Security Vulnerabilities - CVEs Published In August 2023
Buffer overflow vulnerability in quote_for_pmake in asm/nasm.c in nasm before 2.15.05 allows attackers to cause a denial of service via crafted file.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-08-22
An issue discovered in Samsung SyncThru Web Service SPL 5.93 06-09-2014 allows attackers to gain escalated privileges via MITM attacks.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-08-22
An issue was discovered with ImageMagick 7.1.0-4 via Division by zero in function ReadEnhMetaFile of coders/emf.c.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-08-22
A stack exhaustion issue was discovered in FreeImage before 1.18.0 via the Validate function in PluginRAW.cpp.
CVSS Score
6.5
EPSS Score
0.002
Published
2023-08-22
A heap overflow vulnerability in FreeImage 1.18.0 via the ofLoad function in PluginTIFF.cpp.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-08-22
NULL pointer dereference vulnerability in FreeImage before 1.18.0 via the FreeImage_CloneTag function inFreeImageTag.cpp.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-08-22
A heap overflow bug exists FreeImage before 1.18.0 via ofLoad function in PluginJPEG.cpp.
CVSS Score
8.8
EPSS Score
0.003
Published
2023-08-22
FreeImage before 1.18.0, ReadPalette function in PluginTIFF.cpp is vulnerabile to null pointer dereference.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-08-22
Improper verification of applications' cryptographic signatures in the /e/OS app store client App Lounge before 0.19q allows attackers in control of the application server to install malicious applications on user's systems by altering the server's API response.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-08-22
Heap-based Buffer Overflow in function bfd_getl32 in Binutils objdump 3.37.
CVSS Score
7.5
EPSS Score
0.0
Published
2023-08-22