Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zlib zlib vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-2007-2052
Off-by-one error in the PyLocale_strxfrm function in Modules/_localemodule.c for Python 2.4 and 2.5 causes an incorrect buffer size to be used for the strxfrm function, which allows context-dependent malicious users to read portions of memory via unknown manipulations that trigge...
Python Python 2.4.0
Python Python 2.5.0
1 EDB exploit
447
VMScore
CVE-2018-25032
zlib prior to 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.
Zlib Zlib
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Apple Mac Os X
Apple Mac Os X 10.15.7
Apple Macos
Python Python
Mariadb Mariadb
Netapp Oncommand Workflow Automation -
Netapp Ontap Select Deploy Administration Utility -
Netapp Active Iq Unified Manager -
Netapp Hci Compute Node -
Netapp Management Services For Element Software -
Netapp E-series Santricity Os Controller
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
5 Github repositories
1 Article
446
VMScore
CVE-2008-3144
Multiple integer overflows in the PyOS_vsnprintf function in Python/mysnprintf.c in Python 2.5.2 and previous versions allow context-dependent malicious users to cause a denial of service (memory corruption) or have unspecified other impact via crafted input to string formatting ...
Python Python
445
VMScore
CVE-2018-19622
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the MMSE dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-mmse.c by preventing length overflows.
Wireshark Wireshark
Debian Debian Linux 8.0
Debian Debian Linux 9.0
445
VMScore
CVE-2018-16057
In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Radiotap dissector could crash. This was addressed in epan/dissectors/packet-ieee80211-radiotap-iter.c by validating iterator operations.
Wireshark Wireshark
Debian Debian Linux 8.0
Debian Debian Linux 9.0
445
VMScore
CVE-2018-14340
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, dissectors that support zlib decompression could crash. This was addressed in epan/tvbuff_zlib.c by rejecting negative lengths to avoid a buffer over-read.
Wireshark Wireshark
Debian Debian Linux 8.0
445
VMScore
CVE-2018-11362
In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by avoiding a buffer over-read upon encountering a missing '\0' character.
Wireshark Wireshark
Wireshark Wireshark 2.6.0
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
445
VMScore
CVE-2018-7418
In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the SIGCOMP dissector could crash. This was addressed in epan/dissectors/packet-sigcomp.c by correcting the extraction of the length value.
Wireshark Wireshark
Debian Debian Linux 8.0
Debian Debian Linux 7.0
445
VMScore
CVE-2017-14919
Node.js prior to 4.8.5, 6.x prior to 6.11.5, and 8.x prior to 8.8.0 allows remote malicious users to cause a denial of service (uncaught exception and crash) by leveraging a change in the zlib module 1.2.9 making 8 an invalid value for the windowBits parameter.
Nodejs Node.js 4.8.3
Nodejs Node.js 4.8.4
Nodejs Node.js 6.10.2
Nodejs Node.js 6.10.3
Nodejs Node.js 8.3.0
Nodejs Node.js 8.4.0
Nodejs Node.js 8.5.0
Nodejs Node.js 8.6.0
Nodejs Node.js 6.11.1
Nodejs Node.js 6.11.3
Nodejs Node.js 8.1.2
Nodejs Node.js 8.1.4
Nodejs Node.js 8.2.1
Nodejs Node.js 8.7.0
Nodejs Node.js 6.11.4
Nodejs Node.js 8.0.0
Nodejs Node.js 8.1.0
Nodejs Node.js 8.1.1
Nodejs Node.js 4.8.2
Nodejs Node.js 6.11.0
Nodejs Node.js 6.11.2
Nodejs Node.js 8.1.3
445
VMScore
CVE-2015-1191
Multiple directory traversal vulnerabilities in pigz 2.3.1 allow remote malicious users to write to arbitrary files via a (1) full pathname or (2) .. (dot dot) in an archive.
Zlib Pigz 2.3.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »