20 matches found
CVE-2025-11837 Malware Remover
An improper control of generation of code vulnerability has been reported to affect Malware Remover. The remote attackers can then exploit the vulnerability to bypass protection mechanism. We have already fixed the vulnerability in the following version: Malware Remover 6.6.8.20251023 and later...
CVE-2025-11837
creationtimestamp| type| source ---|---|--- 2025-12-30 05:34:04+00:00| seen| https://t.me/icscert/1382 2026-01-02 16:38:09+00:00| seen| https://infosec.exchange/users/vuldb/statuses/115826484118955550 2026-01-02 18:54:45+00:00| seen| Telegram/Ixvst1zhHfk7lKUhI5B29IEUYLZOT2b0wkW9xa8GvuAtM 2026-01-...
CVE-2019-11837
njs through 0.3.1, used in NGINX, has a segmentation fault in String.prototype.toBytes for negative arguments, related to nxtutf8next in nxt/nxtutf8.h and njsstringoffset in njs/njsstring.c...
CVE-2024-11837
Improper Neutralization of Special Elements used in an N1QL Command 'N1QL Injection' vulnerability in PlexTrac allows N1QL Injection.This issue affects PlexTrac: from 1.61.3 before 2.8.1...
CVE-2024-11837
CVE-2024-11837 describes a N1QL Injection in PlexTrac, affecting versions before 2.8.1 (from 1.61.3). Root cause: improper neutralization of special elements in N1QL commands. Impact as cited: high/critical in CVSS metrics, including potential confidentiality, integrity, and availability impact. ...
OTFCC Buffer Overflow Vulnerability (CNVD-2023-11837)
OTFCC is a C library and utility open sourced by Caryll. It is used to parse and write OpenType font files. OTFCC suffers from a buffer overflow vulnerability that originates in /release-x64/otfccdump 0x6e41a8 when handling untrusted input, which can be exploited by an attacker to cause a program...
CVE-2018-11837
This CVE entry is rejected/not used and does not represent an active vulnerability entry.
CVE-2018-11837
...
CVE-2019-11837
njs through 0.3.1, used in NGINX, has a segmentation fault in String.prototype.toBytes for negative arguments, related to nxtutf8next in nxt/nxtutf8.h and njsstringoffset in njs/njsstring.c...
CVE-2019-11837
CVE-2019-11837 affects njs up to version 0.3.1 used in NGINX. The vulnerability is a segmentation fault in String.prototype.toBytes for negative arguments, tied to nxt_utf8_next (nxt/nxt_utf8.h) and njs_string_offset (njs/njs_string.c). The connected documents provide concrete technical details a...
Memory corruption
ChakraCore and Microsoft Edge in Windows 10 1703, 1709, and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique fr...
Memory corruption
ChakraCore and Microsoft Edge in Windows 10 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption...
Memory corruption
ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an...
Memory corruption
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current...
Memory corruption
ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an...
Memory corruption
ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption...
Memory corruption
ChakraCore and Microsoft Edge in Windows 10 1709 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from...
Memory corruption
Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to take control of an affected system, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID ...
CVE-2017-11837
CVE-2017-11837 affects ChakraCore/Edge scripting engine memory handling. Root cause: memory corruption when manipulating JavaScript objects in memory, enabling an attacker to execute code with the current user’s privileges. Affected products include ChakraCore and Microsoft Edge on Windows 10 (17...
Microsoft Internet Explorer and Edge CVE-2017-11837 Remote Memory Corruption Vulnerability
Description Microsoft Internet Explorer and Edge are prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Attackers can exploit this issue to execute arbitrary code in the context of the currentl...