Source
CVE
A heap buffer overflow in vax_opfunction in radare2 5.4.2 and 5.4.0.
A heap buffer overflow in r_sleb128 function in radare2 5.4.2 and 5.4.0.
dpic 2021.01.01 has a Global buffer overflow in theyylex() function in main.c and reads out of the bound array.
A use after free in r_reg_set_value function in radare2 5.4.2 and 5.4.0.
A use after free in r_reg_get_name_idx function in radare2 5.4.2 and 5.4.0.
A null pointer deference in __core_anal_fcn function in radare2 5.4.2 and 5.4.0.
Etcd v3.5.4 allows remote attackers to cause a denial of service via function PageWriter.write in pagewriter.go
Cross Site Scripting (XSS) in Nagios XI 5.7.1 allows remote attackers to run arbitrary code via returnUrl parameter in a crafted GET request.
Buffer Overflow vulnerability in PSDParser.cpp::ReadImageLine() in FreeImage 3.19.0 [r1859] allows remote attackers to ru narbitrary code via use of crafted psd file.
A reflected cross site scripting (XSS) vulnerability was discovered on Samsung sww-3400rw Router devices via the m2 parameter of the sess-bin/command.cgi