Latest CVE Feed
-
5.5
MEDIUMCVE-2021-36374
When reading a specially crafted ZIP archive, or a derived formats, an Apache Ant build can be made to allocate large amounts of memory that leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. Commo... Read more
Affected Products : retail_point-of-service agile_engineering_data_management primavera_unifier retail_predictive_application_server timesten_in-memory_database communications_diameter_intelligence_hub retail_bulk_data_integration retail_back_office retail_xstore_point_of_service enterprise_repository +26 more products- Published: Jul. 14, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-36584
An issue was discovered in GPAC 1.0.1. There is a heap-based buffer overflow in the function gp_rtp_builder_do_tx3g function in ietf/rtp_pck_3gpp.c, as demonstrated by MP4Box. This can cause a denial of service (DOS).... Read more
Affected Products : gpac- Published: Aug. 05, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-36341
Dell Wyse Device Agent version 14.5.4.1 and below contain a sensitive data exposure vulnerability. A local authenticated user with low privileges could potentially exploit this vulnerability in order to access sensitive information.... Read more
Affected Products : wyse_device_agent- Published: Dec. 21, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-36234
Use of a hard-coded cryptographic key in MIK.starlight 7.9.5.24363 allows local users to decrypt credentials via unspecified vectors.... Read more
Affected Products : mik.starlight- Published: Aug. 31, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-36914
Windows Smart Card Resource Management Server Security Feature Bypass Vulnerability... Read more
Affected Products : windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 windows_11_22h2- Published: Aug. 08, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-36404
Windows Kernel Information Disclosure Vulnerability... Read more
Affected Products : windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 windows_11_22h2 windows +3 more products- Published: Nov. 14, 2023
- Modified: Jan. 01, 2025
-
5.5
MEDIUMCVE-2021-36077
Adobe Bridge version 11.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious SVG file, potentially resulting in local application denial of service in the context of the current user. User interaction is... Read more
- Published: Sep. 01, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-34824
fdkaac before 1.0.5 was discovered to contain a heap buffer overflow in caf_info function in caf_reader.c.... Read more
Affected Products : fdkaac- Published: Jun. 14, 2023
- Modified: Jan. 03, 2025
-
5.5
MEDIUMCVE-2021-36054
XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer overflow vulnerability potentially resulting in local application denial of service in the context of the current user. Exploitation requires user interaction in that a victim must open ... Read more
- Published: Sep. 01, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-36058
XMP Toolkit SDK version 2020.1 (and earlier) is affected by an Integer Overflow vulnerability potentially resulting in application-level denial of service in the context of the current user. Exploitation requires user interaction in that a victim must ope... Read more
- Published: Sep. 01, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-36083
KDE KImageFormats 5.70.0 through 5.81.0 has a stack-based buffer overflow in XCFImageFormat::loadTileRLE.... Read more
Affected Products : kimageformats- Published: Jul. 01, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-29081
A vulnerability has been reported in Suite Setups built with versions prior to InstallShield 2023 R2. This vulnerability may allow locally authenticated users to cause a Denial of Service (DoS) condition when handling move operations on local, temporary f... Read more
- Published: Jan. 26, 2024
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-35985
Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by a Null pointer dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an ap... Read more
- Published: Aug. 20, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-28271
Windows Kernel Memory Information Disclosure Vulnerability... Read more
Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_20h2 windows_10_21h2 windows_10_22h2 windows_server_2022 +7 more products- Published: Apr. 11, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-27950
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.3. Processing an image may result in disclosure of process memory.... Read more
Affected Products : macos- Published: Sep. 06, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-25585
A flaw was found in Binutils. The use of an uninitialized field in the struct module *module may lead to application crash and local denial of service.... Read more
Affected Products : binutils- Published: Sep. 14, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-25435
libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesShifted8bits() at /libtiff/tools/tiffcrop.c:3753.... Read more
Affected Products : libtiff- Published: Jun. 21, 2023
- Modified: Dec. 06, 2024
-
5.5
MEDIUMCVE-2023-24945
Windows iSCSI Target Service Information Disclosure Vulnerability... Read more
Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_20h2 windows_10_21h2 windows_10_22h2 windows_server_2022 +7 more products- Published: May. 09, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-2430
A vulnerability was found due to missing lock for IOPOLL flaw in io_cqring_event_overflow() in io_uring.c in Linux Kernel. This flaw allows a local attacker with user privilege to trigger a Denial of Service threat.... Read more
Affected Products : linux_kernel- Published: Jul. 23, 2023
- Modified: Mar. 06, 2025
-
5.5
MEDIUMCVE-2021-35612
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocol... Read more
- Published: Oct. 20, 2021
- Modified: Nov. 21, 2024