Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
Sane-projectSane Backends

9 matches found

CVE
CVEadded 2020/06/01 2:15 p.m.261 views

CVE-2020-12867

A NULL pointer dereference in sanei_epson_net_read in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to cause a denial of service, aka GHSL-2020-075.

5.5CVSS5.4AI score0.00113EPSS
CVE
CVEadded 2020/06/24 1:15 p.m.197 views

CVE-2020-12861

A heap buffer overflow in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-080.

8.8CVSS8.7AI score0.00809EPSS
CVE
CVEadded 2020/06/24 1:15 p.m.193 views

CVE-2020-12865

A heap buffer overflow in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-084.

8CVSS8.3AI score0.00484EPSS
CVE
CVEadded 2020/06/24 1:15 p.m.172 views

CVE-2020-12862

An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-082.

4.3CVSS5.7AI score0.00198EPSS
CVE
CVEadded 2020/06/24 1:15 p.m.172 views

CVE-2020-12863

An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-083.

4.3CVSS5.7AI score0.00198EPSS
CVE
CVEadded 2020/06/24 1:15 p.m.170 views

CVE-2020-12866

A NULL pointer dereference in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to cause a denial of service, GHSL-2020-079.

5.7CVSS6.4AI score0.00223EPSS
CVE
CVEadded 2020/06/24 1:15 p.m.169 views

CVE-2020-12864

An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-081.

4.3CVSS5.7AI score0.00208EPSS
CVE
CVEadded 2024/03/27 5:15 a.m.42 views

CVE-2023-46047

An issue in Sane 1.2.1 allows a local attacker to execute arbitrary code via a crafted file to the sanei_configure_attach() function. NOTE: this is disputed because there is no expectation that the product should be starting with an attacker-controlled configuration file.

7.3CVSS7.4AI score0.00037EPSS
CVE
CVEadded 2024/03/27 6:15 a.m.40 views

CVE-2023-46052

Sane 1.2.1 heap bounds overwrite in init_options() from backend/test.c via a long init_mode string in a configuration file. NOTE: this is disputed because there is no expectation that test.c code should be executed with an attacker-controlled configuration file.

7.1CVSS6.9AI score0.00053EPSS