Known Vulnerabilities for products from Nongnu
Listed below are 8 of the newest known vulnerabilities associated with the vendor "Nongnu".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-30630 json | Dmidecode before 3.5 allows -dump-bin to overwrite a local file. This has security relevance because, for example, execution ... | 7.1 - HIGH | 2023-04-13 | 2023-09-28 |
| CVE-2019-17455 json | Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse re... | 9.8 - CRITICAL | 2019-10-10 | 2023-11-07 |
| CVE-2018-1000637 json | zutils version prior to version 1.8-pre2 contains a Buffer Overflow vulnerability in zcat that can result in Potential denial... | 7.8 - HIGH | 2018-08-20 | 2018-11-02 |
| CVE-2014-2886 json | GKSu 2.0.2, when sudo-mode is not enabled, uses " (double quote) characters in a gksu-run-helper argument, which allows attac... | 6.8 - MEDIUM | 2014-09-18 | 2018-12-31 |
| CVE-2013-7322 json | usersfile.c in liboath in OATH Toolkit before 2.4.1 does not properly handle lines containing an invalid one-time-password (O... | 4.9 - MEDIUM | 2014-03-09 | 2017-08-29 |
| CVE-2010-3846 json | Array index error in the apply_rcs_change function in rcs.c in CVS 1.11.23 allows local users to gain privileges via an RCS f... | 6.9 - MEDIUM | 2010-11-05 | 2023-02-13 |
| CVE-2009-0359 json | Multiple cross-site scripting (XSS) vulnerabilities in Samizdat before 0.6.2 allow remote authenticated users to inject arbit... | Not Provided | 2009-02-17 | 2026-04-23 |
| CVE-2007-3209 json | Mail Notification 4.0, when WITH_SSL is set to 0 at compile time, uses unencrypted connections for accounts configured with S... | Not Provided | 2007-06-14 | 2026-04-23 |
Known software with vulnerabilities from Nongnu
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Nongnu | Libntlm | - |
| Application | Nongnu | Oath Toolkit | 1.0.0 |
| Application | Nongnu | Zutils | 0.2 |