NotCVE - "integer underflow"

Page 146 of 6004 results (0.182 seconds)

CVSS: 9.8EPSS: 1%CPEs: 4EXPL: 0

CVE-2022-31813 – mod_proxy X-Forwarded-For dropped by hop-by-hop mechanism

https://notcve.org/view.php?id=CVE-2022-31813

08 Jun 2022 — Issues addressed include buffer over-read, buffer overflow, bypass, code execution, denial of service, double free, integer overflow, out of bounds read, and use-after-free vulnerabilities. • http://www.openwall.com/lists/oss-security/2022/06/08/8 • CWE-345: Insufficient Verification of Data Authenticity CWE-348: Use of Less Trusted Source •

CVSS: 7.5EPSS: 16%CPEs: 4EXPL: 0

CVE-2022-30522 – mod_sed denial of service

https://notcve.org/view.php?id=CVE-2022-30522

08 Jun 2022 — Issues addressed include buffer over-read, buffer overflow, bypass, code execution, denial of service, double free, integer overflow, out of bounds read, and use-after-free vulnerabilities. • http://www.openwall.com/lists/oss-security/2022/06/08/6 • CWE-770: Allocation of Resources Without Limits or Throttling CWE-789: Memory Allocation with Excessive Size Value •

CVSS: 9.1EPSS: 1%CPEs: 4EXPL: 0

CVE-2022-28615 – Read beyond bounds in ap_strcmp_match()

https://notcve.org/view.php?id=CVE-2022-28615

08 Jun 2022 — A very large input to the ap_strcmp_match function can lead to an integer overflow and result in an out-of-bounds read. ... Issues addressed include buffer over-read, buffer overflow, bypass, code execution, denial of service, double free, integer overflow, out of bounds read, and use-after-free vulnerabilities. • http://www.openwall.com/lists/oss-security/2022/06/08/9 • CWE-125: Out-of-bounds Read CWE-190: Integer Overflow or Wraparound •

CVSS: 5.3EPSS: 0%CPEs: 4EXPL: 0

CVE-2022-28614 – read beyond bounds via ap_rwrite()

https://notcve.org/view.php?id=CVE-2022-28614

08 Jun 2022 — A very large input to the ap_rputs and ap_rwrite functions can lead to an integer overflow and result in an out-of-bounds read. ... Issues addressed include buffer over-read, buffer overflow, bypass, code execution, denial of service, double free, integer overflow, out of bounds read, and use-after-free vulnerabilities. • http://www.openwall.com/lists/oss-security/2022/06/08/4 • CWE-190: Integer Overflow or Wraparound CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0

CVE-2022-28330 – read beyond bounds in mod_isapi

https://notcve.org/view.php?id=CVE-2022-28330

CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 1

CVE-2022-26377 – mod_proxy_ajp: Possible request smuggling

https://notcve.org/view.php?id=CVE-2022-26377

08 Jun 2022 — Issues addressed include buffer over-read, buffer overflow, bypass, code execution, denial of service, double free, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://github.com/watchtowrlabs/ibm-qradar-ajp_smuggling_CVE-2022-26377_poc • CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') •

CVSS: 4.9EPSS: 0%CPEs: 13EXPL: 0

CVE-2022-21762

https://notcve.org/view.php?id=CVE-2022-21762

06 Jun 2022 — In apusys driver, there is a possible system crash due to an integer overflow. • https://corp.mediatek.com/product-security-bulletin/June-2022 • CWE-190: Integer Overflow or Wraparound •

CVSS: 4.9EPSS: 0%CPEs: 46EXPL: 0

CVE-2022-21761

https://notcve.org/view.php?id=CVE-2022-21761

CVSS: 4.9EPSS: 0%CPEs: 14EXPL: 0

CVE-2022-21760

https://notcve.org/view.php?id=CVE-2022-21760

CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 1

CVE-2022-1996 – Authorization Bypass Through User-Controlled Key in emicklei/go-restful

https://notcve.org/view.php?id=CVE-2022-1996

06 Jun 2022 — Issues addressed include bypass, code execution, and integer overflow vulnerabilities. • https://github.com/emicklei/go-restful/commit/fd3c327a379ce08c68ef18765bdc925f5d9bad10 • CWE-639: Authorization Bypass Through User-Controlled Key •

1...144 145 146 147 148