CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3047 matches found

Vulnrichment•added 2024/04/17 12:0 a.m.•10 views

CVE-2024-31031

An issue in coappdu.c in libcoap 4.3.4 allows attackers to cause undefined behavior via a sequence of messages leading to unsigned integer overflow...

6.7AI score0.00866EPSS

Exploits1References3

Cvelist•added 2024/04/17 12:0 a.m.•17 views

CVE-2024-31031

An issue in coappdu.c in libcoap 4.3.4 allows attackers to cause undefined behavior via a sequence of messages leading to unsigned integer overflow...

6.6AI score0.00866EPSS

Exploits1References3

CVE•added 2024/04/17 12:0 a.m.•91 views

CVE-2024-31031

CVE-2024-31031 affects libcoap 4.3.4 (coap_pdu.c) with undefined behavior caused by an unsigned integer overflow when processing a sequence of messages. Fedora advisories indicate patches exist for libcoap (e.g., 4.3.4a-2 in FC39/FC40); Nessus/OpenVAS entries reference a patch to fix CVE-2024-310...

7.5CVSS6.4AI score0.00866EPSS

Exploits1References5Affected Software1

Debian CVE•added 2024/04/17 12:0 a.m.•15 views

CVE-2024-31031

An issue in coappdu.c in libcoap 4.3.4 allows attackers to cause undefined behavior via a sequence of messages leading to unsigned integer overflow...

7.5CVSS7.3AI score0.00866EPSS

Exploits1

NVD•added 2024/04/16 9:15 a.m.•10 views

CVE-2024-32633

An unsigned value can never be negative, so eMMC full disk test will always evaluate the same way...

4CVSS4.3AI score0.00234EPSS

Exploits0References1

OSV•added 2024/04/16 9:15 a.m.•3 views

CVE-2024-32633

An unsigned value can never be negative, so eMMC full disk test will always evaluate the same way...

4CVSS5.8AI score0.00234EPSS

Exploits0References1

CVE•added 2024/04/16 8:54 a.m.•61 views

CVE-2024-32633

CVE-2024-32633 describes a flaw where an unsigned value can never be negative, causing eMMC full-disk test evaluations to always yield the same result. Connected sources identify the Asrmicro ASR Series (ASR360x, ASR160x, ASR180x) as affected. The initial entry provides a CVSSv3.1 base score of 4...

4CVSS6.8AI score0.00234EPSS

Exploits0References1Affected Software1

Cvelist•added 2024/04/16 8:54 a.m.•16 views

CVE-2024-32633 Unsigned compared against 0

An unsigned value can never be negative, so eMMC full disk test will always evaluate the same way...

4CVSS4.7AI score0.00234EPSS

Exploits0References1

Vulnrichment•added 2024/04/16 8:54 a.m.•13 views

CVE-2024-32633 Unsigned compared against 0

An unsigned value can never be negative, so eMMC full disk test will always evaluate the same way...

4CVSS6.9AI score0.00234EPSS

Exploits0References1

Positive Technologies•added 2024/04/16 12:0 a.m.•6 views

PT-2024-24733

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned. Description The issue concerns an unsigned value that can never be negative, affecting the evaluation of the eMMC full disk test. Recommendations At the moment, there is no information about a...

4CVSS6.5AI score0.00234EPSS

Exploits0References3

RedhatCVE•added 2024/04/03 11:45 p.m.•48 views

CVE-2024-26720

A vulnerability was found in the wbdirtylimits function in the Linux kernel memory management mm subsystem which can lead to a divide-by-zero error. This issue could lead to a potential kernel crash...

5.5CVSS6.2AI score

Exploits0References4

UbuntuCve•added 2024/04/03 3:15 p.m.•25 views

CVE-2024-26720

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6.6AI score

Exploits0References26

Debian CVE•added 2024/04/03 2:55 p.m.•26 views

CVE-2024-26720

Removed by vendor...

7.2AI score

Exploits0

OSV•added 2024/03/25 10:15 a.m.•2 views

DEBIAN-CVE-2021-47159

In the Linux kernel, the following vulnerability has been resolved: net: dsa: fix a crash if -getssetcount fails If ds-ops-getssetcount fails then it "count" is a negative error code such as -EOPNOTSUPP. Because "i" is an unsigned int, the negative error code is type promoted to a very high value...

5.5CVSS5.7AI score0.00235EPSS

Exploits0References1

Japan Vulnerability Notes•added 2024/03/25 9:16 a.m.•3 views

BUFFALO LinkStation 200 series vulnerable to arbitrary code execution

Overview LinkStation 200 series provided by BUFFALO INC. is a network attached storage NAS. LinkStation 200 series contains an arbitrary code execution vulnerability CWE-354, CVE-2023-51073 due to insufficient verification of data authenticity during firmware update. BUFFALO INC. reported this...

8.1CVSS7.8AI score0.01312EPSS

Exploits1References7

Positive Technologies•added 2024/03/25 12:0 a.m.•3 views

PT-2024-11207 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability has been resolved in the Linux kernel. The issue occurs when ds-ops-get sset count fails, resulting in a negative error code, such as -EOPNOTSUPP. Because i is an...

7.8CVSS6.8AI score0.08555EPSS

Exploits5References449

OpenVAS•added 2024/03/25 12:0 a.m.•24 views

Fedora: Security Advisory for shim-unsigned-aarch64 (FEDORA-2024-2aa28a4cfc)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.3CVSS6.9AI score0.04892EPSS

Exploits0References2

OpenVAS•added 2024/03/25 12:0 a.m.•28 views

Fedora: Security Advisory for shim-unsigned-x64 (FEDORA-2024-2aa28a4cfc)

8.3CVSS6.9AI score0.04892EPSS

Exploits0References2

Veracode•added 2024/03/19 3:19 a.m.•18 views

Arbitrary Code Execution

github.com/projectdiscovery/nuclei is vulnerable to Arbitrary Code Execution. The vulnerability is due to improper validation of signed workflows within the parseWorkflowTemplate function in workflows.go, which allows the execution of unsigned code templates through workflows...

7.4CVSS7.2AI score0.00411EPSS

Exploits0References5Affected Software1