| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-39595 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in swftools through 20200710. A stack-buffer-overflow exists in the function rfx_alloc() located in mem.c. It allows an attacker to cause code Execution. | ||
| CVE-2021-39582 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function swf_GetPlaceObject() located in swfobject.c. It allows an attacker to cause code Execution. | ||
| CVE-2021-39579 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function string_hash() located in q.c. It allows an attacker to cause code Execution. | ||
| CVE-2021-39577 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function main() located in swfdump.c. It allows an attacker to cause code Execution. | ||
| CVE-2021-39574 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function pool_read() located in pool.c. It allows an attacker to cause code Execution. | ||
| CVE-2021-39569 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function OpAdvance() located in swfaction.c. It allows an attacker to cause code Execution. | ||
| CVE-2021-39564 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function swf_DumpActions() located in swfaction.c. It allows an attacker to cause code Execution. | ||
| CVE-2021-39561 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in swftools through 20200710. A stack-buffer-overflow exists in the function Gfx::opSetFillColorN() located in Gfx.cc. It allows an attacker to cause code Execution. | ||
| CVE-2021-39558 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in swftools through 20200710. A stack-buffer-overflow exists in the function VectorGraphicOutputDev::drawGeneralImage() located in VectorGraphicOutputDev.cc. It allows an attacker to cause code Execution. | ||
| CVE-2021-39552 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in sela through 20200412. file::WavFile::readFromFile() in wav_file.c has a heap-based buffer overflow. | ||
| CVE-2021-39551 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in sela through 20200412. file::SelaFile::readFromFile() in sela_file.c has a heap-based buffer overflow. | ||
| CVE-2021-39550 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in sela through 20200412. file::SelaFile::readFromFile() in sela_file.cpp has a heap-based buffer overflow. | ||
| CVE-2021-39546 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in sela through 20200412. rice::RiceDecoder::process() in rice_decoder.cpp has a heap-based buffer overflow. | ||
| CVE-2021-39544 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in sela through 20200412. file::WavFile::writeToFile() in wav_file.c has a heap-based buffer overflow. | ||
| CVE-2021-39540 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in pdftools through 20200714. A stack-buffer-overflow exists in the function Analyze::AnalyzePages() located in analyze.cpp. It allows an attacker to cause code Execution. | ||
| CVE-2021-39537 | Hig | 0.57 | 8.8 | 0.03 | Sep 20, 2021 | An issue was discovered in ncurses through v6.2-1. _nc_captoinfo in captoinfo.c has a heap-based buffer overflow. | ||
| CVE-2021-39536 | Hig | 0.57 | 8.8 | 0.01 | Sep 20, 2021 | An issue was discovered in libxsmm through v1.16.1-93. The JIT code has a heap-based buffer overflow. | ||
| CVE-2021-39534 | Hig | 0.57 | 8.8 | 0.01 | Sep 20, 2021 | An issue was discovered in libslax through v0.22.1. slaxIsCommentStart() in slaxlexer.c has a heap-based buffer overflow. | ||
| CVE-2021-39533 | Hig | 0.57 | 8.8 | 0.01 | Sep 20, 2021 | An issue was discovered in libslax through v0.22.1. slaxLexer() in slaxlexer.c has a heap-based buffer overflow. | ||
| CVE-2021-39531 | Hig | 0.57 | 8.8 | 0.01 | Sep 20, 2021 | An issue was discovered in libslax through v0.22.1. slaxLexer() in slaxlexer.c has a stack-based buffer overflow. | ||
| CVE-2021-39530 | Hig | 0.57 | 8.8 | 0.01 | Sep 20, 2021 | An issue was discovered in libredwg through v0.10.1.3751. bit_wcs2nlen() in bits.c has a heap-based buffer overflow. | ||
| CVE-2021-39528 | Hig | 0.57 | 8.8 | 0.01 | Sep 20, 2021 | An issue was discovered in libredwg through v0.10.1.3751. dwg_free_MATERIAL_private() in dwg.spec has a double free. | ||
| CVE-2021-39527 | Hig | 0.57 | 8.8 | 0.01 | Sep 20, 2021 | An issue was discovered in libredwg through v0.10.1.3751. appinfo_private() in decode.c has a heap-based buffer overflow. | ||
| CVE-2021-39525 | Hig | 0.57 | 8.8 | 0.01 | Sep 20, 2021 | An issue was discovered in libredwg through v0.10.1.3751. bit_read_fixed() in bits.c has a heap-based buffer overflow. | ||
| CVE-2021-39522 | Hig | 0.57 | 8.8 | 0.01 | Sep 20, 2021 | An issue was discovered in libredwg through v0.10.1.3751. bit_wcs2len() in bits.c has a heap-based buffer overflow. | ||
| CVE-2021-38094 | Hig | 0.57 | 8.8 | 0.01 | Sep 20, 2021 | Integer Overflow vulnerability in function filter_sobel in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts. | ||
| CVE-2021-38093 | Hig | 0.57 | 8.8 | 0.01 | Sep 20, 2021 | Integer Overflow vulnerability in function filter_robert in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts. | ||
| CVE-2021-38092 | Hig | 0.57 | 8.8 | 0.01 | Sep 20, 2021 | Integer Overflow vulnerability in function filter_prewitt in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts. | ||
| CVE-2021-38091 | Hig | 0.57 | 8.8 | 0.01 | Sep 20, 2021 | Integer Overflow vulnerability in function filter16_sobel in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts. | ||
| CVE-2021-38090 | Hig | 0.57 | 8.8 | 0.01 | Sep 20, 2021 | Integer Overflow vulnerability in function filter16_roberts in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts. | ||
| CVE-2021-32299 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in pbrt through 20200627. A stack-buffer-overflow exists in the function pbrt::ParamSet::ParamSet() located in paramset.h. It allows an attacker to cause code Execution. | ||
| CVE-2021-32298 | Hig | 0.57 | 8.8 | 0.02 | Sep 20, 2021 | An issue was discovered in libiff through 20190123. A global-buffer-overflow exists in the function IFF_errorId located in error.c. It allows an attacker to cause code Execution. | ||
| CVE-2021-32297 | — | Hig | 0.50 | 8.8 | 0.02 | Sep 20, 2021 | An issue was discovered in LIEF through 0.11.4. A heap-buffer-overflow exists in the function main located in pe_reader.c. It allows an attacker to cause code Execution. | |
| CVE-2021-32294 | Hig | 0.57 | 8.8 | 0.01 | Sep 20, 2021 | An issue was discovered in libgig through 20200507. A heap-buffer-overflow exists in the function RIFF::List::GetSubList located in RIFF.cpp. It allows an attacker to cause code Execution. | ||
| CVE-2021-32288 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in heif through v3.6.2. A global-buffer-overflow exists in the function HevcDecoderConfigurationRecord::getPicHeight() located in hevcdecoderconfigrecord.cpp. It allows an attacker to cause code Execution. | ||
| CVE-2021-32287 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in heif through v3.6.2. A global-buffer-overflow exists in the function HevcDecoderConfigurationRecord::getPicWidth() located in hevcdecoderconfigrecord.cpp. It allows an attacker to cause code Execution. | ||
| CVE-2021-32286 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in hcxtools through 6.1.6. A global-buffer-overflow exists in the function pcapngoptionwalk located in hcxpcapngtool.c. It allows an attacker to cause code Execution. | ||
| CVE-2021-32284 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in gravity through 0.8.1. A NULL pointer dereference exists in the function ircode_register_pop_context_protect() located in gravity_ircode.c. It allows an attacker to cause Denial of Service. | ||
| CVE-2021-32281 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in gravity through 0.8.1. A heap-buffer-overflow exists in the function gnode_function_add_upvalue located in gravity_ast.c. It allows an attacker to cause code Execution. | ||
| CVE-2021-32278 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflow exists in the function lt_prediction located in lt_predict.c. It allows an attacker to cause code Execution. | ||
| CVE-2021-32277 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflow exists in the function sbr_qmf_analysis_32 located in sbr_qmf.c. It allows an attacker to cause code Execution. | ||
| CVE-2021-32274 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflow exists in the function sbr_qmf_synthesis_64 located in sbr_qmf.c. It allows an attacker to cause code Execution. | ||
| CVE-2021-32273 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in faad2 through 2.10.0. A stack-buffer-overflow exists in the function ftypin located in mp4read.c. It allows an attacker to cause Code Execution. | ||
| CVE-2021-32272 | Hig | 0.00 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in faad2 before 2.10.0. A heap-buffer-overflow exists in the function stszin located in mp4read.c. It allows an attacker to cause Code Execution. | ||
| CVE-2021-32271 | Hig | 0.51 | 7.8 | 0.01 | Sep 20, 2021 | An issue was discovered in gpac through 20200801. A stack-buffer-overflow exists in the function DumpRawUIConfig located in odf_dump.c. It allows an attacker to cause code Execution. | ||
| CVE-2021-32268 | Hig | 0.00 | 7.8 | 0.01 | Sep 20, 2021 | Buffer overflow vulnerability in function gf_fprintf in os_file.c in gpac before 1.0.1 allows attackers to execute arbitrary code. The fixed version is 1.0.1. | ||
| CVE-2021-32265 | Hig | 0.57 | 8.8 | 0.02 | Sep 20, 2021 | An issue was discovered in Bento4 through v1.6.0-637. A global-buffer-overflow exists in the function AP4_MemoryByteStream::WritePartial() located in Ap4ByteStream.cpp. It allows an attacker to cause code execution or information disclosure. | ||
| CVE-2020-21468 | Hig | 0.49 | 7.5 | 0.01 | Sep 20, 2021 | A segmentation fault in the redis-server component of Redis 5.0.7 leads to a denial of service (DOS). NOTE: the vendor cannot reproduce this issue in a released version, such as 5.0.7. | ||
| CVE-2020-20898 | Hig | 0.57 | 8.8 | 0.01 | Sep 20, 2021 | Integer Overflow vulnerability in function filter16_prewitt in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts. | ||
| CVE-2020-20896 | Hig | 0.57 | 8.8 | 0.01 | Sep 20, 2021 | An issue was discovered in function latm_write_packet in libavformat/latmenc.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts due to a Null pointer dereference. |
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in swftools through 20200710. A stack-buffer-overflow exists in the function rfx_alloc() located in mem.c. It allows an attacker to cause code Execution.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function swf_GetPlaceObject() located in swfobject.c. It allows an attacker to cause code Execution.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function string_hash() located in q.c. It allows an attacker to cause code Execution.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function main() located in swfdump.c. It allows an attacker to cause code Execution.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function pool_read() located in pool.c. It allows an attacker to cause code Execution.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function OpAdvance() located in swfaction.c. It allows an attacker to cause code Execution.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function swf_DumpActions() located in swfaction.c. It allows an attacker to cause code Execution.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in swftools through 20200710. A stack-buffer-overflow exists in the function Gfx::opSetFillColorN() located in Gfx.cc. It allows an attacker to cause code Execution.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in swftools through 20200710. A stack-buffer-overflow exists in the function VectorGraphicOutputDev::drawGeneralImage() located in VectorGraphicOutputDev.cc. It allows an attacker to cause code Execution.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in sela through 20200412. file::WavFile::readFromFile() in wav_file.c has a heap-based buffer overflow.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in sela through 20200412. file::SelaFile::readFromFile() in sela_file.c has a heap-based buffer overflow.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in sela through 20200412. file::SelaFile::readFromFile() in sela_file.cpp has a heap-based buffer overflow.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in sela through 20200412. rice::RiceDecoder::process() in rice_decoder.cpp has a heap-based buffer overflow.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in sela through 20200412. file::WavFile::writeToFile() in wav_file.c has a heap-based buffer overflow.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in pdftools through 20200714. A stack-buffer-overflow exists in the function Analyze::AnalyzePages() located in analyze.cpp. It allows an attacker to cause code Execution.
- risk 0.57cvss 8.8epss 0.03
An issue was discovered in ncurses through v6.2-1. _nc_captoinfo in captoinfo.c has a heap-based buffer overflow.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libxsmm through v1.16.1-93. The JIT code has a heap-based buffer overflow.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libslax through v0.22.1. slaxIsCommentStart() in slaxlexer.c has a heap-based buffer overflow.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libslax through v0.22.1. slaxLexer() in slaxlexer.c has a heap-based buffer overflow.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libslax through v0.22.1. slaxLexer() in slaxlexer.c has a stack-based buffer overflow.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libredwg through v0.10.1.3751. bit_wcs2nlen() in bits.c has a heap-based buffer overflow.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libredwg through v0.10.1.3751. dwg_free_MATERIAL_private() in dwg.spec has a double free.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libredwg through v0.10.1.3751. appinfo_private() in decode.c has a heap-based buffer overflow.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libredwg through v0.10.1.3751. bit_read_fixed() in bits.c has a heap-based buffer overflow.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libredwg through v0.10.1.3751. bit_wcs2len() in bits.c has a heap-based buffer overflow.
- risk 0.57cvss 8.8epss 0.01
Integer Overflow vulnerability in function filter_sobel in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.
- risk 0.57cvss 8.8epss 0.01
Integer Overflow vulnerability in function filter_robert in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.
- risk 0.57cvss 8.8epss 0.01
Integer Overflow vulnerability in function filter_prewitt in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.
- risk 0.57cvss 8.8epss 0.01
Integer Overflow vulnerability in function filter16_sobel in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.
- risk 0.57cvss 8.8epss 0.01
Integer Overflow vulnerability in function filter16_roberts in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in pbrt through 20200627. A stack-buffer-overflow exists in the function pbrt::ParamSet::ParamSet() located in paramset.h. It allows an attacker to cause code Execution.
- risk 0.57cvss 8.8epss 0.02
An issue was discovered in libiff through 20190123. A global-buffer-overflow exists in the function IFF_errorId located in error.c. It allows an attacker to cause code Execution.
- risk 0.50cvss 8.8epss 0.02
An issue was discovered in LIEF through 0.11.4. A heap-buffer-overflow exists in the function main located in pe_reader.c. It allows an attacker to cause code Execution.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libgig through 20200507. A heap-buffer-overflow exists in the function RIFF::List::GetSubList located in RIFF.cpp. It allows an attacker to cause code Execution.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in heif through v3.6.2. A global-buffer-overflow exists in the function HevcDecoderConfigurationRecord::getPicHeight() located in hevcdecoderconfigrecord.cpp. It allows an attacker to cause code Execution.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in heif through v3.6.2. A global-buffer-overflow exists in the function HevcDecoderConfigurationRecord::getPicWidth() located in hevcdecoderconfigrecord.cpp. It allows an attacker to cause code Execution.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in hcxtools through 6.1.6. A global-buffer-overflow exists in the function pcapngoptionwalk located in hcxpcapngtool.c. It allows an attacker to cause code Execution.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in gravity through 0.8.1. A NULL pointer dereference exists in the function ircode_register_pop_context_protect() located in gravity_ircode.c. It allows an attacker to cause Denial of Service.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in gravity through 0.8.1. A heap-buffer-overflow exists in the function gnode_function_add_upvalue located in gravity_ast.c. It allows an attacker to cause code Execution.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflow exists in the function lt_prediction located in lt_predict.c. It allows an attacker to cause code Execution.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflow exists in the function sbr_qmf_analysis_32 located in sbr_qmf.c. It allows an attacker to cause code Execution.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflow exists in the function sbr_qmf_synthesis_64 located in sbr_qmf.c. It allows an attacker to cause code Execution.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in faad2 through 2.10.0. A stack-buffer-overflow exists in the function ftypin located in mp4read.c. It allows an attacker to cause Code Execution.
- risk 0.00cvss 7.8epss 0.01
An issue was discovered in faad2 before 2.10.0. A heap-buffer-overflow exists in the function stszin located in mp4read.c. It allows an attacker to cause Code Execution.
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in gpac through 20200801. A stack-buffer-overflow exists in the function DumpRawUIConfig located in odf_dump.c. It allows an attacker to cause code Execution.
- risk 0.00cvss 7.8epss 0.01
Buffer overflow vulnerability in function gf_fprintf in os_file.c in gpac before 1.0.1 allows attackers to execute arbitrary code. The fixed version is 1.0.1.
- risk 0.57cvss 8.8epss 0.02
An issue was discovered in Bento4 through v1.6.0-637. A global-buffer-overflow exists in the function AP4_MemoryByteStream::WritePartial() located in Ap4ByteStream.cpp. It allows an attacker to cause code execution or information disclosure.
- risk 0.49cvss 7.5epss 0.01
A segmentation fault in the redis-server component of Redis 5.0.7 leads to a denial of service (DOS). NOTE: the vendor cannot reproduce this issue in a released version, such as 5.0.7.
- risk 0.57cvss 8.8epss 0.01
Integer Overflow vulnerability in function filter16_prewitt in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in function latm_write_packet in libavformat/latmenc.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts due to a Null pointer dereference.