Total
4221 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-32979 | 1 Aveva | 1 Suitelink | 2024-11-21 | 7.5 High |
| Null pointer dereference in SuiteLink server while processing commands 0x04/0x0a | ||||
| CVE-2021-32971 | 1 Aveva | 1 Suitelink | 2024-11-21 | 7.5 High |
| Null pointer dereference in SuiteLink server while processing command 0x07 | ||||
| CVE-2021-32963 | 1 Aveva | 1 Suitelink | 2024-11-21 | 7.5 High |
| Null pointer dereference in SuiteLink server while processing commands 0x03/0x10 | ||||
| CVE-2021-32781 | 2 Envoyproxy, Redhat | 2 Envoy, Service Mesh | 2024-11-21 | 8.6 High |
| Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures. In affected versions after Envoy sends a locally generated response it must stop further processing of request or response data. However when local response is generated due the internal buffer overflow while request or response is processed by the filter chain the operation may not be stopped completely and result in accessing a freed memory block. A specifically constructed request delivered by an untrusted downstream or upstream peer in the presence of extensions that modify and increase the size of request or response bodies resulting in a Denial of Service when using extensions that modify and increase the size of request or response bodies, such as decompressor filter. Envoy versions 1.19.1, 1.18.4, 1.17.4, 1.16.5 contain fixes to address incomplete termination of request processing after locally generated response. As a workaround disable Envoy's decompressor, json-transcoder or grpc-web extensions or proprietary extensions that modify and increase the size of request or response bodies, if feasible. | ||||
| CVE-2021-32611 | 1 Antisip | 1 Exosip2 | 2024-11-21 | 7.5 High |
| A NULL pointer dereference vulnerability exists in eXcall_api.c in Antisip eXosip2 through 5.2.0 when handling certain 3xx redirect responses. | ||||
| CVE-2021-32440 | 1 Gpac | 1 Gpac | 2024-11-21 | 5.5 Medium |
| The Media_RewriteODFrame function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-32438 | 1 Gpac | 1 Gpac | 2024-11-21 | 5.5 Medium |
| The gf_media_export_filters function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-32437 | 1 Gpac | 1 Gpac | 2024-11-21 | 5.5 Medium |
| The gf_hinter_finalize function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-32289 | 1 Nokia | 1 Heif | 2024-11-21 | 5.5 Medium |
| An issue was discovered in heif through through v3.6.2. A NULL pointer dereference exists in the function convertByteStreamToRBSP() located in nalutil.cpp. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32285 | 1 Creolabs | 1 Gravity | 2024-11-21 | 5.5 Medium |
| An issue was discovered in gravity through 0.8.1. A NULL pointer dereference exists in the function list_iterator_next() located in gravity_core.c. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32284 | 1 Creolabs | 1 Gravity | 2024-11-21 | 7.8 High |
| An issue was discovered in gravity through 0.8.1. A NULL pointer dereference exists in the function ircode_register_pop_context_protect() located in gravity_ircode.c. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32283 | 1 Creolabs | 1 Gravity | 2024-11-21 | 5.5 Medium |
| An issue was discovered in gravity through 0.8.1. A NULL pointer dereference exists in the function gravity_string_to_value() located in gravity_value.c. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32282 | 1 Creolabs | 1 Gravity | 2024-11-21 | 5.5 Medium |
| An issue was discovered in gravity through 0.8.1. A NULL pointer dereference exists in the function ircode_add_check() located in gravity_ircode.c. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32280 | 2 Debian, Xfig Project | 2 Debian Linux, Fig2dev | 2024-11-21 | 5.5 Medium |
| An issue was discovered in fig2dev before 3.2.8.. A NULL pointer dereference exists in the function compute_closed_spline() located in trans_spline.c. It allows an attacker to cause Denial of Service. The fixed version of fig2dev is 3.2.8. | ||||
| CVE-2021-32276 | 2 Debian, Faad2 Project | 2 Debian Linux, Faad2 | 2024-11-21 | 5.5 Medium |
| An issue was discovered in faad2 through 2.10.0. A NULL pointer dereference exists in the function get_sample() located in output.c. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32275 | 1 Grame | 1 Faust | 2024-11-21 | 5.5 Medium |
| An issue was discovered in faust through v2.30.5. A NULL pointer dereference exists in the function CosPrim::computeSigOutput() located in cosprim.hh. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32270 | 1 Gpac | 1 Gpac | 2024-11-21 | 5.5 Medium |
| An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function vwid_box_del located in box_code_base.c. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32269 | 1 Gpac | 1 Gpac | 2024-11-21 | 5.5 Medium |
| An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function ilst_item_box_dump located in box_dump.c. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32139 | 1 Gpac | 1 Gpac | 2024-11-21 | 5.5 Medium |
| The gf_isom_vp_config_get function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-32138 | 1 Gpac | 1 Gpac | 2024-11-21 | 5.5 Medium |
| The DumpTrackInfo function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||