CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SUSE CVE•added 2023/02/15 4:20 a.m.•1 views

SUSE CVE-2018-25021

The TCP Server module in toxcore before 0.2.8 doesn't free the TCP priority queue under certain conditions, which allows a remote attacker to exhaust the system's memory, causing a denial of service DoS...

7.5CVSS7.4AI score0.00976EPSS

SUSE CVE•added 2023/02/15 4:20 a.m.•0 views

SUSE CVE-2018-25022

4.3CVSS4.4AI score0.00297EPSS

SUSE CVE•added 2023/02/15 3:36 a.m.•3 views

SUSE CVE-2021-44847

A stack-based buffer overflow in handlerequest function in DHT.c in toxcore 0.1.9 through 0.1.11 and 0.2.0 through 0.2.12 caused by an improper length calculation during the handling of received network packets allows remote attackers to crash the process or potentially execute arbitrary code via...

The Hacker News•added 2022/08/24 5:59 p.m.•55 views

Exploits1References4

Crypto Miners Using Tox P2P Messenger as Command and Control Server

Threat actors have begun to use the Tox peer-to-peer instant messaging service as a command-and-control method, marking a shift from its earlier role as a contact method for ransomware negotiations. The findings from Uptycs, which analyzed an Executable and Linkable Format ELF artifact "72client"...

7.5AI score

Exploits0

OpenVAS•added 2022/02/08 12:0 a.m.•11 views

openSUSE: Security Advisory for c-toxcore (openSUSE-SU-2021:1640-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS9.6AI score0.03947EPSS

OpenVAS•added 2022/01/28 12:0 a.m.•14 views

Mageia: Security Advisory (MGASA-2021-0596)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.03947EPSS

Exploits1References4

Tenable Nessus•added 2021/12/31 12:0 a.m.•22 views

openSUSE 15 Security Update : c-toxcore (openSUSE-SU-2021:1640-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:1640-1 advisory. - A stack-based buffer overflow in handlerequest function in DHT.c in toxcore 0.1.9 through 0.1.11 and 0.2.0 through 0.2.12 caused by an improper...

9.8CVSS9AI score0.03947EPSS

Exploits1References4

OSV•added 2021/12/30 4:41 p.m.•3 views

MGASA-2021-0596 Updated toxcore packages fix security vulnerability

stack-based buffer overflow in handlerequest in DHT.c CVE-2021-44847...

Mageia•added 2021/12/30 4:41 p.m.•25 views

Updated toxcore packages fix security vulnerability

stack-based buffer overflow in handlerequest in DHT.c CVE-2021-44847...

9.8CVSS3.8AI score0.03947EPSS

OSV•added 2021/12/30 3:2 p.m.•2 views

OPENSUSE-SU-2021:1640-1 Security update for c-toxcore

c-toxcore was updated fo fix a securiy issue: - CVE-2021-44847: Fixed a buffer overflow in handlerequest in DHT.c which could lead to remote DoS and potential code execution boo1193667...

9.8CVSS9.8AI score0.03947EPSS

OPENSUSE Linux•added 2021/12/30 12:0 a.m.•44 views

Security update for c-toxcore (moderate)

openSUSE Security Update: Security update for c-toxcore Announcement ID: openSUSE-SU-2021:1640-1 Rating: moderate References: 1193667 Cross-References: CVE-2021-44847 Affected Products: openSUSE Leap 15.2 openSUSE Backports SLE-15-SP3 openSUSE Backports SLE-15-SP2 openSUSE Backports SLE-15-SP1 An...

Fedora•added 2021/12/27 12:41 a.m.•24 views

Exploits1References1

[SECURITY] Fedora 35 Update: toxcore-0.2.13-1.fc35

Tox is a peer to peer serverless instant messenger aimed at making security and privacy easy to obtain for regular users. It uses NaCl for its encryption and authentication...

9.8CVSS3.4AI score0.03947EPSS

Exploits1

OpenVAS•added 2021/12/27 12:0 a.m.•13 views

Fedora: Security Advisory for toxcore (FEDORA-2021-8026e9b394)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OpenVAS•added 2021/12/27 12:0 a.m.•13 views

Fedora: Security Advisory for toxcore (FEDORA-2021-8b746a32c5)