12 matches found
CVE-2022-42390
This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CVE-2024-42390
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space...
CVE-2024-42390
CVE-2024-42390 concerns Cesanta Mongoose Web Server, specifically version 7.14. The vulnerability stems from an out-of-range pointer offset that can cause the server to process a malicious TLS packet and read unintended heap memory space. Documents consistently describe the affected component as ...
CVE-2024-42390 Use of Out-of-range Pointer Offset in Mongoose Web Server library
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space...
CVE-2024-42390 Use of Out-of-range Pointer Offset in Mongoose Web Server library
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space...
CVE-2022-42390
This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CVE-2022-42390
PDF-XChange Editor (Tracker Software) is affected by CVE-2022-42390 due to improper parsing of U3D files, causing an out-of-bounds read that can disclose sensitive information. The vulnerability requires user interaction (visiting a malicious page or opening a crafted file) and may enable arbitra...
CVE-2021-42390
creationtimestamp| type| source ---|---|--- 2022-03-16 14:30:16+00:00| seen| https://t.me/truesecator/2737 2022-03-17 15:11:20+00:00| seen| https://t.me/NeKaspersky/2001...
Multiple Flaws Uncovered in ClickHouse OLAP Database System for Big Data
Researchers have disclosed seven new security vulnerabilities in an open-source database management system solution called ClickHouse that could be weaponized to crash the servers, leak memory contents, and even lead to the execution of arbitrary code. "The vulnerabilities require authentication,...
CVE-2021-42390
Divide-by-zero in Clickhouse's DeltaDouble compression codec when parsing a malicious query. The first byte of the compressed buffer is used in a modulo operation without being checked for 0...
CVE-2021-42390
Divide-by-zero in Clickhouse's DeltaDouble compression codec when parsing a malicious query. The first byte of the compressed buffer is used in a modulo operation without being checked for 0...
CVE-2021-42390
ClickHouse DeltaDouble compression codec vulnerability (CVE-2021-42390) arises from a divide-by-zero when the first byte of a compressed buffer is used in a modulo operation without zero-checking. It is exploited during parsing a malicious query, potentially causing a denial-of-service. The issue...