Nosefart version 2.9-mis suffers from a denial of service vulnerability.
04ca6de64a640e2cab8683b3156acee955bc811e2bb8aac39610ac21dee71b71
The ExifJpegHUFFTable::deriveTable function in src/ExifHuffmanTable.cpp in OpenExif version 2.1.4 can cause a denial of service (heap buffer overflow and application crash) via a crafted jpg file.
10eab2ee9bcce5fc7204a719c72e1d7916acceba0f9f95d20ce65eb80ec5a4d5
The put_chars function in html_r.c in Links version 2.14 can cause a denial of service (buffer over-read) via a crafted html file.
cbed86604219afa78083a48d4a5911f7d3eeacdbee5fab79d432a515d70be1d4
DiskBoss Enterprise version 8.2.14 suffers from a buffer overflow vulnerability.
858ddff65cda6c9b2317b9571623890c96fa0f3ab49730a1e1062eab5549def3
WordPress Logosware Suite Uploader plugin version 1.1.6 suffers from a remote file upload vulnerability.
2531ee7b4cb23d14c69a7e25085a54b74b7c9ba5a043456e5ac526794d0edfea
Jenkins versions prior to 1.650 suffer from a java deserialization vulnerability.
f932931a24baa84b8aaf780ee1292f4ad857cbdaed0ab3be3e22d84b53765295
Spider Player version 2.5.3 suffers from a dll hijacking vulnerability.
1bccbf22f3a5d69e0d55a18407406335bb7aad46f8469f275593e7c17217c910
Flash Slideshow Maker Professional suffers from content forgery, cross site scripting, and unvalidated redirection vulnerabilities.
42eac64a54e866d130ce704069f41b2421573cdcc2bc1d1060eab0eae7eb0151
FTP Commander version 8.02 suffers from a dll hijacking vulnerability.
5851441145037705e758d5db0b2b305eca6812d5cd95a05879e4e53dbd32e638
FortiOS versions 5.6.0 and below suffer from multiple cross site scripting vulnerabilities.
71fbedf56a3bafd4cc88cb2e304237b4c03ba85b1ea19fec83553c621e157acf
Ubuntu Security Notice 3371-1 - It was discovered that the Linux kernel did not properly initialize a Wake- on-Lan data structure. A local attacker could use this to expose sensitive information. Alexander Potapenko discovered a race condition in the Advanced Linux Sound Architecture subsystem in the Linux kernel. A local attacker could use this to expose sensitive information. Various other issues were also addressed.
29aac26db4fa25a26803428ac90ea403b7c6c8b689bbdd5436506a09c62947af
Vehicle Workshop suffers from a remote SQL injection vulnerability.
b10f2276eb392a9d2bc37191fcc13c1728099feee1bfb249253f90ed30a15832
IBM Bluemix suffers from a broken mutual TLS authentication vulnerability.
eefb4b5592abaecb77e988f15cfe9fbb8c333d127e8d96e0694167e723370893
Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.
6b8b183a8409829ca92c71854cc1abed45f04ccfb7f14c08211f4edf571fa577
TYPO3 Formhandler version 2.4.0 suffers from a cross site scripting vulnerability.
1d3622f0e4f3d15078215547598f31908bda1104d6de15ccb96b0669109dc293
Ubuntu Security Notice 3370-1 - Robert Swiecki discovered that the Apache HTTP Server mod_auth_digest module incorrectly cleared values when processing certain requests. A remote attacker could use this issue to cause the server to crash, resulting in a denial or service, or possibly obtain sensitive information.
fb59dcbe81a38b0e84bd2e67c67c2b400326de92855c04f7a023ea36285e6393
Ubuntu Security Notice 3369-1 - Guido Vranken discovered that FreeRADIUS incorrectly handled memory when decoding packets. A remote attacker could use this issue to cause FreeRADIUS to crash or hang, resulting in a denial of service, or possibly execute arbitrary code.
2d7269bf484f6ead1a2687767dc01354af1b32f08cd2d4f72d0baaf9e1c1f6c3
This Microsoft bulletin summary lists multiple CVEs that have undergone a major revision increment.
216654f42ece44e0dad05adb1548052ac516718f4140fed8bea0feb41abc2e7d
Ubiquiti Networks UniFi Cloud Key with firmware versions 0.5.9 and 0.6.0 suffer from weak crypto, privilege escalation, and command injection vulnerabilities.
ff7df61d3c20ef698eeacd98caa047a8dc5114df5d8ba8103bd56c8c1fd454e9
KATHREIN UFSconnect 916 and 906 with firmware version 2.23 build 224 suffer from denial of service and unauthenticated access vulnerabilities.
d34e42d46978401f5571e9b56b01a873a736e3891811d9f953a96ac17a8a227b
Friends in War Make or Break version 1.7 suffers from a remote SQL injection vulnerability.
3e428a06a729d50e22f570bba3e4442fe85fee20da24dfbfaf5e621126710aed
Friends in War Make or Break version 1.7 suffers from an unauthenticated administrative password change vulnerability.
234bbef0b5e39ebc0a6238178a400f1a4461860312f92fef37656fc31f8b5bee
FreeIPA version 2.213 suffers from a session hijacking vulnerability.
3456feb0f0f4e99f51ee106a7c3a9173087d7fd408994cc6022e34492d7c8be9
GNU libiberty suffers from a buffer overflow vulnerability.
f488f4c8d718626de03b04b0bf3b6e0d6ab921be84730c63edda9b52a4fa8296
Friends in War Make or Break version 1.7 suffers from a remote SQL injection vulnerability that allows for login bypass.
947786fb40025bbf1b4689f204b4c9d2994da84e69edc479629136ec1a705f2d