801
|
5.3 |
MEDIUM
Local
|
espeak-ng
|
espeak-ng
|
Espeak-ng 1.52-dev was discovered to contain a buffer-overflow via the function SetUpPhonemeTable at synthdata.c.
Update
|
CWE-120
Classic Buffer Overflow
|
CVE-2023-49990
|
2024-10-9 23:35 |
2023-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
802
|
8.8 |
HIGH
Network
|
archerirm
|
archer
|
Archer Platform 6.x before 6.14 P1 HF2 (6.14.0.1.2) contains an insecure direct object reference vulnerability. An authenticated malicious user in a multi-instance installation could potentially expl…
Update
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2023-48641
|
2024-10-9 23:35 |
2023-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
803
|
7.8 |
HIGH
Local
|
apple
|
macos
|
Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in macOS Sonoma 14.2. Processing a maliciously crafted file may lead to unexpected app termination…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2023-42903
|
2024-10-9 23:35 |
2023-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
804
|
7.8 |
HIGH
Local
|
apple
|
iphone_os macos ipados
|
The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.7.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. Processing maliciously crafted input may l…
Update
|
NVD-CWE-noinfo
|
CVE-2023-40446
|
2024-10-9 23:35 |
2023-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
805
|
8.8 |
HIGH
Network
|
struktur
|
libheif
|
libheif v1.17.5 was discovered to contain a segmentation violation via the function UncompressedImageCodec::decode_uncompressed_image.
Update
|
NVD-CWE-noinfo
|
CVE-2023-49460
|
2024-10-9 23:35 |
2023-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
806
|
9.8 |
CRITICAL
Network
netscout
|
ngeniuspulse
|
NETSCOUT nGeniusPULSE 3.8 has a Hardcoded Cryptographic Key.
Update
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2023-40300
|
2024-10-9 23:35 |
2023-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
807
|
7.5 |
HIGH
Network
apache
|
traffic_server
|
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: from 8.0.0 through 9.2.0.
8.x u…
Update
|
CWE-200
Information Exposure
|
CVE-2023-33933
|
2024-10-9 23:35 |
2023-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
808
|
7.5 |
HIGH
Network
apache debian
|
traffic_server debian_linux
|
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: 8.0.0 to 9.2.0.
Update
|
CWE-200
Information Exposure
|
CVE-2022-47184
|
2024-10-9 23:35 |
2023-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
809
|
5.9 |
MEDIUM
Network
|
apache fedoraproject debian
|
http_server fedora debian_linux
|
When a HTTP/2 stream was reset (RST frame) by a client, there was a time window were the request's memory resources were not reclaimed immediately. Instead, de-allocation was deferred to connection c…
Update
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2023-45802
|
2024-10-9 23:30 |
2023-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
810
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
serial: sc16is7xx: fix TX fifo corruption
Sometimes, when a packet is received on channel A at almost the same time
as a packet i…
Update
|
CWE-667
Improper Locking
|
CVE-2024-44951
|
2024-10-9 23:27 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|