CVE-2023-21919
- EPSS 0.12%
- Veröffentlicht 18.04.2023 20:15:13
- Zuletzt bearbeitet 21.11.2024 07:43:54
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocol...
CVE-2023-21920
- EPSS 0.12%
- Veröffentlicht 18.04.2023 20:15:13
- Zuletzt bearbeitet 21.11.2024 07:43:54
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pr...
CVE-2023-21929
- EPSS 0.14%
- Veröffentlicht 18.04.2023 20:15:13
- Zuletzt bearbeitet 21.11.2024 07:43:56
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocol...
CVE-2023-21911
- EPSS 0.12%
- Veröffentlicht 18.04.2023 20:15:12
- Zuletzt bearbeitet 21.11.2024 07:43:53
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to ...
CVE-2023-29197
- EPSS 2.48%
- Veröffentlicht 17.04.2023 22:15:09
- Zuletzt bearbeitet 21.11.2024 07:56:41
guzzlehttp/psr7 is a PSR-7 HTTP message library implementation in PHP. Affected versions are subject to improper header parsing. An attacker could sneak in a newline (\n) into both the header names and values. While the specification states that \r\n...
CVE-2021-43612
- EPSS 0.13%
- Veröffentlicht 15.04.2023 22:15:07
- Zuletzt bearbeitet 06.02.2025 16:15:30
In lldpd before 1.0.13, when decoding SONMP packets in the sonmp_decode function, it's possible to trigger an out-of-bounds heap read via short SONMP packets.
CVE-2023-2033
- EPSS 24.28%
- Veröffentlicht 14.04.2023 19:15:09
- Zuletzt bearbeitet 24.10.2025 14:07:47
Type confusion in V8 in Google Chrome prior to 112.0.5615.121 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2023-1994
- EPSS 0.27%
- Veröffentlicht 12.04.2023 22:15:13
- Zuletzt bearbeitet 03.11.2025 22:16:04
GQUIC dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file
CVE-2023-1906
- EPSS 0.04%
- Veröffentlicht 12.04.2023 22:15:11
- Zuletzt bearbeitet 10.02.2025 17:15:15
A heap-based buffer overflow issue was discovered in ImageMagick's ImportMultiSpectralQuantum() function in MagickCore/quantum-import.c. An attacker could pass specially crafted file to convert, triggering an out-of-bounds read error, allowing an app...
CVE-2023-1993
- EPSS 0.26%
- Veröffentlicht 12.04.2023 21:15:16
- Zuletzt bearbeitet 03.11.2025 22:16:04
LISP dissector large loop in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file