cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2019-12290,https://securityvulnerability.io/vulnerability/CVE-2019-12290,,"GNU libidn2 before 2.2.0 fails to perform the roundtrip checks specified in RFC3490 Section 4.2 when converting A-labels to U-labels. This makes it possible in some circumstances for one domain to impersonate another. By creating a malicious domain that matches a target domain except for the inclusion of certain punycoded Unicode characters (that would be discarded when converted first to a Unicode label and then back to an ASCII label), arbitrary domains can be impersonated.",Gnu,Libidn2,7.5,HIGH,0.006070000119507313,false,false,false,false,,false,false,2019-10-22T15:14:06.000Z,0
CVE-2019-18224,https://securityvulnerability.io/vulnerability/CVE-2019-18224,,idn2_to_ascii_4i in lib/lookup.c in GNU libidn2 before 2.1.1 has a heap-based buffer overflow via a long domain string.,Gnu,Libidn2,9.8,CRITICAL,0.008910000324249268,false,false,false,false,,false,false,2019-10-21T16:21:46.000Z,0
CVE-2017-14061,https://securityvulnerability.io/vulnerability/CVE-2017-14061,,Integer overflow in the _isBidi function in bidi.c in Libidn2 before 2.0.4 allows remote attackers to cause a denial of service or possibly have unspecified other impact.,Gnu,Libidn2,9.8,CRITICAL,0.004220000002533197,false,false,false,false,,false,false,2017-08-31T16:29:00.000Z,0
CVE-2017-14062,https://securityvulnerability.io/vulnerability/CVE-2017-14062,,Integer overflow in the decode_digit function in puny_decode.c in Libidn2 before 2.0.4 allows remote attackers to cause a denial of service or possibly have unspecified other impact.,Gnu,Libidn2,9.8,CRITICAL,0.004730000160634518,false,false,false,false,,false,false,2017-08-31T16:00:00.000Z,0