Total
6166 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2018-1054 | 2 Fedoraproject, Redhat | 4 389 Directory Server, Enterprise Linux Desktop, Enterprise Linux Server and 1 more | 2018-07-17 | 5.0 MEDIUM | 7.5 HIGH |
| An out-of-bounds memory read flaw was found in the way 389-ds-base handled certain LDAP search filters, affecting all versions including 1.4.x. A remote, unauthenticated attacker could potentially use this flaw to make ns-slapd crash via a specially crafted LDAP request, thus resulting in denial of service. | |||||
| CVE-2018-4253 | 1 Apple | 1 Mac Os X | 2018-07-13 | 7.1 HIGH | 5.5 MEDIUM |
| An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "AMD" component. It allows local users to bypass intended memory-read restrictions or cause a denial of service (out-of-bounds read of kernel memory) via a crafted app. | |||||
| CVE-2018-11740 | 1 Sleuthkit | 1 The Sleuth Kit | 2018-07-13 | 5.8 MEDIUM | 8.1 HIGH |
| An issue was discovered in libtskbase.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function tsk_UTF16toUTF8 in tsk/base/tsk_unicode.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack. | |||||
| CVE-2018-11739 | 1 Sleuthkit | 1 The Sleuth Kit | 2018-07-13 | 5.8 MEDIUM | 8.1 HIGH |
| An issue was discovered in libtskimg.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function raw_read in tsk/img/raw.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack. | |||||
| CVE-2018-11738 | 1 Sleuthkit | 1 The Sleuth Kit | 2018-07-13 | 5.8 MEDIUM | 8.1 HIGH |
| An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function ntfs_make_data_run in tsk/fs/ntfs.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack. | |||||
| CVE-2018-11737 | 1 Sleuthkit | 1 The Sleuth Kit | 2018-07-13 | 5.8 MEDIUM | 8.1 HIGH |
| An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function ntfs_fix_idxrec in tsk/fs/ntfs_dent.cpp which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service. | |||||
| CVE-2018-11546 | 1 Md4c Project | 1 Md4c | 2018-06-29 | 7.5 HIGH | 9.8 CRITICAL |
| md4c 0.2.5 has a heap-based buffer over-read because md_is_named_entity_contents has an off-by-one error. | |||||
| CVE-2018-11547 | 1 Md4c Project | 1 Md4c | 2018-06-29 | 7.5 HIGH | 9.8 CRITICAL |
| md_is_link_reference_definition_helper in md4c 0.2.5 has a heap-based buffer over-read because md_is_link_label mishandles loop termination. | |||||
| CVE-2018-11576 | 1 Miniupnp Project | 1 Ngiflib | 2018-06-28 | 7.5 HIGH | 9.8 CRITICAL |
| ngiflib.c in MiniUPnP ngiflib 0.4 has a heap-based buffer over-read in GifIndexToTrueColor. | |||||
| CVE-2018-6234 | 2 Microsoft, Trendmicro | 5 Windows, Antivirus\+, Internet Security and 2 more | 2018-06-28 | 2.1 LOW | 5.5 MEDIUM |
| An Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within processing of IOCTL 0x222814 by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. | |||||
| CVE-2018-11375 | 1 Radare | 1 Radare2 | 2018-06-27 | 4.3 MEDIUM | 5.5 MEDIUM |
| The _inst__lds() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file. | |||||
| CVE-2018-11376 | 1 Radare | 1 Radare2 | 2018-06-27 | 4.3 MEDIUM | 5.5 MEDIUM |
| The r_read_le32() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted ELF file. | |||||
| CVE-2018-11377 | 1 Radare | 1 Radare2 | 2018-06-27 | 4.3 MEDIUM | 5.5 MEDIUM |
| The avr_op_analyze() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file. | |||||
| CVE-2018-11380 | 1 Radare | 1 Radare2 | 2018-06-27 | 4.3 MEDIUM | 5.5 MEDIUM |
| The parse_import_ptr() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted Mach-O file. | |||||
| CVE-2018-11379 | 1 Radare | 1 Radare2 | 2018-06-27 | 4.3 MEDIUM | 5.5 MEDIUM |
| The get_debug_info() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted PE file. | |||||
| CVE-2018-11381 | 1 Radare | 1 Radare2 | 2018-06-27 | 4.3 MEDIUM | 5.5 MEDIUM |
| The string_scan_range() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file. | |||||
| CVE-2018-11384 | 1 Radare | 1 Radare2 | 2018-06-27 | 4.3 MEDIUM | 5.5 MEDIUM |
| The sh_op() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted ELF file. | |||||
| CVE-2018-11382 | 1 Radare | 1 Radare2 | 2018-06-27 | 4.3 MEDIUM | 5.5 MEDIUM |
| The _inst__sts() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file. | |||||
| CVE-2018-4925 | 4 Adobe, Apple, Google and 1 more | 5 Digital Editions, Iphone Os, Mac Os X and 2 more | 2018-06-22 | 5.0 MEDIUM | 7.5 HIGH |
| Adobe Digital Editions versions 4.5.7 and below have an exploitable Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. | |||||
| CVE-2017-12941 | 1 Rarlab | 1 Unrar | 2018-06-16 | 7.5 HIGH | 9.8 CRITICAL |
| libunrar.a in UnRAR before 5.5.7 has an out-of-bounds read in the Unpack::Unpack20 function. | |||||