For All Secure Logo For All Secure Logo
  • Product
  • Solutions
  • Resources & Labs
  • Company
Get demo
  • Product
    • Need
      DevSecOps Safety Critical
    • Industry
      Government
    • Resources
      Resources Glossary FAQs Blog
    • Labs
      Vulnerabilities Lab Research Lab Responsible Disclosures
    • About Us Events Contact
    • Careers News
Get demo
Need
DevSecOps Safety Critical
Industry
Government

ForAllSecure delivers an advanced and versatile security testing solution. Fortune 1000 companies in aerospace, automotive, and high-tech partner with ForAllSecure to efficiently and effectively secure their software.

Resources
Resources Glossary FAQs Blog
Labs
Vulnerabilities Lab Research Lab Responsible Disclosures

ForAllSecure delivers an advanced and versatile security testing solution. Fortune 1000 companies in aerospace, automotive, and high-tech partner with ForAllSecure to efficiently and effectively secure their software.

About Us Events Contact
Careers News

ForAllSecure delivers an advanced and versatile security testing solution. Fortune 1000 companies in aerospace, automotive, and high-tech partner with ForAllSecure to efficiently and effectively secure their software.

Vulnerabilities Lab

Filter By:
All years 2020 2019 2018 2017
All Technologies Embedded systems Serialization Streamining File support Parsing Encryption Computer graphics Web server

2020

No results for the selected filter.

OpenWRT RCE

OpenWRT is a Linux-based OS often found in embedded devices and network routers.

  • CVE-2020-7982
Learn more on the blog Read the article

cereal

cereal is a light-weight, general-purpose serialization library.

  • CVE-2020-11104
  • CVE-2020-11105
Learn more on the blog Read the article

MP3Gain

MP3Gain analyzes and adjusts MP3 files so that they have the same volume by using statistical analysis to determine what those levels should be.

  • CVE-2020-15359
Read more on the blog

GNU C

The GNU C Library (glibc) is one of the most common open source C library used on Linux systems.

  • CVE-2020-10029
Read more on the blog See it on Github

2019

No results for the selected filter.

Netflix Dial Reference

The DIAL server is commonly found in televisions to support online streaming services.

  • CVE-2019-10028
Read more on the blog Read the article See it on Github

Oniguruma

Oniguruma is a regex C library commonly used as a parser in the PHP and Ruby programming language.

  • CVE-2019-13225
  • CVE-2019-13224
See it on Github

Matio

MATIO is an open source C library used for parsing MATLAB files.

  • CVE-2019-13107
Read more on the blog

Das U-Boot

Das U-Boot is a bootloader common in embedded devices, including Amazon Kindles, ARM Chromebooks, networking hardware, and more.

  • CVE-2019-13103
  • CVE-2019-13104
  • CVE-2019-13105
  • CVE-2019-13106
Read more on the blog Read the article See it on Github

MatrixSSL & WolfSSL

MatrixSSL and WolfSSL are open source cryptographic library aimed at IoT and other lightweight use cases.

  • CVE-2019-13470
Read more on the blog

stb

stb is a suite of single-file C libraries containing utility functions useful to for computer graphics applications or games.

  • CVE-2019-13217
  • CVE-2019-13218
  • CVE-2019-13219
  • CVE-2019-13220
  • CVE-2019-13221
  • CVE-2019-13222
  • CVE-2019-13223
Read more on the blog Read the article

FreeImage

FreeImage is an open source library for supporting popular graphic image formats, including PNG, BMG, JPEG, TIFF, and more.

  • CVE-2019-13499 (pending)
  • CVE-2019-13500 (pending)
  • CVE-2019-13501 (pending)
Read more on the blog

2018

No results for the selected filter.

H2O

H2O is an open source HTTP server written in C. H2O is known for its ability to deliver quicker responses to users with less CPU utilization than older generations of web servers.

  • CVE-2018-0608

2017

No results for the selected filter.

sthttpd

sthttpd is an open source web server designed for simplicity, a small execution footprint and speed.

  • CVE-2017-10671
See it on Github

See What Mayhem
Can Do For You

Get a personalized demo
fas logo
Product
Mayhem
Solutions
Need
DevSecOps Safety Critical
Industry
Government
Resources
Resources Blog Glossary FAQs Vulnerabilities Lab Research Lab The Hacker Mind FuzzCon
Company
About Us News Careers Events Contact
© 2020 ForAllSecure  |  All rights reserved  |  Privacy  |  Terms