|
2018-02-07
|
|
Android - 'getpidcon' Permission Bypass in KeyStore Service
|
38 |
DOS
|
Google Security Research
|
|
2018-02-07
|
|
Asterisk 13.17.2 - 'chan_skinny' Remote Memory Corruption
|
31 |
DOS
|
Juan Sacco
|
|
2018-02-07
|
|
Cisco ASA - Crash (PoC)
|
27 |
DOS
|
Sean Dillon
|
|
2018-02-05
|
|
Claymore Dual GPU Miner 10.5 - Format String
|
30 |
DOS
|
res1n
|
|
2018-02-05
|
|
WordPress Core - 'load-scripts.php' Denial of Service
|
29 |
DOS
|
Barak Tawily
|
|
2018-02-01
|
|
WebKit - 'WebCore::FrameView::clientToLayoutViewportPoint' Use-After-Free
|
35 |
DOS
|
Google Security Research
|
|
2018-02-01
|
|
WebKit - 'detachWrapper' Use-After-Free
|
32 |
DOS
|
Google Security Research
|
|
2018-01-30
|
|
LabF nfsAxe 3.7 TFTP Client - Local Buffer Overflow
|
34 |
DOS
|
Miguel Mendez Z
|
|
2018-01-29
|
|
macOS - 'sysctl_vfs_generic_conf' Stack Leak Through Struct Padding
|
26 |
DOS
|
Google Security Research
|
|
2018-01-28
|
|
Artifex MuJS 1.0.2 - Integer Overflow
|
34 |
DOS
|
Andrea Sindoni
|
|
2018-01-28
|
|
Artifex MuJS 1.0.2 - Denial of Service
|
27 |
DOS
|
Andrea Sindoni
|
|
2015-01-18
|
|
Lorex LH300 Series - ActiveX Buffer Overflow (PoC)
|
34 |
DOS
|
Pedro Ribeiro
|
|
2018-01-23
|
|
RAVPower 2.000.056 - Memory Disclosure
|
38 |
DOS
|
Daniele Linguaglossa
|
|
2018-01-23
|
|
MixPad 5.00 - Buffer Overflow
|
31 |
DOS
|
bzyo
|
|
2018-01-21
|
|
PHPFreeChat 1.7 - Denial of Service
|
34 |
DOS
|
A. Pakbaz
|
|
2015-05-28
|
|
Peercast < 0.1211 - Format String
|
32 |
DOS
|
GulfTech Security
|
|
2018-01-19
|
|
macOS 10.13 (17A365) - Kernel Memory Disclosure due to Lack of Bounds Checking in 'AppleIntelCapriCo
|
33 |
DOS
|
Google Security Research
|
|
2018-01-18
|
|
Smiths Medical Medfusion 4000 - 'DHCP' Denial of Service
|
30 |
DOS
|
Scott Gayou
|
|
2018-01-17
|
|
Microsoft Edge Chakra JIT - Stack-to-Heap Copy
|
34 |
DOS
|
Google Security Research
|
|
2018-01-17
|
|
Microsoft Edge Chakra - 'AsmJSByteCodeGenerator::EmitCall' Out-of-Bounds Read
|
23 |
DOS
|
Google Security Research
|
|
2018-01-17
|
|
Microsoft Edge Chakra JIT - Out-of-Bounds Write
|
27 |
DOS
|
Google Security Research
|
|
2018-01-17
|
|
Microsoft Edge Chakra - Deferred Parsing Makes Wrong Scopes (2)
|
24 |
DOS
|
Google Security Research
|
|
2018-01-17
|
|
Microsoft Edge Chakra - Incorrect Scope Handling
|
23 |
DOS
|
Google Security Research
|
|
2018-01-17
|
|
Microsoft Edge Chakra - 'JavascriptGeneratorFunction::GetPropertyBuiltIns' Type Confusion
|
28 |
DOS
|
Google Security Research
|
|
2018-01-17
|
|
Microsoft Edge Chakra JIT - Incorrect Bounds Calculation
|
27 |
DOS
|
Google Security Research
|
|
2018-01-15
|
|
OBS Studio 20.1.3 - Local Buffer Overflow
|
26 |
DOS
|
ScrR1pTK1dd13
|
|
2018-01-12
|
|
PyroBatchFTP < 3.19 - Buffer Overflow
|
34 |
DOS
|
Manuel García Cárdenas
|
|
2018-01-12
|
|
Kentico CMS 11.0 - Buffer Overflow
|
25 |
DOS
|
Vulnerability-Lab
|
|
2018-01-11
|
|
Microsoft Edge Chakra - 'AppendLeftOverItemsFromEndSegment' Out-of-Bounds Read
|
28 |
DOS
|
Google Security Research
|
|
2018-01-11
|
|
macOS - 'process_policy' Stack Leak Through Uninitialized Field
|
32 |
DOS
|
Google Security Research
|
|
2018-01-11
|
|
Microsoft Windows SMB Server (v1/v2) - Mount Point Arbitrary Device Open Privilege Escalation
|
34 |
DOS
|
Google Security Research
|
|
2018-01-11
|
|
Microsoft Windows - NtImpersonateAnonymousToken LPAC to Non-LPAC Privilege Escalation
|
29 |
DOS
|
Google Security Research
|
|
2018-01-11
|
|
Microsoft Windows - NtImpersonateAnonymousToken AC to Non-AC Privilege Escalation
|
29 |
DOS
|
Google Security Research
|
|
2018-01-11
|
|
Microsoft Windows - NTFS Owner/Mandatory Label Privilege Bypass
|
29 |
DOS
|
Google Security Research
|
|
2018-01-11
|
|
Android - Hardware Service Manager Arbitrary Service Replacement due to getpidcon
|
44 |
DOS
|
Google Security Research
|
|
2017-05-11
|
|
MiniUPnP MiniUPnPc < 2.0 - Remote Denial of Service
|
31 |
DOS
|
tintinweb
|
|
2018-01-10
|
|
Microsoft Edge Chakra JIT - 'Lowerer::LowerSetConcatStrMultiItem' Missing Integer Overflow Check
|
28 |
DOS
|
Google Security Research
|
|
2018-01-10
|
|
Multiple CPUs - Information Leak Using Speculative Execution
|
23 |
DOS
|
Google Security Research
|
|
2018-01-09
|
|
Microsoft Windows - 'nt!NtQuerySystemInformation (information class 138_ QueryMemoryTopologyInformat
|
33 |
DOS
|
Google Security Research
|
|
2018-01-09
|
|
Microsoft Windows - 'nt!NtQueryInformationProcess (information class 76_ QueryProcessEnergyValues)'
|
27 |
DOS
|
Google Security Research
|
|
2018-01-09
|
|
Microsoft Edge Chakra JIT - Escape Analysis Bug
|
33 |
DOS
|
Google Security Research
|
|
2018-01-09
|
|
Microsoft Edge Chakra - 'asm.js' Out-of-Bounds Read
|
28 |
DOS
|
Google Security Research
|
|
2018-01-09
|
|
Microsoft Edge Chakra JIT - BackwardPass::RemoveEmptyLoopAfterMemOp Does not Insert Branches
|
29 |
DOS
|
Google Security Research
|
|
2018-01-09
|
|
Microsoft Edge Chakra JIT - Op_MaxInAnArray and Op_MinInAnArray can Explicitly call User-Defined Jav
|
32 |
DOS
|
Google Security Research
|
|
2018-01-08
|
|
Android - Inter-Process munmap due to Race Condition in ashmem
|
35 |
DOS
|
Google Security Research
|
|
2018-01-08
|
|
BarcodeWiz ActiveX Control < 6.7 - Buffer Overflow (PoC)
|
34 |
DOS
|
hyp3rlinx
|
|
2018-01-08
|
|
DiskBoss Enterprise 8.5.12 - Denial of Service
|
28 |
DOS
|
Ahmad Mahfouz
|
|
2018-01-08
|
|
Sync Breeze Enterprise 10.1.16 - Denial of Service
|
28 |
DOS
|
Ahmad Mahfouz
|
|
2018-01-08
|
|
Disk Pulse Enterprise 10.1.18 - Denial of Service
|
31 |
DOS
|
Ahmad Mahfouz
|
|
2018-01-08
|
|
VX Search Enterprise 10.1.12 - Denial of Service
|
25 |
DOS
|
Ahmad Mahfouz
|
|
2018-01-05
|
|
Microsoft Windows win32k - Using SetClassLong to Switch Between CS_CLASSDC and CS_OWNDC Corrupts DC
|
27 |
DOS
|
Google Security Research
|
|
2018-01-05
|
|
GetGo Download Manager 5.3.0.2712 - 'Proxy' Buffer Overflow
|
33 |
DOS
|
devcoinfet
|
|
2018-01-01
|
|
Apple macOS - IOHIDSystem Kernel Read/Write
|
29 |
DOS
|
Siguza
|
|
2017-12-31
|
|
D3DGear 5.00 Build 2175 - Buffer Overflow (PoC)
|
31 |
DOS
|
bzyo
|
|
2017-12-27
|
|
ALLMediaServer 0.95 - Buffer Overflow (PoC)
|
31 |
DOS
|
Aloyce J. Makalanga
|
|
2017-12-27
|
|
SysGauge Server 3.6.18 - Denial of Service
|
35 |
DOS
|
Ahmad Mahfouz
|
|
2017-12-27
|
|
Telesquare SKT LTE Router SDT-CS3B1 - Denial of Service
|
31 |
DOS
|
LiquidWorm
|
|
2017-12-26
|
|
GetGo Download Manager 5.3.0.2712 - Buffer Overflow
|
35 |
DOS
|
Aloyce J. Makalanga
|
|
2017-12-20
|
|
Microsoft Windows Kernel - 'NtQueryVirtualMemory(MemoryMappedFilenameInformation)' Double-Write Ring
|
35 |
DOS
|
Google Security Research
|
|
2017-12-19
|
|
Intel Content Protection HECI Service - Type Confusion Privilege Escalation
|
33 |
DOS
|
Google Security Research
|
|
2017-12-19
|
|
Microsoft Windows - 'jscript!RegExpFncObj::LastParen' Out-of-Bounds Read
|
32 |
DOS
|
Google Security Research
|
|
2017-12-19
|
|
Microsoft Windows - 'jscript!JsArraySlice' Uninitialized Variable
|
41 |
DOS
|
Google Security Research
|
|
2017-12-19
|
|
Microsoft Windows - jscript.dll 'Array.sort' Heap Overflow
|
31 |
DOS
|
Google Security Research
|
|
2017-12-19
|
|
Microsoft Windows - 'jscript!RegExpComp::Compile' Heap Overflow Through IE or Local Network via WPAD
|
32 |
DOS
|
Google Security Research
|
|
2017-12-19
|
|
Microsoft Internet Explorer 11 - 'jscript!JSONStringifyObject' Use-After-Free
|
32 |
DOS
|
Google Security Research
|
|
2017-12-19
|
|
Microsoft Windows - 'jscript!NameTbl::GetValDef' Use-After-Free
|
36 |
DOS
|
Google Security Research
|
|
2017-12-18
|
|
Zoom Linux Client 2.0.106600.0904 - Stack-Based Buffer Overflow (PoC)
|
36 |
DOS
|
Conviso
|
|
2017-12-18
|
|
Zoom Linux Client 2.0.106600.0904 - Command Injection
|
36 |
DOS
|
Conviso
|
|
2017-12-18
|
|
CDex 1.96 - Buffer Overflow (PoC)
|
30 |
DOS
|
bzyo
|
|
2017-12-15
|
|
Sync Breeze 10.2.12 - Denial of Service
|
31 |
DOS
|
Manuel García Cárdenas
|
|
2017-12-12
|
|
Apple macOS/iOS - Kernel Double Free due to Incorrect API Usage in Flow Divert Socket Option Handlin
|
39 |
DOS
|
Google Security Research
|
|
2017-12-12
|
|
Apple macOS - Kernel Code Execution due to Lack of Bounds Checking in AppleIntelCapriController::Get
|
31 |
DOS
|
Google Security Research
|
|
2017-12-12
|
|
Apple macOS/iOS - Multiple Kernel Use-After-Frees due to Incorrect IOKit Object Lifetime Management
|
33 |
DOS
|
Google Security Research
|
|
2017-12-12
|
|
Apple XNU Kernel - Memory Corruption due to Integer Overflow in __offsetof Usage in posix_spawn on 3
|
31 |
DOS
|
Google Security Research
|
|
2017-12-11
|
|
LibTIFF pal2rgb 4.0.9 - Heap Buffer Overflow
|
30 |
DOS
|
Jungun Baek
|
|
2017-12-11
|
|
Apple macOS XNU Kernel - Memory Disclosure due to bug in Kernel API for Detecting Kernel Memory Disc
|
39 |
DOS
|
Google Security Research
|
|
2017-12-11
|
|
Apple macOS/iOS - Kernel Double Free due to IOSurfaceRootUserClient not Respecting MIG Ownership Rul
|
35 |
DOS
|
Google Security Research
|
|
2017-12-11
|
|
Apple macOS - 'getrusage' Stack Leak Through struct Padding
|
34 |
DOS
|
Google Security Research
|
|
2017-12-11
|
|
Apple macOS - 'necp_get_socket_attributes' so_pcb Type Confusion
|
39 |
DOS
|
Google Security Research
|
|
2017-12-11
|
|
MikroTik 6.40.5 ICMP - Denial of Service
|
26 |
DOS
|
FarazPajohan
|
|
2017-12-07
|
|
Linux Kernel 4.10.5 / < 4.14.3 (Ubuntu) - DCCP Socket Use-After-Free
|
38 |
DOS
|
Mohamed Ghannam
|
|
2017-12-07
|
|
Wireshark 2.4.0 < 2.4.2 / 2.2.0 < 2.2.10 - CIP Safety Dissector Crash
|
29 |
DOS
|
Wireshark
|
|
2017-12-07
|
|
Microsoft Windows Defender - Controlled Folder Bypass Through UNC Path
|
32 |
DOS
|
Google Security Research
|
|
2017-12-01
|
|
Socusoft Photo 2 Video Converter 8.0.0 - Local Buffer Overflow
|
30 |
DOS
|
ret2eax
|
|
2017-12-01
|
|
Abyss Web Server < 2.11.6 - Heap Memory Corruption
|
33 |
DOS
|
hyp3rlinx
|
|
2017-09-27
|
|
Sync Breeze Enterprise 10.0.28 - Denial of-Service (PoC)
|
30 |
DOS
|
Mr Bruce
|
|
2017-11-30
|
|
Linux Kernel - 'The Huge Dirty Cow' Overwriting The Huge Zero Page (1)
|
31 |
DOS
|
Bindecy
|
|
2017-11-27
|
|
ALLPlayer 7.5 - Denial of-Service (PoC)
|
32 |
DOS
|
Kiefer Bauer
|
|
2017-11-29
|
|
QEMU - NBD Server Long Export Name Stack Buffer Overflow
|
30 |
DOS
|
Eric Blake
|
|
2017-11-28
|
|
Android Gmail < 7.11.5.176568039 - Directory Traversal in Attachment Download
|
23 |
DOS
|
Google Security Research
|
|
2017-11-22
|
|
Winamp Pro 5.66.Build.3512 - Denial of Service
|
29 |
DOS
|
R.Yavari
|
|
2017-11-22
|
|
KMPlayer 4.2.2.4 - Denial of Service
|
29 |
DOS
|
R.Yavari
|
|
2017-11-27
|
|
Exim 4.89 - 'BDAT' Denial of Service
|
33 |
DOS
|
meh
|
|
2017-11-27
|
|
Microsoft Edge Chakra JIT - 'GlobOpt::OptTagChecks' Must Consider IsLoopPrePass Properly
|
28 |
DOS
|
Google Security Research
|
|
2017-11-27
|
|
Microsoft Edge Chakra JIT - Incorrect Function Declaration Scope
|
25 |
DOS
|
Google Security Research
|
|
2017-11-27
|
|
Microsoft Edge Chakra JIT - 'Inline::InlineCallApplyTarget_Shared' does not Return the return Instru
|
27 |
DOS
|
Google Security Research
|
|
2017-11-27
|
|
Microsoft Edge Chakra JIT - 'BailOutOnTaggedValue' Bailouts Type Confusion
|
30 |
DOS
|
Google Security Research
|
|
2017-11-24
|
|
Linux Kernel - 'mincore()' Uninitialized Kernel Heap Page Disclosure
|
28 |
DOS
|
Google Security Research
|
|
2017-11-22
|
|
WebKit - 'WebCore::FormSubmission::create' Use-After-Free
|
27 |
DOS
|
Google Security Research
|
|
2017-11-22
|
|
WebKit - 'WebCore::RenderObject::previousSibling' Use-After-Free
|
30 |
DOS
|
Google Security Research
|
|
2017-11-22
|
|
WebKit - 'WebCore::DocumentLoader::frameLoader' Use-After-Free
|
36 |
DOS
|
Google Security Research
|
|
2017-11-22
|
|
WebKit - 'WebCore::Style::TreeResolver::styleForElement' Use-After-Free
|
31 |
DOS
|
Google Security Research
|
|
2017-11-22
|
|
WebKit - 'WebCore::SVGPatternElement::collectPatternAttributes' Out-of-Bounds Read
|
28 |
DOS
|
Google Security Research
|
|
2017-11-22
|
|
WebKit - 'WebCore::SimpleLineLayout::RunResolver::runForPoint' Out-of-Bounds Read
|
28 |
DOS
|
Google Security Research
|
|
2017-11-22
|
|
WebKit - 'WebCore::RenderText::localCaretRect' Out-of-Bounds Read
|
28 |
DOS
|
Google Security Research
|
|
2017-11-22
|
|
WebKit - 'WebCore::AXObjectCache::performDeferredCacheUpdate' Use-After-Free
|
30 |
DOS
|
Google Security Research
|
|
2017-11-22
|
|
WebKit - 'WebCore::PositionIterator::decrement' Use-After-Free
|
34 |
DOS
|
Google Security Research
|
|
2017-11-22
|
|
WebKit - 'WebCore::InputType::element' Use-After-Free (2)
|
35 |
DOS
|
Google Security Research
|
|
2017-11-22
|
|
WebKit - 'WebCore::TreeScope::documentScope' Use-After-Free
|
27 |
DOS
|
Google Security Research
|
|
2017-11-21
|
|
Microsoft Windows 10 - 'nt!NtQueryDirectoryFile (luafv!LuafvCopyDirectoryEntry)' Pool Memory Disclos
|
34 |
DOS
|
Google Security Research
|
|
2017-11-21
|
|
Vonage VDV-23 - Denial of Service
|
26 |
DOS
|
Nu11By73
|
|
2017-11-20
|
|
iOS < 11.1 / tvOS < 11.1 / watchOS < 4.1 - Denial of Service
|
34 |
DOS
|
Russian Otter
|
|
2017-11-16
|
|
Microsoft Edge Chakra: JIT - 'OP_Memset' Type Confusion
|
33 |
DOS
|
Google Security Research
|
|
2017-11-16
|
|
Microsoft Edge Chakra: JIT - 'Lowerer::LowerBoundCheck' Incorrect Integer Overflow Check
|
26 |
DOS
|
Google Security Research
|
|
2017-11-16
|
|
Microsoft Edge Chakra JIT - Type Confusion with switch Statements
|
26 |
DOS
|
Google Security Research
|
|
2017-11-16
|
|
Microsoft Edge - 'Object.setPrototypeOf' Memory Corruption
|
28 |
DOS
|
Google Security Research
|
|
2017-11-14
|
|
D-Link DIR-605L < 2.08 - Denial of Service
|
33 |
DOS
|
Enrique Castillo
|
|
2017-11-14
|
|
PSFTPd Windows FTP Server 10.0.4 Build 729 - Log Injection / Use-After-Free
|
27 |
DOS
|
X41 D-Sec GmbH
|
|
2017-11-07
|
|
Xlight FTP Server 3.8.8.5 - Buffer Overflow (PoC)
|
26 |
DOS
|
bzyo
|
|
2017-11-09
|
|
PHP 7.1.8 - Heap Buffer Overflow
|
27 |
DOS
|
Wei Lei and Liu Yang
|
|
2017-11-09
|
|
Microsoft Internet Explorer 11 - 'jscript!JsErrorToString' Use-After-Free
|
25 |
DOS
|
Google Security Research
|
|
2017-11-05
|
|
SMPlayer 17.11.0 - '.m3u' Buffer Overflow (PoC)
|
29 |
DOS
|
bzyo
|
|
2017-11-05
|
|
Avaya IP Office (IPO) < 10.1 - ActiveX Buffer Overflow
|
26 |
DOS
|
hyp3rlinx
|
|
2017-11-02
|
|
Debut Embedded HTTPd 1.20 - Denial of Service
|
30 |
DOS
|
z00n
|
|
2017-11-03
|
|
Jnes 1.0.2 - Stack Buffer Overflow
|
28 |
DOS
|
crash_manucoot
|
