Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

191 matches found

Mageia
Mageiaadded 2021/03/14 9:20 p.m.37 views

Updated mediainfo packages a fix security vulnerability

In MediaInfoLib in MediaArea MediaInfo 20.03, there is a stack-based buffer over-read in StreamsFillPerStream in Multiple/FileMpegPs.cpp aka an off-by-one during MpegPs parsing CVE-2020-15395...

7.8CVSS4.7AI score0.00466EPSS
Exploits1References3
Debian
Debianadded 2021/02/18 10:59 p.m.39 views

[SECURITY] [DLA 2567-1] unrar-free security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2567-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz February 18, 2021 https://wiki.debian.org/LTS -...

9.1CVSS7.2AI score0.00569EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2021/02/05 12:0 a.m.81 views

EulerOS 2.0 SP9 : qemu (EulerOS-SA-2021-1256)

According to the versions of the qemu package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In QEMU through 5.0.0, an integer overflow was found in the SM501 display driver implementation. This flaw occurs in the COPYAREA macro while...

5.5CVSS6.7AI score0.00147EPSS
Exploits2References6
OpenVAS
OpenVASadded 2021/02/05 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2021-1275)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.2AI score0.00147EPSS
Exploits2References2
Tenable Nessus
Tenable Nessusadded 2021/02/05 12:0 a.m.251 views

EulerOS 2.0 SP9 : qemu (EulerOS-SA-2021-1275)

According to the versions of the qemu package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In QEMU through 5.0.0, an integer overflow was found in the SM501 display driver implementation. This flaw occurs in the COPYAREA macro while...

5.5CVSS6.7AI score0.00147EPSS
Exploits2References6
Tenable Nessus
Tenable Nessusadded 2021/02/04 12:0 a.m.29 views

EulerOS 2.0 SP5 : poppler (EulerOS-SA-2021-1225)

According to the versions of the poppler packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In Poppler 0.54.0, a memory leak vulnerability was found in the function gmalloc in gmem.cc, which allows attackers to cause a denial of servic...

6.5CVSS6.3AI score0.01046EPSS
Exploits1References6
Tenable Nessus
Tenable Nessusadded 2021/02/01 12:0 a.m.39 views

EulerOS 2.0 SP8 : qemu (EulerOS-SA-2021-1169)

According to the version of the qemu package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - hw/usb/hcd-ohci.c in QEMU 5.0.0 has a stack-based buffer over-read via values obtained from the host controller driver.CVE-2020-25624 Note that Tenabl...

5CVSS7.1AI score0.00034EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2020/12/15 12:0 a.m.36 views

EulerOS 2.0 SP5 : poppler (EulerOS-SA-2020-2561)

According to the versions of the poppler packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Poppler before 0.66.0 has an integer overflow in Parser::makeStream in Parser.cc.CVE-2018-21009 - A stack-based buffer over-read exists in...

8.8CVSS7.1AI score0.00948EPSS
Exploits1References4
OpenVAS
OpenVASadded 2020/12/15 12:0 a.m.18 views

Huawei EulerOS: Security Advisory for poppler (EulerOS-SA-2020-2561)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.00948EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2020/11/18 12:0 a.m.23 views

RHEL 8 : tcpdump (RHSA-2020:1604)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:1604 advisory. The tcpdump packages contain the tcpdump utility for monitoring network traffic. The tcpdump utility can capture and display the packet headers on a...

5.5CVSS6.4AI score0.00383EPSS
Exploits1References7
OpenVAS
OpenVASadded 2020/11/04 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for nasm (EulerOS-SA-2020-2416)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.00301EPSS
Exploits7References2
Tenable Nessus
Tenable Nessusadded 2020/11/03 12:0 a.m.27 views

EulerOS 2.0 SP2 : libvorbis (EulerOS-SA-2020-2363)

According to the versions of the libvorbis package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - mapping0forward in mapping0.c in Xiph.Org libvorbis 1.3.6 does not validate the number of channels, which allows remote attackers to cause a...

8.8CVSS6.9AI score0.01423EPSS
Exploits1References3
OpenVAS
OpenVASadded 2020/09/29 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for file (EulerOS-SA-2020-2038)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.8AI score0.01089EPSS
Exploits4References2
Tenable Nessus
Tenable Nessusadded 2020/09/02 12:0 a.m.32 views

EulerOS 2.0 SP5 : libvorbis (EulerOS-SA-2020-1926)

According to the versions of the libvorbis package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - barknoisehybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read.CVE-2018-10393 - mapping0forward in mapping0.c in...

8.8CVSS6.9AI score0.01423EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2020/09/02 12:0 a.m.27 views

EulerOS 2.0 SP5 : nasm (EulerOS-SA-2020-1941)

According to the version of the nasm package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Netwide Assembler NASM 2.13 has a stack-based buffer over-read in the disasm function of the disasm/disasm.c file. Remote attackers could leverage thi...

7.8CVSS6.5AI score0.0027EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2020/08/28 12:0 a.m.52 views

EulerOS 2.0 SP8 : file (EulerOS-SA-2020-1845)

According to the versions of the file packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - dobidnote in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to fileprintf and filevprintf.CVE-2019-8904 -...

8.8CVSS7.1AI score0.01089EPSS
Exploits4References5
Mageia
Mageiaadded 2020/07/10 3:40 p.m.32 views

Updated xpdf packages fix security vulnerability

A stack-based buffer over-read exists in FoFiTrueType::dumpString in fofi/FoFiTrueType.cc in Xpdf 4.01.01. It can, for example, be triggered by sending crafted TrueType data in a PDF document to the pdftops tool. It might allow an attacker to cause Denial of Service or leak memory data into dump...

7.1CVSS2.6AI score0.00338EPSS
Exploits0References2
OSV
OSVadded 2020/07/10 3:40 p.m.6 views

MGASA-2020-0291 Updated xpdf packages fix security vulnerability

A stack-based buffer over-read exists in FoFiTrueType::dumpString in fofi/FoFiTrueType.cc in Xpdf 4.01.01. It can, for example, be triggered by sending crafted TrueType data in a PDF document to the pdftops tool. It might allow an attacker to cause Denial of Service or leak memory data into dump...

7.1CVSS7.2AI score0.00338EPSS
Exploits0References3
Veracode
Veracodeadded 2020/06/03 4:10 a.m.15 views

Denial Of Service (DoS)

tcpflow is vulnerable to denial of service DoS. The vulnerability exists as a stack-based buffer over-read exists in setbit at iptree.h of TCPFLOW 1.5.0, due to received incorrect values causing incorrect computation, leading to denial of service during an addresshistogram call or a gethistogram...

5.5CVSS3.6AI score0.00189EPSS
Exploits1References6Affected Software2
OSV
OSVadded 2020/05/26 8:13 a.m.5 views

OPENSUSE-SU-2020:0721-1 Security update for memcached

This update for memcached fixes the following issues: Security issue fixed: - CVE-2019-11596: Fixed a NULL pointer dereference in processlrucommand bsc1133817. - CVE-2019-15026: Fixed a stack-based buffer over-read bsc1149110. This update was imported from the SUSE:SLE-15:Update update project...

7.5CVSS7.6AI score0.01552EPSS
Exploits1References5
Rows per page
Query Builder