Search Results (Refine Search)
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2023-51797 |
Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavfilter/avf_showwaves.c:722:24 in showwaves_filter_frame Published: April 19, 2024; 1:15:52 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-51796 |
Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavfilter/f_reverse.c:269:26 in areverse_request_frame. Published: April 19, 2024; 1:15:52 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-51795 |
Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavfilter/avf_showspectrum.c:1789:52 component in showspectrumpic_request_frame Published: April 19, 2024; 1:15:52 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-51793 |
Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavutil/imgutils.c:353:9 in image_copy_plane. Published: April 19, 2024; 1:15:52 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-51792 |
Buffer Overflow vulnerability in libde265 v1.0.12 allows a local attacker to cause a denial of service via the allocation size exceeding the maximum supported size of 0x10000000000. Published: April 19, 2024; 1:15:52 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-51791 |
Buffer Overflow vulenrability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavcodec/jpegxl_parser.c in gen_alias_map. Published: April 19, 2024; 1:15:52 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-50010 |
Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via the set_encoder_id function in /fftools/ffmpeg_enc.c component. Published: April 19, 2024; 1:15:52 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-50009 |
Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via the ff_gaussian_blur_8 function in libavfilter/edge_template.c:116:5 component. Published: April 19, 2024; 1:15:52 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-50008 |
Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via the av_malloc function in libavutil/mem.c:105:9 component. Published: April 19, 2024; 1:15:52 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-50007 |
Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via theav_samples_set_silence function in thelibavutil/samplefmt.c:260:9 component. Published: April 19, 2024; 1:15:51 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-49963 |
DYMO LabelWriter Print Server through 2.366 contains a backdoor hard-coded password that could allow an attacker to take control. Published: April 19, 2024; 1:15:51 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-49502 |
Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via the ff_bwdif_filter_intra_c function in the libavfilter/bwdifdsp.c:125:5 component. Published: April 19, 2024; 1:15:51 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-49501 |
Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via the config_eq_output function in the libavfilter/asrc_afirsrc.c:495:30 component. Published: April 19, 2024; 1:15:51 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-37397 |
IBM Aspera Faspex 5.0.0 through 5.0.7 could allow a local user to obtain or modify sensitive information due to improper encryption of certain data. IBM X-Force ID: 259672. Published: April 19, 2024; 1:15:51 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-27279 |
IBM Aspera Faspex 5.0.0 through 5.0.7 could allow a user to cause a denial of service due to missing API rate limiting. IBM X-Force ID: 248533. Published: April 19, 2024; 1:15:51 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2022-40745 |
IBM Aspera Faspex 5.0.0 through 5.0.7 could allow a local user to obtain sensitive information due to weaker than expected security. IBM X-Force ID: 236452. Published: April 19, 2024; 1:15:51 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-32650 |
Rustls is a modern TLS library written in Rust. `rustls::ConnectionCommon::complete_io` could fall into an infinite loop based on network input. When using a blocking rustls server, if a client send a `close_notify` message immediately after `client_hello`, the server's `complete_io` will get in an infinite loop. This vulnerability is fixed in 0.23.5, 0.22.4, and 0.21.11. Published: April 19, 2024; 12:15:10 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-32409 |
An issue in SEMCMS v.4.8 allows a remote attacker to execute arbitrary code via a crafted script. Published: April 19, 2024; 12:15:10 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-32206 |
A stored cross-site scripting (XSS) vulnerability in the component \affiche\admin\index.php of WUZHICMS v4.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the $formdata parameter. Published: April 19, 2024; 12:15:10 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31846 |
An issue was discovered in Italtel Embrace 1.6.4. The web application does not restrict or incorrectly restricts access to a resource from an unauthorized actor. Published: April 19, 2024; 12:15:10 PM -0400 |
V3.x:(not available) V2.0:(not available) |