The HTTP/2 protocol allows a denial of service (server resource consumption) because request ca…

Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) …

GNU Bash through 4.3 processes trailing strings after function definitions in the values of env…

The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterminist…

sapi/cgi/cgi_main.c in PHP before 5.3.12 and 5.4.x before 5.4.2, when configured as a CGI scrip…

Heap-based buffer overflow in Adobe Flash Player before 13.0.0.296 and 14.x through 18.x before…

GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function def…

Integer underflow in Adobe Flash Player before 11.7.700.261 and 11.8.x through 12.0.x before 12…

The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not …

A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a rac…

Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12 …

Use-after-free vulnerability in the ByteArray class in the ActionScript 3 (AS3) implementation …

A carefully crafted request body can cause a buffer overflow in the mod_lua multipart parser (r…

Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS …

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.269 and 14.x through 16.x befo…

Double free vulnerability in Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before …

Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2…

Buffer overflow in Adobe Flash Player before 11.7.700.279 and 11.8.x through 13.0.x before 13.0…

Adobe ColdFusion 9.0, 9.0.1, and 9.0.2, when a password is not configured, allows remote attack…

Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) implementat…

The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and oth…

Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux, …

Multiple buffer overflows in yaSSL 1.7.5 and earlier, as used in MySQL and possibly other produ…

Integer overflow in Adobe Flash Player before 13.0.0.250 and 14.x and 15.x before 15.0.0.189 on…

Buffer overflows in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, allow remote attac…

A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vul…

Git is an open-source distributed revision control system. In affected versions of Git a specia…

Some HTTP/2 implementations are vulnerable to a settings flood, potentially leading to a denial…

Adobe Flash Player before 13.0.0.289 and 14.x through 17.x before 17.0.0.188 on Windows and OS …

Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 11.0.02 allow re…

Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2…

Adobe Flash Player before 10.3.181.26 on Windows, Mac OS X, Linux, and Solaris, and 10.3.185.23…

Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) …

Unspecified vulnerability in the U3D component in Adobe Reader and Acrobat 10.1.1 and earlier o…

Unspecified vulnerability in Adobe Flash Player through 13.0.0.262 and 14.x, 15.x, and 16.x thr…

Adobe Flash Player before 10.3.183.19 and 11.x before 11.2.202.235 on Windows, Mac OS X, and Li…

Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.…

An integer underflow was discovered in OpenLDAP before 2.4.57 leading to slapd crashes in the C…

Heap-based buffer overflow in Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.…

Apple QuickTime Java extensions (QTJava.dll), as used in Safari and other browsers, and when Ja…