Vulnerabilities (CVE)

CWE filter

CWE-399

Filter

3579 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-5671 1 Nvidia 1 Gpu Driver 2019-04-18 4.9
NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which the software does not release a resource after its effective lifetime has ended, which may lead to denial of service.
CVE-2017-6625 1 Cisco 1 Firepower Threat Defense 2019-04-18 5.5
A "Cisco Firepower Threat Defense 6.0.0 through 6.2.2 and Cisco ASA with FirePOWER Module Denial of Service" vulnerability in the access control policy of Cisco Firepower System Software could allow an authenticated, remote attacker to cause an...
CVE-2018-14647 4 Python, Canonical, Debian and 1 more 4 Python, Ubuntu Linux, Debian Linux and 1 more 2019-04-18 5.0
Python's elementtree C accelerator failed to initialise Expat's hash salt during initialization. This could make it easy to conduct denial of service attacks against Expat by constructing an XML document that would cause pathological hash...
CVE-2018-14048 2 Libpng, Oracle 3 Libpng, Jdk, Jre 2019-04-18 4.3
An issue has been found in libpng 1.6.34. It is a SEGV in the function png_free_data in png.c, related to the recommended error handling for png_read_image.
CVE-2018-11492 1 Asus 1 Hg100 Firmware 2019-04-17 7.8
ASUS HG100 devices allow denial of service via an IPv4 packet flood.
CVE-2019-9220 1 Gitlab 1 Gitlab 2019-04-17 5.0
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Uncontrolled Resource Consumption.
CVE-2019-3833 3 Openwsman Project, Fedoraproject, Opensuse 3 Openwsman, Fedora, Leap 2019-04-17 5.0
Openwsman, versions up to and including 2.6.9, are vulnerable to infinite loop in process_connection() when parsing specially crafted HTTP requests. A remote, unauthenticated attacker can exploit this vulnerability by sending malicious HTTP...
CVE-2017-14533 2 Imagemagick, Canonical 2 Imagemagick, Ubuntu Linux 2019-04-17 4.3
ImageMagick 7.0.6-6 has a memory leak in ReadMATImage in coders/mat.c.
CVE-2012-0881 1 Apache 1 Xerces2 Java 2019-04-17 7.8
Apache Xerces2 Java Parser before 2.12.0 allows remote attackers to cause a denial of service (CPU consumption) via a crafted message to an XML service, which triggers hash table collisions.
CVE-2017-14343 2 Imagemagick, Canonical 2 Imagemagick, Ubuntu Linux 2019-04-17 4.3
ImageMagick 7.0.6-6 has a memory leak vulnerability in ReadXCFImage in coders/xcf.c via a crafted xcf image file.
CVE-2018-20534 2 Opensuse, Canonical 2 Libsolv, Ubuntu Linux 2019-04-16 4.3
** DISPUTED ** There is an illegal address access at ext/testcase.c in libsolv.a in libsolv through 0.7.2 that will cause a denial of service. NOTE: third parties dispute this issue stating that the issue affects the test suite and not the...
CVE-2017-14938 1 Gnu 1 Binutils 2019-04-16 4.3
_bfd_elf_slurp_version_tables in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (excessive memory allocation and application crash) via a...
CVE-2017-18236 2 Debian, Canonical 2 Debian Linux, Ubuntu Linux 2019-04-16 4.3
An issue was discovered in Exempi before 2.4.4. The ASF_Support::ReadHeaderObject function in XMPFiles/source/FormatSupport/ASF_Support.cpp allows remote attackers to cause a denial of service (infinite loop) via a crafted .asf file.
CVE-2017-18233 2 Debian, Canonical 2 Debian Linux, Ubuntu Linux 2019-04-16 4.3
An issue was discovered in Exempi before 2.4.4. Integer overflow in the Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp allows remote attackers to cause a denial of service (infinite loop) via crafted XMP data in a .avi file.
CVE-2017-15033 2 Imagemagick, Canonical 2 Imagemagick, Ubuntu Linux 2019-04-16 5.0
ImageMagick version 7.0.7-2 contains a memory leak in ReadYUVImage in coders/yuv.c.
CVE-2018-1324 2019-04-16 4.3
A specially crafted ZIP archive can be used to cause an infinite loop inside of Apache Commons Compress' extra field parser used by the ZipFile and ZipArchiveInputStream classes in versions 1.11 to 1.15. This can be used to mount a denial of...
CVE-2018-11771 2019-04-16 4.3
When reading a specially crafted ZIP archive, the read method of Apache Commons Compress 1.7 to 1.17's ZipArchiveInputStream can fail to return the correct EOF indication after the end of the stream has been reached. When combined with a...
CVE-2019-6129 1 Libpng 1 Libpng 2019-04-16 4.3
** DISPUTED ** png_create_info_struct in png.c in libpng 1.6.36 has a memory leak, as demonstrated by pngcp. NOTE: a third party has stated "I don't think it is libpng's job to free this buffer."
CVE-2014-0193 1 Netty Project 1 Netty 2019-04-16 5.0
WebSocket08FrameDecoder in Netty 3.6.x before 3.6.9, 3.7.x before 3.7.1, 3.8.x before 3.8.2, 3.9.x before 3.9.1, and 4.0.x before 4.0.19 allows remote attackers to cause a denial of service (memory consumption) via a TextWebSocketFrame followed...
CVE-2017-18229 2 Graphicsmagick, Debian 2 Graphicsmagick, Debian Linux 2019-04-16 4.3
An issue was discovered in GraphicsMagick 1.3.26. An allocation failure vulnerability was found in the function ReadTIFFImage in coders/tiff.c, which allows attackers to cause a denial of service via a crafted file, because file size is not...