Latest CVE Feed
-
5.5
MEDIUMCVE-2023-46246
Vim is an improved version of the good old UNIX editor Vi. Heap-use-after-free in memory allocated in the function `ga_grow_inner` in in the file `src/alloc.c` at line 748, which is freed in the file `src/ex_docmd.c` in the function `do_cmdline` at line 1... Read more
Affected Products : vim- Published: Oct. 27, 2023
- Modified: Feb. 13, 2025
-
5.5
MEDIUMCVE-2019-1219
An information disclosure vulnerability exists when the Windows Transaction Manager improperly handles objects in memory, aka 'Windows Transaction Manager Information Disclosure Vulnerability'.... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows +1 more products- Published: Sep. 11, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-1187
A denial of service vulnerability exists when the XmlLite runtime (XmlLite.dll) improperly parses XML input. An attacker who successfully exploited this vulnerability could cause a denial of service against an XML application. A remote unauthenticated att... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 +7 more products- Published: Aug. 14, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-1112
An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka 'Microsoft Excel Information Disclosure Vulnerability'.... Read more
- Published: Jul. 15, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-1078
An information disclosure vulnerability exists when the Windows Graphics component improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. An authent... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 +7 more products- Published: Aug. 14, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-0754
A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'.... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows +1 more products- Published: Apr. 09, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-46018
SQL injection vulnerability in receiverReg.php in Code-Projects Blood Bank 1.0 \allows attackers to run arbitrary SQL commands via 'remail' parameter.... Read more
Affected Products : blood_bank- Published: Nov. 13, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-46014
SQL Injection vulnerability in hospitalLogin.php in Code-Projects Blood Bank 1.0 allows attackers to run arbitrary SQL commands via 'hemail' and 'hpassword' parameters.... Read more
Affected Products : blood_bank- Published: Nov. 13, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-46001
Buffer Overflow vulnerability in gpac MP4Box v.2.3-DEV-rev573-g201320819-master allows a local attacker to cause a denial of service via the gpac/src/isomedia/isom_read.c:2807:51 function in gf_isom_get_user_data.... Read more
Affected Products : gpac- Published: Nov. 07, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-0636
An information vulnerability exists when Windows improperly discloses file information, aka 'Windows Information Disclosure Vulnerability'.... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows +1 more products- Published: Mar. 05, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-0536
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Wi... Read more
- Published: Jan. 08, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-45862
An issue was discovered in drivers/usb/storage/ene_ub6250.c for the ENE UB6250 reader driver in the Linux kernel before 6.2.5. An object could potentially extend beyond the end of an allocation.... Read more
- Published: Oct. 14, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-0161
Stack overflow in XHCI for EDK II may allow an unauthenticated user to potentially enable denial of service via local access.... Read more
Affected Products : edk_ii- Published: Mar. 27, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2018-8472
An information disclosure vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory, allowing an attacker to retrieve information from a targeted system, aka "Windows GDI Information Disclosure Vulnerabilit... Read more
- Published: Oct. 10, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2018-8427
An information disclosure vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka "Microsoft Graphics Components Information Disclosure Vulnerability." This affects Microsoft Office, Microsoft Office Word Viewer, O... Read more
- Published: Oct. 10, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-45793
A vulnerability has been identified in Siveillance Control (All versions >= V2.8 < V3.1.1). The affected product does not properly check the list of access groups that are assigned to an individual user. This could enable a locally logged on user to gain ... Read more
Affected Products : siveillance_control- Published: Mar. 12, 2024
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-45663
stb_image is a single file MIT licensed library for processing images. The stbi__getn function reads a specified number of bytes from context (typically a file) into the specified buffer. In case the file stream points to the end, it returns zero. There a... Read more
- Published: Oct. 21, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-34612
Rizin v0.4.0 and below was discovered to contain an integer overflow via the function get_long_object(). This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted binary.... Read more
Affected Products : rizin- Published: Jul. 27, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-45315
Improper initialization in some Intel(R) Power Gadget software for Windwos all versions may allow an authenticated user to potentially enable denial of service via local access.... Read more
- Published: May. 16, 2024
- Modified: Aug. 28, 2025
-
5.5
MEDIUMCVE-2023-45245
Sensitive information disclosure due to missing authorization. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build 36119.... Read more
- Published: Oct. 06, 2023
- Modified: Nov. 21, 2024