[Forgot Password]
Login  Register Subscribe

30480

 
 

423868

 
 

252588

 
 

909

 
 

196930

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 26875 Download | Alert*

The host is installed with OpenSSL 1.0.2 through 1.0.2s or 1.1.1 through 1.1.1c or 1.1.0 through 1.1.0k and is prone to an improper certificate validation vulnerability. A flaw is present in the directory tree where it can find a configuration file as well as certificates used for verification in TLS. Successful exploitation could allow attackers to modify OpenSSL's default configuration, insert C ...

The host is installed with Apache HTTP Server 2.4.20 through 2.4.39 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle an issue in very early pushes of http/2. Successful exploitation could allow attackers to overwrite memory in the pushing request's pool, leading to crashes.

The host is installed with Oracle WebLogic Server component in Oracle WebLogic Server through 10.3.6.0, 12.1.3.0, 12.2.1.3 or 12.2.1.4 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to properly handle Console (Apache Commons Beanutils). Successful exploitation can cause unspecified impact.

The host is installed with Apache HTTP Server 2.4.18 through 2.4.39 and is prone to a read-after-free vulnerability. A flaw is present in the application, which fails to properly handle an issue in mod_http2. Successful exploitation could allow attackers to read memory after being freed during connection shutdown using fuzzed network input.

The host is installed with Apache HTTP Server 2.4.33 through 2.4.38 and is prone to a stack buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle specially crafted PROXY headers. Successful exploitation could allow attackers to trigger a stack buffer overflow or NULL pointer deference.

The host is installed with FasterXML jackson-databind 2.8.0 before 2.8.11.5 or 2.9.0 before 2.9.10 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to handle issues in polymorphic typing. Successful exploitation could allow attackers to cause an unspecified impact.

The host is installed with Oracle WebLogic Server component in Oracle WebLogic Server through 12.2.1.3 or 12.2.1.4 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to properly handle Core Components (Connect2id Nimbus JOSE+JWT). Successful exploitation can cause unspecified impact.

Oniguruma through 6.9.3, as used in PHP 7.3.x and other products, has a heap-based buffer over-read in str_lower_case_match in regexec.c.

In PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0 on Windows, PHP link() function accepts filenames with embedded \0 byte and treats them as terminating at that byte. This could lead to security vulnerabilities, e.g. in applications checking paths that the code is allowed to access.

The host is installed with KeePass 2.4.1 and is prone to a CSV injection vulnerability. A flaw is present in the application which fails to properly handle an issue in the title field of a CSV export. Successful exploitation allows attackers to force other user to execute code in his machine.


Pages:      Start    1596    1597    1598    1599    1600    1601    1602    1603    1604    1605    1606    1607    1608    1609    ..   2687

© SecPod Technologies