Vulnerabilities > Tinysvcmdns Project

DATE CVE VULNERABILITY TITLE RISK
2019-03-13 CVE-2019-9748 Out-of-bounds Read vulnerability in Tinysvcmdns Project Tinysvcmdns 20160718/20171105/20180116
In tinysvcmdns through 2018-01-16, an mDNS server processing a crafted packet can perform arbitrary data read operations up to 16383 bytes from the start of the buffer.
network
low complexity
tinysvcmdns-project CWE-125
critical
9.1
2019-03-13 CVE-2019-9747 Infinite Loop vulnerability in Tinysvcmdns Project Tinysvcmdns 20160718/20171105/20180116
In tinysvcmdns through 2018-01-16, a maliciously crafted mDNS (Multicast DNS) packet triggers an infinite loop while parsing an mDNS query.
network
low complexity
tinysvcmdns-project CWE-835
7.5
2018-04-24 CVE-2017-12087 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tinysvcmdns Project Tinysvcmdns 20160718
An exploitable heap overflow vulnerability exists in the tinysvcmdns library version 2016-07-18.
network
low complexity
tinysvcmdns-project CWE-119
critical
9.8
2018-01-20 CVE-2017-12130 NULL Pointer Dereference vulnerability in Tinysvcmdns Project Tinysvcmdns 20171105
An exploitable NULL pointer dereference vulnerability exists in the tinysvcmdns library version 2017-11-05.
network
low complexity
tinysvcmdns-project CWE-476
7.5