CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

903 matches found

NVD•added 2023/09/14 7:16 p.m.•7 views

CVE-2018-4619

Rejected reason: This candidate is unused by its CNA...

6.6AI score

Exploits0

NVD•added 2023/09/14 7:15 p.m.•11 views

CVE-2011-3456

Rejected reason: This candidate is unused by its CNA...

6.6AI score

Exploits0

Code423n4•added 2023/09/11 12:0 a.m.•6 views

The number of ticks is incorrectly fixed and is not equal to liquidityPerTick, resulting in low fund utilization.

Lines of code Vulnerability details Impact In the readme, it states the goal after activeIndex is reconstructed is: Instead of depositing half of the assets into each of the 2 ticks above and below, this has been parameterized, allowing to change asset distribution in case of high volatility. But...

6.9AI score

Exploits0

Code423n4•added 2023/09/11 12:0 a.m.•11 views

The roerouter hard-coded address error causes all fee funds to be sent to the treasury instead of the vault

Lines of code Vulnerability details Impact The roerouter hard-coded address error causes all fee funds to be sent to the treasury instead of the vault. This will reduce the capital utilization rate, because the fee should be added to the LP to earn interest, but now because the vault address cann...

6.7AI score

Exploits0

Fedora•added 2023/07/20 5:18 a.m.•29 views

[SECURITY] Fedora 37 Update: sysstat-12.6.2-2.fc37

The sysstat package contains the sar, sadf, mpstat, iostat, tapestat, pidstat, cifsiostat and sa tools for Linux. The sar command collects and reports system activity information. The information collected by sar can be saved in a file in a binary format for future inspection. The statistics...

7.8CVSS6.8AI score0.00039EPSS

Exploits0

NVD•added 2023/07/13 9:15 a.m.•18 views

CVE-2023-29449

JavaScript preprocessing, webhooks and global scripts can cause uncontrolled CPU, memory, and disk I/O utilization. Preprocessing/webhook/global script configuration and testing are only available to Administrative roles Admin and Superadmin. Administrative privileges should be typically granted ...

5.9CVSS0.0086EPSS

Exploits0References2

OSV•added 2023/07/13 9:15 a.m.•28 views

CVE-2023-29449

4.9CVSS7.1AI score

Exploits0References2

UbuntuCve•added 2023/07/13 9:15 a.m.•21 views

CVE-2023-29449

5.9CVSS6AI score0.0086EPSS

Exploits0References2

Prion•added 2023/07/13 9:15 a.m.•23 views

Code injection

3.3CVSS5.1AI score0.0086EPSS

Exploits0References1Affected Software1

Debian CVE•added 2023/07/13 8:24 a.m.•20 views

CVE-2023-29449

5.9CVSS5.2AI score0.0086EPSS

Exploits0

CVE•added 2023/07/13 8:24 a.m.•81 views

CVE-2023-29449

CVE-2023-29449 affects Zabbix frontend components related to JavaScript preprocessing, webhooks and global scripts. The issue is described as causing uncontrolled CPU, memory, and disk I/O utilization when these features are configured or tested, with access restricted to Administrative roles (Ad...

5.9CVSS5.6AI score0.0086EPSS

Exploits0References2Affected Software1

UbuntuCve•added 2023/06/30 7:15 p.m.•31 views

CVE-2023-36810

pypdf is a pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. An attacker who uses this vulnerability can craft a PDF which leads to unexpected long runtime. This quadratic runtime blocks the current process and can utilize a single core of t...

6.5CVSS6.7AI score0.00165EPSS

Exploits1References5

Prion•added 2023/06/30 7:15 p.m.•14 views

Code injection

pypdf is a pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. In version 2.10.5 an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This infinite loop blocks the current process and can utilize a single co...

4.3CVSS6.3AI score0.00096EPSS

Exploits1References3Affected Software1

UbuntuCve•added 2023/06/30 7:15 p.m.•18 views

CVE-2023-36807

6.5CVSS6.7AI score0.00096EPSS

Exploits1References4

Vulnrichment•added 2023/06/30 6:43 p.m.•23 views

CVE-2023-36810 Quadratic runtime with malformed PDF missing xref marker in pypdf

6.2CVSS6.5AI score0.00165EPSS

Exploits1References4

Cvelist•added 2023/06/30 6:43 p.m.•12 views

CVE-2023-36810 Quadratic runtime with malformed PDF missing xref marker in pypdf

6.2CVSS6.5AI score0.00165EPSS

Exploits1References4

Debian CVE•added 2023/06/30 6:43 p.m.•15 views

CVE-2023-36810

6.5CVSS6.3AI score0.00165EPSS

Exploits1

Vulnrichment•added 2023/06/30 6:38 p.m.•10 views

CVE-2023-36807 Infinite Loop when reading malformed objects in pypdf

6.2CVSS6.5AI score0.00096EPSS

Exploits1References3

Tenable Nessus•added 2023/06/29 12:0 a.m.•28 views

SUSE SLES12 Security Update : kernel (Live Patch 34 for SLE 12 SP4) (SUSE-SU-2023:2666-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2666-1 advisory. - A remote denial of service vulnerability was found in the Linux kernel's TIPC kernel module. The while loop in tipclinkxmit hits an unknown...

7.8CVSS6.5AI score0.00379EPSS

Exploits0References7

Tenable Nessus•added 2023/06/29 12:0 a.m.•26 views

SUSE SLES12 Security Update : kernel (Live Patch 33 for SLE 12 SP4) (SUSE-SU-2023:2690-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2690-1 advisory. - A remote denial of service vulnerability was found in the Linux kernel's TIPC kernel module. The while loop in tipclinkxmit hits an unknown...

7.8CVSS6.5AI score0.00379EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by