CVE-2018-20022
- EPSS 2.94%
- Veröffentlicht 19.12.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 04:00:46
LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 contains multiple weaknesses CWE-665: Improper Initialization vulnerability in VNC client code that allows attacker to read stack memory and can be abuse for information disclosure. Combined with...
CVE-2018-20023
- EPSS 2.5%
- Veröffentlicht 19.12.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 04:00:46
LibVNC before 8b06f835e259652b0ff026898014fc7297ade858 contains CWE-665: Improper Initialization vulnerability in VNC Repeater client code that allows attacker to read stack memory and can be abuse for information disclosure. Combined with another vu...
CVE-2018-20024
- EPSS 3.26%
- Veröffentlicht 19.12.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 04:00:46
LibVNC before commit 4a21bbd097ef7c44bb000c3bd0907f96a10e4ce7 contains null pointer dereference in VNC client code that can result DoS.
CVE-2018-6307
- EPSS 26.54%
- Veröffentlicht 19.12.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 04:10:27
LibVNC before commit ca2a5ac02fbbadd0a21fabba779c1ea69173d10b contains heap use-after-free vulnerability in server code of file transfer extension that can result remote code execution.
- EPSS 1.46%
- Veröffentlicht 18.12.2018 22:29:04
- Zuletzt bearbeitet 21.11.2024 03:53:31
A flaw was found in the Linux kernel's NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time can make bc_svc_process() use wrong back-channel IDs and cause a use-after-free vulnerability. Thus a malicious container ...
CVE-2018-20185
- EPSS 2.11%
- Veröffentlicht 17.12.2018 19:29:03
- Zuletzt bearbeitet 21.11.2024 04:01:02
In GraphicsMagick 1.4 snapshot-20181209 Q8 on 32-bit platforms, there is a heap-based buffer over-read in the ReadBMPImage function of bmp.c, which allows attackers to cause a denial of service via a crafted bmp image file. This only affects Graphics...
CVE-2018-20123
- EPSS 0.49%
- Veröffentlicht 17.12.2018 19:29:02
- Zuletzt bearbeitet 21.11.2024 04:00:54
pvrdma_realize in hw/rdma/vmw/pvrdma_main.c in QEMU has a Memory leak after an initialisation error.
CVE-2018-20169
- EPSS 0.59%
- Veröffentlicht 17.12.2018 07:29:00
- Zuletzt bearbeitet 21.11.2024 04:01:00
An issue was discovered in the Linux kernel before 4.19.9. The USB subsystem mishandles size checks during the reading of an extra descriptor, related to __usb_get_extra_descriptor in drivers/usb/core/usb.c.
CVE-2018-16872
- EPSS 1.08%
- Veröffentlicht 13.12.2018 21:29:00
- Zuletzt bearbeitet 21.11.2024 03:53:29
A flaw was found in qemu Media Transfer Protocol (MTP). The code opening files in usb_mtp_get_object and usb_mtp_get_partial_object and directories in usb_mtp_object_readdir doesn't consider that the underlying filesystem may have changed since the t...
CVE-2018-19364
- EPSS 0.53%
- Veröffentlicht 13.12.2018 19:29:00
- Zuletzt bearbeitet 21.11.2024 03:57:48
hw/9pfs/cofile.c and hw/9pfs/9p.c in QEMU can modify an fid path while it is being accessed by a second thread, leading to (for example) a use-after-free outcome.