Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shift vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv3
CVE-2021-46952
In the Linux kernel, the following vulnerability has been resolved: NFS: fs_context: validate UDP retrans to prevent shift out-of-bounds Fix shift out-of-bounds in xprt_calc_majortimeo(). This is caused by a garbage timeout (retrans) mount option being passed to nfs mount, in thi...
Linux Linux Kernel
5.5
CVSSv3
CVE-2017-5502
libjasper/jp2/jp2_dec.c in JasPer 1.900.17 allows remote malicious users to cause a denial of service (crash) via vectors involving left shift of a negative value.
Jasper Project Jasper 1.900.17
5.5
CVSSv3
CVE-2017-5500
libjasper/jpc/jpc_dec.c in JasPer 1.900.17 allows remote malicious users to cause a denial of service (crash) via vectors involving left shift of a negative value.
Jasper Project Jasper 1.900.17
5.5
CVSSv3
CVE-2017-5498
libjasper/include/jasper/jas_math.h in JasPer 1.900.17 allows remote malicious users to cause a denial of service (crash) via vectors involving left shift of a negative value.
Jasper Project Jasper 1.900.17
NA
CVE-2013-3166
Cross-site scripting (XSS) vulnerability in Microsoft Internet Explorer 6 through 10 allows remote malicious users to inject arbitrary web script or HTML via vectors involving incorrect auto-selection of the Shift JIS encoding, leading to cross-domain scrolling events, aka "...
Microsoft Internet Explorer 8
Microsoft Internet Explorer 9
Microsoft Internet Explorer 10
Microsoft Internet Explorer 6
Microsoft Internet Explorer 7
1 EDB exploit
5.5
CVSSv3
CVE-2022-33070
Protobuf-c v1.4.0 exists to contain an invalid arithmetic shift via the function parse_tag_and_wiretype in protobuf-c/protobuf-c.c. This vulnerability allows malicious users to cause a Denial of Service (DoS) via unspecified vectors.
Protobuf-c Project Protobuf-c 1.4.0
Fedoraproject Fedora 36
8.8
CVSSv3
CVE-2023-29425
Cross-Site Request Forgery (CSRF) vulnerability in plainware.Com ShiftController Employee Shift Scheduling plugin <= 4.9.23 versions.
Plainware Shiftcontroller
8.8
CVSSv3
CVE-2022-28048
STB v2.27 exists to contain an integer shift of invalid size in the component stbi__jpeg_decode_block_prog_ac.
Stb Project Stb 2.27
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
4.8
CVSSv3
CVE-2023-29424
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Plainware ShiftController Employee Shift Scheduling plugin <= 4.9.23 versions.
Plainware Shiftcontroller
5.3
CVSSv3
CVE-2021-3476
A flaw was found in OpenEXR's B44 uncompression functionality in versions prior to 3.0.0-beta. An attacker who is able to submit a crafted file to OpenEXR could trigger shift overflows, potentially affecting application availability.
Openexr Openexr
Debian Debian Linux 9.0
Debian Debian Linux 10.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-26978
CVE-2024-26982
wireless
CVE-2023-6949
CVE-2024-26980
CVE-2024-32766
CVE-2024-26939
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »