CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-20335
https://notcve.org/view.php?id=CVE-2020-20335
20 Jun 2023 — Buffer Overflow vulnerability in Antirez Kilo before commit 7709a04ae8520c5b04d261616098cebf742f5a23 allows a remote attacker to cause a denial of service via the editorUpdateRow function in kilo.c. • https://github.com/antirez/kilo/issues/60 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2019-16096
https://notcve.org/view.php?id=CVE-2019-16096
08 Sep 2019 — Kilo 0.0.1 has a heap-based buffer overflow because there is an integer overflow in a calculation involving the number of tabs in one row. Kilo versión 0.0.1 tiene un desbordamiento de búfer basado en memoria dinámica (heap) porque hay un desbordamiento de enteros en un cálculo que involucra el número de pestañas en una fila. • http://www.security-database.com/detail.php?alert=CVE-2019-16096 • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •
CVSS: 6.8EPSS: 0%CPEs: 6EXPL: 0CVE-2015-1851 – openstack-cinder: Host file disclosure through qcow2 backing file
https://notcve.org/view.php?id=CVE-2015-1851
19 Jun 2015 — OpenStack Cinder before 2014.1.5 (icehouse), 2014.2.x before 2014.2.4 (juno), and 2015.1.x before 2015.1.1 (kilo) allows remote authenticated users to read arbitrary files via a crafted qcow2 signature in an image to the upload-to-image command. OpenStack Cinder anterior a 2014.1.5 (icehouse), 2014.2.x anterior a 2014.2.4 (juno), y 2015.1.x anterior a 2015.1.1 (kilo) permite a usuarios remotos autenticados leer ficheros arbitrarios a través de una firma qcow2 manipulada en una imagen en el comando 'subir a ... • http://lists.openstack.org/pipermail/openstack-announce/2015-June/000367.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •