Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bit project bit vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2021-28954
In Chris Walz bit prior to 1.0.5 on Windows, attackers can run arbitrary code via a .exe file in a crafted repository.
Bit Project Bit
7.8
CVSSv3
CVE-2022-39377
sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but before 12.7.1, allocate_structures contains a size_t overflow in sa_common.c. The allocate_structures function insufficiently checks bounds before arit...
Sysstat Project Sysstat
Debian Debian Linux 10.0
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Fedoraproject Fedora 37
7.5
CVSSv3
CVE-2015-5726
The BER decoder in Botan 0.10.x prior to 1.10.10 and 1.11.x prior to 1.11.19 allows remote malicious users to cause a denial of service (application crash) via an empty BIT STRING in ASN.1 data.
Botan Project Botan 1.10.7
Botan Project Botan 1.11.18
Botan Project Botan 1.11.0
Botan Project Botan 1.10.9
Botan Project Botan 1.11.12
Botan Project Botan 1.10.8
Botan Project Botan 1.11.3
Botan Project Botan 1.10.1
Botan Project Botan 1.11.17
Botan Project Botan 1.10.6
Botan Project Botan 1.11.10
Botan Project Botan 1.11.14
Botan Project Botan 1.11.1
Botan Project Botan 1.11.6
Botan Project Botan 1.10.0
Botan Project Botan 1.10.3
Botan Project Botan 1.11.11
Botan Project Botan 1.11.4
Botan Project Botan 1.11.7
Botan Project Botan 1.11.5
Botan Project Botan 1.10.2
Botan Project Botan 1.11.8
9.8
CVSSv3
CVE-2016-6878
The Curve25519 code in botan prior to 1.11.31, on systems without a native 128-bit integer type, might allow malicious users to have unspecified impact via vectors related to undefined behavior, as demonstrated on 32-bit ARM systems compiled by Clang.
Botan Project Botan
7.5
CVSSv3
CVE-2016-9123
go-jose prior to 1.0.5 suffers from a CBC-HMAC integer overflow on 32-bit architectures. An integer overflow could lead to authentication bypass for CBC-HMAC encrypted ciphertexts on 32-bit architectures.
Go-jose Project Go-jose
9.8
CVSSv3
CVE-2019-9893
libseccomp prior to 2.4.0 did not correctly generate 64-bit syscall argument comparisons using the arithmetic operators (LT, GT, LE, GE), which might able to lead to bypassing seccomp filters and potential privilege escalations.
Libseccomp Project Libseccomp
7.5
CVSSv3
CVE-2018-17073
wernsey/bitmap prior to 2018-08-18 allows a NULL pointer dereference via a 4-bit image.
Bitmap Project Bitmap
9.8
CVSSv3
CVE-2017-18239
A time-sensitive equality check on the JWT signature in the JsonWebToken.validate method in main/scala/authentikat/jwt/JsonWebToken.scala in authentikat-jwt (aka com.jason-goodwin/authentikat-jwt) version 0.4.5 and previous versions allows the supplier of a JWT token to guess bit...
Authentikat-jwt Project Authentikat-jwt
8.1
CVSSv3
CVE-2022-23639
crossbeam-utils provides atomics, synchronization primitives, scoped threads, and other utilities for concurrent programming in Rust. crossbeam-utils prior to version 0.8.7 incorrectly assumed that the alignment of `{i,u}64` was always the same as `Atomic{I,U}64`. However, the al...
Crossbeam Project Crossbeam
7.5
CVSSv3
CVE-2021-27211
steghide 0.5.1 relies on a certain 32-bit seed value, which makes it easier for malicious users to detect hidden data.
Steghide Project Steghide 0.5.1
3 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »