Total
2260 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2018-7568 | 2 Gnu, Redhat | 4 Binutils, Enterprise Linux Desktop, Enterprise Linux Server and 1 more | 2023-12-10 | 4.3 MEDIUM | 5.5 MEDIUM |
The parse_die function in dwarf1.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service (integer overflow and application crash) via an ELF file with corrupt dwarf1 debug information, as demonstrated by nm. | |||||
CVE-2018-13724 | 1 Hyipcrowdsale1 Project | 1 Hyipcrowdsale1 | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mint function of a smart contract implementation for HYIPCrowdsale1, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2018-13654 | 1 Ests | 1 Eststoken | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for ESTSToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2018-13501 | 1 Hrwtoken Project | 1 Hrwtoken | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for HRWtoken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2018-13214 | 1 Globalmiles | 1 Gmile | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The sell function of a smart contract implementation for GMile, an Ethereum token, has an integer overflow in which "amount * sellPrice" can be zero, consequently reducing a seller's assets. | |||||
CVE-2017-2904 | 2 Blender, Debian | 2 Blender, Debian Linux | 2023-12-10 | 6.8 MEDIUM | 7.8 HIGH |
An exploitable integer overflow exists in the RADIANCE loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.hdr' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An attacker can convince a user to use the file as an asset via the sequencer in order to trigger this vulnerability. | |||||
CVE-2018-13773 | 1 Netkillertoken Project | 1 Netkillertoken | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for Enterprise Token Ecosystem (ETE) (Contract Name: NetkillerToken), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2017-2908 | 2 Blender, Debian | 2 Blender, Debian Linux | 2023-12-10 | 6.8 MEDIUM | 7.8 HIGH |
An exploitable integer overflow exists in the thumbnail functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An attacker can convince a user to render the thumbnail for the file while in the File->Open dialog. | |||||
CVE-2018-13182 | 1 Loncoin Project | 1 Loncoin | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for loncoin (LON), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2018-13189 | 1 Unolabo Project | 1 Unolabo | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mint function of a smart contract implementation for Unolabo (UNLB), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2018-13167 | 1 Yu Gi Oh Project | 1 Yu Gi Oh | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for Yu Gi Oh (YGO), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2018-13195 | 1 Cranooadvanced Project | 1 Cranooadvanced | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for Cranoo (CRN), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2017-12179 | 2 Debian, X.org | 2 Debian Linux, Xorg-server | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in (S)ProcXIBarrierReleasePointer functions allowing malicious X client to cause X server to crash or possibly execute arbitrary code. | |||||
CVE-2018-6927 | 4 Canonical, Debian, Linux and 1 more | 10 Ubuntu Linux, Debian Linux, Linux Kernel and 7 more | 2023-12-10 | 4.6 MEDIUM | 7.8 HIGH |
The futex_requeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service (integer overflow) or possibly have unspecified other impact by triggering a negative wake or requeue value. | |||||
CVE-2018-13179 | 1 Aircontacttoken Project | 1 Aircontacttoken | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for Air-Contact Token (AIR), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2018-13225 | 1 Myylc Project | 1 Myylc | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The sell function of a smart contract implementation for MyYLC, an Ethereum token, has an integer overflow in which "amount * sellPrice" can be zero, consequently reducing a seller's assets. | |||||
CVE-2018-13081 | 1 Gzstoken Project | 1 Gzstoken | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for GZS Token (GZS), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2017-17183 | 1 Huawei | 12 Dp300, Dp300 Firmware, Rp200 and 9 more | 2023-12-10 | 4.0 MEDIUM | 4.3 MEDIUM |
Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have an integer overflow vulnerability. Due to insufficient input validation, an authenticated, remote attacker could send malformed SOAP packets to the target device. Successful exploit could cause an integer overflow and might reset a process. | |||||
CVE-2018-13519 | 1 Digital Cloud Token Project | 1 Digital Cloud Token | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mint function of a smart contract implementation for DigitalCloudToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2018-1000524 | 1 Spheredev | 1 Minisphere | 2023-12-10 | 4.3 MEDIUM | 5.5 MEDIUM |
miniSphere version 5.2.9 and earlier contains a Integer Overflow vulnerability in layer_resize() function in map_engine.c that can result in remote denial of service. This attack appear to be exploitable via the victim must load a specially-crafted map which calls SetLayerSize in its entry script. This vulnerability appears to have been fixed in 5.0.3, 5.1.5, 5.2.10 and later. |