CVE-2019-9513

CVE-2019-9513 (and related HTTP/2 CVEs) affect nginx and nghttp2. The issues enable denial of service via HTTP/2 resource loops and priority/window manipulation, causing high CPU/memory usage. nginx 1.16.x and nghttp2 are specifically named in advisories; remediation is upgrading to fixed package...

CVE-2019-9517

CVE-2019-9517 describes an attack against some HTTP/2 implementations where unconstrained internal data buffering can cause a denial of service. The vulnerability arises when an attacker floods a connection with a large number of requests for a large response object while manipulating HTTP/2 flow...

CVE-2021-3156

CVE-2021-3156 is a heap-based buffer overflow in sudo that enables privilege escalation to root. The issue arises in the argument parsing path and is exploitable via commands using sudoedit -s with a trailing backslash, leading to memory corruption. Affected release information in the provided do...

CVE-2019-9511

CVE-2019-9511 is an HTTP/2 denial-of-service issue observed in multiple products where an attacker manipulates HTTP/2 window size and stream prioritization to force queuing of data in 1-byte chunks, potentially exhausting CPU/memory. Connected advisories confirm affected components include nginx ...

CVE-2019-9516

CVE-2019-9516 is an HTTP/2 header leak vulnerability affecting nginx and several Linux distributions. The issue occurs when an attacker sends streams with 0-length header names and values (optionally Huffman encoded), causing nginx to allocate memory for headers that may be kept until the session...

CVE-2019-1559

OpenSSL vulnerability CVE-2019-1559 describes a padding-oracle weakness where, if an application encounters a fatal protocol error and then calls SSL_shutdown() twice (to send close_notify and to receive one), the server may respond differently to a 0-byte record with invalid padding versus inval...

CVE-2019-9514

CVE-2019-9514 corresponds to an HTTP/2 vulnerability where an attacker floods a peer by sending HEADERS frames, causing unbounded memory growth and potential DoS. Public details in connected advisories show affected stacks include Go HTTP/2 implementations and Go-based tools, with remediation via...

CVE-2021-3449

CVE-2021-3449 affects OpenSSL 1.1.1.x where a TLSv1.2 server may crash (DoS) if it receives a renegotiation ClientHello that omits the signature_algorithms extension but includes signature_algorithms_cert. The issue is a NULL pointer dereference leading to a denial of service; OpenSSL clients are...

CVE-2019-9518

CVE-2019-9518 describes a denial-of-service risk in HTTP/2 where a flood of frames with empty payloads (DATA, HEADERS, CONTINUATION, PUSH_PROMISE) and no end-of-stream flag can exhaust CPU and memory. Connected docs confirm concrete mentions across multiple ecosystems: Cloud Foundry products (emp...

CVE-2021-3450

CVE-2021-3450 affects OpenSSL 1.1.1h–1.1.1j where a bug in the X509_V_FLAG_X509_STRICT path overwrote a prior CA-check result, bypassing the non-CA certificates prohibition unless a programmed purpose is used. When a purpose is configured, the certificate chain is still rejected; the issue is fix...

CVE-2018-18311

CVE-2018-18311 is a Perl vulnerability describing a buffer overflow caused by crafted regular expressions and an integer/offset issue in Perl’s environment setup (Perl before 5.26.3 and 5.28.x before 5.28.1). Connected advisories show multiple distributions releasing patches and updates to Perl p...

CVE-2019-9515

CVE-2019-9515 concerns an HTTP/2 settings flood that can cause memory/CPU exhaustion. Arista’s security advisory (Security Advisory 0043) states the vulnerability is in Go’s gRPC HTTP/2 usage and can affect TerminAttr, OpenConfig, CVP, and certain Wi‑Fi OpenConfig-enabled components when enabled....

CVE-2019-6454

CVE-2019-6454 affects systemd’s bus_process_object() which allocates a large stack buffer for the object path in D-Bus messages. A locally unprivileged user can send a crafted message to PID1, causing the stack pointer to jump past guard pages and crash systemd PID1, potentially triggering a kern...

CVE-2019-9169

CVE-2019-9169 affects GNU C Library (glibc) up to 2.29, where proceed_next_node in posix/regexec.c permits a heap-based buffer over-read during a case-insensitive regular-expression match. Impact: potential information disclosure via crafted input; CVSS/assessment in references indicates high/cri...

CVE-2017-1000366

CVE-2017-1000366 affects glibc (vulnerable in 2.25 and earlier). A flaw in heap/stack memory handling allows crafted LD_LIBRARY_PATH values to influence allocation and memory layout, potentially enabling local arbitrary code execution via stack/heap aliasing. Several advisories and distributions ...

CVE-2016-4447

CVE-2016-4447 affects libxml2 up to version before 2.9.4. The vulnerability is in the xmlParseElementDecl function (parser.c) where a crafted file via xmlParseName can cause a heap-based buffer underread, leading to denial of service (application crash). Remediation: upgrade to libxml2 2.9.4 or n...

CVE-2016-4448

CVE-2016-4448 is a format-string vulnerability in libxml2 (pre-2.9.4). The connected F5 advisory confirms libxml2 is the vulnerable component across multiple BIG-IP products and lists specific BIG-IP families/versions as vulnerable, with a table guiding upgrades to non‑vulnerable releases. Impact...

CVE-2016-1839

CVE-2016-1839 involves libxml2 where the xmlDictAddString function in dict.c can cause a heap-based buffer over-read, leading to a denial of service. The issue affects libxml2 up to version 2.9.4 (as used in Apple iOS, macOS, tvOS, watchOS). A later linked entry (CVE-2017-9050) confirms this was ...

CVE-2016-1762

CVE-2016-1762 (and related libxml2 flaws) affects the GNOME libxml2 library where crafted XML input can cause denial of service or code execution. The primary cited issue is a heap-based buffer over-read in xmlNextChar prior to libxml2 2.9.4. Public advisories list multiple CVEs (e.g., 2016-1833/...

CVE-2016-1834

CVE-2016-1834 describes a heap-based buffer overflow in libxml2's xmlStrncat function prior to 2.9.4, affecting Apple iOS/tvOS/watchOS and OS X before patched versions. Exploitation could lead to remote code execution or memory corruption and potential denial of service when processing crafted XM...

CVE-2016-1840

CVE-2016-1840: libxml2 contains a heap-based buffer overflow in xmlFAParsePosCharGroup (pre-2.9.4). Affected on Apple iOS (pre-9.3.2), OS X (pre-10.11.5), tvOS (pre-9.2.1), watchOS (pre-2.2.1); can lead to remote code execution or memory corruption. Remediation: upgrade libxml2 to 2.9.4 or later ...

CVE-2016-1833

CVE-2016-1833 is a libxml2 memory corruption issue where the htmlCurrentChar function can cause a heap-based buffer over-read during parsing of crafted XML. Public details in connected docs indicate affected platforms include Apple iOS, macOS, tvOS, watchOS and related libxml2 usage, with version...

CVE-2016-1838

CVE-2016-1838 refers to a vulnerability in libxml2 where the xmlPArserPrintFileContextInternal function can be exploited by a crafted XML document to cause a heap-based overflow/read, leading to a denial of service or potential escalation. The initial description notes the issue affects libxml2 u...

CVE-2016-1837

CVE-2016-1837 is a use-after-free/memory corruption vulnerability in libxml2 affecting the htmlParsePubidLiteral and htmlParseSystemLiteral paths, leading to denial of service. Public references in the Initial document note a MEDIUM (CVSSv3 base 5.5) impact with LOCAL attack vector and user inter...

CVE-2016-1836

CVE-2016-1836 is a use-after-free in libxml2 (xmlDictComputeFastKey). Public mentions tie it to libxml2 up to 2.9.4, with affected Apple platforms (iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, watchOS before 2.2.1) and a DoS impact via crafted XML, per vendor advisories. Connected do...

CVE-2019-3638

CVE-2019-3638 describes a reflected cross-site scripting flaw in the Administrators web console of McAfee Web Gateway (MWG) versions 7.8.x prior to 7.8.2.13. The vulnerability allows an attacker to induce an administrator to click a crafted link, potentially exposing sensitive information or exec...

CVE-2022-1254

CVE-2022-1254 describes a URL redirection flaw in Skyhigh SWG. Affected versions are Skyhigh SWG 7.x < 7.8.2.31, 8.x < 8.2.27, 9.x < 9.2.20, 10.x < 10.2.9, and 11.x

CVE-2012-2212

CVE-2012-2212 affects McAfee Web Gateway 7.0. The issue arises when the appliance bypasses the access configuration for the CONNECT method based on the Host header, allowing an arbitrary allowed hostname to bypass URL filtering. Public Red Hat/RedHat-like entries corroborate the behavior and note...

CVE-2019-3644

CVE-2019-9517 is a denial-of-service vulnerability in McAfee Web Gateway (MWG) scanners exposed in MWG versions before 7.8.2.13. The issue arises from unconstrained interal data buffering in HTTP/2, where an attacker can flood a connection with requests and exhaust resources on the server. Affect...

CVE-2020-7293

McAfee Web Gateway (MWG) is affected by a privilege-escalation vulnerability tracked as CVE-2020-7293. The flaw exists in MWG versions prior to 9.2.1 and stems from improper access controls in the web UI that allow an authenticated UI user with low permissions to change the system’s root password...

CVE-2019-3643

CVE-2019-3643 relates to McAfee Web Gateway (MWG) older than 7.8.2.13 and is described as vulnerable to CVE-2019-9511, potentially causing a denial of service. The Connected documents provide no additional MWG-specific technical details, remediation, or confirmed exploit information in this set. ...

CVE-2020-7294

CVE-2020-7294 affects McAfee Web Gateway (MWG) prior to 9.2.1. The issue is an elevation of privilege due to improper access controls in the REST interface, allowing an authenticated UI user to delete or download protected files. Root cause: REST interface access control weaknesses. Impact: privi...

CVE-2020-7296

CVE-2020-7296 affects McAfee Web Gateway (MWG) prior to version 9.2.1. The issue is a privilege-escalation in the web UI where an authenticated UI user can access protected configuration files due to improper access control in the user interface. Documented impact includes access to sensitive con...

CVE-2020-7295

CVE-2020-7295 is a privilege-escalation vulnerability in McAfee Web Gateway (MWG) prior to version 9.2.1. An authenticated UI user can delete or download protected log data due to improper access controls in the user interface. This description is consistently reported across multiple sources (NV...

CVE-2020-7297

CVE-2020-7297 affects McAfee Web Gateway (MWG) prior to version 9.2.1. The issue is a privilege escalation caused by improper access control in the user interface, allowing an authenticated UI user to access protected dashboard data. The available connected documents confirm the vulnerability des...

CVE-2021-23885

CVE-2021-23885 affects McAfee Web Gateway (MWG) prior to 9.2.8. The vulnerability is an elevation of privilege via the user interface: an authenticated user can exploit improper neutralization of user input on the troubleshooting page to gain elevated privileges and execute commands on the applia...

CVE-2019-3639

CVE-2019-3639 describes a clickjacking vulnerability in the McAfee Web Gateway (MWG) UI. Affects MWG version 7.8.2.x prior to 7.8.2.12, where an administrator web console does not send an X-Frame-Options header, enabling remote attackers to embed the console in a crafted page via an iframe. The i...

CVE-2014-2535

McAfee Web Gateway (MWG) is affected by a directory traversal vulnerability that allows remote authenticated users to read arbitrary files via requests to the web filtering port. Affected versions are MWG 7.4.x before 7.4.1, 7.3.x before 7.3.2.6, and 7.2.0.9 and earlier. The root cause is a direc...

CVE-2019-3635

CVE-2019-3635 affects McAfee Web Gateway (MWG) versions 7.8.2.x prior to 7.8.2.12. The flaw allows an attacker to exfiltrate sensitive data by crafting a complex webpage that triggers MWG to block a user from accessing an iframe, enabling information disclosure. Root cause details are not elabora...

CVE-2014-6064

McAfee Web Gateway (MWG) information disclosure (CVE-2014-6064) affects the Admin UI Accounts tab. Versions before MWG 7.3.2.9 and before 7.4.2 on the 7.4.x line are vulnerable to remote authenticated access that can reveal hashed user passwords via unspecified vectors. The connected sources conf...

CVE-2020-7292

CVE-2020-7292 affects McAfee Web Gateway (MWG) prior to version 9.2.1. The issue is an Inappropriate Encoding for Output Context , which can allow a remote attacker to cause MWG to return an ambiguous redirect response when a user clicks a malicious URL. The vulnerability is rooted in the output ...