IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-17030)

IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DXF files, which can be exploited by an attacker to execute code in the context of the current...

Qnap QTS Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2017-17030)

A buffer overflow vulnerability in login function in QNAP QTS version 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 Beta 2 build 20171116 and earlier could allow remote attackers to execute arbitrary code on NAS devices. This plugin only works with Tenable.ot. Please visit...

gstreamer1-plugins-bad-free security update

1.22.1-2 - Patch CVE-2023-44429: AV1 codec parser heap-based buffer overflow - Patch CVE-2023-44446: MXF demuxer use-after-free - Resolves: RHEL-17030, RHEL-17039...

Siretta QUARTZ-GOLD buffer overflow vulnerability (CNVD-2023-17030)

The Siretta QUARTZ-GOLD is a high-speed industrial router from Siretta. A buffer overflow vulnerability exists in Siretta QUARTZ-GOLD version G5.0.1.5-210720-141020, which can be exploited by an attacker to execute arbitrary commands...

CVE-2020-17030

Windows MSCTF Server Information Disclosure Vulnerability...

CVE-2020-17030

Windows MSCTF Server Information Disclosure Vulnerability...

CVE-2020-17030

Technical details for CVE-2020-17030 are not publicly available in the provided documents. Monitor for updates from the connected feeds for affected products, components, and remediation guidance.

KB4586786: Windows 10 Version 1903 and Windows 10 Version 1909 November 2020 Security Update

The Windows installation on the remote host is missing security update 4586781. It is, therefore, affected by multiple vulnerabilities. Please review the vendor advisory for more details. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from t...

CVE-2019-17030

...

CVE-2019-17030

CVE-2019-17030 is rejected/not used per the Initial Description.

CVE-2018-17030

CVE-2018-17030 affects BigTree CMS 4.2.23. The vulnerability allows remote authenticated users who have privileges to set hooks to execute arbitrary code via /core/admin/auto-modules/forms/process.php. Public references in the connected documents consistently describe an arbitrary code execution ...

Pre-auth Remote Code Execution exploit for QNAP QTS

!/usr/bin/env python -- coding: iso-8859-15 -- Pre-auth Remote Code Execution exploit for QNAP QTS 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 Beta 2 build 2017111 Just a quick dirty RCE PoC to make your QNAP sing "XMAS" in morse. Author: Andrea Palazzo @cogitoergor00t E-mail:...

CVE-2017-17030

CVE-2017-17030 is a buffer overflow in QNAP QTS login/authLogin.cgi that can allow remote code execution. Affected: QTS 4.2.6 (build 20171026), 4.3.3.0378 (build 20171117), 4.3.4.0387 (Beta 2, build 20171116) and earlier. Root cause: improper handling during parsing of the Host header leading to ...

QNAP QTS < 4.2.6 build 20171208, 4.3.3.x < 4.3.3.0396 build 20171205, 4.3.4.x < 4.3.4.0411 build 20171208 Multiple Vulnerabilities

QNAP QTS is vulnerable to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qts"; ifdescription...