14 matches found
CVE-2025-10626
creationtimestamp| type| source ---|---|--- 2025-09-18 03:13:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lz3expn2cf2m...
CVE-2018-10626
creationtimestamp| type| source ---|---|--- 2025-05-22 16:43:56+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17308...
CVE-2019-10626
Payload size is not validated before reading memory that may cause issue of accessing invalid pointer or some garbage data in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables,...
CVE-2019-10626
creationtimestamp| type| source ---|---|--- 2020-06-25 08:55:32+00:00| seen| https://t.me/cibsecurity/13043...
CVE-2019-10626
Payload size is not validated before reading memory that may cause issue of accessing invalid pointer or some garbage data in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables,...
CVE-2019-10626
Payload size is not validated before reading memory that may cause issue of accessing invalid pointer or some garbage data in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables,...
CVE-2019-10626
CVE-2019-10626 describes a memory-read issue in Qualcomm/Snapdragon components where payload size is not validated before reading memory, potentially causing access to an invalid pointer or garbage data across a wide range of Snapdragon platforms (APQ8009, SDM7x, QCS, etc.). The root cause is rea...
CVE-2020-10626
In Fazecast jSerialComm, Version 2.2.2 and prior, an uncontrolled search path element vulnerability could allow a malicious DLL file with the same name of any resident DLLs inside the software installation to execute arbitrary code...
CVE-2020-10626
CVE-2020-10626 affects Fazecast jSerialComm versions
Fazecast jSerialComm
1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low skill level to exploit Vendor: Fazecast Equipment: jSerialComm Vulnerability: Uncontrolled Search Path Element 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthenticated attacker to execute arbitrary code on a...
CVE-2018-10626
Medtronic MyCareLink 24950/24952 Patient Monitors are affected by CVE-2018-10626: the update service does not sufficiently verify data authenticity, enabling an attacker with per‑product credentials to upload invalid data to the CareLink network (CWE-345). Connected advisories corroborate affecte...
CVE-2016-10626
mystem3 is a NodeJS wrapper for the Yandex MyStem 3. mystem3 downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping out the requested binary with an attacker controlled binary if the attacker is on the...
CVE-2016-10626
CVE-2016-10626 affects mystem3, a NodeJS wrapper for Yandex MyStem 3. The vulnerability arises because mystem3 downloads binary resources over HTTP, which enables a man‑in‑the‑middle (MitM) attacker to intercept the response and replace the binary with a malicious one. If the attacker sits betwee...
eIQNetworks Enterprise Security Analyzer Monitoring.exe多个缓冲区溢出漏洞
eIQnetworks Enterprise Security Analyzer(ESA)是一款企业级的安全管理平台。 ESA的Monitoring.exe进程中存在两个缓冲区溢出漏洞,远程攻击者可能利用此漏洞在服务器上执行任意指令。 第一个漏洞存在于Monitoring.exe中负责处理TCP 9999端口上用户数据的例程中。如果连接到这个端口,用户就会立即被提示输入口令。这时可以发送HELP命令获得各种命令帮助: --------------------------------------------------------- Usage: QUERYMONITOR: to fetc...