Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shift vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2023-29425
Cross-Site Request Forgery (CSRF) vulnerability in plainware.Com ShiftController Employee Shift Scheduling plugin <= 4.9.23 versions.
Plainware Shiftcontroller
8.8
CVSSv3
CVE-2022-28048
STB v2.27 exists to contain an integer shift of invalid size in the component stbi__jpeg_decode_block_prog_ac.
Stb Project Stb 2.27
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
4.8
CVSSv3
CVE-2023-29424
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Plainware ShiftController Employee Shift Scheduling plugin <= 4.9.23 versions.
Plainware Shiftcontroller
5.3
CVSSv3
CVE-2021-3476
A flaw was found in OpenEXR's B44 uncompression functionality in versions prior to 3.0.0-beta. An attacker who is able to submit a crafted file to OpenEXR could trigger shift overflows, potentially affecting application availability.
Openexr Openexr
Debian Debian Linux 9.0
Debian Debian Linux 10.0
7.5
CVSSv3
CVE-2020-36277
Leptonica prior to 1.80.0 allows a denial of service (application crash) via an incorrect left shift in pixConvert2To8 in pixconv.c.
Leptonica Leptonica
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Debian Debian Linux 9.0
5.3
CVSSv3
CVE-2021-3474
There's a flaw in OpenEXR in versions prior to 3.0.0-beta. A crafted input file that is processed by OpenEXR could cause a shift overflow in the FastHufDecoder, potentially leading to problems with application availability.
Openexr Openexr
Debian Debian Linux 9.0
Debian Debian Linux 10.0
7.8
CVSSv3
CVE-2021-34185
Miniaudio 0.10.35 has an integer-based buffer overflow caused by an out-of-bounds left shift in drwav_bytes_to_u32 in miniaudio.h
Miniaudio Project Miniaudio 0.10.35
7.8
CVSSv3
CVE-2017-9043
readelf.c in GNU Binutils 2017-04-12 has a "shift exponent too large for type unsigned long" issue, which might allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted ELF file.
Gnu Binutils 2.28
6.5
CVSSv3
CVE-2016-9266
listmp3.c in libming 0.4.7 allows remote malicious users to unspecified impact via a crafted mp3 file, which triggers an invalid left shift.
Libming Libming 0.4.7
5.5
CVSSv3
CVE-2016-9819
libavcodec/mpegvideo.c in libav 11.8 allows remote malicious users to cause a denial of service (crash) via vectors involving left shift of a negative value.
Libav Libav 11.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »