Lucene search
K

28 matches found

RedHat Linux
RedHat Linux
added 2020/03/31 8:18 p.m.6 views

qt5-qtbase: Double free in QXmlStreamReader

QXmlStream in Qt 5.x before 5.11.3 has a double-free or corruption during parsing of a specially crafted illegal XML document...

8.8CVSS5.8AI score0.02502EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/08/06 12:37 p.m.8 views

qt5-qtbase: Double free in QXmlStreamReader

QXmlStream in Qt 5.x before 5.11.3 has a double-free or corruption during parsing of a specially crafted illegal XML document...

8.8CVSS5.8AI score0.02502EPSS
Exploits0References4
myhack58
myhack58
added 2019/04/11 12:0 a.m.77 views

. NET advanced code audit of the seven classes NetDataContractSerializer deserializing vulnerability-vulnerability warning-the black bar safety net

NetDataContractSerializer and DataContractSerializer for serialization and de-serialization in Windows Communication Foundation WCF message to send the data. Between the two there is an important difference: the NetDataContractSerializer includes CLR through the CLR type to add additional...

0.3AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2019/03/06 12:0 a.m.7 views

The vulnerability of the QXMLStreamReader function in the QXmlStream component of the cross-platform software development framework for Qt allows a perpetrator to cause a system failure or gain unauthorized access to information.

The vulnerability of the QXMLStreamReader function in the QXmlStream component of the cross-platform software development framework for Qt is related to double memory deallocation. Exploiting this vulnerability can allow an attacker to cause service failures or gain unauthorized access to...

8.8CVSS6.6AI score0.02502EPSS
Exploits0References9Affected Software4
RedHat Linux
RedHat Linux
added 2017/08/10 11:3 p.m.6 views

camel-core: Validation component vulnerable to SSRF via remote DTDs and XXE

It was found that Apache Camel's validation component evaluates DTD headers of XML stream sources, although a validation against XML schemas XSD is executed. Remote attackers can use this feature to make Server-Side Request Forgery SSRF attacks by sending XML documents with remote DTDs URLs or XM...

7.4CVSS5.8AI score0.0489EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/10/21 5:37 p.m.5 views

OpenJDK: XML stream factory finder information leak (JAXP, 8013502)

Unspecified vulnerability in Oracle Java SE 7u40 and earlier and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to JAXP...

5CVSS6.8AI score0.03927EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/10/17 5:31 p.m.6 views

OpenJDK: XML stream factory finder information leak (JAXP, 8013502)

Unspecified vulnerability in Oracle Java SE 7u40 and earlier and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to JAXP...

5CVSS6.8AI score0.03927EPSS
Exploits0References5
securityvulns
securityvulns
added 2012/08/29 12:0 a.m.66 views

CVE-2012-2665 Manifest-processing errors in Apache OpenOffice 3.4.0

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 CVE-2012-2665 Manifest-processing errors in Apache OpenOffice 3.4.0 Reference: http://www.openoffice.org/security/cves/CVE-2012-2665.html Severity: Important Vendor: The Apache Software Foundation Versions Affected: Apache OpenOffice 3.4.0, all...

7.5CVSS0.07006EPSS
Exploits0
Rows per page
Query Builder