiguityerror component at /src/clp.c...

CVE-2023-36192

Sngrep v1.6.0 was discovered to contain a heap buffer overflow via the function capturewscheckpacket at /src/capture.c...

Stack overflow

fdkaac before 1.0.5 was discovered to contain a stack overflow in readcallback function in src/main.c...

CVE-2023-34823

fdkaac before 1.0.5 was discovered to contain a stack overflow in readcallback function in src/main.c...

Updated freetype2 packages fix security vulnerability

An integer overflow vulnerability was discovered in Freetype in tthvadvanceadjust function in src/truetype/ttgxvar.c. CVE-2023-2004...

Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2023-1887)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-18280

Cross Site Scripting vulnerability found in Phodal CMD v.1.0 allows a local attacker to execute arbitrary code via the EMBED SRC function...

Cross site scripting

Cross Site Scripting vulnerability found in Phodal CMD v.1.0 allows a local attacker to execute arbitrary code via the EMBED SRC function...

CVE-2023-31982

Sngrep v1.6.0 was discovered to contain a heap buffer overflow via the function capturepacketreasmip at /src/capture.c...

CVE-2023-31979

Catdoc v0.95 was discovered to contain a global buffer overflow via the function processfile at /src/reader.c...

DEBIAN-CVE-2023-31979

Catdoc v0.95 was discovered to contain a global buffer overflow via the function processfile at /src/reader.c...

Buffer overflow

Catdoc v0.95 was discovered to contain a global buffer overflow via the function processfile at /src/reader.c...

CVE-2020-18280

Phodal CMD v.1.0 is affected by a Cross Site Scripting vulnerability that allows a local attacker to execute arbitrary code via the EMBED SRC function. Affected component: Phodal CMD, version 1.0. Root cause: EMBED SRC function enables code execution through XSS. In the available documents, explo...

PT-2023-11487 · Unknown · Phodal Cmd

Name of the Vulnerable Software and Affected Versions: Phodal CMD version 1.0 Description: A Cross Site Scripting issue allows a local attacker to execute arbitrary code via the EMBED SRC function. This enables the attacker to perform unauthorized actions on the system. Recommendations: For Phoda...

CVE-2020-18280

Cross Site Scripting vulnerability found in Phodal CMD v.1.0 allows a local attacker to execute arbitrary code via the EMBED SRC function...

CVE-2020-18280

Cross Site Scripting vulnerability found in Phodal CMD v.1.0 allows a local attacker to execute arbitrary code via the EMBED SRC function...

EulerOS Virtualization 2.9.0 : emacs (EulerOS-SA-2023-1669)

According to the versions of the emacs package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - GNU Emacs through 28.2 allows attackers to execute commands via shell metacharacters in the name of a source-code file, because...

CVE-2023-29570

Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjsfficbfree at src/mjsffi.c. This vulnerability can lead to a Denial of Service DoS...

CVE-2023-29578

mp4v2 v2.0.0 was discovered to contain a heap buffer overflow via the mp4v2::impl::MP4StringProperty::MP4StringProperty function at src/mp4property.cpp...

CVE-2023-2004

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...