Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fuzz vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2022-40160
** DISPUTED ** This record was originally reported by the oss-fuzz project who failed to consider the security context in which JXPath is intended to be used and failed to contact the JXPath maintainers prior to requesting the CVE allocation. The CVE was then allocated by Google ...
Apache Commons Jxpath
7.5
CVSSv3
CVE-2023-47264
Certain WithSecure products have a buffer over-read whereby processing certain fuzz file types may cause a denial of service (DoS). This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Pro...
Withsecure Client Security 15
Withsecure Elements Endpoint Protection
Withsecure Email And Server Security 15
Withsecure Server Security 15
Withsecure Linux Protection 12.0
Withsecure Linux Security 64 12.0
Withsecure Atlant 1.0.35-1
Withsecure Atlant
5.5
CVSSv3
CVE-2024-26903
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security During our fuzz testing of the connection and disconnection process at the RFCOMM layer, we discovered this bug. By comparing the packets from a norm...
Linux Linux Kernel
4.9
CVSSv3
CVE-2023-30612
Cloud hypervisor is a Virtual Machine Monitor for Cloud workloads. This vulnerability allows users to close arbitrary open file descriptors in the Cloud Hypervisor process via sending malicious HTTP request through the HTTP API socket. As a result, the Cloud Hypervisor process ca...
Cloudhypervisor Cloud Hypervisor 31.1
Cloudhypervisor Cloud Hypervisor 30.0
NA
CVE-2009-4377
The (1) SMB and (2) SMB2 dissectors in Wireshark 0.9.0 up to and including 1.2.4 allow remote malicious users to cause a denial of service (crash) via a crafted packet that triggers a NULL pointer dereference, as demonstrated by fuzz-2009-12-07-11141.pcap.
Wireshark Wireshark 0.99.7
Wireshark Wireshark 0.99.5
Wireshark Wireshark 0.99.4
Wireshark Wireshark 0.9.10
Wireshark Wireshark 0.99.9
Wireshark Wireshark 1.0.1
Wireshark Wireshark 1.0.4
Wireshark Wireshark 1.0
Wireshark Wireshark 1.0.2
Wireshark Wireshark 0.9.7
Wireshark Wireshark 0.9.2
Wireshark Wireshark 0.9.8
Wireshark Wireshark 0.99.1
Wireshark Wireshark 0.99.0
Wireshark Wireshark 1.2
Wireshark Wireshark 1.0.9
Wireshark Wireshark 1.2.2
Wireshark Wireshark 1.0.0
Wireshark Wireshark 0.9.14
Wireshark Wireshark 0.99.6
Wireshark Wireshark 0.9.5
Wireshark Wireshark 0.9.6
6.5
CVSSv3
CVE-2022-36055
Helm is a tool for managing Charts. Charts are packages of pre-configured Kubernetes resources. Fuzz testing, provided by the CNCF, identified input to functions in the _strvals_ package that can cause an out of memory panic. The _strvals_ package contains a parser that turns str...
Helm Helm
NA
CVE-2021-47430
In the Linux kernel, the following vulnerability has been resolved: x86/entry: Clear X86_FEATURE_SMAP when CONFIG_X86_SMAP=n Commit 3c73b81a9164 ("x86/entry, selftests: Further improve user entry sanity checks") added a warning if AC is set when in the kernel. Commit 66...
9.8
CVSSv3
CVE-2020-8899
There is a buffer overwrite vulnerability in the Quram qmg library of Samsung's Android OS versions O(8.x), P(9.0) and Q(10.0). An unauthenticated, unauthorized attacker sending a specially crafted MMS to a vulnerable phone can trigger a heap-based buffer overflow in the Qur...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
1 Github repository
NA
CVE-2021-47292
In the Linux kernel, the following vulnerability has been resolved: io_uring: fix memleak in io_init_wq_offload() I got memory leak report when doing fuzz test: BUG: memory leak unreferenced object 0xffff888107310a80 (size 96): comm "syz-executor.6", pid 4610, jiffies 4...
7.5
CVSSv3
CVE-2018-17540
The gmp plugin in strongSwan prior to 5.7.1 has a Buffer Overflow via a crafted certificate.
Strongswan Strongswan
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 18.04
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »