CVE-2016-10727
- EPSS 2.89%
- Veröffentlicht 20.07.2018 04:29:00
- Zuletzt bearbeitet 21.11.2024 02:44:36
camel/providers/imapx/camel-imapx-server.c in the IMAPx component in GNOME evolution-data-server before 3.21.2 proceeds with cleartext data containing a password if the client wishes to use STARTTLS but the server will not use STARTTLS, which makes i...
CVE-2018-14434
- EPSS 2.77%
- Veröffentlicht 20.07.2018 00:29:00
- Zuletzt bearbeitet 21.11.2024 03:49:02
ImageMagick 7.0.8-4 has a memory leak for a colormap in WriteMPCImage in coders/mpc.c.
CVE-2018-14435
- EPSS 2.11%
- Veröffentlicht 20.07.2018 00:29:00
- Zuletzt bearbeitet 21.11.2024 03:49:02
ImageMagick 7.0.8-4 has a memory leak in DecodeImage in coders/pcd.c.
CVE-2018-14436
- EPSS 2.11%
- Veröffentlicht 20.07.2018 00:29:00
- Zuletzt bearbeitet 21.11.2024 03:49:02
ImageMagick 7.0.8-4 has a memory leak in ReadMIFFImage in coders/miff.c.
CVE-2018-14437
- EPSS 2.08%
- Veröffentlicht 20.07.2018 00:29:00
- Zuletzt bearbeitet 21.11.2024 03:49:03
ImageMagick 7.0.8-4 has a memory leak in parse8BIM in coders/meta.c.
CVE-2017-7481
- EPSS 4.8%
- Veröffentlicht 19.07.2018 13:29:00
- Zuletzt bearbeitet 21.11.2024 03:31:59
Ansible before versions 2.3.1.0 and 2.4.0.0 fails to properly mark lookup-plugin results as unsafe. If an attacker could control the results of lookup() calls, they could inject Unicode strings to be parsed by the jinja2 templating system, resulting ...
CVE-2018-12911
- EPSS 1.73%
- Veröffentlicht 19.07.2018 13:29:00
- Zuletzt bearbeitet 21.11.2024 03:46:05
WebKitGTK+ 2.20.3 has an off-by-one error, with a resultant out-of-bounds write, in the get_simple_globs functions in ThirdParty/xdgmime/src/xdgmimecache.c and ThirdParty/xdgmime/src/xdgmimeglob.c.
CVE-2018-14404
- EPSS 3.68%
- Veröffentlicht 19.07.2018 13:29:00
- Zuletzt bearbeitet 03.12.2025 21:15:48
A NULL pointer dereference vulnerability exists in the xpath.c:xmlXPathCompOpEval() function of libxml2 through 2.9.8 when parsing an invalid XPath expression in the XPATH_OP_AND or XPATH_OP_OR case. Applications processing untrusted XSL format input...
CVE-2018-10877
- EPSS 2.25%
- Veröffentlicht 18.07.2018 15:29:00
- Zuletzt bearbeitet 21.11.2024 03:42:12
Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image.
CVE-2018-3066
- EPSS 1.93%
- Veröffentlicht 18.07.2018 13:29:08
- Zuletzt bearbeitet 21.11.2024 04:05:05
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Options). Supported versions that are affected are 5.5.60 and prior, 5.6.40 and prior and 5.7.22 and prior. Difficult to exploit vulnerability allows high privileged a...