|
254271
|
5.5 |
MEDIUM
Local
|
wavpack debian
|
wavpack debian_linux
|
An issue was discovered in WavPack 5.1.0 and earlier for DSDiff input. Out-of-bounds writes can occur because ParseDsdiffHeaderConfig in dsdiff.c does not validate the sizes of unknown chunks before …
|
CWE-787
Out-of-bounds Write
|
CVE-2018-10539
|
2024-11-21 12:41 |
2018-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254272
|
5.5 |
MEDIUM
Local
|
wavpack debian
|
wavpack debian_linux
|
An issue was discovered in WavPack 5.1.0 and earlier for WAV input. Out-of-bounds writes can occur because ParseRiffHeaderConfig in riff.c does not validate the sizes of unknown chunks before attempt…
|
CWE-787
Out-of-bounds Write
|
CVE-2018-10538
|
2024-11-21 12:41 |
2018-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254273
|
7.8 |
HIGH
Local
|
wavpack debian
|
wavpack debian_linux
|
An issue was discovered in WavPack 5.1.0 and earlier. The W64 parser component contains a vulnerability that allows writing to memory because ParseWave64HeaderConfig in wave64.c does not reject multi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-10537
|
2024-11-21 12:41 |
2018-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254274
|
7.8 |
HIGH
Local
|
wavpack debian
|
wavpack debian_linux
|
An issue was discovered in WavPack 5.1.0 and earlier. The WAV parser component contains a vulnerability that allows writing to memory because ParseRiffHeaderConfig in riff.c does not reject multiple …
|
CWE-787
Out-of-bounds Write
|
CVE-2018-10536
|
2024-11-21 12:41 |
2018-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254275
|
5.5 |
MEDIUM
Local
|
gnu redhat
|
binutils enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server
|
The ignore_section_sym function in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, does not validate the output_section pointer in the case of a s…
|
CWE-476
NULL Pointer Dereference
|
CVE-2018-10535
|
2024-11-21 12:41 |
2018-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254276
|
8.8 |
HIGH
Network
|
canonical libraw
|
ubuntu_linux libraw
|
An issue was discovered in LibRaw 0.18.9. There is an out-of-bounds read affecting the X3F property table list implementation in libraw_x3f.cpp and libraw_cxx.cpp.
|
CWE-125
Out-of-bounds Read
|
CVE-2018-10529
|
2024-11-21 12:41 |
2018-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254277
|
8.8 |
HIGH
Network
|
canonical libraw
|
ubuntu_linux libraw
|
An issue was discovered in LibRaw 0.18.9. There is a stack-based buffer overflow in the utf2char function in libraw_cxx.cpp.
|
CWE-787
Out-of-bounds Write
|
CVE-2018-10528
|
2024-11-21 12:41 |
2018-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254278
|
5.4 |
MEDIUM
Network
|
easycms_project
|
easycms
|
EasyCMS 1.3 is prone to Stored XSS when posting an article; four fields are affected: title, keyword, abstract, and content, as demonstrated by the /admin/index/index.html#listarticle URI.
|
CWE-79
Cross-site Scripting
|
CVE-2018-10527
|
2024-11-21 12:41 |
2018-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254279
|
7.5 |
HIGH
Network
|
uetoken
|
useless_ethereum_token
|
The transferFrom function of a smart contract implementation for Useless Ethereum Token (UET), an Ethereum ERC20 token, allows attackers to steal assets (e.g., transfer all victims' balances into the…
|
CWE-20
Improper Input Validation
|
CVE-2018-10468
|
2024-11-21 12:41 |
2018-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254280
|
5.5 |
MEDIUM
Local
|
gnu redhat
|
binutils enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server
|
The _bfd_XX_bfd_copy_private_bfd_data_common function in peXXigen.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, processes a negative Data Directory …
|
CWE-787
Out-of-bounds Write
|
CVE-2018-10534
|
2024-11-21 12:41 |
2018-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|