CVE-2023-2156
- EPSS 6.13%
- Veröffentlicht 09.05.2023 22:15:10
- Zuletzt bearbeitet 21.11.2024 07:58:02
A flaw was found in the networking subsystem of the Linux kernel within the handling of the RPL protocol. This issue results from the lack of proper handling of user-supplied data, which can lead to an assertion failure. This may allow an unauthentic...
CVE-2023-2609
- EPSS 0.47%
- Veröffentlicht 09.05.2023 18:15:14
- Zuletzt bearbeitet 23.06.2026 18:17:31
NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1531.
CVE-2023-31489
- EPSS 1.03%
- Veröffentlicht 09.05.2023 16:15:14
- Zuletzt bearbeitet 21.11.2024 08:01:58
An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgp_capability_llgr() function.
CVE-2023-31490
- EPSS 2.15%
- Veröffentlicht 09.05.2023 16:15:14
- Zuletzt bearbeitet 21.11.2024 08:01:58
An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgp_attr_psid_sub() function.
CVE-2023-31137
- EPSS 1.14%
- Veröffentlicht 09.05.2023 14:15:13
- Zuletzt bearbeitet 21.11.2024 08:01:28
MaraDNS is open-source software that implements the Domain Name System (DNS). In version 3.5.0024 and prior, a remotely exploitable integer underflow vulnerability in the DNS packet decompression function allows an attacker to cause a Denial of Servi...
CVE-2023-31047
- EPSS 1.38%
- Veröffentlicht 07.05.2023 02:15:08
- Zuletzt bearbeitet 29.01.2025 16:15:42
In Django 3.2 before 3.2.19, 4.x before 4.1.9, and 4.2 before 4.2.1, it was possible to bypass validation when using one form field to upload multiple files. This multiple upload has never been supported by forms.FileField or forms.ImageField (only t...
CVE-2023-29659
- EPSS 0.93%
- Veröffentlicht 05.05.2023 16:15:09
- Zuletzt bearbeitet 29.01.2025 20:15:31
A Segmentation fault caused by a floating point exception exists in libheif 1.15.1 using crafted heif images via the heif::Fraction::round() function in box.cc, which causes a denial of service.
CVE-2023-2460
- EPSS 0.69%
- Veröffentlicht 03.05.2023 00:15:09
- Zuletzt bearbeitet 21.11.2024 07:58:39
Insufficient validation of untrusted input in Extensions in Google Chrome prior to 113.0.5672.63 allowed an attacker who convinced a user to install a malicious extension to bypass file access checks via a crafted HTML page. (Chromium security severi...
CVE-2023-2461
- EPSS 0.76%
- Veröffentlicht 03.05.2023 00:15:09
- Zuletzt bearbeitet 21.11.2024 07:58:39
Use after free in OS Inputs in Google Chrome on ChromeOS prior to 113.0.5672.63 allowed a remote attacker who convinced a user to enage in specific UI interaction to potentially exploit heap corruption via crafted UI interaction. (Chromium security s...
CVE-2023-2462
- EPSS 0.8%
- Veröffentlicht 03.05.2023 00:15:09
- Zuletzt bearbeitet 21.11.2024 07:58:39
Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to obfuscate main origin data via a crafted HTML page. (Chromium security severity: Medium)