Siemens SIMATIC S7-1500 and Ruggedcom ROX Devices Out-of-bounds Write (CVE-2020-21047)

"The libcpu component which is used by libasm of elfutils version 0.177 git 47780c9e, suffers from denial-of-service vulnerability caused by application crashes due to out-of-bounds write CWE-787, off-by-one error CWE-193 and reachable assertion CWE-617 %NASLMINLEVEL 80900 C Tenable, Inc...

CVE-2025-21047

Improper access control in KnoxGuard prior to SMR Oct-2025 Release 1 allows physical attackers to use the privileged APIs...

Oracle MySQL Server 8.x <= 8.0.36, 8.1.x <= 8.3.0 Security Update (cpuapr2024) - Linux

Oracle MySQL Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; if...

Oracle MySQL Server 8.x <= 8.0.36, 8.1.x <= 8.3.0 Security Update (cpuapr2024) - Windows

Oracle MySQL Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; if...

CVE-2024-21047 vulnerabilities

Vulnerabilities for packages: percona-server...

CVE-2024-21047 vulnerabilities

Vulnerabilities for packages: mysql...

CVE-2024-21047

...

CVE-2024-21047

...

Security Bulletin: IBM CICS TX Advanced is vulnerable to a Denial of Service (CVE-2021-33294 and CVE-2020-21047).

Summary The Elfutils package is used by IBM CICS TX Advanced in order to read, create and modify ELF Executable and Linkable Format binary files. The Elfutils package is vulnerable to a Denial of Service CVE-2021-33294 and CVE-2020-21047. An update to IBM CICS TX Advanced has been released to...

Debian dla-3579 : elfutils - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3579 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3579-1 [email protected] https://www.debian.org/lts/security/...

Medium: elfutils

Issue Overview: The libcpu component which is used by libasm of elfutils version 0.177 git 47780c9e, suffers from denial-of-service vulnerability caused by application crashes due to out-of-bounds write CWE-787, off-by-one error CWE-193 and reachable assertion CWE-617; to exploit the vulnerabilit...

Amazon Linux 2 : elfutils (ALAS-2023-2259)

"The version of elfutils installed on the remote host is prior to 0.176-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2259 advisory. The libcpu component which is used by libasm of elfutils version 0.177 git 47780c9e, suffers from denial-of-service vulnerability...

CVE-2020-21047

The libcpu component which is used by libasm of elfutils version 0.177 git 47780c9e, suffers from denial-of-service vulnerability caused by application crashes due to out-of-bounds write CWE-787, off-by-one error CWE-193 and reachable assertion CWE-617; to exploit the vulnerability, the attackers...

CVE-2020-21047

CVE-2020-21047 affects elfutils’ libcpu (used by libasm, elfutils 0.177, git 47780c9e). It enables a denial-of-service via an out-of-bounds write (CWE-787), off-by-one error (CWE-193), and reachable assertion (CWE-617). Exploitation requires crafting ELF files that bypass bound checks. The vulner...

Using Rapid7 Insight Agent and InsightVM Scan Assistant in Tandem

Background Rapid7 Insight Agent and InsightVM Scan Assistant are executables that can be deployed to assist in understanding the vulnerabilities in your environment. Frequently there are questions around when and where you would deploy each, if you need both, what they actually monitor, etc. This...

CVE-2023-21047

In ConvertToHalMetadata of aidlutils.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid I...

CVE-2023-21047

CVE-2023-21047 affects Android kernel, with the issue localized to ConvertToHalMetadata in aidl_utils.cc where a missing bounds check enables an out-of-bounds read. This can lead to local information disclosure with system-level privileges required for exploitation and does not require user inter...

CVE-2021-21047

creationtimestamp| type| source ---|---|--- 2021-02-12 00:43:07+00:00| seen| https://t.me/cibsecurity/23513...

Adobe Photoshop 21.x < 21.2.5 / 22.x < 22.2 Multiple Vulnerabilities (APSB21-10)

The version of Adobe Photoshop installed on the remote Windows host is prior to 21.2.5/22.2. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb21-10 advisory. - Adobe Photoshop versions 21.2.4 and earlier and 22.1.1 and earlier are affected by a Buffer Overflow...

Adobe Photoshop 21.x < 21.2.5 / 22.x < 22.2 Multiple Vulnerabilities (macOS APSB21-10)

The version of Adobe Photoshop installed on the remote macOS or Mac OS X host is prior to 21.2.5/22.2. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb21-10 advisory. - Adobe Photoshop versions 21.2.4 and earlier and 22.1.1 and earlier are affected by a Buffer...