CVE-2021-21783
- EPSS 1.36%
- Published 25.03.2021 17:15:13
- Last modified 21.11.2024 05:48:57
A code execution vulnerability exists in the WS-Addressing plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability.
CVE-2020-12723
- EPSS 0.18%
- Published 05.06.2020 15:15:10
- Last modified 21.11.2024 05:00:08
regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls.
CVE-2020-10543
- EPSS 3.94%
- Published 05.06.2020 14:15:10
- Last modified 21.11.2024 04:55:32
Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow.
CVE-2020-10878
- EPSS 0.11%
- Published 05.06.2020 14:15:10
- Last modified 21.11.2024 04:56:16
Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection.
CVE-2017-3730
- EPSS 46.04%
- Published 04.05.2017 19:29:00
- Last modified 20.04.2025 01:37:25
In OpenSSL 1.1.0 before 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a client crash. This could be exploited in a Denial o...
- EPSS 85.45%
- Published 28.01.2015 19:59:00
- Last modified 12.04.2025 10:46:40
Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 fu...