Latest CVE Feed
-
5.5
MEDIUMCVE-2022-44674
Windows Bluetooth Driver Information Disclosure Vulnerability... Read more
Affected Products : windows_10 windows_server_2016 windows_server_2019 windows_10_1809 windows_10_20h2 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 windows_11_22h2 +3 more products- EPSS Score: %0.10
- Published: Dec. 13, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-29532
A local attacker can trick the Mozilla Maintenance Service into applying an unsigned update file by pointing the service at an update file on a malicious SMB server. The update file can be replaced after the signature check, before the use, because the wr... Read more
- EPSS Score: %0.07
- Published: Jun. 19, 2023
- Modified: Dec. 11, 2024
-
5.5
MEDIUMCVE-2023-30300
An issue in the component hang.wasm of WebAssembly 1.0 causes an infinite loop.... Read more
Affected Products : webassembly- EPSS Score: %0.02
- Published: May. 03, 2023
- Modified: Jan. 30, 2025
-
5.5
MEDIUMCVE-2017-6837
WAVE.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via vectors related to a large number of coefficients.... Read more
Affected Products : audiofile- EPSS Score: %2.79
- Published: Mar. 20, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2020-13632
ext/fts3/fts3_snippet.c in SQLite before 3.32.0 has a NULL pointer dereference via a crafted matchinfo() query.... Read more
Affected Products : ubuntu_linux fedora zfs_storage_appliance_kit debian_linux cloud_backup outside_in_technology sinec_ins sinec_infrastructure_network_services sqlite communications_network_charging_and_control +4 more products- EPSS Score: %0.06
- Published: May. 27, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-24504
Uncontrolled resource consumption in some Intel(R) Ethernet E810 Adapter drivers for Linux before version 1.0.4 may allow an authenticated user to potentially enable denial of service via local access.... Read more
Affected Products : ethernet_network_adapter_e810_firmware ethernet_network_adapter_e810-cqda1 ethernet_network_adapter_e810-cqda1_for_ocp ethernet_network_adapter_e810-cqda1_for_ocp_3.0 ethernet_network_adapter_e810-cqda2 ethernet_network_adapter_e810-cqda2_for_ocp_3.0 ethernet_network_adapter_e810-xxvda2 ethernet_network_adapter_e810-xxvda2_for_ocp ethernet_network_adapter_e810-xxvda2_for_ocp_3.0 ethernet_network_adapter_e810-xxvda4- EPSS Score: %0.09
- Published: Feb. 17, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2016-2317
Multiple buffer overflows in GraphicsMagick 1.3.23 allow remote attackers to cause a denial of service (crash) via a crafted SVG file, related to the (1) TracePoint function in magick/render.c, (2) GetToken function in magick/utility.c, and (3) GetTransfo... Read more
- EPSS Score: %0.26
- Published: Feb. 03, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2022-41946
pgjdbc is an open source postgresql JDBC Driver. In affected versions a prepared statement using either `PreparedStatement.setText(int, InputStream)` or `PreparedStatemet.setBytea(int, InputStream)` will create a temporary file if the InputStream is large... Read more
- EPSS Score: %0.04
- Published: Nov. 23, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-47929
In the Linux kernel before 6.1.6, a NULL pointer dereference bug in the traffic control subsystem allows an unprivileged user to trigger a denial of service (system crash) via a crafted traffic control configuration that is set up with "tc qdisc" and "tc ... Read more
- EPSS Score: %0.03
- Published: Jan. 17, 2023
- Modified: Apr. 04, 2025
-
5.5
MEDIUMCVE-2022-4269
A flaw was found in the Linux kernel Traffic Control (TC) subsystem. Using a specific networking configuration (redirecting egress packets to ingress using TC action "mirred") a local unprivileged user could trigger a CPU soft lockup (ABBA deadlock) when ... Read more
Affected Products : linux_kernel- EPSS Score: %0.01
- Published: Dec. 05, 2022
- Modified: Apr. 14, 2025
-
5.5
MEDIUMCVE-2022-48468
protobuf-c before 1.4.1 has an unsigned integer overflow in parse_required_member.... Read more
Affected Products : protobuf-c- EPSS Score: %0.02
- Published: Apr. 13, 2023
- Modified: Feb. 07, 2025
-
5.5
MEDIUMCVE-2022-48749
In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: invalid parameter check in dpu_setup_dspp_pcc The function performs a check on the "ctx" input parameter, however, it is used before the check. Initialize the "base" varia... Read more
Affected Products : linux_kernel- Published: Jun. 20, 2024
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-11760
An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during RLE uncompression in rleUncompress in ImfRle.cpp.... Read more
Affected Products : ubuntu_linux fedora debian_linux leap openexr itunes mac_os_x iphone_os tvos watchos +2 more products- EPSS Score: %0.39
- Published: Apr. 14, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-3357
A NULL pointer dereference flaw was found in the Linux kernel AMD Sensor Fusion Hub driver. This flaw allows a local user to crash the system.... Read more
Affected Products : linux_kernel- EPSS Score: %0.01
- Published: Jun. 28, 2023
- Modified: Mar. 10, 2025
-
5.5
MEDIUMCVE-2016-2529
The iseries_check_file_type function in wiretap/iseries.c in the iSeries file parser in Wireshark 2.0.x before 2.0.2 does not consider that a line may lack the "OBJECT PROTOCOL" substring, which allows remote attackers to cause a denial of service (out-of... Read more
Affected Products : wireshark- EPSS Score: %0.17
- Published: Feb. 28, 2016
- Modified: Apr. 12, 2025
-
5.5
MEDIUMCVE-2022-49492
In the Linux kernel, the following vulnerability has been resolved: nvme-pci: fix a NULL pointer dereference in nvme_alloc_admin_tags In nvme_alloc_admin_tags, the admin_q can be set to an error (typically -ENOMEM) if the blk_mq_init_queue call fails to... Read more
Affected Products : linux_kernel- Published: Feb. 26, 2025
- Modified: Mar. 17, 2025
- Vuln Type: Memory Corruption
-
5.5
MEDIUMCVE-2022-49894
In the Linux kernel, the following vulnerability has been resolved: cxl/region: Fix region HPA ordering validation Some regions may not have any address space allocated. Skip them when validating HPA order otherwise a crash like the following may result... Read more
Affected Products : linux_kernel- Published: May. 01, 2025
- Modified: May. 07, 2025
- Vuln Type: Memory Corruption
-
5.5
MEDIUMCVE-2022-46490
GPAC version 2.1-DEV-rev505-gb9577e6ad-master was discovered to contain a memory leak via the afrt_box_read function at box_code_adobe.c.... Read more
Affected Products : gpac- EPSS Score: %0.02
- Published: Jan. 05, 2023
- Modified: Apr. 10, 2025
-
5.5
MEDIUMCVE-2020-25635
A flaw was found in Ansible Base when using the aws_ssm connection plugin as garbage collector is not happening after playbook run is completed. Files would remain in the bucket exposing the data. This issue affects directly data confidentiality.... Read more
Affected Products : ansible- EPSS Score: %0.14
- Published: Oct. 05, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-14347
A flaw was found in the way xserver memory was not properly initialized. This could leak parts of server memory to the X client. In cases where Xorg server runs with elevated privileges, this could result in possible ASLR bypass. Xorg-server before versio... Read more
- EPSS Score: %0.02
- Published: Aug. 05, 2020
- Modified: Nov. 21, 2024