Latest CVE Feed
-
5.5
MEDIUMCVE-2018-8419
An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server... Read more
- EPSS Score: %1.18
- Published: Sep. 13, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2018-8408
An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008... Read more
- EPSS Score: %0.69
- Published: Nov. 14, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-1010301
jhead 3.03 is affected by: Buffer Overflow. The impact is: Denial of service. The component is: gpsinfo.c Line 151 ProcessGpsInfo(). The attack vector is: Open a specially crafted JPEG file.... Read more
- EPSS Score: %0.13
- Published: Jul. 15, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-40216
OpenBSD 7.3 before errata 014 is missing an argument-count bounds check in console terminal emulation. This could cause incorrect memory access and a kernel crash after receiving crafted DCS or CSI terminal escape sequences.... Read more
- EPSS Score: %0.04
- Published: Aug. 10, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-10018
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec at Function.cc for the psOpIdiv case.... Read more
- EPSS Score: %0.49
- Published: Mar. 25, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-40360
QEMU through 8.0.4 accesses a NULL pointer in nvme_directive_receive in hw/nvme/ctrl.c because there is no check for whether an endurance group is configured before checking whether Flexible Data Placement is enabled.... Read more
Affected Products : qemu- EPSS Score: %0.03
- Published: Aug. 14, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2018-8378
An information disclosure vulnerability exists when Microsoft Office software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory, aka "Microsoft Office Information Disclosure Vulnerability." This affect... Read more
- EPSS Score: %23.00
- Published: Aug. 15, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2018-8356
A security feature bypass vulnerability exists when Microsoft .NET Framework components do not correctly validate certificates, aka ".NET Framework Security Feature Bypass Vulnerability." This affects .NET Framework 4.7.2, Microsoft .NET Framework 3.0, Mi... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 .net_framework powershell_core .net_core +3 more products- EPSS Score: %0.36
- Published: Jul. 11, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-0844
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0840.... Read more
- EPSS Score: %0.98
- Published: Apr. 09, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-0837
An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka 'DirectX Information Disclosure Vulnerability'.... Read more
- EPSS Score: %0.98
- Published: Apr. 09, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-40164
Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to global buffer read overflow in `nsCodingStateMachine::NextStater`. The exploitability of this issue is not clear. Potentially, it may be used to leak intern... Read more
Affected Products : notepad\+\+- EPSS Score: %0.08
- Published: Aug. 25, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-0796
An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0805, CVE-2019-0836... Read more
- EPSS Score: %3.43
- Published: Apr. 09, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2018-8330
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Wi... Read more
- EPSS Score: %3.60
- Published: Oct. 10, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-0782
An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0702, CVE-2019-0755, CVE-2019-0767, CVE-20... Read more
- EPSS Score: %0.91
- Published: Apr. 09, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2018-8309
A denial of service vulnerability exists when Windows improperly handles objects in memory, aka "Windows Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.... Read more
- EPSS Score: %0.45
- Published: Jul. 11, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-40133
In multiple locations of DialogFillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for ... Read more
Affected Products : android- EPSS Score: %0.04
- Published: Oct. 27, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-40121
In appendEscapedSQLString of DatabaseUtils.java, there is a possible SQL injection due to unsafe deserialization. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.... Read more
Affected Products : android- EPSS Score: %0.07
- Published: Oct. 27, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-40123
In updateActionViews of PipMenuView.java, there is a possible bypass of a multi user security boundary due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed... Read more
Affected Products : android- EPSS Score: %0.00
- Published: Oct. 27, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2018-8271
An information disclosure vulnerability exists in Windows when the Windows bowser.sys kernel-mode driver fails to properly handle objects in memory, aka "Windows Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Window... Read more
- EPSS Score: %4.08
- Published: Sep. 13, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-40093
In multiple files, there is a possible way that trimmed content could be included in PDF output due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not neede... Read more
Affected Products : android- EPSS Score: %0.05
- Published: Feb. 16, 2024
- Modified: Dec. 03, 2024