CVE-2019-20176
- EPSS 4.37%
- Veröffentlicht 31.12.2019 15:15:11
- Zuletzt bearbeitet 21.11.2024 04:38:09
In Pure-FTPd 1.0.49, a stack exhaustion issue was discovered in the listdir function in ls.c.
CVE-2012-5474
- EPSS 0.34%
- Veröffentlicht 30.12.2019 20:15:11
- Zuletzt bearbeitet 21.11.2024 01:44:43
The file /etc/openstack-dashboard/local_settings within Red Hat OpenStack Platform 2.0 and RHOS Essex Release (python-django-horizon package before 2012.1.1) is world readable and exposes the secret key value.
CVE-2012-5645
- EPSS 4.25%
- Veröffentlicht 30.12.2019 20:15:11
- Zuletzt bearbeitet 21.11.2024 01:45:02
A denial of service flaw was found in the way the server component of Freeciv before 2.3.4 processed certain packets. A remote attacker could send a specially-crafted packet that, when processed would lead to memory exhaustion or excessive CPU consum...
CVE-2019-20093
- EPSS 1.37%
- Veröffentlicht 30.12.2019 04:15:11
- Zuletzt bearbeitet 21.11.2024 04:38:02
The PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.6 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file, because of ImageExtractor.cpp.
CVE-2019-20051
- EPSS 0.9%
- Veröffentlicht 27.12.2019 22:15:11
- Zuletzt bearbeitet 11.04.2025 12:27:55
A floating-point exception was discovered in PackLinuxElf::elf_hash in p_lx_elf.cpp in UPX 3.95. The vulnerability causes an application crash, which leads to denial of service.
CVE-2019-20021
- EPSS 1.1%
- Veröffentlicht 27.12.2019 02:15:10
- Zuletzt bearbeitet 11.04.2025 12:27:55
A heap-based buffer over-read was discovered in canUnpack in p_mach.cpp in UPX 3.95 via a crafted Mach-O file.
CVE-2019-16789
- EPSS 2.59%
- Veröffentlicht 26.12.2019 17:15:13
- Zuletzt bearbeitet 21.11.2024 04:31:11
In Waitress through version 1.4.0, if a proxy server is used in front of waitress, an invalid request may be sent by an attacker that bypasses the front-end and is parsed differently by waitress leading to a potential for HTTP request smuggling. Spec...
CVE-2019-19956
- EPSS 5.52%
- Veröffentlicht 24.12.2019 16:15:11
- Zuletzt bearbeitet 03.12.2025 19:15:50
xmlParseBalancedChunkMemoryRecover in parser.c in libxml2 before 2.9.10 has a memory leak related to newDoc->oldNs.
CVE-2019-11045
- EPSS 8.82%
- Veröffentlicht 23.12.2019 03:15:11
- Zuletzt bearbeitet 21.11.2024 04:20:26
In PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0, PHP DirectoryIterator class accepts filenames with embedded \0 byte and treats them as terminating at that byte. This could lead to security vulnerabilities, e.g. in applications check...
CVE-2019-11046
- EPSS 4.08%
- Veröffentlicht 23.12.2019 03:15:11
- Zuletzt bearbeitet 21.11.2024 04:20:26
In PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0, PHP bcmath extension functions on some systems, including Windows, can be tricked into reading beyond the allocated space by supplying it with string containing characters that are ide...