Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
backports vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-9773
An issue exists in GNU LibreDWG 0.7 and 0.7.1645. There is a heap-based buffer overflow in the function dwg_decode_eed_data at decode.c for the z dimension.
Gnu Libredwg 0.7.1645
Gnu Libredwg 0.7
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
6.4
CVSSv2
CVE-2019-9774
An issue exists in GNU LibreDWG 0.7 and 0.7.1645. There is an out-of-bounds read in the function bit_read_B at bits.c.
Gnu Libredwg 0.7.1645
Gnu Libredwg 0.7
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
5
CVSSv2
CVE-2019-9778
An issue exists in GNU LibreDWG 0.7 and 0.7.1645. There is a heap-based buffer over-read in the function dwg_dxf_LTYPE at dwg.spec.
Gnu Libredwg 0.7.1645
Gnu Libredwg 0.7
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
5
CVSSv2
CVE-2019-9779
An issue exists in GNU LibreDWG 0.7 and 0.7.1645. There is a NULL pointer dereference in the function dwg_dxf_LTYPE at dwg.spec (earlier than CVE-2019-9776).
Gnu Libredwg 0.7.1645
Gnu Libredwg 0.7
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
6.5
CVSSv2
CVE-2020-24972
The Kleopatra component prior to 3.1.12 (and prior to 20.07.80) for GnuPG allows remote malicious users to execute arbitrary code because openpgp4fpr: URLs are supported without safe handling of command-line options. The Qt platformpluginpath command-line option can be used to lo...
Kleopatra Project Kleopatra
Fedoraproject Fedora 32
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
6.4
CVSSv2
CVE-2019-9775
An issue exists in GNU LibreDWG 0.7 and 0.7.1645. There is an out-of-bounds read in the function dwg_dxf_BLOCK_CONTROL at dwg.spec.
Gnu Libredwg 0.7.1645
Gnu Libredwg 0.7
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
4
CVSSv2
CVE-2020-8118
An authenticated server-side request forgery in Nextcloud server 16.0.1 allowed to detect local and remote services when adding a new subscription in the calendar application.
Nextcloud Nextcloud Server
Opensuse Backports Sle 15.0
Novell Suse Linux Enterprise Server 12.0
4.3
CVSSv2
CVE-2020-6494
Incorrect security UI in payments in Google Chrome on Android before 83.0.4103.97 allowed a remote malicious user to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
Google Chrome
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
6.8
CVSSv2
CVE-2019-5058
An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2_image 2.0.4. A specially crafted XCF image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability.
Libsdl Sdl2 Image 2.0.4
Opensuse Leap 15.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
6.8
CVSSv2
CVE-2019-5060
An exploitable code execution vulnerability exists in the XPM image rendering function of SDL2_image 2.0.4. A specially crafted XPM image can cause an integer overflow in the colorhash function, allocating too small of a buffer. This buffer can then be written out of bounds, resu...
Libsdl Sdl2 Image 2.0.4
Opensuse Leap 15.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »