CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-1020

Malicious code in bioql PyPI...

7.7CVSS7.4AI score0.00426EPSS

Exploits1References5

NVD•added 2024/10/04 1:15 p.m.•14 views

CVE-2024-9484

An null-pointer-derefrence in the engine module in AVG/Avast Antivirus signature 24092400 released on 24/Sep/2024 on MacOS allows a malformed xar file to crash the application during file processing...

5.5CVSS0.0008EPSS

Exploits0References1

NVD•added 2024/10/04 1:15 p.m.•11 views

CVE-2024-9483

A null-pointer-dereference in the signature verification module in AVG/Avast Antivirus signature 24092400 released on 24/Sep/2024 on MacOS may allow a malformed xar file to crash the application during processing...

5.5CVSS0.00061EPSS

Exploits0References1

Cvelist•added 2024/10/04 12:44 p.m.•16 views

CVE-2024-9484

5.1CVSS0.0008EPSS

Exploits0References1

Vulnrichment•added 2024/10/04 12:44 p.m.•11 views

CVE-2024-9484

5.1CVSS6.8AI score0.0008EPSS

Exploits0References1

CVE•added 2024/10/04 12:44 p.m.•50 views

CVE-2024-9484

CVE-2024-9484 affects AVG/Avast Antivirus on macOS due to a null-pointer-dereference in the engine module when processing malformed xar files. The issue, tied to signature

5.5CVSS6.9AI score0.0008EPSS

Exploits0References1Affected Software2

Vulnrichment•added 2024/10/04 12:29 p.m.•10 views

CVE-2024-9483 Uninitialized variable in digital signiture verification may crash the application

5.1CVSS6.8AI score0.00061EPSS

Exploits0References1

CVE•added 2024/10/04 12:29 p.m.•46 views

CVE-2024-9483

CVE-2024-9483 affects AVG/Avast Antivirus on macOS. A null-pointer-dereference in the signature verification module can cause a crash when processing malformed xar files in signatures prior to version 24092400. PT-2024-39659 confirms affected versions and provides remediation: update to signature...

5.5CVSS5.2AI score0.00061EPSS

Exploits0References1Affected Software2

Cvelist•added 2024/10/04 12:29 p.m.•14 views

CVE-2024-9483 Uninitialized variable in digital signiture verification may crash the application

5.1CVSS0.00061EPSS

Exploits0References1

Positive Technologies•added 2024/10/04 12:0 a.m.•2 views

PT-2024-39660 · Avast · Avg/Avast Antivirus

Name of the Vulnerable Software and Affected Versions: AVG/Avast Antivirus versions prior to signature 24092400 Description: A null-pointer-dereference issue in the engine module of AVG/Avast Antivirus on MacOS allows a malformed xar file to crash the application during file processing...

5.5CVSS6.8AI score0.0008EPSS

Exploits0References5

OSV•added 2023/03/07 6:13 p.m.•17 views

CVE-2023-27480 Data leak through a XAR import XXE attack in xwiki-platform-xar-model

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In affected versions any user with edit rights on a document can trigger an XAR import on a forged XAR file, leading to the ability to display the content of any file on the XWiki server host...

7.7CVSS7.3AI score0.00426EPSS

Exploits1References5

OpenVAS•added 2022/01/28 12:0 a.m.•4 views

Mageia: Security Advisory (MGASA-2017-0363)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score

Exploits0References4

Veracode•added 2020/05/10 11:24 p.m.•19 views

Denial Of Service (DoS)

clamav is vulnerable to denial of service DoS. The vulenrability exists as a Out of bounds heap memory read vulnerability in XAR parser, function xarhashcheck that can result in Leaking of memory, may help in developing exploit chains.. This attack appear to be exploitable via The victim must sca...

5.5CVSS3.4AI score0.00699EPSS

Exploits0References6Affected Software1

CNVD•added 2018/03/14 12:0 a.m.•1 views

ClamAV Out-of-Bounds Heap Memory Read Vulnerability

Clam AntiVirus ClamAV is an anti-virus package for use on UNIX-like systems. Mainly used in mail servers, using multi-threaded background operation, you can automatically upgrade the virus database. An out-of-bounds heap memory read vulnerability exists in the xarhashcheck function in the XAR...

5.5CVSS8.7AI score0.00699EPSS

Exploits0References1

OSV•added 2018/03/13 3:29 p.m.•1 views

DEBIAN-CVE-2018-1000085

ClamAV version version 0.99.3 contains a Out of bounds heap memory read vulnerability in XAR parser, function xarhashcheck that can result in Leaking of memory, may help in developing exploit chains.. This attack appear to be exploitable via The victim must scan a crafted XAR file. This...

5.5CVSS6.8AI score0.00699EPSS

Exploits0References1

Cvelist•added 2018/03/13 3:0 p.m.•20 views

CVE-2018-1000085

6AI score0.00699EPSS

Exploits0References6

OSV•added 2017/10/09 9:51 a.m.•3 views

MGASA-2017-0363 Updated clamav packages fix security vulnerability

A malformed xar file can cause an out of bounds heap read in clamav...

7.1AI score

Exploits0References3