Export limit exceeded: 10854 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 21623 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (21623 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2020-23884 | 1 Nomacs | 1 Nomacs | 2024-11-21 | 5.5 Medium |
| A buffer overflow in Nomacs v3.15.0 allows attackers to cause a denial of service (DoS) via a crafted MNG file. | ||||
| CVE-2020-23705 | 1 Rockcarry | 1 Ffjpeg | 2024-11-21 | 6.5 Medium |
| A global buffer overflow vulnerability in jfif_encode at jfif.c:701 of ffjpeg through 2020-06-22 allows attackers to cause a Denial of Service (DOS) via a crafted jpeg file. | ||||
| CVE-2020-23679 | 1 Linux Network Project | 1 Linux Network Project | 2024-11-21 | 9.8 Critical |
| Buffer overflow vulnerability in Renleilei1992 Linux_Network_Project 1.0, allows attackers to execute arbitrary code, via the password field. | ||||
| CVE-2020-23109 | 1 Struktur | 1 Libheif | 2024-11-21 | 8.1 High |
| Buffer overflow vulnerability in function convert_colorspace in heif_colorconversion.cc in libheif v1.6.2, allows attackers to cause a denial of service and disclose sensitive information, via a crafted HEIF file. | ||||
| CVE-2020-22886 | 1 Artifex | 1 Mujs | 2024-11-21 | 7.5 High |
| Buffer overflow vulnerability in function jsG_markobject in jsgc.c in mujs before 1.0.8, allows remote attackers to cause a denial of service. | ||||
| CVE-2020-22885 | 1 Artifex | 1 Mujs | 2024-11-21 | 7.5 High |
| Buffer overflow vulnerability in mujs before 1.0.8 due to recursion in the GC scanning phase, allows remote attackers to cause a denial of service. | ||||
| CVE-2020-22884 | 1 Espruino | 1 Espruino | 2024-11-21 | 9.8 Critical |
| Buffer overflow vulnerability in function jsvGetStringChars in Espruino before RELEASE_2V09, allows remote attackers to execute arbitrary code. | ||||
| CVE-2020-22876 | 1 Quickjs Project | 1 Quickjs | 2024-11-21 | 7.5 High |
| Buffer Overflow vulnerability in quickjs.c in QuickJS, allows remote attackers to cause denial of service. This issue is resolved in the 2020-07-05 release. | ||||
| CVE-2020-22873 | 1 Jsish | 1 Jsish | 2024-11-21 | 9.8 Critical |
| Buffer overflow vulnerability in function NumberToPrecisionCmd in jsish before 3.0.7, allows remote attackers to execute arbitrary code. | ||||
| CVE-2020-22845 | 1 Mikrotik | 1 Routeros | 2024-11-21 | 7.5 High |
| A buffer overflow in Mikrotik RouterOS 6.47 allows unauthenticated attackers to cause a denial of service (DOS) via crafted FTP requests. | ||||
| CVE-2020-22390 | 1 Akaunting | 1 Akaunting | 2024-11-21 | 8.8 High |
| Akaunting <= 2.0.9 is vulnerable to CSV injection in the Item name field, export function. Attackers can inject arbitrary code into the name parameter and perform code execution when the crafted file is opened. | ||||
| CVE-2020-22284 | 1 Lwip Project | 1 Lwip | 2024-11-21 | 7.5 High |
| A buffer overflow vulnerability in the zepif_linkoutput() function of Free Software Foundation lwIP git head version and version 2.1.2 allows attackers to access sensitive information via a crafted 6LoWPAN packet. | ||||
| CVE-2020-22283 | 1 Lwip Project | 1 Lwip | 2024-11-21 | 7.5 High |
| A buffer overflow vulnerability in the icmp6_send_response_with_addrs_and_netif() function of Free Software Foundation lwIP version git head allows attackers to access sensitive information via a crafted ICMPv6 packet. | ||||
| CVE-2020-22278 | 1 Phpmyadmin | 1 Phpmyadmin | 2024-11-21 | 8.8 High |
| phpMyAdmin through 5.0.2 allows CSV injection via Export Section. NOTE: the vendor disputes this because "the CSV file is accurately generated based on the database contents. | ||||
| CVE-2020-22277 | 1 Codection | 1 Import And Export Users And Customers | 2024-11-21 | 8.0 High |
| Import and export users and customers WordPress Plugin through 1.15.5.11 allows CSV injection via a customer's profile. | ||||
| CVE-2020-22276 | 1 Weformspro | 1 Weforms | 2024-11-21 | 9.8 Critical |
| WeForms Wordpress Plugin 1.4.7 allows CSV injection via a form's entry. | ||||
| CVE-2020-22275 | 1 Easyregistrationforms | 1 Easy Registration Forms | 2024-11-21 | 8.8 High |
| Easy Registration Forms (ER Forms) Wordpress Plugin 2.0.6 allows an attacker to submit an entry with malicious CSV commands. After that, when the system administrator generates CSV output from the forms information, there is no check on this inputs and the codes are executable. | ||||
| CVE-2020-22274 | 1 Jomsocial | 1 Jomsocial | 2024-11-21 | 9.8 Critical |
| JomSocial (Joomla Social Network Extention) 4.7.6 allows CSV injection via a customer's profile. | ||||
| CVE-2020-22219 | 2 Flac Project, Redhat | 6 Flac, Enterprise Linux, Rhel Aus and 3 more | 2024-11-21 | 7.8 High |
| Buffer Overflow vulnerability in function bitwriter_grow_ in flac before 1.4.0 allows remote attackers to run arbitrary code via crafted input to the encoder. | ||||
| CVE-2020-22218 | 2 Libssh2, Redhat | 2 Libssh2, Enterprise Linux | 2024-11-21 | 7.5 High |
| An issue was discovered in function _libssh2_packet_add in libssh2 1.10.0 allows attackers to access out of bounds memory. | ||||