Denial Of Service

libfrr.so is vulnerable to Denial of Service attack. When sending a malformed BGP OPEN message that ends with optional length octet, an out of bounds read can occur which throws an error. This results into an application crash leading to DoS attack...

Out-of-bounds Read

ibX11.so is vulnerable to Out-of-bounds Read. The vulnerability is due to function XkbReadKeySyms allocating insufficient memory for the keysym buffer also failure to handle errors returned by XkbReadBufferCopyKeySyms. This can leads to potential buffer overflow and out-of-bounds memory access...

Denial Of Service

libfrr.so is vulnerable to Denial Of Service attack. The attacker can induce a crash in the application because of an incorrect packet length check...

Cookie Injection

libcurl.so is vulnerable to Cookie Injection. The vulnerability is due to a lack of proper validation in the curleasyduphandle function in easy.c when setting the filename of the cookie to "none", In case the parent handle didn't specify a file. This flaw allows an attacker to insert cookies into...

Denial Of Service (DoS) Through Infinite Loop

libX11.so is vulnerable to Denial of Service DoS. The vulnerability is due to incorrect calculation of SubImageWidth in the PutSubImage function when communicating with an X server which creates oversized requests. This miscalculation triggers an infinite loop, potentially leading to a Denial of...

Integer Overflow

libX11.so is vulnerable to integer overflow. The vulnerability is due to insufficient validation checks within the XCreateImage function when calculating the image data size. This issue happen during the calculation of minbytesperline, which can potentially return a value that is too small for th...

Arbitrary File Upload

concrete5/concrete5 is vulnerable to Arbitrary File Upload. The vulnerability exists due to the lack of sanitization in the Thumbnail file upload section, which allows an attacker to upload maliciously crafted PDF, SVG, or HTML files, potentially leading to Cross-Site Scripting XSS attacks...

Denial Of Service (DoS)

Microsoft QUIC is vulnerable to Denial Of Service DoS. The vulnerability is due to the library allowing version negotiation packets for server connections, which enables an attacker to crash the application...

Out Of Bound Read

gpac is vulnerable to Out Of Bound Read. The vulnerability occurs to due improper bound checks leading to denial of service...

Remote Code Execution (RCE)

libcue is vulnerable to Remote Code Execution. The vulnerability is due to improper out of bound array checks. This can be exploited by the attacker by making the user to download a cue sheet and parse the file to gain code execution...

Arbitrary Code Execution

github.com/golang/go is vulnerable to Arbitrary Code Execution. The vulnerability exists in the isCgoGeneratedFile function at noder.go due to line directives allowing blocked linker and compiler flags to be passed during compilation, which can result in arbitrary code execution when running go...

Denial Of Service (DoS)

org.eclipse.jetty is vulnerable to Denial Of Service DoS. The vulnerability arises from the library's failure to appropriately limit the size in HPACK header values. This allows an attacker to repeatedly send maliciously crafted HTTP messages, leading to an integer overflow and ultimately causing...

Denial Of Service (DoS)

mozilla-ssl-config-generator is vulnerable to Denial Of Service DoS. The vulnerability exists due to the use of long exponents that arguably make certain calculations unnecessarily expensive causing an application crash...

Buffer Overflow

libzephyr.so is vulnerable to Buffer Overflow. The vulnerability is caused by the insecure use of the sprintf function. If the path parameter is PATHMAX characters long, the sprintf function will write one NULL byte off the stack variable mountpath. When the path parameter is attacker-controlled...

Stack Buffer Overflow

libjson-c.so is vulnerable to Stack Buffer Overflow. The vulnerability exists in parseit function at jsonparse.c which allows an attacker to cause a buffer overflow resulting in an application crash...

Buffer Overflow

libzephyr.so is vulnerable to Buffer Overflows. The vulnerability is caused by the CLFS driver. An attacker is able to exploit this vulnerability by sending a specially crafted log file to a vulnerable system. If the log file is processed by the CLFS driver, the buffer overflow can be triggered,...

Improper Access Control

libfile.so is vulnerable to Improper Access Control. The vulnerability exists in dobidnote function at readelf.c due to improper restrictions which allows an attacker to perform unauthorized actions using a specially crafted .notes section...

Denial Of Service (DoS)

libpoppler.so is vulnerable to Denial Of Service DoS. The vulnerability exists in multiple functions at Gfx.cc due to a memory corruption reaching an infinite loop which allows an attacker to cause an application crash...

Denial Of Service (DoS)

libpoppler.so is vulnerable to Denial Of Service DoS. The vulnerability exists in convertToType0 function at FoFiType1C.cc due to a NULL pointer dereference which allows an attacker to cause an application crash...

Privilege Escalation

mattermost is vulnerable to privilege escalation. An attacker with system role permission can read DM conversations...

Heap Buffer Overflow

curl is vulnerable to Heap Buffer Overflow. The vulnerability is due to the SOCKS5 proxy handshake. If the hostname is longer then 255 bytes, curl switches to local name resolution, and passes the resolved address to the proxy. If the SOCKS5 handshake is slow, the long hostname is directly copied...

Integer Overflow

libsysstat.so is vulnerable to Integer Overflow. The vulnerability exists due to invalid memory allocations in common.c which allows an attacker to cause an overflow and out-of-bound reads...

Denial Of Service

libpng is vulnerable to Denial Of service attack. The pnghandlecHRM function in pngrutil.c in libpng when color-correction support is enabled, allows remote attackers to cause a denial of service...

Buffer Overflow

libzephyr.so is vulnerable to Buffer Overflow. The vulnerability exists due to the lack of size check for buffer copy inputs in isotp.h, which allows an attacker to cause an application crash...

Denial Of Service (DoS)

libtiff.so is vulnerable to Denial Of Service DoS. The vulnerability exists in createCroppedImage function of tiffcrop.c, which allows a local attacker to cause denial of service conditions in the application by parsing a crafted TIFF image file...

Session Fixation

uptime-kuma is vulnerable to Session Fixation. The vulnerability is caused by a lack of session token invalidation in the server.js authentication middleware. This allows attackers with a token to maintain access even after the user's password changed...

Denial Of Service (DoS)

libtiff.so is vulnerable to Denial of Service DoS. The vulnerability is due to the OJPEGReadHeaderInfoSecTablesQTable function in tifojpeg.c, which allows an attacker to cause a denial of service DoS attack by tricking a victim into opening a specially crafted TIFF image file...

Improper Sanitization

octoprint is vulnerable to Improper Sanitization. The vulnerability is due to RelEnvironment class in init.py which allows the execution of arbitrary code within the GCODE script feature. This lack of restriction could allow a malicious admin to configure a specially crafted GCODE script through...

Code Injection

langchain is vulnerable to Code Injection. The vulnerability is due to improper prompt santization in the PALChain. This vulnerability bypasses CVE-2023-36258...

Cross Site Scripting

OroCommerce is vulnerable to Cross Site Scripting. The vulnerability is due to improper validation or sanitization of the product name parameter when adding a note to the shopping list line. This can be exploited by the attacker by injecting malicious JS payload to the product name...

Denial Of Service (DoS)

libmspack is vulnerable to Denial Of Service DoS. The vulnerability exists due to the chmdreadheaders function of chmd.c which does not properly validate name lengths, which allows an attacker to cause an application crash through the maliciously crafted CHM file...

Denial Of Service (DoS)

ReportPortal is vulnerable to Denial Of Service. The vulnerability is due to exceeding the allowable ltree field type indexing limit in the testitem.path field which results in denial of service...

Denial Of Service (DoS)

libtiff.so is vulnerable to Denial Of Service DoS. An attacker is able to cause denial of service conditions with the use of a crafted tiff file due to a NULL pointer dereference in the function TIFFWriteDirectoryTagTransferfunction at tifdirwrite.c...

Side Channel Attack

libcryptopp.so is vulnerable to Timing Attack. The vulnerability arises from non-constant time scalar multiplication in ecp.cpp prime field curves with small leakage and algebra.cpp binary field curves with large leakage. This leakage allows an attacker to measure the duration of hundreds to...

Buffer Overflow

libkrb5.so is vulnerable to Buffer Overflows. A buffer overflow in the RPC library can be exploited by remote attackers to cause a denial of service or an arbitrary code execution. This vulnerability is only exploitable on systems whose unistd.h header file which does not define the FDSETSIZE mac...

Buffer Overflow

libexempi.so is vulnerable to Buffer Overflow. The vulnerability exists in the getFrameValue function of ID3Support.cpp, allowing an attacker to crash the application by opening a maliciously crafted audio file with a ID3V2 frame...

Buffer Overflow

libexempi.so is vulnerable to Buffer Overflow. The vulnerability exists in the VP8XChunk function of WEBPSupport.cpp, allowing an attacker to crash the application by opening a maliciously crafted webp file...

Buffer Overflow

libfile.so is vulnerable to Buffer Overflow. The vulnerability exists due to the stack-based buffer over-read in the filecopystr function of funcs.c, which allows an attacker to cause an application crash through a maliciously crafted input...

XML External Entity (XXE) Injection

Mediawiki is vulnerable to . The vulnerability arises from inadequate validation of namespaces used in XML files within the library. This allows an attacker to upload malicious files by sending a malicious link to the instance administrator...

Cross Site Scripting

zenario is vulnerable to Cross Site Scripting XSS. An attacker is able to execute arbitrary code via a crafted script to the Page Layout...

Cross Site Scripting

concrete5 is vulnerable to Cross Site Scripting XSS. The attacker is able to execute arbitrary code via a crafted script to Plural Handle of the Data Objects from System & Settings...

Cross Site Scripting

concrete5 is vulnerable to Cross Site Scripting XSS. The attacker is able to execute arbitrary code via a crafted script to the Tags from Settings - Tags...

Cross Site Scripting

concrete5 is vulnerable to Cross Site Scripting XSS attack. An attacker is able to execute arbitrary code via a crafted script to the SEO - Extra from Page Settings...

Denial Of Service (DoS)

pythonrpmspec is vulnerable to Denial Of Service DOS. The vulnerability is caused by not limiting recursive call depth in the replacemacros function in pyrpm/spec.py. This can lead to an attacker causing the replacemacros function to never return causing a DoS with a carefully crafted spec file...

Denial Of Service (DoS)

libpoppler.so is vulnerable to Denial of Service DoS. The vulnerability is due to a reachable assertion in the markObject function which allows an attacker to craft a malicious PDF file that will cause Poppler to crash...

Denial Of Service (DoS)

libpoppler.so is vulnerable to Denial of Service DoS. An infinite recursion in the Catalog::findDestInTree function allows an attacker to exploit this vulnerability by crafting a malicious PDF file that will cause the library to crash...

Denial Of Service (DoS)

libtiff.so is vulnerable to Denial of Service. The vulnerability exists in the TIFFmemcpy function in tifluv.c because it does not properly handle exceptional conditions, which allows an attacker to send a crafted file into the system, causing an application crash...

Denial Of Service (DoS)

libtiff.so is vulnerable to Denial of Service DoS. The vulnerability exists in TIFFReadDirectory function because it does not safely handle stack exceptions, which allows an attacker to cause an application crash...

Denial Of Service (DoS)

zziplib is vulnerable to Denial Of Service. The vulnerability is due to zzipdiskentrytofileheader function in mmapped.c caused by an invalid memory access which will leads to a denial-of-service...

Timing Attack

python is vulnerable to Timing Attack. The vulnerability is caused by a loophole in hmac.comparedigest function making it deviate from constant time operation. An attacker can mount a timing attack by exploiting the accumulator variable result in the hmac.comparedigest function...