Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In December 2018
CVE-2018-20534
There is an illegal address access at ext/testcase.c in libsolv.a in libsolv through 0.7.2 that will cause a denial of service. NOTE: third parties dispute this issue stating that the issue affects the test suite and not the underlying library. It cannot be exploited in any real-world application
CVSS Score
6.5
EPSS Score
0.003
Published
2018-12-28
CVE-2018-20535
There is a use-after-free at asm/preproc.c (function pp_getline) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service during a line-number increment attempt.
CVSS Score
5.5
EPSS Score
0.001
Published
2018-12-28
CVE-2018-20536
There is a heap-based buffer over-read at liblas::SpatialReference::GetGTIF() (spatialreference.cpp) in libLAS 1.8.1 that will cause a denial of service.
CVSS Score
6.5
EPSS Score
0.003
Published
2018-12-28
CVE-2018-20537
There is a NULL pointer dereference at liblas::SpatialReference::GetGTIF() (spatialreference.cpp) in libLAS 1.8.1 that will cause a denial of service.
CVSS Score
6.5
EPSS Score
0.003
Published
2018-12-28
CVE-2018-20538
There is a use-after-free at asm/preproc.c (function pp_getline) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service during certain finishes tests.
CVSS Score
5.5
EPSS Score
0.001
Published
2018-12-28
CVE-2018-20539
There is a Segmentation fault triggered by illegal address access at liblas::SpatialReference::GetGTIF() (spatialreference.cpp) in libLAS 1.8.1 that will cause a denial of service.
CVSS Score
6.5
EPSS Score
0.003
Published
2018-12-28
CVE-2018-20540
There is memory leak at liblas::Open (liblas/liblas.hpp) in libLAS 1.8.1.
CVSS Score
6.5
EPSS Score
0.003
Published
2018-12-28
CVE-2018-20541
There is a heap-based buffer overflow in libxsmm_sparse_csc_reader at generator_spgemm_csc_reader.c in LIBXSMM 1.10, a different vulnerability than CVE-2018-20542 (which is in a different part of the source code and is seen at different addresses).
CVSS Score
8.8
EPSS Score
0.005
Published
2018-12-28
CVE-2018-20542
There is a heap-based buffer-overflow at generator_spgemm_csc_reader.c (function libxsmm_sparse_csc_reader) in LIBXSMM 1.10, a different vulnerability than CVE-2018-20541 (which is in a different part of the source code and is seen at a different address).
CVSS Score
8.8
EPSS Score
0.005
Published
2018-12-28
CVE-2018-20543
There is an attempted excessive memory allocation at libxsmm_sparse_csc_reader in generator_spgemm_csc_reader.c in LIBXSMM 1.10 that will cause a denial of service.
CVSS Score
6.5
EPSS Score
0.003
Published
2018-12-28


Products
Pricing
Contact Us

Shodan ® - All rights reserved