CWE:
 

Topic
Date
Author
High
Google SketchUp lib3ds 3DS Importer Memory Corruption
18.01.2010
CORE


CVEMAP Search Results

CVE
Details
Description
2020-01-13
Medium
CVE-2020-6851

Vendor: Openjpeg
Software: Openjpeg
 

 
OpenJPEG through 2.3.1 has a heap-based buffer overflow in opj_t1_clbl_decode_processor in libopenjp2.so.

 
2020-01-11
Medium
CVE-2020-6839

Vendor: Mruby
Software: Mruby
 

 
In mruby 2.1.0, there is a stack-based buffer overflow in mrb_str_len_to_dbl in string.c.

 
2020-01-08
Medium
CVE-2014-2072

Vendor: 3DS
Software: Catia
 

 
Dassault Systemes Catia V5-6R2013: Stack Buffer Overflow due to inadequate boundary checks

 
High
CVE-2014-1598

Vendor: Centurystar project
Software: Centurystar
 

 
centurystar 7.12 ActiveX Control has a Stack Buffer Overflow

 
Medium
CVE-2019-11745

Vendor: Mozilla
Software: Firefox
 

 
When encrypting with a block cipher, if a call to NSC_EncryptUpdate was made with data smaller than the block size, a small out of bounds write could occur. This could have caused heap corruption and a potentially exploitable crash. This vulnerability affects Thunderbird < 68.3, Firefox ESR < 68.3, and Firefox < 71.

 
Medium
CVE-2019-11760

Vendor: Mozilla
Software: Firefox
 

 
A fixed-size stack buffer could overflow in nrappkit when doing WebRTC signaling. This resulted in a potentially exploitable crash in some instances. This vulnerability affects Firefox < 70, Thunderbird < 68.2, and Firefox ESR < 68.2.

 
Medium
CVE-2019-17015

Updating...
 

 
During the initialization of a new content process, a pointer offset can be manipulated leading to memory corruption and a potentially exploitable crash in the parent process. *Note: this issue only occurs on Windows. Other operating systems are unaffected.*. This vulnerability affects Firefox ESR < 68.4 and Firefox < 72.

 
2020-01-07
Medium
CVE-2013-5656

Vendor: Fuzezip project
Software: Fuzezip
 

 
FuzeZip 1.0.0.131625 has a Local Buffer Overflow vulnerability

 
2020-01-06
Medium
CVE-2019-9471

Vendor: Google
Software: Android
 

 
In set_outbound_iatu of abc-pcie.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID: A-144168326

 
Medium
CVE-2019-9470

Vendor: Google
Software: Android
 

 
In dma_sblk_start of abc-pcie.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID: A-144167528

 

 


Copyright 2020, cxsecurity.com

 

Back to Top