CWE:
 

Tytuł
Data
Autor
High
BlazeDVD 7.0 Professional Buffer Overflow
31.08.2020
emalp
High
ASX To MP3 Converter 3.1.3.7.2010.11.05 Buffer Overflow
28.08.2020
Paras Bhatia
High
Socusoft Photo to Video Converter Professional 8.07 Output Folder Buffer Overflow (SEH Egghunter)
14.08.2020
MasterVlad
High
Free MP3 CD Ripper 2.8 Stack Buffer Overflow (SEH + Egghunter)
06.08.2020
Eduard Palisek
Med.
CA Unified Infrastructure Management Nimsoft 7.80 Buffer Overflow
01.08.2020
wetw0rk
High
Frigate Professional 3.36.0.9 Pack File Buffer Overflow (SEH Egghunter)
30.07.2020
MasterVlad
High
docPrint Pro 8.0 Add URL Buffer Overflow (SEH Egghunter)
27.07.2020
MasterVlad
High
FTPDummy! 4.80 Local Buffer Overflow
25.07.2020
Felipe Winsnes
High
Snes9K 0.09z Local Buffer Overflow
25.07.2020
MasterVlad
High
NetPCLinker 1.0.0.0 Buffer Overflow
29.06.2020
Saeed reza Zamanian
High
LanSpy 2.0.1.159 Stack Buffer Overflow
23.06.2020
Paolo Stagno
High
Documalis Free PDF Scanner Buffer Overflow
17.06.2020
metacom
Med.
TP-LINK Cloud Cameras NCXXX Stack Overflow
17.06.2020
Pietro Oliva
High
Documalis Free PDF Editor Buffer Overflow
16.06.2020
metacom
High
Frigate Professional 3.36.0.9 Find Computer Local Buffer Overflow (SEH) (PoC)
12.06.2020
Paras Bhatia
High
Bandwidth Monitor 3.9 Full ROP Buffer Overflow
10.06.2020
Bobby Cooke
High
HFS Http File Server 2.3m Build 300 Buffer Overflow
08.06.2020
hyp3rlinx
High
10-Strike Bandwidth Monitor 3.9 Buffer Overflow
08.06.2020
Bobby Cooke
High
GoldWave Buffer Overflow (SEH Unicode)
03.06.2020
Andy Bowden
High
StreamRipper32 2.6 Buffer Overflow
27.05.2020
Andy Bowden
High
GoldWave 5.70 Buffer Overflow
26.05.2020
Andy Bowden
High
VUPlayer 2.49 .m3u Local Buffer Overflow (DEP,ASLR)
22.05.2020
Gobinathan L
High
CloudMe 1.11.2 SEH / DEP / ASLR Buffer Overflow
21.05.2020
Xenofon Vassilakopoulo...
High
Dameware Remote Support 12.1.1.273 Buffer Overflow
18.05.2020
gurbanli
High
LanSend 3.2 Buffer Overflow
13.05.2020
gurbanli
High
Frigate 3.36 SEH Buffer Overflow
06.05.2020
Xenofon Vassilakopoulo...
High
Internet Download Manager 6.37.11.1 Buffer Overflow
28.04.2020
Benjamin Kunz Mejri
High
CloudMe 1.11.2 Buffer Overflow
28.04.2020
Andy Bowden
High
RM Downloader 3.1.3.2.2010.06.13 Buffer Overflow
22.04.2020
Felipe Winsnes
High
Rubo DICOM Viewer 2.0 Buffer Overflow
21.04.2020
bzyo
High
Xinfire TV Player 6.0.1.2 Buffer Overflow
21.04.2020
metacom
High
Xinfire DVD Player 5.5.0.0 Buffer Overflow
21.04.2020
metacom
High
ALLPlayer 7.6 Buffer Overflow
21.04.2020
Xenofon Vassilakopoulo...
High
Spiderman2 2.1.1 Buffer Overflow
21.04.2020
HexraiN
High
Common Desktop Environment 2.3.1 / 1.6 libDtSvc Buffer Overflow
18.04.2020
Marco Ivaldi
High
Oracle Solaris 11.x / 10 whodo / w Buffer Overflow
18.04.2020
Marco Ivaldi
High
Code Blocks 16.01 Buffer Overflow
18.04.2020
T3jv1l
High
BlazeDVD 7.0.2 Buffer Overflow (SEH)
15.04.2020
areyou1or0 <Busra Demi...
High
Free Desktop Clock x86 Venetian Blinds Zipper 3.0 Unicode Stack Overflow (SEH)
15.04.2020
Bobby Cooke
High
SMBv3 Compression Buffer Overflow
07.04.2020
Spencer McIntyre
High
Triologic Media Player 8 .m3l Buffer Overflow (Unicode) (SEH)
06.04.2020
Felipe Winsnes
High
AIDA64 Engineer 6.20.5300 Buffer Overflow
03.04.2020
Hodorsec
High
DiskBoss 7.7.14 Local Buffer Overflow
03.04.2020
Paras Bhatia
High
FreeCommander XE 2020 Pathname Buffer Overflow
29.03.2020
Hodorsec
High
10-Strike Network Inventory Explorer 8.54 Buffer Overflow
27.03.2020
Felipe Winsnes
High
Easy RM To MP3 Converter 2.7.3.700 Local Buffer Overflow
27.03.2020
Felipe Winsnes
High
Easy File Sharing Web Server 7.2 Local Buffer Overflow
21.03.2020
Felipe Winsnes
High
pppd 2.4.8 Buffer Overflow
20.03.2020
nu11secur1ty
High
AnyBurn 4.8 Buffer Overflow
14.03.2020
Richard Davy
High
Cyberoam Authentication Client 2.1.2.7 Buffer Overflow
03.03.2020
Andrey Stoykov
High
DVD Photo Slideshow Professional 8.07 Name Buffer Overflow
14.02.2020
ZwX
High
Anviz CrossChex Buffer Overflow
13.02.2020
Pedro Rodrigues
High
Wedding Slideshow Studio 1.36 Name Buffer Overflow
11.02.2020
ZwX
High
Sudo 1.8.25p Buffer Overflow
05.02.2020
Joe Vennix
High
F-Secure Internet Gatekeeper 5.40 Heap Overflow (PoC)
04.02.2020
Kevin Joensen
High
Torrent 3GP Converter 1.51 Stack Overflow (SEH)
01.02.2020
boku
High
Common Desktop Environment 2.3.1 Buffer Overflow
20.01.2020
Marco Ivaldi
Med.
Torrent FLV Converter 1.51 Build 117 Stack Overflow
19.01.2020
Antonio
High
Allok Video Converter 4.6.1217 Stack Overflow
16.01.2020
Antonio de la Piedra
Low
Allok RM RMVB To AVI MPEG DVD Converter 3.6.1217 Stack Overflow
14.01.2020
Antonio De la Piedra
Med.
Allok Video Converter 4.6.1217 Stack Overflow
14.01.2020
Antonio De la Piedra
High
EBBISLAND EBBSHAVE 6100-09-04-1441 Remote Buffer Overflow
10.01.2020
Harrison Neal
High
Domain Quester Pro 6.02 Stack Overflow (SEH)
06.01.2020
boku
Med.
AVS Audio Converter 9.1.2.600 Stack Overflow
31.12.2019
boku
Med.
FTP Navigator 8.03 Stack Overflow
31.12.2019
boku
High
AVS Audio Converter 9.1 Buffer Overflow
19.12.2019
ZwX
High
FTP Commander Pro 8.03 Local Stack Overflow
15.12.2019
boku
High
Integard Pro NoJs 2.2.0.9026 Remote Buffer Overflow
11.12.2019
purpl3f0xsecur1ty
High
Anviz CrossChex 4.3.12 Local Buffer Overflow
03.12.2019
Pedro Rodrigues
High
Free MP3 CD Ripper 2.8 Buffer Overflow
25.11.2019
Malav Vyas
High
Free MP3 CD Ripper 2.8 Buffer Overflow / Denial Of Service
25.11.2019
Malav Vyas
High
nipper-ng 0.11.10 Remote Buffer Overflow
19.11.2019
Guy Levin
High
SMPlayer 19.5.0 Buffer Overflow / Denial Of Service
16.11.2019
Malav Vyas
High
Ayukov NFTP 1.71 Buffer Overflow
05.11.2019
Chase Hatch
High
Aida64 6.10.5200 Buffer Overflow
05.11.2019
daejinoh
High
WMV To AVI MPEG DVD WMV Converter 4.6.1217 Buffer Overflow
01.11.2019
Doan Nguyen
High
Win10 MailCarrier 2.51 Buffer Overflow
30.10.2019
Dino Covotsos
High
X.Org X Server 1.20.4 Local Stack Overflow
17.10.2019
Marcelo Vazquez
High
DeviceViewer 3.12.0.1 Local Buffer Overflow
10.10.2019
Alessandro Magnosi
High
libyal libfwsi Buffer Overread
09.10.2019
Mishra Dhiraj
High
freeFTP 1.0.8 Remote Buffer Overflow
07.10.2019
Chet Manly
High
ASX To MP3 Converter 3.1.3.7 Local Stack Overflow
07.10.2019
max7253
High
File Sharing Wizard 1.5.0 DELETE SEH Buffer Overflow
05.10.2019
Striker
High
DameWare Remote Support 12.1.0.34 Buffer Overflow
02.10.2019
Xavi Beltran
High
File Sharing Wizard 1.5.0 SEH Buffer Overflow
25.09.2019
x00pwn
High
ChaosPro 2.1 SEH Buffer Overflow
14.09.2019
securitychops
High
ChaosPro 3.1 SEH Buffer Overflow
05.09.2019
securitychops
High
ChaosPro 3.1 SEH Buffer Overflow
05.09.2019
securitychops
High
Realtek Managed Switch Controller RTL83xx Stack Overflow
27.08.2019
bashis
Med.
ABC2MTEX 1.6.1 Command Line Stack Overflow
17.08.2019
Carter Yagemann <yagem...
High
pdfresurrect 0.15 Buffer Overflow
27.07.2019
j0lama
High
Streamripper 2.6 Song Pattern Buffer Overflow
17.07.2019
Andrey Stoykov
High
PCMan FTP Server 2 ALLO Buffer Overflow
16.07.2019
Nassim Asrir
High
SNMPc Enterprise Edition 9 / 10 Mapping Filename Buffer Overflow
12.07.2019
xerubus
High
Apache mod_ssl < 2.8.7 OpenSSL OpenFuckV2.c Remote Buffer Overflow
09.07.2019
Brian
High
ABB IDAL HTTP Server Stack-Based Buffer Overflow
25.06.2019
Eldar Marcussen
High
Thunderbird ESR < 60.7.XXX icalrecur_add_bydayrules Stack-Based Buffer Overflow
21.06.2019
X41 D-SEC GmbH, Luis M...
High
Tuneclone 2.20 SEH Buffer Overflow
21.06.2019
Achilles
High
Netperf 2.6.0 Buffer Overflow
18.06.2019
Juan Sacco
High
Aida64 6.00.5100 Log to CSV File Local SEH Buffer Overflow
17.06.2019
Nipun Jaswal


Common Weakness Enumeration (CWE)

CVE
Szczegóły
Opis
2020-09-25
Waiting for details
CVE-2020-15195

Updating...
 

 
In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the implementation of `SparseFillEmptyRowsGrad` uses a double indexing pattern. It is possible for `reverse_index_map(i)` to be an index outside of bounds of `grad_values`, thus resulting in a heap buffer overflow. The issue is patched in commit 390611e0d45c5793c7066110af37c8514e6a6c54, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1.

 
Waiting for details
CVE-2020-15196

Updating...
 

 
In Tensorflow version 2.3.0, the `SparseCountSparseOutput` and `RaggedCountSparseOutput` implementations don't validate that the `weights` tensor has the same shape as the data. The check exists for `DenseCountSparseOutput`, where both tensors are fully specified. In the sparse and ragged count weights are still accessed in parallel with the data. But, since there is no validation, a user passing fewer weights than the values for the tensors can generate a read from outside the bounds of the heap buffer allocated for the weights. The issue is patched in commit 3cbb917b4714766030b28eba9fb41bb97ce9ee02 and is released in TensorFlow version 2.3.1.

 
Waiting for details
CVE-2020-15198

Updating...
 

 
In Tensorflow before version 2.3.1, the `SparseCountSparseOutput` implementation does not validate that the input arguments form a valid sparse tensor. In particular, there is no validation that the `indices` tensor has the same shape as the `values` one. The values in these tensors are always accessed in parallel. Thus, a shape mismatch can result in accesses outside the bounds of heap allocated buffers. The issue is patched in commit 3cbb917b4714766030b28eba9fb41bb97ce9ee02 and is released in TensorFlow version 2.3.1.

 
Waiting for details
CVE-2020-15205

Updating...
 

 
In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `data_splits` argument of `tf.raw_ops.StringNGrams` lacks validation. This allows a user to pass values that can cause heap overflow errors and even leak contents of memory In the linked code snippet, all the binary strings after `ee ff` are contents from the memory stack. Since these can contain return addresses, this data leak can be used to defeat ASLR. The issue is patched in commit 0462de5b544ed4731aa2fb23946ac22c01856b80, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1.

 
Waiting for details
CVE-2020-15207

Updating...
 

 
In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, to mimic Python's indexing with negative values, TFLite uses `ResolveAxis` to convert negative values to positive indices. However, the only check that the converted index is now valid is only present in debug builds. If the `DCHECK` does not trigger, then code execution moves ahead with a negative index. This, in turn, results in accessing data out of bounds which results in segfaults and/or data corruption. The issue is patched in commit 2d88f470dea2671b430884260f3626b1fe99830a, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1.

 
Waiting for details
CVE-2020-15213

Updating...
 

 
In TensorFlow Lite before versions 2.2.1 and 2.3.1, models using segment sum can trigger a denial of service by causing an out of memory allocation in the implementation of segment sum. Since code uses the last element of the tensor holding them to determine the dimensionality of output tensor, attackers can use a very large value to trigger a large allocation. The issue is patched in commit 204945b19e44b57906c9344c0d00120eeeae178a and is released in TensorFlow versions 2.2.1, or 2.3.1. A potential workaround would be to add a custom `Verifier` to limit the maximum value in the segment ids tensor. This only handles the case when the segment ids are stored statically in the model, but a similar validation could be done if the segment ids are generated at runtime, between inference steps. However, if the segment ids are generated as outputs of a tensor during inference steps, then there are no possible workaround and users are advised to upgrade to patched code.

 
2020-09-17
Low
CVE-2020-0353

Vendor: Google
Software: Android
 

 
In libmp4extractor, there is a possible resource exhaustion due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-124777526

 
2020-09-16
Low
CVE-2020-14392

Vendor: PERL
Software: Database int...
 

 
An untrusted pointer dereference flaw was found in Perl-DBI < 1.643. A local attacker who is able to manipulate calls to dbd_db_login6_sv() could cause memory corruption, affecting the service's availability.

 
2020-09-15
Medium
CVE-2020-14345

Vendor: X.org
Software: X server
 

 
A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Out-Of-Bounds access in XkbSetNames function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

 
2020-09-11
Medium
CVE-2020-14096

Updating...
 

 
Memory overflow in Xiaomi AI speaker Rom version <1.59.6 can happen when the speaker verifying a malicious firmware during OTA process.

 

 


Copyright 2020, cxsecurity.com

 

Back to Top