Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject fedora 19 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-21899
A code execution vulnerability exists in the dwgCompressor::copyCompBytes21 functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. A specially-crafted .dwg file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.
Librecad Libdxfrw 2.2.0-rc2-19-ge02f3580
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
8.8
CVSSv3
CVE-2021-21898
A code execution vulnerability exists in the dwgCompressor::decompress18() functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. A specially-crafted .dwg file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability.
Librecad Libdxfrw 2.2.0-rc2-19-ge02f3580
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 34
Fedoraproject Fedora 35
8.8
CVSSv3
CVE-2021-21900
A code execution vulnerability exists in the dxfRW::processLType() functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. A specially-crafted .dxf file can lead to a use-after-free vulnerability. An attacker can provide a malicious file to trigger this vulnerability.
Librecad Libdxfrw 2.2.0-rc2-19-ge02f3580
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 34
Fedoraproject Fedora 35
NA
CVE-2011-5268
connection.c in Bip prior to 0.8.9 does not properly close sockets, which allows remote malicious users to cause a denial of service (file descriptor consumption and crash) via multiple failed SSL handshakes, a different vulnerability than CVE-2013-4550. NOTE: this issue was SPLI...
Duckcorp Bip 0.8.1
Duckcorp Bip 0.8.2
Duckcorp Bip 0.8.3
Duckcorp Bip 0.8.4
Duckcorp Bip 0.8.0
Duckcorp Bip 0.8.5
Duckcorp Bip 0.8.6
Duckcorp Bip 0.8.7
Duckcorp Bip
Fedoraproject Fedora 20
Fedoraproject Fedora 19
Fedoraproject Fedora 18
NA
CVE-2013-4550
Bip prior to 0.8.9, when running as a daemon, writes SSL handshake errors to an unexpected file descriptor that was previously associated with stderr before stderr has been closed, which allows remote malicious users to write to other sockets and have an unspecified impact via a ...
Fedoraproject Fedora 19
Fedoraproject Fedora 18
Fedoraproject Fedora 20
Duckcorp Bip 0.8.3
Duckcorp Bip 0.8.4
Duckcorp Bip 0.8.0
Duckcorp Bip 0.8.5
Duckcorp Bip 0.8.6
Duckcorp Bip 0.8.7
Duckcorp Bip
Duckcorp Bip 0.8.1
Duckcorp Bip 0.8.2
NA
CVE-2014-0190
The GIF decoder in QtGui in Qt prior to 5.3 allows remote malicious users to cause a denial of service (NULL pointer dereference) via invalid width and height values in a GIF image.
Qt Qt
Fedoraproject Fedora 19
Fedoraproject Fedora 20
Opensuse Opensuse 13.1
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 15.04
6.5
CVSSv3
CVE-2014-1398
The entity wrapper access API in the Entity API module 7.x-1.x prior to 7.x-1.3 for Drupal might allow remote authenticated users to bypass intended access restrictions on comment, user and node statistics properties via unspecified vectors.
Entity Api Project Entity Api 7.x-1.2
Entity Api Project Entity Api 7.x-1.1
Entity Api Project Entity Api 7.x-1.0
Fedoraproject Fedora 20
Fedoraproject Fedora 19
6.5
CVSSv3
CVE-2014-1399
The entity wrapper access API in the Entity API module 7.x-1.x prior to 7.x-1.3 for Drupal might allow remote authenticated users to bypass intended access restrictions on referenced entities via unspecified vectors.
Entity Api Project Entity Api 7.x-1.0
Entity Api Project Entity Api 7.x-1.1
Entity Api Project Entity Api 7.x-1.2
Fedoraproject Fedora 20
Fedoraproject Fedora 19
6.5
CVSSv3
CVE-2014-1400
The entity_access API in the Entity API module 7.x-1.x prior to 7.x-1.3 for Drupal might allow remote authenticated users to bypass intended access restrictions and read unpublished comments via unspecified vectors.
Entity Api Project Entity Api 7.x-1.2
Entity Api Project Entity Api 7.x-1.0
Entity Api Project Entity Api 7.x-1.1
Fedoraproject Fedora 19
Fedoraproject Fedora 20
NA
CVE-2014-1519
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 29.0 and SeaMonkey prior to 2.26 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox
Mozilla Seamonkey
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 13.10
Canonical Ubuntu Linux 14.04
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
Fedoraproject Fedora 19
Fedoraproject Fedora 20
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »