Latest CVE Feed
-
5.5
MEDIUMCVE-2022-26727
This issue was addressed with improved entitlements. This issue is fixed in Security Update 2022-004 Catalina, macOS Monterey 12.4. A malicious application may be able to modify protected parts of the file system.... Read more
- EPSS Score: %0.17
- Published: May. 26, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-27359
Foxit PDF Reader before 12.0.1 and PDF Editor before 12.0.1 allow a this.maildoc NULL pointer dereference.... Read more
- EPSS Score: %0.27
- Published: May. 05, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2017-5499
Integer overflow in libjasper/jpc/jpc_dec.c in JasPer 1.900.17 allows remote attackers to cause a denial of service (crash) via a crafted file.... Read more
Affected Products : jasper- EPSS Score: %0.45
- Published: Mar. 01, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2021-37646
TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of `tf.raw_ops.StringNGrams` is vulnerable to an integer overflow issue caused by converting a signed integer value to an unsigned one and then ... Read more
Affected Products : tensorflow- EPSS Score: %0.01
- Published: Aug. 12, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-11937
In whoopsie, parse_report() from whoopsie.c allows a local attacker to cause a denial of service via a crafted file. The DoS is caused by resource exhaustion due to a memory leak. Fixed in 0.2.52.5ubuntu0.5, 0.2.62ubuntu0.5 and 0.2.69ubuntu0.1.... Read more
- EPSS Score: %0.10
- Published: Aug. 06, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-30669
Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASL... Read more
- EPSS Score: %2.04
- Published: Jun. 15, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-44742
Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204 (and earlier) are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memo... Read more
- EPSS Score: %8.62
- Published: Jan. 14, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-40468
Windows Bind Filter Driver Information Disclosure Vulnerability... Read more
- EPSS Score: %0.49
- Published: Oct. 13, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-46956
In the Linux kernel, the following vulnerability has been resolved: virtiofs: fix memory leak in virtio_fs_probe() When accidentally passing twice the same tag to qemu, kmemleak ended up reporting a memory leak in virtiofs. Also, looking at the log I s... Read more
Affected Products : linux_kernel- Published: Feb. 27, 2024
- Modified: Dec. 06, 2024
-
5.5
MEDIUMCVE-2021-40788
Adobe Premiere Elements 20210809.daily.2242976 (and earlier) is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-s... Read more
- EPSS Score: %0.41
- Published: Mar. 16, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-32883
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Monterey 12.6, iOS 15.7 and iPadOS 15.7, iOS 16, macOS Big Sur 11.7. An app may be able to read sensitive location information.... Read more
- EPSS Score: %0.05
- Published: Sep. 20, 2022
- Modified: May. 29, 2025
-
5.5
MEDIUMCVE-2016-1814
IOAcceleratorFamily in Apple iOS before 9.3.2, OS X before 10.11.5, and tvOS before 9.2.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted app.... Read more
- EPSS Score: %0.24
- Published: May. 20, 2016
- Modified: Apr. 12, 2025
-
5.5
MEDIUM- EPSS Score: %0.02
- Published: Aug. 29, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-44674
Windows Bluetooth Driver Information Disclosure Vulnerability... Read more
Affected Products : windows_10 windows_server_2016 windows_server_2019 windows_10_1809 windows_10_20h2 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 windows_11_22h2 +3 more products- EPSS Score: %0.10
- Published: Dec. 13, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-29532
A local attacker can trick the Mozilla Maintenance Service into applying an unsigned update file by pointing the service at an update file on a malicious SMB server. The update file can be replaced after the signature check, before the use, because the wr... Read more
- EPSS Score: %0.07
- Published: Jun. 19, 2023
- Modified: Dec. 11, 2024
-
5.5
MEDIUMCVE-2023-30300
An issue in the component hang.wasm of WebAssembly 1.0 causes an infinite loop.... Read more
Affected Products : webassembly- EPSS Score: %0.02
- Published: May. 03, 2023
- Modified: Jan. 30, 2025
-
5.5
MEDIUMCVE-2017-6837
WAVE.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via vectors related to a large number of coefficients.... Read more
Affected Products : audiofile- EPSS Score: %2.79
- Published: Mar. 20, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2020-13632
ext/fts3/fts3_snippet.c in SQLite before 3.32.0 has a NULL pointer dereference via a crafted matchinfo() query.... Read more
Affected Products : ubuntu_linux fedora zfs_storage_appliance_kit debian_linux cloud_backup outside_in_technology sinec_ins sinec_infrastructure_network_services sqlite communications_network_charging_and_control +4 more products- EPSS Score: %0.06
- Published: May. 27, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-24504
Uncontrolled resource consumption in some Intel(R) Ethernet E810 Adapter drivers for Linux before version 1.0.4 may allow an authenticated user to potentially enable denial of service via local access.... Read more
Affected Products : ethernet_network_adapter_e810_firmware ethernet_network_adapter_e810-cqda1 ethernet_network_adapter_e810-cqda1_for_ocp ethernet_network_adapter_e810-cqda1_for_ocp_3.0 ethernet_network_adapter_e810-cqda2 ethernet_network_adapter_e810-cqda2_for_ocp_3.0 ethernet_network_adapter_e810-xxvda2 ethernet_network_adapter_e810-xxvda2_for_ocp ethernet_network_adapter_e810-xxvda2_for_ocp_3.0 ethernet_network_adapter_e810-xxvda4- EPSS Score: %0.09
- Published: Feb. 17, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2016-2317
Multiple buffer overflows in GraphicsMagick 1.3.23 allow remote attackers to cause a denial of service (crash) via a crafted SVG file, related to the (1) TracePoint function in magick/render.c, (2) GetToken function in magick/utility.c, and (3) GetTransfo... Read more
- EPSS Score: %0.26
- Published: Feb. 03, 2017
- Modified: Apr. 20, 2025