โผ CVE-2022-48565 โผ
๐ Read
via "National Vulnerability Database".
An XML External Entity (XXE) issue was discovered in Python through 3.9.1. The plistlib module no longer accepts entity declarations in XML plist files to avoid XML vulnerabilities.๐ Read
via "National Vulnerability Database".
โผ CVE-2020-20145 โผ
๐ Read
via "National Vulnerability Database".
An issue was discovered in /src/helper.c in Dnsmasq up to and including 2.80 allows attackers to cause a denial of service via function create_helper.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-33388 โผ
๐ Read
via "National Vulnerability Database".
dpic 2021.04.10 has a Heap Buffer Overflow in themakevar() function in dpic.y๐ Read
via "National Vulnerability Database".
โผ CVE-2022-35206 โผ
๐ Read
via "National Vulnerability Database".
Null pointer dereference vulnerability in Binutils readelf 2.38.50 via function read_and_display_attr_value in file dwarf.c.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-34038 โผ
๐ Read
via "National Vulnerability Database".
Etcd v3.5.4 allows remote attackers to cause a denial of service via function PageWriter.write in pagewriter.go๐ Read
via "National Vulnerability Database".
โผ CVE-2021-40264 โผ
๐ Read
via "National Vulnerability Database".
NULL pointer dereference vulnerability in FreeImage before 1.18.0 via the FreeImage_CloneTag function inFreeImageTag.cpp.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-28072 โผ
๐ Read
via "National Vulnerability Database".
A heap buffer overflow in r_read_le32 function in radare25.4.2 and 5.4.0.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-40433 โผ
๐ Read
via "National Vulnerability Database".
An issue was discovered in function ciMethodBlocks::make_block_at in Oracle JDK (HotSpot VM) 11, 17 and OpenJDK (HotSpot VM) 8, 11, 17, allows attackers to cause a denial of service.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-40265 โผ
๐ Read
via "National Vulnerability Database".
A heap overflow bug exists FreeImage before 1.18.0 via ofLoad function in PluginJPEG.cpp.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-37433 โผ
๐ Read
via "National Vulnerability Database".
Multiple vulnerabilities in the web-based managementร interface of EdgeConnect SD-WAN Orchestrator could allowร an authenticated remote attacker to conduct SQL injectionร attacks against the EdgeConnect SD-WAN Orchestratorร instance. An attacker could exploit these vulnerabilities toร ร obtain and modify sensitive information in the underlyingร database potentially leading to the exposure and corruptionร of sensitive data controlled by the EdgeConnect SD-WANร Orchestrator host.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-3699 โผ
๐ Read
via "National Vulnerability Database".
An Improper Privilege Management vulnerability was found in ASUSTOR Data Master (ADM) allows an unprivileged local users to modify the storage devices configuration. Affected products and versions include: ADM 4.0.6.RIS1, 4.1.0 and below as well as ADM 4.2.2.RI61 and below.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-32421 โผ
๐ Read
via "National Vulnerability Database".
dpic 2021.01.01 has a Heap Use-After-Free in thedeletestringbox() function in dpic.y.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-38665 โผ
๐ Read
via "National Vulnerability Database".
Null pointer dereference in ieee_write_file in nasm 2.16rc0 allows attackers to cause a denial of service (crash).๐ Read
via "National Vulnerability Database".
โผ CVE-2022-43357 โผ
๐ Read
via "National Vulnerability Database".
Stack overflow vulnerability in ast_selectors.cpp in function Sass::CompoundSelector::has_real_parent_ref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service (DoS). Also affects the command line driver for libsass, sassc 3.6.2.๐ Read
via "National Vulnerability Database".
โผ CVE-2020-24295 โผ
๐ Read
via "National Vulnerability Database".
Buffer Overflow vulnerability in PSDParser.cpp::ReadImageLine() in FreeImage 3.19.0 [r1859] allows remote attackers to ru narbitrary code via use of crafted psd file.๐ Read
via "National Vulnerability Database".
โผ CVE-2020-22628 โผ
๐ Read
via "National Vulnerability Database".
Buffer Overflow vulnerability in LibRaw::stretch() function in libraw\src\postprocessing\aspect_ratio.cpp.๐ Read
via "National Vulnerability Database".
โผ CVE-2020-21679 โผ
๐ Read
via "National Vulnerability Database".
Buffer Overflow vulnerability in WritePCXImage function in pcx.c in GraphicsMagick 1.4 allows remote attackers to cause a denial of service via converting of crafted image file to pcx format.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-32422 โผ
๐ Read
via "National Vulnerability Database".
dpic 2021.01.01 has a Global buffer overflow in theyylex() function in main.c and reads out of the bound array.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-36281 โผ
๐ Read
via "National Vulnerability Database".
An issue in langchain v.0.0.171 allows a remote attacker to execute arbitrary code via the via the a json file to the load_prompt parameter.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-46174 โผ
๐ Read
via "National Vulnerability Database".
Heap-based Buffer Overflow in function bfd_getl32 in Binutils objdump 3.37.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-37425 โผ
๐ Read
via "National Vulnerability Database".
A vulnerability in the web-based management interfaceร of EdgeConnect SD-WAN Orchestrator could allow anร unauthenticated remote attacker to conduct a storedร cross-site scripting (XSS) attack against an administrativeร user of the interface. A successful exploit allows anร attacker to execute arbitrary script code in a victim'sร browser in the context of the affected interface.๐ Read
via "National Vulnerability Database".