1931
|
5.5 |
MEDIUM
Local
|
artifex debian
|
mupdf debian_linux
|
In MuPDF 1.13.0, there is an infinite loop in the fz_skip_space function of the pdf/pdf-xref.c file. A remote adversary could leverage this vulnerability to cause a denial of service via a crafted pd…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2018-10289
|
2024-09-13 02:15 |
2018-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1932
|
5.5 |
MEDIUM
Local
|
artifex debian
|
mupdf debian_linux
|
In MuPDF 1.12.0, there is an infinite loop vulnerability and application hang in the pdf_parse_array function (pdf/pdf-parse.c) because EOF is not considered. Remote attackers could leverage this vul…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2018-5686
|
2024-09-13 02:15 |
2018-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1933
|
5.5 |
MEDIUM
Local
|
artifex debian
|
mupdf debian_linux
|
Buffer overflow in the my_getline function in jstest_main.c in Mujstest in Artifex Software, Inc. MuPDF before 1.10 allows remote attackers to cause a denial of service (out-of-bounds write) via a cr…
|
CWE-787
Out-of-bounds Write
|
CVE-2016-10247
|
2024-09-13 02:15 |
2017-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1934
|
5.5 |
MEDIUM
Local
|
artifex debian
|
mupdf debian_linux
|
Buffer overflow in the main function in jstest_main.c in Mujstest in Artifex Software, Inc. MuPDF before 1.10 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted …
|
CWE-787
Out-of-bounds Write
|
CVE-2016-10246
|
2024-09-13 02:15 |
2017-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1935
|
4.7 |
MEDIUM
Physics
|
arm
|
trusted_firmware-m
|
An issue was discovered in Trusted Firmware-M through 2.0.0. The lack of argument verification in the logging subsystem allows attackers to read sensitive data via the login function.
|
NVD-CWE-Other
|
CVE-2023-51712
|
2024-09-13 02:11 |
2024-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1936
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
tcp: add sanity tests to TCP_QUEUE_SEQ
Qingyu Li reported a syzkaller bug where the repro
changes RCV SEQ _after_ restoring data …
|
NVD-CWE-noinfo
|
CVE-2021-4442
|
2024-09-13 01:58 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1937
|
5.9 |
MEDIUM
Network
|
identityautomation
|
rapididentity
|
RapidIdentity LTS through 2023.0.2 and Cloud through 2024.08.0 improperly restricts excessive authentication attempts and allows a remote attacker to cause a denial of service via the username parame…
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2024-45589
|
2024-09-13 01:54 |
2024-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1938
|
4.8 |
MEDIUM
Network
|
themeboy
|
sportspress
|
The SportsPress WordPress plugin before 2.7.22 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks …
|
CWE-79
Cross-site Scripting
|
CVE-2024-3986
|
2024-09-13 01:52 |
2024-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1939
|
7.5 |
HIGH
Network
mediavine
|
create
|
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Mediavine Create by Mediavine.This issue affects Create by Mediavine: from n/a through 1.9.8.
|
NVD-CWE-noinfo
|
CVE-2024-43264
|
2024-09-13 01:50 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1940
|
6.1 |
MEDIUM
Network
|
linuxos
|
shakal-ng
|
A vulnerability, which was classified as problematic, was found in LinuxOSsk Shakal-NG up to 1.3.3. Affected is an unknown function of the file comments/views.py. The manipulation of the argument nex…
|
CWE-601
Open Redirect
|
CVE-2024-8412
|
2024-09-13 01:47 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|