Lucene search
K

6913 matches found

OSV
OSV
added 2022/05/29 12:0 a.m.10 views

OSV-2022-437 Stack-buffer-overflow in sc_asn1_read_tag

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47675 Crash type: Stack-buffer-overflow READ 1 Crash state: scasn1readtag scasn1findtag cardoslistfiles...

7.2AI score
Exploits0References1
OSV
OSV
added 2022/05/29 12:0 a.m.11 views

OSV-2022-436 Stack-buffer-overflow in spvtools::opt::CompositeInsertToCompositeConstruct

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47684 Crash type: Stack-buffer-overflow READ 8 Crash state: spvtools::opt::CompositeInsertToCompositeConstruct std::1::function::funcbool spvtools::opt::InstructionFolder::FoldInstructionInternal...

7.2AI score
Exploits0References1
NVD
NVD
added 2022/05/26 12:15 p.m.55 views

CVE-2021-42860

A stack buffer overflow exists in Mini-XML v3.2. When inputting an unformed XML string to the mxmlLoadString API, it will cause a stack-buffer-overflow in mxmlstringgetc:2611. NOTE: it is unclear whether this input is allowed by the API specification...

7.5CVSS0.0097EPSS
Exploits1References1
OSV
OSV
added 2022/05/26 12:15 p.m.7 views

CVE-2021-42860

A stack buffer overflow exists in Mini-XML v3.2. When inputting an unformed XML string to the mxmlLoadString API, it will cause a stack-buffer-overflow in mxmlstringgetc:2611. NOTE: it is unclear whether this input is allowed by the API specification...

7.5CVSS7.1AI score
Exploits0References1
UbuntuCve
UbuntuCve
added 2022/05/26 12:15 p.m.28 views

CVE-2021-42860

A stack buffer overflow exists in Mini-XML v3.2. When inputting an unformed XML string to the mxmlLoadString API, it will cause a stack-buffer-overflow in mxmlstringgetc:2611. NOTE: it is unclear whether this input is allowed by the API specification...

7.5CVSS7.3AI score0.0097EPSS
Exploits1References2
Prion
Prion
added 2022/05/26 12:15 p.m.15 views

Stack overflow

DISPUTED A stack buffer overflow exists in Mini-XML v3.2. When inputting an unformed XML string to the mxmlLoadString API, it will cause a stack-buffer-overflow in mxmlstringgetc:2611. NOTE: it is unclear whether this input is allowed by the API specification...

5CVSS7.6AI score0.0097EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/05/26 11:23 a.m.28 views

CVE-2021-42860

A stack buffer overflow exists in Mini-XML v3.2. When inputting an unformed XML string to the mxmlLoadString API, it will cause a stack-buffer-overflow in mxmlstringgetc:2611. NOTE: it is unclear whether this input is allowed by the API specification...

7.9AI score0.0097EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/05/26 11:23 a.m.8 views

CVE-2021-42860

A stack buffer overflow exists in Mini-XML v3.2. When inputting an unformed XML string to the mxmlLoadString API, it will cause a stack-buffer-overflow in mxmlstringgetc:2611. NOTE: it is unclear whether this input is allowed by the API specification...

7.5AI score0.0097EPSS
Exploits1References1
CVE
CVE
added 2022/05/26 11:23 a.m.57 views

CVE-2021-42860

CVE-2021-42860 describes a stack-overflow in Mini-XML 3.2 when passing an unformed XML string to mxmlLoadString, triggering a stack-buffer-overflow in mxml_string_getc:2611. The vulnerability is documented across multiple sources (SUSE, OSV, NVD, etc.) with the same core flaw. The input’s legalit...

7.5CVSS7.6AI score0.0097EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVE
added 2022/05/26 11:23 a.m.37 views

CVE-2021-42860

Removed by vendor...

7.5CVSS7.6AI score0.0097EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2022/05/21 12:12 a.m.24 views

CVE-2021-20314

A stack buffer overflow was found in libspf2 when processing certain SPF macros. This issue can lead to a denial of service and potentially code execution via malicious crafted SPF explanation messages. The highest threat from this vulnerability is to confidentiality, integrity, as well as system...

9.8CVSS4.4AI score0.0281EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2022/05/20 11:22 p.m.29 views

CVE-2020-36129

AOM v2.0.1 was discovered to contain a stack buffer overflow via the component src/aomimage.c...

8.8CVSS4.2AI score0.01371EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2022/05/20 10:38 p.m.26 views

CVE-2020-10232

In version 4.8.0 and earlier of The Sleuth Kit TSK, there is a stack buffer overflow vulnerability in the YAFFS file timestamp parsing logic in yaffsfsistat in fs/yaffs.c...

9.8CVSS4.7AI score0.02419EPSS
Exploits0References1
OSV
OSV
added 2022/05/19 12:1 a.m.9 views

OSV-2022-421 Stack-buffer-overflow in cardos_list_files

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47512 Crash type: Stack-buffer-overflow READ 1 Crash state: cardoslistfiles sclistfiles fuzzcard.c...

7.2AI score
Exploits0References1
Redos
Redos
added 2022/05/18 12:0 a.m.63 views

ROS-20220518-03

A vulnerability in the pjproject multimedia communication library is related to an infinite loop when parsing a of a WAV file. Exploitation of the vulnerability could allow an attacker acting remotely to consume all available system resources and cause denial of service conditions A vulnerability...

9.8CVSS8.5AI score0.02303EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2022/05/18 12:0 a.m.32 views

Oracle Linux 8 : cairo / and / pixman (ELSA-2022-1961)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-1961 advisory. - Fix CVE-2020-35492 1908113 pixman Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has...

7.8CVSS6.7AI score0.01112EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/05/18 12:0 a.m.267 views

Oracle Linux 8 : virt:ol / and / virt-devel:ol (ELSA-2022-1759)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-1759 advisory. - Limit recursion in ri-records CVE-2021-3622 resolves: rhbz1976194 - Fixes: CVE-2021-33285, CVE-2021-33286, CVE-2021-33287, CVE-2021-33289,...

7.8CVSS6.6AI score0.04794EPSS
Exploits6References30
Veracode
Veracode
added 2022/05/14 8:6 p.m.27 views

Buffer Overflow

PJSIP is a free and open source multimedia communication library written in C language. In versions prior to and including 2.12 PJSIP there is a stack-buffer overflow vulnerability which only impacts PJSIP users who accept hashed digest credentials credentials with datatype PJSIPCREDDATADIGEST...

9.8CVSS9.1AI score0.02016EPSS
Exploits0References6Affected Software2
0day.today
0day.today
added 2022/05/12 12:0 a.m.793 views

Cisco RV340 SSL VPN Unauthenticated Remote Code Execution Exploit

This Metasploit module exploits a stack buffer overflow in the Cisco RV series router's SSL VPN functionality. The default SSL VPN configuration is exploitable, with no authentication required and works over the Internet! The stack is executable and no ASLR is in place, which makes exploitation...

10CVSS10AI score0.72458EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2022/05/12 12:0 a.m.35 views

AlmaLinux 8 : cairo and pixman (ALSA-2022:1961)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:1961 advisory. - A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. This flaw allows an attacker who can provide a crafted input file to cairo's...

7.8CVSS6.8AI score0.01112EPSS
Exploits0References2
Rows per page
Query Builder