Security Vulnerabilities - CVEs Published In July 2023
Integer overflow vulnerability in pcre2test before 10.41 allows attackers to cause a denial of service or other unspecified impacts via negative input.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-07-18
An issue was discovered in ostree before 2022.7 allows attackers to cause a denial of service or other unspecified impacts via the print_panic function in repo_checkout_filter.rs.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-07-18
The vulnerability could be locally exploited to allow escalation of privilege.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-07-18
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in CRUDLab Jazz Popups plugin <= 1.8.7 versions.
CVSS Score
7.1
EPSS Score
0.001
Published
2023-07-18
Heap-based buffer over-read in function png_convert_4 in file pngex.cc in AdvanceMAME through 2.1.
CVSS Score
7.1
EPSS Score
0.0
Published
2023-07-18
Stack-based buffer overflow vulnerability in asn1c through v0.9.28 via function genhash_get in genhash.c.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-07-18
An issue was discovered in asn1c through v0.9.28. A NULL pointer dereference exists in the function _default_error_logger() located in asn1fix.c. It allows an attacker to cause Denial of Service.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-07-18
An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.36. It is a stack-overflow issue in demangle_type in rust-demangle.c.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-07-18
In elfutils 0.183, an infinite loop was found in the function handle_symtab in readelf.c .Which allows attackers to cause a denial of service (infinite loop) via crafted file.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-07-18
A flaw was discovered in htmodoc 1.9.12 in function parse_paragraph in ps-pdf.cxx ,this flaw possibly allows possible code execution and a denial of service via a crafted file.
CVSS Score
7.8
EPSS Score
0.0
Published
2023-07-18