5838 matches found
CVE-2021-29568 Reference binding to null in `ParameterizedTruncatedNormal`
TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger undefined behavior by binding to null pointer in tf.rawops.ParameterizedTruncatedNormal. This is because the...
WAGO Cross-Site Scripting Vulnerability
WAGO is a 750-88x series programmable logic controller from WAGO, Germany. The device is designed specifically for applications in industrial environments where digital algorithms operate electronic systems. A cross-site scripting vulnerability exists in WAGO. The vulnerability stems from a lack ...
CVE-2021-29510
Pydantic is a data validation and settings management using Python type hinting. In affected versions passing either 'infinity', 'inf' or float'inf' or their negatives to datetime or date fields causes validation to run forever with 100% CPU usage on one CPU. Pydantic has been patched with fixes...
CVE-2021-29510
Pydantic is a data validation and settings management using Python type hinting. In affected versions passing either 'infinity', 'inf' or float'inf' or their negatives to datetime or date fields causes validation to run forever with 100% CPU usage on one CPU. Pydantic has been patched with fixes...
CVE-2021-29510
Pydantic is a data validation and settings management using Python type hinting. In affected versions passing either 'infinity', 'inf' or float'inf' or their negatives to datetime or date fields causes validation to run forever with 100% CPU usage on one CPU. Pydantic has been patched with fixes...
CVE-2021-29510
CVE-2021-29510 affects the Python package pydantic prior to version 1.8.2 (also listed as affected in 1.7.x and 1.6.x). The issue occurs when passing invalid date/datetime values such as 'infinity', 'inf', or float('inf') (and their negatives) to date or datetime fields, causing validation to run...
WAGO 跨站脚本漏洞
WAGO is a 750-88x series programmable logic controller from WAGO, Germany. The device is designed specifically for applications in industrial environments where digital algorithms operate electronic systems. A cross-site scripting vulnerability exists in WAGO. The vulnerability stems from a lack ...
Foxit Reader Code Execution Vulnerability
Foxit Reader is a Chinese Foxit Foxit company's a PDF document reader. A code execution vulnerability exists in Foxit Reader. The vulnerability stems from the program's lack of proper validation of user-supplied data. An attacker can exploit this vulnerability to execute code in the context of th...
(0Day) Siemens Solid Edge Viewer CATPart File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
PT-2021-8115 · Google +2 · Google Chrome +2
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 106.0.5249.62 Description: The issue is related to insufficient data validation in the File System API, allowing a remote attacker to bypass File System restrictions. This can be achieved via a crafted HTML pag...
Foxit Reader browseForDoc Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the browseForDoc...
Denial Of Service (DoS)
pillow is vulnerable to denial of service. Lack of validation and checks for the validity of return data when jumping to file offsets in the BlpImagePlugin results in a denial-of-service condition...
Foxit Reader U3D File Parsing Out-of-Bounds Read Remote Code Execution Vulnerability
Foxit Reader is a Chinese Foxit Foxit company's a PDF document reader. A security vulnerability exists in Foxit Reader U3D file parsing, which stems from the lack of proper validation of user-supplied data, which could lead to reading more than the end of the allocated object. An attacker can...
Foxit Reader app.media Remote Code Execution Vulnerability
Foxit Reader is a Chinese Foxit Foxit company's a PDF document reader. A security vulnerability exists in Foxit Reader app.media. The vulnerability stems from a lack of proper validation of user-supplied data. An attacker can exploit this vulnerability by tricking a user into visiting a malicious...
Foxit Reader U3D File Parsing Out-of-Bounds Read Remote Code Execution Vulnerability (CNVD-2021-36467)
Foxit Reader is a Chinese Foxit Foxit company's a PDF document reader. A security vulnerability exists in Foxit Reader U3D file parsing, which stems from the lack of proper validation of user-supplied data, which could lead to reading more than the end of the allocated object. An attacker can...
Foxit Reader Code Execution Vulnerability (CNVD-2021-38097)
Foxit Reader old name: Foxit PDF Reader is a set of software used to read PDF format files, by Fujian Foxit Software developed by Foxit Reader is a set of free to use the software, the operating system is mainly based on Microsoft Windows, and as long as there is a Win32 implementation of the...
CVE-2021-31462
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.3.37598. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...
CVE-2021-31472
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CVE-2021-31466
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.3.37598. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CVE-2021-31466
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.3.37598. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...