|
247391
|
6.6 |
MEDIUM
Physics
|
opensc_project
|
opensc
|
A double free when handling responses from an HSM Card in sc_pkcs15emu_sc_hsm_init in libopensc/pkcs15-sc-hsm.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcard…
|
CWE-415
Double Free
|
CVE-2018-16425
|
2024-11-21 12:52 |
2018-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247392
|
6.6 |
MEDIUM
Physics
|
opensc_project
|
opensc
|
A double free when handling responses in read_file in tools/egk-tool.c (aka the eGK card tool) in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a deni…
|
CWE-415
Double Free
|
CVE-2018-16424
|
2024-11-21 12:52 |
2018-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247393
|
6.6 |
MEDIUM
Physics
|
opensc_project
|
opensc
|
A double free when handling responses from a smartcard in sc_file_set_sec_attr in libopensc/sc.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a de…
|
CWE-415
Double Free
|
CVE-2018-16423
|
2024-11-21 12:52 |
2018-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247394
|
6.6 |
MEDIUM
Physics
|
opensc_project
|
opensc
|
A single byte buffer overflow when handling responses from an esteid Card in sc_pkcs15emu_esteid_init in libopensc/pkcs15-esteid.c in OpenSC before 0.19.0-rc1 could be used by attackers able to suppl…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-16422
|
2024-11-21 12:52 |
2018-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247395
|
6.6 |
MEDIUM
Physics
|
opensc_project
|
opensc
|
Several buffer overflows when handling responses from a CAC Card in cac_get_serial_nr_from_CUID in libopensc/card-cac.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted s…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-16421
|
2024-11-21 12:52 |
2018-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247396
|
6.6 |
MEDIUM
Physics
|
opensc_project
|
opensc
|
Several buffer overflows when handling responses from an ePass 2003 Card in decrypt_response in libopensc/card-epass2003.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafte…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-16420
|
2024-11-21 12:52 |
2018-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247397
|
6.6 |
MEDIUM
Physics
|
opensc_project
|
opensc
|
Several buffer overflows when handling responses from a Cryptoflex card in read_public_key in tools/cryptoflex-tool.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted sma…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-16419
|
2024-11-21 12:52 |
2018-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247398
|
6.6 |
MEDIUM
Physics
|
opensc_project
|
opensc
|
A buffer overflow when handling string concatenation in util_acl_to_str in tools/util.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a denial of s…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-16418
|
2024-11-21 12:52 |
2018-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247399
|
8.8 |
HIGH
Network
|
thedaylightstudio
|
fuel_cms
|
Cross-site request forgery (CSRF) vulnerability in my_profile/edit?inline= in FUEL CMS 1.4 allows remote attackers to change the administrator's password.
|
CWE-352
Origin Validation Error
|
CVE-2018-16416
|
2024-11-21 12:52 |
2018-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247400
|
8.8 |
HIGH
Network
|
imagemagick
|
imagemagick
|
ImageMagick 7.0.8-11 Q16 has a heap-based buffer over-read in the MagickCore/quantum-private.h PushShortPixel function when called from the coders/psd.c ParseImageResourceBlocks function.
|
CWE-125
Out-of-bounds Read
|
CVE-2018-16413
|
2024-11-21 12:52 |
2018-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
