5836 matches found
Artifex MuJS Buffer Overflow Vulnerability
Artifex Software MuJS is a lightweight JavaScript interpreter from Artifex Software, USA, which is used to embed into other software to provide script execution capabilities. A buffer overflow vulnerability exists in Artifex Software MuJS version 1.0.5. The vulnerability arises when a network...
Symantec VIP Enterprise Gateway Cross-Site Scripting Vulnerability
Symantec VIP Enterprise Gateway is an enterprise security gateway product from Symantec USA. A cross-site scripting vulnerability exists in Symantec VIP Enterprise Gateway that stems from a lack of proper validation of client-side data by the WEB application. An attacker could exploit the...
Foxit Studio Photo Information Disclosure Vulnerability
Foxit Studio Photo is a set of image editing software from the Chinese company Foxit Foxit. A security vulnerability exists in the handling of TIF files in Foxit Studio Photo 3.6.6.779 and prior versions, which is caused by the program failing to properly validate user-submitted data. An attacker...
Delta Industrial Automation CNCSoft ScreenEditor DPB File Parsing wTextLen Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Delta Industrial Automation CNCSoft ScreenEditor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The...
Foxit Studio Photo EZI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Studio Photo. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling ...
Oracle VirtualBox crServerDispatchGetCombinerStageParameterfvNV Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows local attackers to disclose sensitive information on vulnerable installations of Oracle VirtualBox. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...
Foxit Studio Photo EZI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Studio Photo. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling ...
Delta Industrial Automation CNCSoft ScreenEditor DPB Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Delta Industrial Automation CNCSoft ScreenEditor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The...
Delta Industrial Automation CNCSoft ScreenEditor DPB Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Delta Industrial Automation CNCSoft ScreenEditor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The...
Oracle VirtualBox crServerDispatchGetTexEnvfv Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows local attackers to disclose sensitive information on vulnerable installations of Oracle VirtualBox. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...
Delta Industrial Automation CNCSoft ScreenEditor DPB Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Delta Industrial Automation CNCSoft ScreenEditor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The...
Delta Industrial Automation CNCSoft ScreenEditor DPB File Parsing GCodePatternLen Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Delta Industrial Automation CNCSoft ScreenEditor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The...
Delta Industrial Automation CNCSoft ScreenEditor DPB File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Delta Industrial Automation CNCSoft ScreenEditor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The...
Delta Industrial Automation CNCSoft ScreenEditor DPB File Parsing DescwTextLen Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Delta Industrial Automation CNCSoft ScreenEditor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The...
Xiaomi Mi6 Browser Remote Code Execution Vulnerability
Xiaomi Mi6 Browser is a web browser from Xiaomi Technology Xiaomi, a Chinese company. A remote code execution vulnerability exists in Xiaomi Mi6 Browser, which arises from a network system or product that does not properly validate incoming data and can be exploited by remote attackers to execute...
The vulnerability of the SAP NetWeaver software integration platform, related to insufficient validation of input data, allows attackers to increase their privileges.
The vulnerability of the SAP NetWeaver software integration platform is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...
The vulnerability of the Intel Graphics Driver lies in its insufficient validation of input data, which allows attackers to trigger a service failure.
The vulnerability of the User Mode Driver component of Intel Graphics Drivers exists due to insufficient testing of input data. Exploiting this vulnerability can allow an attacker to cause a system failure...
The vulnerability of the Intel Graphics Driver lies in its lack of proper input data validation, allowing attackers to gain access to and read arbitrary files.
The vulnerability of the Kernel Mode Driver component in Intel Graphics Drivers exists due to insufficient testing of input data. Exploiting this vulnerability can allow an attacker to gain access to and read arbitrary files...
The vulnerability of the web interface of the microprogramming software for Cisco IP Phone 8800 allows a perpetrator to cause a service failure.
The vulnerability of the web interface of the microprogramming software for Cisco IP Phone 8800 is related to deficiencies in the validation of data entered by users. Exploiting this vulnerability allows a malicious actor to trigger a service failure through a specially crafted request...
Materialize cross-site scripting vulnerability (CNVD-2019-12908)
Materialize is a modern responsive front-end framework based on Material Design. A cross-site scripting vulnerability exists in Materialize 1.0.0 and prior versions, which stems from a lack of proper validation of client-side data in the WEB application. An attacker can exploit this vulnerability...