9 matches found
CVE-2022-35109
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via drawstroke at /gfxpoly/stroke.c...
CVE-2024-35109
idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /homeProdeal.php?mudi=add=close...
CVE-2024-35109
idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /homeProdeal.php?mudi=add&nohrefStr=close...
CVE-2024-35109
CVE-2024-35109 affects idccms v1.35 with a CSRF in the component handling /homePro_deal.php?mudi=add&nohrefStr=close (and related variants in the /homePro deal.php path). The issue enables unauthorized requests to be made via forged requests, with user interaction required. A PT-2024-26321 entry ...
CVE-2021-35109
Possible address manipulation from APP-NS while APP-S is configuring an RG where it tries to merge the address ranges in Snapdragon Connectivity, Snapdragon Mobile...
CVE-2021-35109
The connected PT-2022-10427 entry describes CVE-2021-35109 impacting Qualcomm Snapdragon components: Snapdragon Connectivity and Snapdragon Mobile. Root cause involves possible address manipulation when APP-NS is configuring an RG and attempts to merge address ranges across components. The vulner...
CVE-2021-35109
Possible address manipulation from APP-NS while APP-S is configuring an RG where it tries to merge the address ranges in Snapdragon Connectivity, Snapdragon Mobile...
CVE-2022-35109
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via drawstroke at /gfxpoly/stroke.c...
CVE-2022-35109
SWFTools contains a heap-buffer overflow in draw_stroke implemented in /gfxpoly/stroke.c (commit 772e55a2). Affected component: SWFTools; root cause: heap-buffer overflow in drawing strokes. CVSSv3.1 base score 5.5 (Medium) with LOCAL attack vector, user interaction required, and high impact on a...