28 results (0.003 seconds)

CVSS: 5.3EPSS: 0%CPEs: 57EXPL: 1

png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute. La función png_image_free en el archivo png.c en libpng versiones 1.6.x anteriores a 1.6.37, presenta un uso de la memoria previamente liberada porque la función png_image_free_function es llamada bajo png_safe_execute. • http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00002.html http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00029.html http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00084.html http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00038.html http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00044.html http://packetstormsecurity.com/files/152561/Slackware-Security-Advisory-libpng-Updates.html http://www.securityfocus.com/bid/108098 https:/ • CWE-400: Uncontrolled Resource Consumption CWE-416: Use After Free •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

A remote denial of service vulnerability in HPE Systems Insight Manager in all versions prior to 7.6 was found. Se ha encontrado una vulnerabilidad de denegación de servicio remoto en HPE Systems Insight Manager en todas las versiones anteriores a la 7.6. • http://www.securitytracker.com/id/1037492 https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05385680 https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722 https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-c05356388 •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

A remote denial of service vulnerability in HPE Systems Insight Manager in all versions prior to 7.6 was found. Se ha encontrado una vulnerabilidad de denegación de servicio remoto en HPE Systems Insight Manager en todas las versiones anteriores a la 7.6. • http://www.securitytracker.com/id/1037492 https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05385680 https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722 https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-c05356388 •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

A cross site scripting vulnerability in HPE Systems Insight Manager in all versions prior to 7.6 was found. Se ha encontrado una vulnerabilidad de Cross-Site Scripting (XSS) en HPE Systems Insight Manager en todas las versiones anteriores a la 7.6. • http://www.securitytracker.com/id/1037492 https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05385680 https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722 https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-c05356388 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 0

HPE Matrix Operating Environment before 7.5.1 allows remote attackers to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-4358. HPE Matrix Operating Environment en versiones anteriores a 7.5.1 permite a atacantes remotos obtener información sensible o modificar datos a través de vectores no especificados, una vulnerabilidad diferente a CVE-2016-4358. • https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888 •