5836 matches found
CVE-2023-5482
Insufficient data validation in USB in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...
CVE-2023-5482
Insufficient data validation in USB in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...
CVE-2023-5482
Insufficient data validation in USB in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...
CVE-2023-5482
CVE-2023-5482 affects Google Chrome/Chromium before 119.0.6045.105 due to insufficient data validation in USB handling, enabling a remote attacker to trigger out-of-bounds memory access via a crafted HTML page. Impact is described as high, with potential memory corruption or crash; exploitation s...
Google Chrome Security Vulnerability
Google Chrome is a web browser from Google, Inc. A security vulnerability exists in Google Chrome that originates from insufficient data validation in the USB module...
chromium -- multiple vulnerabilities
Chrome Releases reports: This update includes 15 security fixes: 1492698 High CVE-2023-5480: Inappropriate implementation in Payments. Reported by Vsevolod Kokorin Slonser of Solidlab on 2023-10-14 1492381 High CVE-2023-5482: Insufficient data validation in USB. Reported by DarkNavy on 2023-10-13...
SUSE CVE-2023-40477
RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must...
CVE-2023-39427
In Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share v12 SP0 Build 1204.77, the affected applications lack proper validation of user-supplied data when parsing XE files. This could lead to an out-of-bounds write. An attacker could leverage this vulnerability to execute arbitrary code ...
Design/Logic Flaw
In Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share v12 SP0 Build 1204.77, the affected applications lack proper validation of user-supplied data when parsing XE files. This could lead to an out-of-bounds write. An attacker could leverage this vulnerability to execute arbitrary code ...
Ashlar Incorporated Ashlar-Vellum Graphite Buffer Error Vulnerability
Ashlar Incorporated Ashlar-Vellum is the development platform for Ashlar Incorporated's computer-aided design CAD and 3D modeling software. A security vulnerability exists in Ashlar Incorporated Ashlar-Vellum Graphite version v13.0.48, which stems from a lack of proper validation of user-supplied...
PT-2023-7352 · Ashlar Vellum · Ashlar-Vellum Graphite
Name of the Vulnerable Software and Affected Versions: Ashlar-Vellum Graphite version 13.0.48 Description: The issue is related to a lack of proper validation of user-supplied data when parsing VC6 files, which could lead to an out-of-bounds read. This may allow an attacker to execute arbitrary...
The vulnerability of the Oracle Database Recovery Manager component of the Oracle Database Server database management system allows a perpetrator to trigger a service failure.
The vulnerability of the Oracle Database Recovery Manager component of the Oracle Database Server management system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service interruptions...
CVE-2023-35986
Sante DICOM Viewer Pro lacks proper validation of user-supplied data when parsing DICOM files. This could lead to a stack-based buffer overflow. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process...
Design/Logic Flaw
Sante DICOM Viewer Pro lacks proper validation of user-supplied data when parsing DICOM files. This could lead to an out-of-bounds write. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process...
Siemens Tecnomatix Plant Simulation SPP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...
Siemens Tecnomatix Plant Simulation STP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...
The vulnerability of the Packet Forwarding Engine (PFE) module in Junos OS and Junos OS Evolved operating systems allows a hacker to trigger a service failure.
The vulnerability of the Packet Forwarding Engine PFE module in Junos OS and Junos OS Evolved operating systems exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...
The vulnerability of the DirectMusic component in Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of the DirectMusic component in Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
Inviting excessive long email addresses to a calendar event makes the server unresponsive
None...
Denial Of Service (DoS)
libfrr.so is vulnerable to Denial of service attack. The vulnerability is caused by a lack of validation of the contents of stream data. Availability of the system is impacted as a results of exploitation of this vulnerability...