CVE-2021-31598
- EPSS 0.83%
- Veröffentlicht 24.04.2021 17:15:07
- Zuletzt bearbeitet 21.11.2024 06:05:58
An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_decode() performs incorrect memory handling while parsing crafted XML files, leading to a heap-based buffer overflow.
CVE-2021-22204
- EPSS 92.86%
- Veröffentlicht 23.04.2021 18:15:08
- Zuletzt bearbeitet 03.11.2025 18:58:34
Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image
CVE-2021-22207
- EPSS 0.47%
- Veröffentlicht 23.04.2021 18:15:08
- Zuletzt bearbeitet 21.11.2024 05:49:42
Excessive memory consumption in MS-WSP dissector in Wireshark 3.4.0 to 3.4.4 and 3.2.0 to 3.2.12 allows denial of service via packet injection or crafted capture file
CVE-2021-2161
- EPSS 1.4%
- Veröffentlicht 22.04.2021 22:15:13
- Zuletzt bearbeitet 21.11.2024 06:02:30
Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u291, 8u281, 11.0.10, 16; Java SE Embedded: 8u281; Oracle GraalVM E...
CVE-2021-2163
- EPSS 0.1%
- Veröffentlicht 22.04.2021 22:15:13
- Zuletzt bearbeitet 21.11.2024 06:02:30
Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u291, 8u281, 11.0.10, 16; Java SE Embedded: 8u281; Oracle GraalVM E...
- EPSS 0.09%
- Veröffentlicht 22.04.2021 18:15:08
- Zuletzt bearbeitet 21.11.2024 05:51:16
A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. If sctp_destroy_sock is called without sock_net(sk)->sctp.addr...
CVE-2021-1076
- EPSS 0.06%
- Veröffentlicht 21.04.2021 23:15:07
- Zuletzt bearbeitet 21.11.2024 05:43:32
NVIDIA GPU Display Driver for Windows and Linux, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys or nvidia.ko) where improper access control may lead to denial of service, information disclosure, or data corruption.
CVE-2021-29155
- EPSS 0.21%
- Veröffentlicht 20.04.2021 16:15:10
- Zuletzt bearbeitet 21.11.2024 06:00:47
An issue was discovered in the Linux kernel through 5.11.x. kernel/bpf/verifier.c performs undesirable out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information f...
CVE-2021-3506
- EPSS 0.14%
- Veröffentlicht 19.04.2021 22:15:13
- Zuletzt bearbeitet 21.11.2024 06:21:42
An out-of-bounds (OOB) memory access flaw was found in fs/f2fs/node.c in the f2fs module in the Linux kernel in versions before 5.12.0-rc4. A bounds check failure allows a local attacker to gain access to out-of-bounds memory leading to a system cras...
CVE-2021-3497
- EPSS 0.18%
- Veröffentlicht 19.04.2021 21:15:13
- Zuletzt bearbeitet 17.03.2026 15:52:33
GStreamer before 1.18.4 might access already-freed memory in error code paths when demuxing certain malformed Matroska files.