CVE-2018-20650
- EPSS 2.68%
- Veröffentlicht 01.01.2019 16:29:00
- Zuletzt bearbeitet 21.11.2024 04:01:56
A reachable Object::dictLookup assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to the lack of a check for the dict data type, as demonstrated by use of the FileSpec class (in FileSpec.cc) in pdfdetach.
CVE-2018-18311
- EPSS 11.68%
- Veröffentlicht 07.12.2018 21:29:00
- Zuletzt bearbeitet 21.11.2024 03:55:40
Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations.
CVE-2018-8787
- EPSS 8.36%
- Veröffentlicht 29.11.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 04:14:18
FreeRDP prior to version 2.0.0-rc4 contains an Integer Overflow that leads to a Heap-Based Buffer Overflow in function gdi_Bitmap_Decompress() and results in a memory corruption and probably even a remote code execution.
CVE-2018-12121
- EPSS 10.21%
- Veröffentlicht 28.11.2018 17:29:00
- Zuletzt bearbeitet 27.12.2024 16:15:22
Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11.3.0: Denial of Service with large HTTP headers: By using a combination of many requests with maximum sized headers (almost 80 KB per connection), and carefully timed completion of ...
CVE-2018-18897
- EPSS 1.96%
- Veröffentlicht 02.11.2018 07:29:00
- Zuletzt bearbeitet 21.11.2024 03:56:50
An issue was discovered in Poppler 0.71.0. There is a memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc, as demonstrated by pdftocairo.
CVE-2018-3214
- EPSS 7%
- Veröffentlicht 17.10.2018 01:31:23
- Zuletzt bearbeitet 21.11.2024 04:05:27
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Sound). Supported versions that are affected are Java SE: 6u201, 7u191 and 8u182; Java SE Embedded: 8u181; JRockit: R28.3.19. Easily exploitable vulner...
CVE-2018-3180
- EPSS 3.39%
- Veröffentlicht 17.10.2018 01:31:20
- Zuletzt bearbeitet 21.11.2024 04:05:21
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JSSE). Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit v...
- EPSS 2.82%
- Veröffentlicht 17.10.2018 01:31:20
- Zuletzt bearbeitet 21.11.2024 04:05:21
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Scripting). Supported versions that are affected are Java SE: 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit vulnerabil...
CVE-2018-3169
- EPSS 4.01%
- Veröffentlicht 17.10.2018 01:31:19
- Zuletzt bearbeitet 21.11.2024 04:05:20
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 7u191, 8u182 and 11; Java SE Embedded: 8u181. Difficult to exploit vulnerability allows unauthentica...
CVE-2018-3149
- EPSS 7.22%
- Veröffentlicht 17.10.2018 01:31:17
- Zuletzt bearbeitet 21.11.2024 04:05:17
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit v...