7 matches found
CVE-2020-15651
A unicode RTL order character in the downloaded file name can be used to change the file's name during the download UI flow to change the file extension. This vulnerability affects Firefox for iOS 28...
CVE-2020-15651
The CVE-2020-15651 issue affects Firefox for iOS prior to 28. A Unicode RTL order character in the downloaded file name can be used in the download UI flow to rename the file and change its extension. Connected sources confirm the vulnerability and indicate Mozilla fixed it in Firefox iOS 28 (MFS...
CVE-2019-15651
wolfSSL 4.1.0 has a one-byte heap-based buffer over-read in DecodeCertExtensions in wolfcrypt/src/asn.c because reading the ASNBOOLEAN byte is mishandled for a crafted DER certificate in GetLengthex...
CVE-2019-15651
CVE-2019-15651 affects wolfSSL 4.1.0 where DecodeCertExtensions in wolfcrypt/src/asn.c reads an ASN_BOOLEAN byte and mishandles GetLength_ex for crafted DER certificates, causing a one-byte heap-based buffer over-read. Multiple connected sources (NVD, Red Hat, CNVD, OSV, etc.) confirm this vulner...
CVE-2017-15651
PRTG Network Monitor 17.3.33.2830 allows remote authenticated administrators to execute arbitrary code by uploading a .exe file and then proceeding in spite of the error message...
CVE-2017-15651
PRTG Network Monitor 17.3.33.2830 contains an arbitrary code execution flaw that can be exploited by a remote authenticated administrator who uploads a .exe and proceeds despite an error message, allowing code execution with the attacker’s privileges. The vulnerability stems from processing the u...
CVE-2018-15651
CVE-2018-15651 entry rejected/not used; does not represent an active vulnerability.