Max CVSS | 7.5 | Min CVSS | 2.6 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2020-6425 | 5.8 |
Insufficient policy enforcement in extensions in Google Chrome prior to 80.0.3987.149 allowed an attacker who convinced a user to install a malicious extension to bypass site isolation via a crafted Chrome Extension.
|
21-11-2024 - 05:35 | 23-03-2020 - 16:15 | |
CVE-2020-6449 | 6.8 |
Use after free in audio in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
21-11-2024 - 05:35 | 23-03-2020 - 16:15 | |
CVE-2020-6424 | 6.8 |
Use after free in media in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
21-11-2024 - 05:35 | 23-03-2020 - 16:15 | |
CVE-2020-6429 | 6.8 |
Use after free in audio in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
21-11-2024 - 05:35 | 23-03-2020 - 16:15 | |
CVE-2020-6426 | 4.3 |
Inappropriate implementation in V8 in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
21-11-2024 - 05:35 | 23-03-2020 - 16:15 | |
CVE-2020-6428 | 6.8 |
Use after free in audio in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
21-11-2024 - 05:35 | 23-03-2020 - 16:15 | |
CVE-2020-6427 | 6.8 |
Use after free in audio in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
21-11-2024 - 05:35 | 23-03-2020 - 16:15 | |
CVE-2020-6422 | 6.8 |
Use after free in WebGL in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
21-11-2024 - 05:35 | 23-03-2020 - 16:15 | |
CVE-2019-20503 | 4.3 |
usrsctp before 2019-12-20 has out-of-bounds reads in sctp_load_addresses_from_init.
|
27-06-2024 - 12:46 | 06-03-2020 - 20:15 | |
CVE-2019-11506 | 6.8 |
In GraphicsMagick from version 1.3.30 to 1.4 snapshot-20190403 Q8, there is a heap-based buffer overflow in the function WriteMATLABImage of coders/mat.c, which allows an attacker to cause a denial of service or possibly have unspecified other impact
|
01-03-2023 - 15:27 | 24-04-2019 - 21:29 | |
CVE-2019-11505 | 6.8 |
In GraphicsMagick from version 1.3.8 to 1.4 snapshot-20190403 Q8, there is a heap-based buffer overflow in the function WritePDBImage of coders/pdb.c, which allows an attacker to cause a denial of service or possibly have unspecified other impact via
|
01-03-2023 - 15:26 | 24-04-2019 - 21:29 | |
CVE-2019-11474 | 4.3 |
coders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a denial of service (floating-point exception and application crash) by crafting an XWD image file, a different vulnerability than CVE-2019-11008 and CVE-2019-11009.
|
01-03-2023 - 15:09 | 23-04-2019 - 14:29 | |
CVE-2019-11008 | 6.8 |
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer overflow in the function WriteXWDImage of coders/xwd.c, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact
|
01-03-2023 - 15:00 | 08-04-2019 - 19:29 | |
CVE-2019-11007 | 5.8 |
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the ReadMNGImage function of coders/png.c, which allows attackers to cause a denial of service or information disclosure via an image colormap.
|
01-03-2023 - 14:58 | 08-04-2019 - 19:29 | |
CVE-2019-19950 | 7.5 |
In GraphicsMagick 1.4 snapshot-20190403 Q8, there is a use-after-free in ThrowException and ThrowLoggedException of magick/error.c.
|
31-10-2022 - 14:50 | 24-12-2019 - 01:15 | |
CVE-2019-19951 | 7.5 |
In GraphicsMagick 1.4 snapshot-20190423 Q8, there is a heap-based buffer overflow in the function ImportRLEPixels of coders/miff.c.
|
31-10-2022 - 14:50 | 24-12-2019 - 01:15 | |
CVE-2019-19953 | 6.4 |
In GraphicsMagick 1.4 snapshot-20191208 Q8, there is a heap-based buffer over-read in the function EncodeImage of coders/pict.c.
|
31-10-2022 - 14:49 | 24-12-2019 - 01:15 | |
CVE-2020-11100 | 6.5 |
In hpack_dht_insert in hpack-tbl.c in the HPACK decoder in HAProxy 1.8 through 2.x before 2.1.4, a remote attacker can write arbitrary bytes around a certain location on the heap via a crafted HTTP/2 request, possibly causing remote code execution.
|
06-10-2022 - 20:51 | 02-04-2020 - 15:15 | |
CVE-2020-10531 | 6.8 |
An issue was discovered in International Components for Unicode (ICU) for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend() function in common/unistr.cpp.
|
12-08-2022 - 18:28 | 12-03-2020 - 19:15 | |
CVE-2020-10018 | 7.5 |
WebKitGTK through 2.26.4 and WPE WebKit through 2.26.4 (which are the versions right before 2.28.0) contains a memory corruption issue (use-after-free) that may lead to arbitrary code execution. This issue has been fixed in 2.28.0 with improved memor
|
22-04-2022 - 19:02 | 02-03-2020 - 23:15 | |
CVE-2020-0556 | 5.8 |
Improper access control in subsystem for BlueZ before version 5.54 may allow an unauthenticated user to potentially enable escalation of privilege and denial of service via adjacent access
|
22-04-2022 - 19:02 | 12-03-2020 - 21:15 | |
CVE-2018-20184 | 4.3 |
In GraphicsMagick 1.4 snapshot-20181209 Q8, there is a heap-based buffer overflow in the WriteTGAImage function of tga.c, which allows attackers to cause a denial of service via a crafted image file, because the number of rows or columns can exceed t
|
24-08-2020 - 17:37 | 17-12-2018 - 19:29 | |
CVE-2019-11005 | 7.5 |
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a stack-based buffer overflow in the function SVGStartElement of coders/svg.c, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impa
|
24-08-2020 - 17:37 | 08-04-2019 - 19:29 | |
CVE-2019-11006 | 6.4 |
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the function ReadMIFFImage of coders/miff.c, which allows attackers to cause a denial of service or information disclosure via an RLE packet.
|
24-08-2020 - 17:37 | 08-04-2019 - 19:29 | |
CVE-2019-11010 | 4.3 |
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a memory leak in the function ReadMPCImage of coders/mpc.c, which allows attackers to cause a denial of service via a crafted image file.
|
24-08-2020 - 17:37 | 08-04-2019 - 19:29 | |
CVE-2018-20185 | 2.6 |
In GraphicsMagick 1.4 snapshot-20181209 Q8 on 32-bit platforms, there is a heap-based buffer over-read in the ReadBMPImage function of bmp.c, which allows attackers to cause a denial of service via a crafted bmp image file. This only affects Graphics
|
14-07-2020 - 15:06 | 17-12-2018 - 19:29 | |
CVE-2020-10595 | 7.5 |
pam-krb5 before 4.9 has a buffer overflow that might cause remote code execution in situations involving supplemental prompting by a Kerberos library. It may overflow a buffer provided by the underlying Kerberos library by a single '\0' byte if an at
|
04-04-2020 - 00:15 | 31-03-2020 - 13:15 | |
CVE-2018-20189 | 4.3 |
In GraphicsMagick 1.3.31, the ReadDIBImage function of coders/dib.c has a vulnerability allowing a crash and denial of service via a dib file that is crafted to appear with direct pixel values and also colormapping (which is not available beyond 8-bi
|
03-12-2019 - 16:15 | 17-12-2018 - 20:29 | |
CVE-2019-11473 | 4.3 |
coders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a denial of service (out-of-bounds read and application crash) by crafting an XWD image file, a different vulnerability than CVE-2019-11008 and CVE-2019-11009.
|
23-05-2019 - 00:29 | 23-04-2019 - 14:29 | |
CVE-2019-11009 | 5.8 |
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the function ReadXWDImage of coders/xwd.c, which allows attackers to cause a denial of service or information disclosure via a crafted image file.
|
23-05-2019 - 00:29 | 08-04-2019 - 19:29 | |
CVE-2004-0111 | 5.0 |
gdk-pixbuf before 0.20 allows attackers to cause a denial of service (crash) via a malformed bitmap (BMP) file.
|
10-10-2017 - 01:30 | 15-04-2004 - 04:00 |