Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

alexander cherepanov vulnerabilities and exploits

(subscribe to this query)
6.5
CVSSv3
CVE-2018-10360
The do_core_note function in readelf.c in libmagic.a in file 5.33 allows remote malicious users to cause a denial of service (out-of-bounds read and application crash) via a crafted ELF file.
File Project File 5.33Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 17.10Canonical Ubuntu Linux 18.04Opensuse Leap 42.3Opensuse Leap 15.0
NA
CVE-2014-9093
LibreOffice prior to 4.3.5 allows remote malicious users to cause a denial of service (invalid write operation and crash) and possibly execute arbitrary code via a crafted RTF file.
Libreoffice LibreofficeFedoraproject Fedora 20Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 14.10Debian Debian Linux 7.0
NA
CVE-2015-2304
Absolute path traversal vulnerability in bsdcpio in libarchive 3.1.2 and previous versions allows remote malicious users to write to arbitrary files via a full pathname in an archive.
Libarchive LibarchiveCanonical Ubuntu Linux 12.04Canonical Ubuntu Linux 14.10Canonical Ubuntu Linux 14.04Opensuse Opensuse 13.1Opensuse Opensuse 13.2
NA
CVE-2014-9621
The ELF parser in file 5.16 up to and including 5.21 allows remote malicious users to cause a denial of service via a long string.
File Project File 5.20File Project File 5.21File Project File 5.16File Project File 5.17File Project File 5.18File Project File 5.19
NA
CVE-2015-1197
cpio 2.11, when using the --no-absolute-filenames option, allows local users to write to arbitrary files via a symlink attack on a file in an archive.
Gnu Cpio 2.11
9.8
CVSSv3
CVE-2022-41352
An issue exists in Zimbra Collaboration (ZCS) 8.8.15 and 9.0. An attacker can upload arbitrary files through amavis via a cpio loophole (extraction to /opt/zimbra/jetty/webapps/zimbra/public) that can lead to incorrect access to any other user accounts. Zimbra recommends pax over...
Zimbra Collaboration 9.0.0Zimbra Collaboration 8.8.15
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333CVE-2024-33901CVE-2024-36001CVE-2024-2835firewallXPath injectionauthentication bypassCVE-2024-22120CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook