Lucene search
K

329 matches found

OpenVAS
OpenVAS
added 2021/10/01 12:0 a.m.27 views

Debian: Security Advisory (DLA-2770-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.03684EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2021/10/01 12:0 a.m.32 views

Debian DLA-2770-1 : weechat - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2770 advisory. - ircmodechannelupdate in plugins/irc/irc-mode.c in WeeChat through 2.7 allows remote attackers to cause a denial of service buffer overflow and application crash ...

9.8CVSS8.1AI score0.03684EPSS
Exploits1References12
Debian
Debian
added 2021/09/30 12:6 p.m.28 views

[SECURITY] [DLA 2770-1] weechat security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2770-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk September 30, 2021 https://wiki.debian.org/LTS -...

9.8CVSS8.4AI score0.03684EPSS
Exploits1
OSV
OSV
added 2021/09/30 12:0 a.m.38 views

DLA-2770-1 weechat - security update

Bulletin has no description...

9.8CVSS8.5AI score0.03684EPSS
Exploits1
CNVD
CNVD
added 2021/09/07 12:0 a.m.27 views

WeeChat Buffer Overflow Vulnerability (CNVD-2021-70118)

A security vulnerability in WeeChat, an extensible live chat client application, stems from the fact that WeeChat before version 3.2.1 allows remote attackers to trigger, via a crafted WebSocket framework, an out-of-bounds read, resulting in a denial of service crash. No detailed vulnerability...

7.5CVSS5.2AI score0.01594EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/09/07 12:0 a.m.14 views

FreeBSD : WeeChat -- Crash when decoding a malformed websocket frame in relay plugin. (65f05b71-0e3c-11ec-b335-d4c9ef517024)

The WeeChat project reports : Crash when decoding a malformed websocket frame in relay plugin. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2021 Jacques Vidrine and...

7AI score
Exploits0References3
NVD
NVD
added 2021/09/05 6:15 p.m.18 views

CVE-2021-40516

WeeChat before 3.2.1 allows remote attackers to cause a denial of service crash via a crafted WebSocket frame that trigger an out-of-bounds read in plugins/relay/relay-websocket.c in the Relay plugin...

7.5CVSS0.01594EPSS
Exploits0References3
OSV
OSV
added 2021/09/05 6:15 p.m.2 views

DEBIAN-CVE-2021-40516

WeeChat before 3.2.1 allows remote attackers to cause a denial of service crash via a crafted WebSocket frame that trigger an out-of-bounds read in plugins/relay/relay-websocket.c in the Relay plugin...

7.5CVSS7.3AI score0.01594EPSS
Exploits0References1
OSV
OSV
added 2021/09/05 6:15 p.m.19 views

CVE-2021-40516

WeeChat before 3.2.1 allows remote attackers to cause a denial of service crash via a crafted WebSocket frame that trigger an out-of-bounds read in plugins/relay/relay-websocket.c in the Relay plugin...

7.5CVSS6.5AI score
Exploits0References3
OSV
OSV
added 2021/09/05 6:15 p.m.4 views

UBUNTU-CVE-2021-40516

WeeChat before 3.2.1 allows remote attackers to cause a denial of service crash via a crafted WebSocket frame that trigger an out-of-bounds read in plugins/relay/relay-websocket.c in the Relay plugin...

7.5CVSS7.2AI score0.01594EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2021/09/05 6:15 p.m.36 views

CVE-2021-40516

WeeChat before 3.2.1 allows remote attackers to cause a denial of service crash via a crafted WebSocket frame that trigger an out-of-bounds read in plugins/relay/relay-websocket.c in the Relay plugin...

7.5CVSS7.1AI score0.01594EPSS
Exploits0References4
Prion
Prion
added 2021/09/05 6:15 p.m.16 views

Out-of-bounds

WeeChat before 3.2.1 allows remote attackers to cause a denial of service crash via a crafted WebSocket frame that trigger an out-of-bounds read in plugins/relay/relay-websocket.c in the Relay plugin...

5CVSS7AI score0.01594EPSS
Exploits0References3Affected Software2
Cvelist
Cvelist
added 2021/09/05 5:14 p.m.25 views

CVE-2021-40516

WeeChat before 3.2.1 allows remote attackers to cause a denial of service crash via a crafted WebSocket frame that trigger an out-of-bounds read in plugins/relay/relay-websocket.c in the Relay plugin...

7.7AI score0.01594EPSS
Exploits0References3
CVE
CVE
added 2021/09/05 5:14 p.m.110 views

CVE-2021-40516

CVE-2021-40516 affects WeeChat before 3.2.1. The vulnerability is in the Relay plugin’s WebSocket handling, specifically an out-of-bounds read in plugins/relay/relay-websocket.c, which an attacker can trigger remotely to cause a denial of service (crash). Connected sources confirm affected versio...

7.5CVSS7AI score0.01594EPSS
Exploits0References3Affected Software1
AlpineLinux
AlpineLinux
added 2021/09/05 5:14 p.m.44 views

CVE-2021-40516

WeeChat before 3.2.1 allows remote attackers to cause a denial of service crash via a crafted WebSocket frame that trigger an out-of-bounds read in plugins/relay/relay-websocket.c in the Relay plugin...

7.5CVSS7.2AI score0.01594EPSS
Exploits0
Debian CVE
Debian CVE
added 2021/09/05 5:14 p.m.28 views

CVE-2021-40516

WeeChat before 3.2.1 allows remote attackers to cause a denial of service crash via a crafted WebSocket frame that trigger an out-of-bounds read in plugins/relay/relay-websocket.c in the Relay plugin...

7.5CVSS4.8AI score0.01594EPSS
Exploits0
CNNVD
CNNVD
added 2021/09/05 12:0 a.m.13 views

WeeChat 缓冲区错误漏洞

A security vulnerability in WeeChat, an extensible live chat client application, stems from the fact that WeeChat before version 3.2.1 allows remote attackers to trigger, via a crafted WebSocket framework, an out-of-bounds read, resulting in a denial of service crash. No detailed vulnerability...

7.5CVSS5.6AI score0.01594EPSS
Exploits0References6
FreeBSD
FreeBSD
added 2021/09/04 12:0 a.m.9 views

WeeChat -- Crash when decoding a malformed websocket frame in relay plugin.

The WeeChat project reports: Crash when decoding a malformed websocket frame in relay plugin...

1.5AI score
Exploits0References2
Veracode
Veracode
added 2020/08/06 9:26 p.m.20 views

Arbitrary Code Execution

weechat is vulnerable to denial of service. The ircmodechannelupdate in plugins/irc/irc-mode.c allows remote attackers to cause a denial of service buffer overflow and application crash condition or possibly execute arbitrary code on the host OS...

9.8CVSS7.7AI score0.03684EPSS
Exploits0References12Affected Software1
OSV
OSV
added 2020/04/02 10:48 p.m.5 views

MGASA-2020-0153 Updated weechat packages fix security vulnerabilities

Updated weechat packages fix security vulnerabilities: An issue was discovered in WeeChat before 2.7.1 0.4.0 to 2.7 are affected. A malformed message 352 who can cause a NULL pointer dereference in the callback function, resulting in a crash CVE-2020-9759. An issue was discovered in WeeChat befor...

9.8CVSS9AI score0.02193EPSS
Exploits1References3
Rows per page
Query Builder