Latest CVE Feed
-
5.5
MEDIUMCVE-2023-4042
A flaw was found in ghostscript. The fix for CVE-2020-16305 in ghostscript was not included in RHSA-2021:1852-06 advisory as it was claimed to be. This issue only affects the ghostscript package as shipped with Red Hat Enterprise Linux 8.... Read more
Affected Products : enterprise_linux ghostscript enterprise_linux_for_power_little_endian codeready_linux_builder codeready_linux_builder_for_ibm_z_systems enterprise_linux_for_ibm_z_systems codeready_linux_builder_for_arm64 enterprise_linux_for_arm_64 codeready_linux_builder_for_power_little_endian- Published: Aug. 23, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-22648
This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.6.5, macOS Monterey 12.3, Security Update 2022-003 Catalina. An application may be able to read restricted memory.... Read more
- Published: Mar. 18, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-22002
Windows User Account Profile Picture Denial of Service Vulnerability... Read more
Affected Products : windows_10 windows_8.1 windows_rt_8.1 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows_10_1607 windows_10_1809 windows_10_20h2 +10 more products- Published: Feb. 09, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-21998
Windows Common Log File System Driver Information Disclosure Vulnerability... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows_10_1607 +14 more products- Published: Feb. 09, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-49994
Espeak-ng 1.52-dev was discovered to contain a Floating Point Exception via the function PeaksToHarmspect at wavegen.c.... Read more
Affected Products : espeak-ng- Published: Dec. 12, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-14710
Vulnerability in the Customer Management and Segmentation Foundation product of Oracle Retail Applications (component: Security). Supported versions that are affected are 16.0, 17.0 and 18.0. Easily exploitable vulnerability allows low privileged attacker... Read more
Affected Products : retail_customer_management_and_segmentation_foundation- Published: Jul. 15, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-38863
Certain The MPlayer Project products are vulnerable to Buffer Overflow via function mp_getbits() of libmpdemux/mpeg_hdr.c which affects mencoder and mplayer. This affects mecoder SVN-r38374-13.0.1 and mplayer SVN-r38374-13.0.1.... Read more
- Published: Sep. 15, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-38861
The MPlayer Project mplayer SVN-r38374-13.0.1 is vulnerable to memory corruption via function free_mp_image() of libmpcodecs/mp_image.c.... Read more
- Published: Sep. 15, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-38850
The MPlayer Project mencoder SVN-r38374-13.0.1 is vulnerable to Divide By Zero via the function config () of llibmpcodecs/vf_scale.c.... Read more
- Published: Sep. 15, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-47437
In the Linux kernel, the following vulnerability has been resolved: iio: adis16475: fix deadlock on frequency set With commit 39c024b51b560 ("iio: adis16475: improve sync scale mode handling"), two deadlocks were introduced: 1) The call to 'adis_write_... Read more
Affected Products : linux_kernel- Published: May. 22, 2024
- Modified: Jan. 10, 2025
-
5.5
MEDIUMCVE-2021-46045
GPAC 1.0.1 is affected by: Abort failed. The impact is: cause a denial of service (context-dependent).... Read more
Affected Products : gpac- Published: Jan. 10, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-46043
A Pointer Dereference Vulnerability exits in GPAC 1.0.1 in the gf_list_count function, which causes a Denial of Service.... Read more
Affected Products : gpac- Published: Jan. 06, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-45767
GPAC 1.1.0 was discovered to contain an invalid memory address dereference via the function lsr_read_id(). This vulnerability can lead to a Denial of Service (DoS).... Read more
Affected Products : gpac- Published: Jan. 14, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-45763
GPAC v1.1.0 was discovered to contain an invalid call in the function gf_node_changed(). This vulnerability can lead to a Denial of Service (DoS).... Read more
Affected Products : gpac- Published: Jan. 14, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-45291
The gf_dump_setup function in GPAC 1.0.1 allows malicoius users to cause a denial of service (Invalid memory address dereference) via a crafted file in the MP4Box command.... Read more
Affected Products : gpac- Published: Dec. 21, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-52737
In the Linux kernel, the following vulnerability has been resolved: btrfs: lock the inode in shared mode before starting fiemap Currently fiemap does not take the inode's lock (VFS lock), it only locks a file range in the inode's io tree. This however c... Read more
Affected Products : linux_kernel- Published: May. 21, 2024
- Modified: Jan. 10, 2025
-
5.5
MEDIUM- Published: Dec. 15, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-4214
A heap overflow flaw was found in libpngs' pngimage.c program. This flaw allows an attacker with local network access to pass a specially crafted PNG file to the pngimage utility, causing an application to crash, leading to a denial of service.... Read more
- Published: Aug. 24, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-42635
In validationtools, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed... Read more
- Published: Nov. 01, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-22996
In the Linux kernel before 5.17.2, drivers/soc/qcom/qcom_aoss.c does not release an of_find_device_by_node reference after use, e.g., with put_device.... Read more
Affected Products : linux_kernel- Published: Feb. 28, 2023
- Modified: Mar. 20, 2025