CVE-2018-1000877
- EPSS 4.58%
- Veröffentlicht 20.12.2018 17:29:01
- Zuletzt bearbeitet 21.11.2024 03:40:33
libarchive version commit 416694915449219d505531b1096384f3237dd6cc onwards (release v3.1.0 onwards) contains a CWE-415: Double Free vulnerability in RAR decoder - libarchive/archive_read_support_format_rar.c, parse_codes(), realloc(rar->lzss.window, ...
CVE-2018-1000878
- EPSS 4.45%
- Veröffentlicht 20.12.2018 17:29:01
- Zuletzt bearbeitet 21.11.2024 03:40:33
libarchive version commit 416694915449219d505531b1096384f3237dd6cc onwards (release v3.1.0 onwards) contains a CWE-416: Use After Free vulnerability in RAR decoder - libarchive/archive_read_support_format_rar.c that can result in Crash/DoS - it is un...
CVE-2018-1000880
- EPSS 4.06%
- Veröffentlicht 20.12.2018 17:29:01
- Zuletzt bearbeitet 21.11.2024 03:40:34
libarchive version commit 9693801580c0cf7c70e862d305270a16b52826a7 onwards (release v3.2.0 onwards) contains a CWE-20: Improper Input Validation vulnerability in WARC parser - libarchive/archive_read_support_format_warc.c, _warc_read() that can resul...
CVE-2018-1000858
- EPSS 1.04%
- Veröffentlicht 20.12.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 03:40:30
GnuPG version 2.1.12 - 2.2.11 contains a Cross ite Request Forgery (CSRF) vulnerability in dirmngr that can result in Attacker controlled CSRF, Information Disclosure, DoS. This attack appear to be exploitable via Victim must perform a WKD request, e...
CVE-2018-1000852
- EPSS 2.67%
- Veröffentlicht 20.12.2018 15:29:02
- Zuletzt bearbeitet 21.11.2024 03:40:29
FreeRDP FreeRDP 2.0.0-rc3 released version before commit 205c612820dac644d665b5bb1cdf437dc5ca01e3 contains a Other/Unknown vulnerability in channels/drdynvc/client/drdynvc_main.c, drdynvc_process_capability_request that can result in The RDP server c...
CVE-2018-15126
- EPSS 11.81%
- Veröffentlicht 19.12.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 03:50:21
LibVNC before commit 73cb96fec028a576a5a24417b57723b55854ad7b contains heap use-after-free vulnerability in server code of file transfer extension that can result remote code execution
CVE-2018-15127
- EPSS 15.09%
- Veröffentlicht 19.12.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 03:50:21
LibVNC before commit 502821828ed00b4a2c4bef90683d0fd88ce495de contains heap out-of-bound write vulnerability in server code of file transfer extension that can result remote code execution
CVE-2018-20019
- EPSS 9.39%
- Veröffentlicht 19.12.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 04:00:46
LibVNC before commit a83439b9fbe0f03c48eb94ed05729cb016f8b72f contains multiple heap out-of-bound write vulnerabilities in VNC client code that can result remote code execution
CVE-2018-20020
- EPSS 8.55%
- Veröffentlicht 19.12.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 04:00:46
LibVNC before commit 7b1ef0ffc4815cab9a96c7278394152bdc89dc4d contains heap out-of-bound write vulnerability inside structure in VNC client code that can result remote code execution
CVE-2018-20021
- EPSS 3.52%
- Veröffentlicht 19.12.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 04:00:46
LibVNC before commit c3115350eb8bb635d0fdb4dbbb0d0541f38ed19c contains a CWE-835: Infinite loop vulnerability in VNC client code. Vulnerability allows attacker to consume excessive amount of resources like CPU and RAM