Latest CVE Feed
-
5.5
MEDIUMCVE-2017-18233
An issue was discovered in Exempi before 2.4.4. Integer overflow in the Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp allows remote attackers to cause a denial of service (infinite loop) via crafted XMP data in a .avi file.... Read more
- EPSS Score: %0.30
- Published: Mar. 15, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2016-3279
Microsoft Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Word 2010 SP2, Excel 2013 SP1, PowerPoint 2013 SP1, Word 2013 SP1, Excel 2013 RT SP1, PowerPoint 2013 RT SP1, Word 2013 RT SP1, Excel 2016, Word 2016, Word Automation Services on SharePoint S... Read more
Affected Products : office word sharepoint_server office_web_apps excel powerpoint excel_rt word_rt powerpoint_rt- EPSS Score: %25.76
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
5.5
MEDIUMCVE-2019-1734
A vulnerability in the implementation of a CLI diagnostic command in Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to view sensitive system files that should be restricted. The attacker could use this informatio... Read more
Affected Products : nx-os firepower_extensible_operating_system nexus_7000 nexus_5548p nexus_5548up nexus_5596up nexus_3048 nexus_3548 mds_9100 nexus_5596t +84 more products- EPSS Score: %0.20
- Published: Nov. 05, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-47165
In the Linux kernel, the following vulnerability has been resolved: drm/meson: fix shutdown crash when component not probed When main component is not probed, by example when the dw-hdmi module is not loaded yet or in probe defer, the following crash ap... Read more
Affected Products : linux_kernel- Published: Mar. 25, 2024
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-6567
A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All Versions < V5.2.4), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.5.0), SCALANCE X-300 switch family (incl. X408 and SIPL... Read more
- EPSS Score: %0.11
- Published: Jun. 12, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-2760
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multipl... Read more
- EPSS Score: %0.10
- Published: Apr. 15, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2015-8711
epan/dissectors/packet-nbap.c in the NBAP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate conversation data, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) v... Read more
Affected Products : wireshark- EPSS Score: %0.09
- Published: Jan. 04, 2016
- Modified: Apr. 12, 2025
-
5.5
MEDIUMCVE-2015-8727
The dissect_rsvp_common function in epan/dissectors/packet-rsvp.c in the RSVP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not properly maintain request-key data, which allows remote attackers to cause a denial of service (use-a... Read more
Affected Products : wireshark- EPSS Score: %0.77
- Published: Jan. 04, 2016
- Modified: Apr. 12, 2025
-
5.5
MEDIUMCVE-2015-8735
The get_value function in epan/dissectors/packet-btatt.c in the Bluetooth Attribute (aka BT ATT) dissector in Wireshark 2.0.x before 2.0.1 uses an incorrect integer data type, which allows remote attackers to cause a denial of service (invalid write opera... Read more
Affected Products : wireshark- EPSS Score: %0.60
- Published: Jan. 04, 2016
- Modified: Apr. 12, 2025
-
5.5
MEDIUMCVE-2015-8845
The tm_reclaim_thread function in arch/powerpc/kernel/process.c in the Linux kernel before 4.4.1 on powerpc platforms does not ensure that TM suspend mode exists before proceeding with a tm_reclaim call, which allows local users to cause a denial of servi... Read more
Affected Products : linux_kernel suse_linux_enterprise_desktop suse_linux_enterprise_server suse_linux_enterprise_software_development_kit suse_linux_enterprise_live_patching suse_linux_enterprise_module_for_public_cloud suse_linux_enterprise_real_time_extension suse_linux_enterprise_workstation_extension- EPSS Score: %0.06
- Published: Apr. 27, 2016
- Modified: Apr. 12, 2025
-
5.5
MEDIUMCVE-2020-0543
Incomplete cleanup from specific special register read operations in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.... Read more
- EPSS Score: %0.53
- Published: Jun. 15, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-0794
A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'.... Read more
- EPSS Score: %0.23
- Published: Apr. 15, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-3889
A logic issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15.4. A local user may be able to read arbitrary files.... Read more
- EPSS Score: %0.05
- Published: Apr. 01, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2015-8922
The read_CodersInfo function in archive_read_support_format_7zip.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted 7z file, related to the _7z_folder struct.... Read more
- EPSS Score: %0.37
- Published: Sep. 20, 2016
- Modified: Apr. 12, 2025
-
5.5
MEDIUMCVE-2020-36312
An issue was discovered in the Linux kernel before 5.8.10. virt/kvm/kvm_main.c has a kvm_io_bus_unregister_dev memory leak upon a kmalloc failure, aka CID-f65886606c2d.... Read more
Affected Products : linux_kernel- EPSS Score: %0.03
- Published: Apr. 07, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-5718
In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the RTSE dissector and other ASN.1 dissectors could crash. This was addressed in epan/charsets.c by adding a get_t61_string length check.... Read more
- EPSS Score: %0.29
- Published: Jan. 08, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-1160
An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory, aka 'Microsoft Graphics Component Information Disclosure Vulnerability'.... Read more
- EPSS Score: %0.49
- Published: Jun. 09, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-5908
In versions bundled with BIG-IP APM 12.1.0-12.1.5 and 11.6.1-11.6.5.2, Edge Client for Linux exposes full session ID in the local log files.... Read more
Affected Products : big-ip_access_policy_manager- EPSS Score: %0.09
- Published: Jul. 01, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12771
An issue was discovered in the Linux kernel through 5.6.11. btree_gc_coalesce in drivers/md/bcache/btree.c has a deadlock if a coalescing operation fails.... Read more
Affected Products : linux_kernel ubuntu_linux debian_linux leap active_iq_unified_manager h410c_firmware a700s_firmware cloud_backup hci_management_node solidfire +27 more products- EPSS Score: %0.06
- Published: May. 09, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-8698
Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.... Read more
- EPSS Score: %0.20
- Published: Nov. 12, 2020
- Modified: Nov. 21, 2024