Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
upgrade tools vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-0798
LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3400, allowing malicious users to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.
Libtiff Libtiff
6.8
CVSSv2
CVE-2021-21232
Use after free in Dev Tools in Google Chrome before 90.0.4430.93 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Debian Debian Linux 10.0
6.8
CVSSv2
CVE-2017-17095
tools/pal2rgb.c in pal2rgb in LibTIFF 4.0.9 allows remote malicious users to cause a denial of service (TIFFSetupStrips heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file.
Libtiff Libtiff 4.0.9
1 EDB exploit
7.5
CVSSv2
CVE-2012-2944
Buffer overflow in the addchar function in common/parseconf.c in upsd in Network UPS Tools (NUT) prior to 2.6.4 allows remote malicious users to execute arbitrary code or cause a denial of service (electric-power outage) via a long string containing non-printable characters.
Networkupstools Nut 2.6.0-1
Networkupstools Nut 2.6.0
Networkupstools Nut 2.6.1-1
Networkupstools Nut 2.6.1
Networkupstools Nut 2.4.3
Networkupstools Nut
Networkupstools Nut 2.6.3-1
Networkupstools Nut 2.4.2
7.5
CVSSv2
CVE-2015-6420
Serialized-object interfaces in certain Cisco Collaboration and Social Media; Endpoint Clients and Client Software; Network Application, Service, and Acceleration; Network and Content Security Devices; Network Management and Provisioning; Routing and Switching - Enterprise and Se...
Apache Commons Collections
Apache Commons Collections 4.0
5 Github repositories
NA
CVE-2023-28630
GoCD is an open source continuous delivery server. In GoCD versions from 20.5.0 and below 23.1.0, if the server environment is not correctly configured by administrators to provide access to the relevant PostgreSQL or MySQL backup tools, the credentials for database access may be...
Thoughtworks Gocd
NA
CVE-2023-48222
Rundeck is an open source automation service with a web console, command line tools and a WebAPI. In affected versions access to two URLs used in both Rundeck Open Source and Process Automation products could allow authenticated users to access the URL path, which would allow acc...
Pagerduty Rundeck
4.3
CVSSv2
CVE-2016-5316
Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c in libtiff 4.0.6 and previous versions allows remote malicious users to crash the application by sending a crafted TIFF image to the rgb2ycbcr tool.
Libtiff Libtiff
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Opensuse Project Leap 42.1
4.3
CVSSv2
CVE-2016-5315
The setByteArray function in tif_dir.c in libtiff 4.0.6 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted tiff image.
Libtiff Libtiff
Debian Debian Linux 8.0
4.3
CVSSv2
CVE-2016-3622
The fpAcc function in tif_predict.c in the tiff2rgba tool in LibTIFF 4.0.6 and previous versions allows remote malicious users to cause a denial of service (divide-by-zero error) via a crafted TIFF image.
Libtiff Libtiff 4.0.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »