CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

88 matches found

SUSE CVE•added 2023/02/15 3:38 a.m.•2 views

SUSE CVE-2021-38593

Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and QPaintEngineEx::stroke...

7.5CVSS7.1AI score0.00834EPSS

Exploits0References3

Snyk•added 2022/12/20 11:33 a.m.•1 views

Cross-site Scripting (XSS)

Overview smoothie is a Smoothie Charts: smooooooth JavaScript charts for realtime streaming data Affected versions of this package are vulnerable to Cross-site Scripting XSS due to improper user input sanitization in strokeStyle and tooltipLabel properties. Exploiting this vulnerability is possib...

5.4CVSS5.3AI score0.00501EPSS

Exploits1References2

Positive Technologies•added 2022/09/29 12:0 a.m.•2 views

PT-2022-37319 · Git +1 · Skia

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read error. Technical details about the crash include the SkPath::Iter::next function, SkStroke::strokePat...

6.8AI score

Exploits0References2

OSV•added 2022/09/23 6:15 p.m.•1 views

CVE-2022-35096

SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via drawstroke at /gfxpoly/stroke.c...

5.5CVSS5.8AI score0.00082EPSS

Exploits1References2

OSV•added 2022/09/23 6:15 p.m.•0 views

UBUNTU-CVE-2022-35096

SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via drawstroke at /gfxpoly/stroke.c...

5.5CVSS5.8AI score0.00082EPSS

Exploits1References4

CNNVD•added 2022/09/23 12:0 a.m.•1 views

SWFTools 缓冲区错误漏洞

SWFTools is a set of utilities for working with Adobe Flash files SWF files from the individual developer Matthias Kramm. A security vulnerability exists in SWFTools, which stems from a heap buffer overflow in the drawstroke location of /gfxpoly/stroke.c. The vulnerability is caused by the use of...

5.5CVSS6AI score0.00082EPSS

Exploits1References3

ATTACKERKB•added 2022/08/16 9:15 p.m.•0 views

CVE-2022-35109

SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via drawstroke at /gfxpoly/stroke.c...

5.5CVSS6AI score0.00049EPSS

Exploits1References2

OSV•added 2022/08/16 9:15 p.m.•0 views

UBUNTU-CVE-2022-35109

SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via drawstroke at /gfxpoly/stroke.c...

5.5CVSS6.1AI score0.00049EPSS

Exploits1References4

CVE•added 2022/08/16 8:12 p.m.•62 views

CVE-2022-35109

SWFTools contains a heap-buffer overflow in draw_stroke implemented in /gfxpoly/stroke.c (commit 772e55a2). Affected component: SWFTools; root cause: heap-buffer overflow in drawing strokes. CVSSv3.1 base score 5.5 (Medium) with LOCAL attack vector, user interaction required, and high impact on a...

5.5CVSS5.7AI score0.00049EPSS

Exploits1References1Affected Software1

Positive Technologies•added 2022/08/16 12:0 a.m.•2 views

PT-2022-22576 · Swftools · Swftools

Name of the Vulnerable Software and Affected Versions: SWFTools affected versions not specified Description: A heap-buffer overflow issue was discovered in SWFTools via the draw stroke function at /gfxpoly/stroke.c. Recommendations: At the moment, there is no information about a newer version tha...

5.5CVSS5.4AI score0.00049EPSS

Exploits1References6

CNNVD•added 2022/08/16 12:0 a.m.•0 views

SWFTools 缓冲区错误漏洞

SWFTools is a set of utilities for working with Adobe Flash files SWF files from the individual developer Matthias Kramm. A security vulnerability exists in SWFTools that originates from a heap buffer overflow in drawstroke in the /gfxpoly/stroke.c file...

5.5CVSS6AI score0.00049EPSS

Exploits1References2

Veracode•added 2022/05/25 12:43 a.m.•27 views

Denial Of Service (DoS)

Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and QPaintEngineEx::stroke...

7.5CVSS7.6AI score0.00834EPSS

Exploits0References16Affected Software2

OSV•added 2021/12/23 12:0 a.m.•10 views

OSV-2021-1741 Stack-buffer-overflow in line_join_points

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=42796 Crash type: Stack-buffer-overflow WRITE 4 Crash state: linejoinpoints strokeaddcompat gxstrokepathonly...

7.2AI score

Exploits0References1

Microsoft CVE•added 2021/10/01 7:0 a.m.•2 views

Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath (called from QRasterPaintEngine::fill and QPaintEngineEx::stroke).

...

7.5CVSS8.7AI score0.00834EPSS

Exploits0

Prion•added 2021/08/12 2:15 a.m.•25 views

Out-of-bounds

Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and QPaintEngineEx::stroke...

5CVSS7.5AI score0.00834EPSS

Exploits0References10Affected Software2

CNNVD•added 2021/08/12 12:0 a.m.•1 views

Qt QLibrary 缓冲区错误漏洞

Qt QLibrary is a code framework and QLibrary is one of his libraries. A buffer error vulnerability exists in Qt QLibrary that stems from an out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and QPaintEngineEx::stroke...

7.5CVSS7AI score0.00834EPSS

Exploits0References14

CNVD•added 2020/10/21 12:0 a.m.•2 views

Libass Integer Overflow Vulnerability

libass is a subtitle renderer based on the ASS/SSA format by an individual developer. A security vulnerability exists in libass version 0.14.0, which stems from a signed integer overflow due to a call to outline stroke by assoutlineconstruct. No details of the vulnerability are available at this...

8.8CVSS7.1AI score0.00446EPSS

Exploits1References1

OSV•added 2020/10/16 2:15 p.m.•1 views

DEBIAN-CVE-2020-26682

In libass 0.14.0, the assoutlineconstruct's call to outlinestroke causes a signed integer overflow...

8.8CVSS8.1AI score0.00446EPSS

Exploits1References1