Filtered by vendor Magic
Subscribe
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2020-17446 | 2 Debian, Magic | 2 Debian Linux, Asyncpg | 2023-01-27 | 7.5 HIGH | 9.8 CRITICAL |
asyncpg before 0.21.0 allows a malicious PostgreSQL server to trigger a crash or execute arbitrary code (on a database client) via a crafted server response, because of access to an uninitialized pointer in the array data decoder. | |||||
CVE-2001-1448 | 1 Magic | 1 Edeveloper | 2017-07-10 | 4.6 MEDIUM | N/A |
Magic eDeveloper Enterprise Edition 8.30-5 and earlier allows local users to overwrite arbitrary files and possibly execute code via a symlink attack on temporary files created by the (1) mkuserproc, (2) mgrnt, and (3) mgdatasrvr.sc scripts. |