CVE-2020-29639

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.0 and iPadOS 14.0. Processing a maliciously crafted font may result in the disclosure of process memory...

CVE-2021-29639

creationtimestamp| type| source ---|---|--- 2024-02-15 07:21:59+00:00| seen| https://t.me/ctinow/185281...

CVE-2023-29639

creationtimestamp| type| source ---|---|--- 2023-05-01 20:29:48+00:00| seen| https://t.me/cibsecurity/63135...

CVE-2023-29639

Cross site scripting XSS vulnerability in ZHENFENG13 My-Blog, allows attackers to inject arbitrary web script or HTML via editing an article in the "blog article" page due to the default configuration not utilizing MyBlogUtils.cleanString...

CVE-2023-29639

Cross site scripting XSS vulnerability in ZHENFENG13 My-Blog, allows attackers to inject arbitrary web script or HTML via editing an article in the "blog article" page due to the default configuration not utilizing MyBlogUtils.cleanString...

CVE-2023-29639

CVE-2023-29639 describes a cross-site scripting (XSS) vulnerability in ZHENFENG13 My-Blog. The root cause is that the default configuration does not use MyBlogUtils.cleanString, allowing an attacker to inject arbitrary script/HTML when editing a blog article. Impact is reflected as potential scri...

CVE-2022-29639

creationtimestamp| type| source ---|---|--- 2022-05-18 16:28:39+00:00| seen| https://t.me/cibsecurity/42902...

CVE-2022-29639

TOTOLINK A3100R V4.1.2cu.5050B20200504 and V4.1.2cu.5247B20211129 were discovered to contain a command injection vulnerability via the magicid parameter in the function ucicloudupdateconfig...

CVE-2022-29639

TOTOLINK A3100R firmware versions V4.1.2cu.5050_B20200504 through V4.1.2cu.5247_B20211129 are affected by a command injection vulnerability. The issue arises via the magicid parameter in the uci_cloudupdate_config function, allowing arbitrary command execution. Exploitation context and in-the-wil...

CVE-2020-29639

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.0 and iPadOS 14.0. Processing a maliciously crafted font may result in the disclosure of process memory...

CVE-2020-29639

CVE-2020-29639 concerns an out-of-bounds read issue in the Apple font parsing component (FontParser) across Apple platforms. The public docs from Apple reference fixes via improved input validation for FontParser, with citations in iOS 14.0/iPadOS 14.0 and watchOS 7.0 advisories. Specifically, in...

CVE-2020-29639

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.0 and iPadOS 14.0. Processing a maliciously crafted font may result in the disclosure of process memory...

CVE-2021-29639

CVE-2021-29639 entry is rejected/not used; not an active vulnerability.