JerryScript ecma-helpers.c denial of service vulnerability

JerryScript, a lightweight JavaScript engine from the JerryScript project, has a denial-of-service vulnerability in version 3.0.0, which stems from a failed assertion in /jerry-core/ecma/base/ecma-helpers.c. An attacker could exploit this vulnerability to launch a denial of service...

Huawei HarmonyOS Data Processing Error Vulnerability (CNVD-2022-17719)

Huawei HarmonyOS is an operating system from Huawei, a Chinese company that provides a microkernel-based distributed operating system. Huawei HarmonyOS has a security vulnerability that could be exploited by an attacker to cause an application to crash...

ENC DataVault Encryption Issues Vulnerabilities

Enc Security Enc DataVault is a solution from the Dutch company Enc Security. Turn any Usb drive into a secure removable disk for important files. ENC DataVault suffers from an encryption issue vulnerability that stems from ENC DataVault 7.1.1W using an incorrect encryption algorithm, which can b...

gif2apng buffer overflow vulnerability

gif2apng is a simple program that converts animations from GIF to APNG format. gif2apng suffers from a buffer overflow vulnerability that stems from an incorrect while loop in the product code, which can be exploited by an attacker to cause a buffer overflow...

Netgear NETGEAR 缓冲区错误漏洞

Netgear NETGEAR is a router from the American company Netgear. A hardware device that connects two or more networks and acts as a gateway between networks. A security vulnerability exists in NETGEAR, which can be exploited by an attacker to cause a buffer overflow...

NetApp Virtual Desktop Service 安全漏洞

Netapp NetApp Virtual Desktop Service is a simple desktop service from NetApp USA that automates, manages and optimizes your digital workspace in the public cloud. When used with an HTML5 gateway, an attacker could exploit this vulnerability to take over a remote desktop session...

Adobe Premiere Pro 缓冲区错误漏洞

Adobe Premiere Pro is a suite of video editing software for non-linear editing from the American company Audobee Adobe. Adobe Premiere Pro suffers from a buffer error vulnerability that can be exploited by an attacker to trigger a power lift...

Adobe Experience Manager代码问题漏洞

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. Adobe...

The vulnerability of the win32k component in Microsoft Windows operating systems, which allows a hacker to disclose protected information

The vulnerability of the win32k component in Microsoft Windows operating systems is related to the disclosure of information. Exploiting this vulnerability can allow an attacker to disclose protected information...

NXP i.MX SoC has unspecified vulnerabilities

NXP i.MX SoC is nxp's multi-core solution for multimedia and display applications with scalable, secure and reliable high-performance and low-power features. nXP i.MX SoC devices have a security vulnerability that stems from the OPTEE-OS CSU driver for NXP i.MX SoC devices lacking secure access...

FortiWeb - Multiple vulnerabilities in the authentication mechanism of confd

Multiple vulnerabilities in the authentication mechanism of FortiWeb's confd, including an instance of concurrent execution using shared resource with improper synchronization CWE-362 and one of authentication bypass by capture-replay CWE-294, may allow a remote unauthenticated attacker to...

Mozilla Firefox ESR 代码问题漏洞

Mozilla Firefox ESR is an extended support version of the Mozilla Foundation's Firefox Web browser in the U.S. Mozilla Firefox ESR has a code issue vulnerability that could be exploited by an attacker to cause an application to crash...

CVE-2019-8922

A heap-based buffer overflow was discovered in bluetoothd in bluez through version 5.48. A missing check on whether there is enough space in the destination buffer can allow an attacker to exploit the vulnerability by crafting a request where the response is large enough to overflow the...

Huawei HarmonyOS Input Validation Error Vulnerability (CNVD-2021-99979)

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS. The vulnerability stems from clientrecvdelete not being checked. An attacker can exploit the vulnerabili...

Stack overflow

Dell iDRAC 9 prior to version 4.40.40.00 and iDRAC 8 prior to version 2.80.80.80 contain a Stack Buffer Overflow in Racadm. An authenticated remote attacker may potentially exploit this vulnerability to control process execution and gain access to the underlying operating system...

Huawei HarmonyOS 输入验证错误漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS. An attacker can exploit the vulnerability to cause the kernel to crash...

LSN-0082-1 Kernel Live Patch Security Notice

Jann Horn discovered that the tty subsystem of the Linux kernel did not use consistent locking in some situations, leading to a read-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly expose sensitive information kernel...

Huawei HarmonyOS Integer Overflow or Wrap Around Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability previously existed in Huawei HarmonyOS 2.0, which stemmed from a write-across-stack-frame out-of-bounds vulnerability in some Huawei...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. A security vulnerability exists in Huawei HarmonyOS, which provides a microkernel-based, fully-scoped distributed operating system. An attacker could exploit this vulnerability to cause an integrity impact...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. A security vulnerability exists in Huawei HarmonyOS, which provides a microkernel-based, fully-scoped distributed operating system. An attacker could exploit the vulnerability to potentially cause a process to reboot...