CVE-2018-1000121
- EPSS 9.57%
- Veröffentlicht 14.03.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 03:39:43
A NULL pointer dereference exists in curl 7.21.0 to and including curl 7.58.0 in the LDAP code that allows an attacker to cause a denial of service
CVE-2018-1000122
- EPSS 9.39%
- Veröffentlicht 14.03.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 03:39:43
A buffer over-read exists in curl 7.20.0 to and including curl 7.58.0 in the RTSP+RTP handling code that allows an attacker to cause a denial of service or information leakage
CVE-2018-1000132
- EPSS 2.69%
- Veröffentlicht 14.03.2018 13:29:00
- Zuletzt bearbeitet 21.11.2024 03:39:45
Mercurial version 4.5 and earlier contains a Incorrect Access Control (CWE-285) vulnerability in Protocol server that can result in Unauthorized data access. This attack appear to be exploitable via network connectivity. This vulnerability appears to...
CVE-2017-18229
- EPSS 2.35%
- Veröffentlicht 14.03.2018 02:29:00
- Zuletzt bearbeitet 21.11.2024 03:19:37
An issue was discovered in GraphicsMagick 1.3.26. An allocation failure vulnerability was found in the function ReadTIFFImage in coders/tiff.c, which allows attackers to cause a denial of service via a crafted file, because file size is not properly ...
CVE-2017-18230
- EPSS 1.74%
- Veröffentlicht 14.03.2018 02:29:00
- Zuletzt bearbeitet 21.11.2024 03:19:37
An issue was discovered in GraphicsMagick 1.3.26. A NULL pointer dereference vulnerability was found in the function ReadCINEONImage in coders/cineon.c, which allows attackers to cause a denial of service via a crafted file.
CVE-2017-18231
- EPSS 1.72%
- Veröffentlicht 14.03.2018 02:29:00
- Zuletzt bearbeitet 21.11.2024 03:19:37
An issue was discovered in GraphicsMagick 1.3.26. A NULL pointer dereference vulnerability was found in the function ReadEnhMetaFile in coders/emf.c, which allows attackers to cause a denial of service via a crafted file.
CVE-2018-8098
- EPSS 1.42%
- Veröffentlicht 14.03.2018 00:29:00
- Zuletzt bearbeitet 21.11.2024 04:13:15
Integer overflow in the index.c:read_entry() function while decompressing a compressed prefix length in libgit2 before v0.26.2 allows an attacker to cause a denial of service (out-of-bounds read) via a crafted repository index file.
CVE-2018-8099
- EPSS 1.39%
- Veröffentlicht 14.03.2018 00:29:00
- Zuletzt bearbeitet 21.11.2024 04:13:15
Incorrect returning of an error code in the index.c:read_entry() function leads to a double free in libgit2 before v0.26.2, which allows an attacker to cause a denial of service via a crafted repository index file.
CVE-2018-1000127
- EPSS 2.32%
- Veröffentlicht 13.03.2018 21:29:00
- Zuletzt bearbeitet 21.11.2024 03:39:44
memcached version prior to 1.4.37 contains an Integer Overflow vulnerability in items.c:item_free() that can result in data corruption and deadlocks due to items existing in hash table being reused from free list. This attack appear to be exploitable...
CVE-2018-7750
- EPSS 27.07%
- Veröffentlicht 13.03.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 04:12:39
transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is co...