Lucene search

K
DebianDebian Linux

9134 matches found

CVE
CVE
added 2018/03/13 1:29 a.m.55 views

CVE-2018-1000099

Teluu PJSIP version 2.7.1 and earlier contains a Access of Null/Uninitialized Pointer vulnerability in pjmedia SDP parsing that can result in Crash. This attack appear to be exploitable via Sending a specially crafted message. This vulnerability appears to have been fixed in 2.7.2.

7.5CVSS7.5AI score0.0097EPSS
CVE
CVE
added 2018/07/16 6:29 p.m.55 views

CVE-2018-10859

git-annex is vulnerable to an Information Exposure when decrypting files. A malicious server for a special remote could trick git-annex into decrypting a file that was encrypted to the user's gpg key. This attack could be used to expose encrypted data that was never stored in git-annex

7.5CVSS7.2AI score0.00384EPSS
CVE
CVE
added 2018/09/12 1:29 a.m.55 views

CVE-2018-16949

An issue was discovered in OpenAFS before 1.6.23 and 1.8.x before 1.8.2. Several data types used as RPC input variables were implemented as unbounded array types, limited only by the inherent 32-bit length field to 4 GB. An unauthenticated attacker could send, or claim to send, large input values a...

7.5CVSS8.4AI score0.06408EPSS
CVE
CVE
added 2019/09/16 1:15 p.m.55 views

CVE-2018-21016

audio_sample_entry_AddBox() at isomedia/box_code_base.c in GPAC 0.7.1 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file.

6.5CVSS6.3AI score0.00513EPSS
CVE
CVE
added 2018/02/02 1:29 a.m.55 views

CVE-2018-6519

The SAML2 library before 1.10.4, 2.x before 2.3.5, and 3.x before 3.1.1 in SimpleSAMLphp has a Regular Expression Denial of Service vulnerability for fraction-of-seconds data in a timestamp.

7.5CVSS7.5AI score0.00402EPSS
CVE
CVE
added 2018/03/18 3:29 a.m.55 views

CVE-2018-8754

The libevt_record_values_read_event() function in libevt_record_values.c in libevt before 2018-03-17 does not properly check for out-of-bounds values of user SID data size, strings size, or data size. NOTE: the vendor has disputed this as described in libyal/libevt issue 5 on GitHub

5.5CVSS5.4AI score0.0005EPSS
CVE
CVE
added 2019/07/30 1:15 p.m.55 views

CVE-2019-14443

An issue was discovered in Libav 12.3. Division by zero in range_decode_culshift in libavcodec/apedec.c allows remote attackers to cause a denial of service (application crash), as demonstrated by avconv.

6.5CVSS6.7AI score0.00505EPSS
CVE
CVE
added 2021/05/27 6:15 p.m.55 views

CVE-2020-22029

A heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 at libavfilter/vf_colorconstancy.c: in slice_get_derivative, which crossfade_samples_fltp, which might lead to memory corruption and other potential consequences.

8.8CVSS9.2AI score0.00744EPSS
CVE
CVE
added 2021/10/04 2:15 p.m.55 views

CVE-2021-36051

XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim must open a specially-crafted .cpp file.

7.8CVSS7.8AI score0.03868EPSS
CVE
CVE
added 2021/11/03 4:15 p.m.55 views

CVE-2021-38161

Improper Authentication vulnerability in TLS origin verification of Apache Traffic Server allows for man in the middle attacks. This issue affects Apache Traffic Server 8.0.0 to 8.0.8.

8.1CVSS7.9AI score0.01546EPSS
CVE
CVE
added 2021/11/19 7:15 p.m.55 views

CVE-2021-40391

An out-of-bounds write vulnerability exists in the drill format T-code tool number functionality of Gerbv 2.7.0, dev (commit b5f1eacd), and the forked version of Gerbv (commit 71493260). A specially-crafted drill file can lead to code execution. An attacker can provide a malicious file to trigger t...

10CVSS9.4AI score0.00475EPSS
CVE
CVE
added 2021/09/29 4:15 p.m.55 views

CVE-2021-40716

XMP Toolkit SDK versions 2021.07 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a vict...

5.5CVSS5.4AI score0.00228EPSS
CVE
CVE
added 2022/02/02 6:15 a.m.55 views

CVE-2022-24301

In Minetest before 5.4.0, players can add or subtract items from a different player's inventory.

6.5CVSS6.5AI score0.00273EPSS
CVE
CVE
added 2000/03/22 5:0 a.m.54 views

CVE-2000-0145

The libguile.so library file used by gnucash in Debian GNU/Linux is installed with world-writable permissions.

7.5CVSS7AI score0.00382EPSS
CVE
CVE
added 2001/03/12 5:0 a.m.54 views

CVE-2001-0112

Multiple buffer overflows in splitvt before 1.6.5 allow local users to execute arbitrary commands.

7.2CVSS7.2AI score0.00374EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.54 views

CVE-2001-0690

Format string vulnerability in exim (3.22-10 in Red Hat, 3.12 in Debian and 3.16 in Conectiva) in batched SMTP mode allows a remote attacker to execute arbitrary code via format strings in SMTP mail headers.

7.5CVSS7.5AI score0.19934EPSS
CVE
CVE
added 2003/07/02 4:0 a.m.54 views

CVE-2003-0382

Buffer overflow in Eterm 0.9.2 allows local users to gain privileges via a long ETERMPATH environment variable.

4.6CVSS6.6AI score0.00083EPSS
CVE
CVE
added 2004/08/06 4:0 a.m.54 views

CVE-2004-0579

Format string vulnerability in super before 3.23 allows local users to execute arbitrary code as root.

7.2CVSS7AI score0.0007EPSS
CVE
CVE
added 2005/03/01 5:0 a.m.54 views

CVE-2004-1027

Directory traversal vulnerability in the -x (extract) command line option in unarj allows remote attackers to overwrite arbitrary files via an arj archive with filenames that contain .. (dot dot) sequences.

5CVSS6.5AI score0.06284EPSS
CVE
CVE
added 2006/12/12 12:28 a.m.54 views

CVE-2006-5873

Buffer overflow in the cluster_process_heartbeat function in cluster.c in layer 2 tunneling protocol network server (l2tpns) before 2.1.21 allows remote attackers to cause a denial of service via a large heartbeat packet.

7.8CVSS6.6AI score0.01514EPSS
CVE
CVE
added 2019/11/06 4:15 a.m.54 views

CVE-2007-0899

There is a possible heap overflow in libclamav/fsg.c before 0.100.0.

9.8CVSS9.6AI score0.00451EPSS
CVE
CVE
added 2009/01/15 5:30 p.m.54 views

CVE-2008-5907

The png_check_keyword function in pngwutil.c in libpng before 1.0.42, and 1.2.x before 1.2.34, might allow context-dependent attackers to set the value of an arbitrary memory location to zero via vectors involving creation of crafted PNG files with keywords, related to an implicit cast of the '\0' ...

5CVSS8.3AI score0.0058EPSS
CVE
CVE
added 2011/05/03 10:55 p.m.54 views

CVE-2011-1444

Race condition in the sandbox launcher implementation in Google Chrome before 11.0.696.57 on Linux allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

6.8CVSS7.1AI score0.00692EPSS
CVE
CVE
added 2019/11/12 2:15 p.m.54 views

CVE-2011-2897

gdk-pixbuf through 2.31.1 has GIF loader buffer overflow when initializing decompression tables due to an input validation flaw

9.8CVSS9.6AI score0.00985EPSS
CVE
CVE
added 2019/12/17 6:15 p.m.54 views

CVE-2012-2237

Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.4.x before 1.4.3 and 1.5.x before 1.5.2 allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) javascript innerHTML as used when generating login forms, (2) links or (3) resources URLs, and (4) the Dis...

6.1CVSS5.9AI score0.06623EPSS
CVE
CVE
added 2019/11/19 5:15 p.m.54 views

CVE-2012-6071

nuSOAP before 0.7.3-5 does not properly check the hostname of a cert.

7.5CVSS7.5AI score0.00363EPSS
CVE
CVE
added 2014/07/22 2:55 p.m.54 views

CVE-2014-4911

The ssl_decrypt_buf function in library/ssl_tls.c in PolarSSL before 1.2.11 and 1.3.x before 1.3.8 allows remote attackers to cause a denial of service (crash) via vectors related to the GCM ciphersuites, as demonstrated using the Codenomicon Defensics toolkit.

5CVSS6.3AI score0.00535EPSS
CVE
CVE
added 2016/04/13 2:59 p.m.54 views

CVE-2014-6276

schema.py in Roundup before 1.5.1 does not properly limit attributes included in default user permissions, which might allow remote authenticated users to obtain sensitive user information by viewing user details.

4.3CVSS4AI score0.0013EPSS
CVE
CVE
added 2015/02/27 3:59 p.m.54 views

CVE-2015-1414

Integer overflow in FreeBSD before 8.4 p24, 9.x before 9.3 p10. 10.0 before p18, and 10.1 before p6 allows remote attackers to cause a denial of service (crash) via a crafted IGMP packet, which triggers an incorrect size calculation and allocation of insufficient memory.

7.8CVSS6.2AI score0.00564EPSS
CVE
CVE
added 2016/04/12 2:59 p.m.54 views

CVE-2015-8473

The Issues API in Redmine before 2.6.8, 3.0.x before 3.0.6, and 3.1.x before 3.1.2 allows remote authenticated users to obtain sensitive information in changeset messages by leveraging permission to read issues with related changesets from other projects.

4.3CVSS4.5AI score0.00465EPSS
CVE
CVE
added 2018/05/31 8:29 p.m.54 views

CVE-2016-10538

The package node-cli before 1.0.0 insecurely uses the lock_file and log_file. Both of these are temporary, but it allows the starting user to overwrite any file they have access to.

4.9CVSS3.9AI score0.00317EPSS
CVE
CVE
added 2016/01/12 8:59 p.m.54 views

CVE-2016-1231

Directory traversal vulnerability in the HTTP file-serving module (mod_http_files) in Prosody 0.9.x before 0.9.9 allows remote attackers to read arbitrary files via a .. (dot dot) in an unspecified path.

5.9CVSS6.3AI score0.00741EPSS
CVE
CVE
added 2016/04/07 9:59 p.m.54 views

CVE-2016-2511

Cross-site scripting (XSS) vulnerability in WebSVN 2.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the path parameter to log.php.

6.1CVSS5.9AI score0.00388EPSS
Web
CVE
CVE
added 2016/04/12 3:59 p.m.54 views

CVE-2016-3167

Open redirect vulnerability in the drupal_goto function in Drupal 6.x before 6.38, when used with PHP before 5.4.7, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a double-encoded URL in the "destination" parameter.

7.4CVSS7.3AI score0.00285EPSS
CVE
CVE
added 2016/05/13 4:59 p.m.54 views

CVE-2016-4024

Integer overflow in imlib2 before 1.4.9 on 32-bit platforms allows remote attackers to execute arbitrary code via large dimensions in an image, which triggers an out-of-bounds heap memory write operation.

9.8CVSS9AI score0.09628EPSS
CVE
CVE
added 2018/04/13 4:29 p.m.54 views

CVE-2017-0366

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw allowing to evade SVG filter using default attribute values in DTD declaration.

5.4CVSS5.6AI score0.00422EPSS
CVE
CVE
added 2017/07/29 5:29 a.m.54 views

CVE-2017-11732

A heap-based buffer overflow vulnerability was found in the function dcputs (called from decompileIMPLEMENTS) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

5.5CVSS6.4AI score0.00215EPSS
CVE
CVE
added 2017/08/29 10:29 p.m.54 views

CVE-2017-13756

In The Sleuth Kit (TSK) 4.4.2, opening a crafted disk image triggers infinite recursion in dos_load_ext_table() in tsk/vs/dos.c in libtskvs.a, as demonstrated by mmls.

5.5CVSS5.5AI score0.00214EPSS
CVE
CVE
added 2017/08/29 11:29 p.m.54 views

CVE-2017-13760

In The Sleuth Kit (TSK) 4.4.2, fls hangs on a corrupt exfat image in tsk_img_read() in tsk/img/img_io.c in libtskimg.a.

5.5CVSS5.5AI score0.00273EPSS
CVE
CVE
added 2017/02/24 4:59 a.m.54 views

CVE-2017-6307

An issue was discovered in tnef before 1.4.13. Two OOB Writes have been identified in src/mapi_attr.c:mapi_attr_read(). These might lead to invalid read and write operations, controlled by an attacker.

7.8CVSS7.5AI score0.00408EPSS
CVE
CVE
added 2017/11/15 8:29 a.m.54 views

CVE-2017-8808

MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has XSS when the $wgShowExceptionDetails setting is false and the browser sends non-standard URL escaping.

6.1CVSS7.2AI score0.00362EPSS
CVE
CVE
added 2019/04/04 3:29 p.m.54 views

CVE-2018-10242

Suricata version 4.0.4 incorrectly handles the parsing of the SSH banner. A malformed SSH banner can cause the parsing code to read beyond the allocated data because SSHParseBanner in app-layer-ssh.c lacks a length check.

7.5CVSS8.2AI score0.00413EPSS
CVE
CVE
added 2018/06/05 1:29 p.m.54 views

CVE-2018-11743

The init_copy function in kernel.c in mruby 1.4.1 makes initialize_copy calls for TT_ICLASS objects, which allows attackers to cause a denial of service (mrb_hash_keys uninitialized pointer and application crash) or possibly have unspecified other impact.

9.8CVSS9.6AI score0.00597EPSS
CVE
CVE
added 2018/12/10 6:29 a.m.54 views

CVE-2018-20004

An issue has been found in Mini-XML (aka mxml) 2.12. It is a stack-based buffer overflow in mxml_write_node in mxml-file.c via vectors involving a double-precision floating point number and the '' substring, as demonstrated by testmxml.

8.8CVSS8.6AI score0.00805EPSS
CVE
CVE
added 2022/09/02 6:15 p.m.54 views

CVE-2020-22669

Modsecurity owasp-modsecurity-crs 3.2.0 (Paranoia level at PL1) has a SQL injection bypass vulnerability. Attackers can use the comment characters and variable assignments in the SQL syntax to bypass Modsecurity WAF protection and implement SQL injection attacks on Web applications.

9.8CVSS9.6AI score0.00067EPSS
CVE
CVE
added 2021/04/28 7:15 a.m.54 views

CVE-2021-31866

Redmine before 4.0.9 and 4.1.x before 4.1.3 allows an attacker to learn the values of internal authentication keys by observing timing differences in string comparison operations within SysController and MailHandlerController.

5.3CVSS5.5AI score0.00442EPSS
CVE
CVE
added 2022/09/19 9:15 p.m.54 views

CVE-2022-28203

A denial-of-service issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36.4, and 1.37.x before 1.37.2. When many files exist, requesting Special:NewFiles with actor as a condition can result in a very long running query.

7.5CVSS7.3AI score0.00171EPSS
CVE
CVE
added 2022/09/15 3:15 p.m.54 views

CVE-2022-38860

Certain The MPlayer Project products are vulnerable to Divide By Zero via function demux_open_avi() of libmpdemux/demux_avi.c which affects mencoder. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.

5.5CVSS5.5AI score0.00034EPSS
CVE
CVE
added 2023/05/03 12:16 p.m.54 views

CVE-2022-40318

An issue was discovered in bgpd in FRRouting (FRR) through 8.4. By crafting a BGP OPEN message with an option of type 0xff (Extended Length from RFC 9072), attackers may cause a denial of service (assertion failure and daemon restart, or out-of-bounds read). This is possible because of inconsistent...

6.5CVSS6.4AI score0.00163EPSS
CVE
CVE
added 2023/08/11 2:15 p.m.54 views

CVE-2023-39945

eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.11.0, 2.10.2, 2.9.2, and 2.6.5, a data submessage sent to PDP port raises unhandled BadParamException in fastcdr, which in turn crashes fastdds. Versions 2.11.0, 2...

8.2CVSS7.6AI score0.00067EPSS
Total number of security vulnerabilities9134