CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-28017 – Debian Security Advisory 4912-1
https://notcve.org/view.php?id=CVE-2020-28017
06 May 2021 — Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow in receive_add_recipient via an e-mail message with fifty million recipients. • https://www.exim.org/static/doc/security/CVE-2020-qualys/CVE-2020-28017-RCPTL.txt • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 0%CPEs: 8EXPL: 2CVE-2021-29921 – python-ipaddress: Improper input validation of octal strings
https://notcve.org/view.php?id=CVE-2021-29921
06 May 2021 — Issues addressed include buffer overflow, code execution, cross site scripting, denial of service, information leakage, integer overflow, and traversal vulnerabilities. • https://bugs.python.org/issue36384 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 28EXPL: 0CVE-2021-3501 – kernel: userspace applications can misuse the KVM API to cause a write of 16 bytes at an offset up to 32 GB from vcpu->run
https://notcve.org/view.php?id=CVE-2021-3501
05 May 2021 — Issues addressed include integer overflow and privilege escalation vulnerabilities. • https://bugzilla.redhat.com/show_bug.cgi?id=1950136 • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2021-29478 – Vulnerability in the COPY command for large intsets
https://notcve.org/view.php?id=CVE-2021-29478
04 May 2021 — An integer overflow bug in Redis 6.2 before 6.2.3 could be exploited to corrupt the heap and potentially result with remote code execution. ... An integer overflow bug could be exploited to corrupt the heap and potentially result with remote code execution. ... Issues addressed include code execution, cross site scripting, denial of service, integer overflow, and null pointer vulnerabilities. • https://github.com/redis/redis/security/advisories/GHSA-qh52-crrg-44g3 • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 1%CPEs: 4EXPL: 0CVE-2021-29477 – Vulnerability in the STRALGO LCS command
https://notcve.org/view.php?id=CVE-2021-29477
04 May 2021 — An integer overflow bug in Redis version 6.0 or newer could be exploited using the `STRALGO LCS` command to corrupt the heap and potentially result with remote code execution. ... An integer overflow bug could be exploited to corrupt the heap and potentially result with remote code execution. ... Issues addressed include code execution, cross site scripting, denial of service, integer overflow, and null pointer vulnerabilities. • https://github.com/redis/redis/security/advisories/GHSA-vqxj-26vj-996g • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 3%CPEs: 2EXPL: 6CVE-2021-23383 – Prototype Pollution
https://notcve.org/view.php?id=CVE-2021-23383
04 May 2021 — Issues addressed include code execution, cross site scripting, denial of service, integer overflow, and null pointer vulnerabilities. • https://github.com/dn9uy3n/Check-CVE-2021-23383 • CWE-94: Improper Control of Generation of Code ('Code Injection') CWE-1321: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 3CVE-2021-23343 – Regular Expression Denial of Service (ReDoS)
https://notcve.org/view.php?id=CVE-2021-23343
04 May 2021 — Issues addressed include code execution, cross site scripting, denial of service, integer overflow, and null pointer vulnerabilities. • https://github.com/jbgutierrez/path-parse/issues/8 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 9.8EPSS: 0%CPEs: 6EXPL: 0CVE-2021-30663 – Apple Multiple Products WebKit Integer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2021-30663
04 May 2021 — An integer overflow was addressed with improved input validation. ... Affected versions of this package could allow a remote attacker to execute arbitrary code on the system caused by an integer overflow in the WebKit component. ... Issues addressed include buffer overflow, code execution, cross site scripting, information leakage, integer overflow, traversal, and use-after-free vulnerabilities. Apple iOS, iPadOS, macOS, tvOS, and Safari WebKit contain an integer... • https://support.apple.com/en-us/HT212335 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 0%CPEs: 6EXPL: 0CVE-2021-30665 – Apple Multiple Products WebKit Memory Corruption Vulnerability
https://notcve.org/view.php?id=CVE-2021-30665
04 May 2021 — Issues addressed include buffer overflow, code execution, cross site scripting, information leakage, integer overflow, traversal, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT212335 • CWE-20: Improper Input Validation CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2021-31870 – Ubuntu Security Notice USN-5379-1
https://notcve.org/view.php?id=CVE-2021-31870
30 Apr 2021 — Multiplication in the calloc() function may result in an integer overflow and a subsequent heap buffer overflow. ... It was discovered that klibc did not properly perform some mathematical operations, leading to an integer overflow. • http://www.openwall.com/lists/oss-security/2021/04/30/1 • CWE-190: Integer Overflow or Wraparound •