7652 matches found
IBM MQ Code Issues Vulnerabilities
IBM MQ is a messaging middleware product from International Business Machines IBM. The product focuses on providing a reliable and proven messaging backbone for Service Oriented Architecture SOA. A code issue vulnerability exists in IBM MQ that stems from improper exception condition checking and...
The vulnerability in the RegExp component of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, Thunderbird ESR, allows a hacker to execute arbitrary code.
The vulnerability of the RegExp component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird, Thunderbird ESR, is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
Google Android Buffer Overflow Vulnerability
Google Android is a free and open source mobile operating system developed by Google Inc. based on the Linux kernel. Google Android suffers from a buffer overflow vulnerability that originates from incorrect boundary checking in static long devsend of tipcdevql, which can be exploited by an...
Huawei HarmonyOS media library module privilege checksum vulnerability (CNVD-2025-07255)
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A privilege checking vulnerability exists in the Huawei HarmonyOS media library module, which can be exploited by an attacker to compromise confidentiality...
RHEL 8 : webkit2gtk3 (RHSA-2024:9646)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:9646 advisory. WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: webkitgtk: Memory corruption issue wh...
RHEL 8 : webkit2gtk3 (RHSA-2024:9636)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:9636 advisory. WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: chromium-browser: Use after free in...
The vulnerability of the DNN CMS system, related to insufficient checking of unusual or exceptional states, allows attackers to circumvent existing security restrictions.
The vulnerability of the DNN CMS system is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a malicious actor to bypass existing security restrictions remotely...
Xorg: xwayland: Buffer overflow in XkbVModMaskText()
A buffer overflow flaw was found in X.Org and Xwayland. The code in XkbVModMaskText allocates a fixed-sized buffer on the stack and copies the names of the virtual modifiers to that buffer. The code fails to check the bounds of the buffer and would copy the data regardless of the size...
Apple macOS 安全漏洞
Apple macOS is a suite of specialized operating systems from the U.S.-based Apple Inc. developed specifically for Mac computers. A security vulnerability exists in Apple macOS, which stems from a checking improvement that could lead to a malicious application modifying other applications without...
Some AES functions may panic when overflow checking is enabled in ring
ring::aead::quic::HeaderProtectionKey::newmask may panic when overflow checking is enabled. In the QUIC protocol, an attacker can induce this panic by sending a specially-crafted packet. Even unintentionally it is likely to occur in 1 out of every 232 packets sent and/or received. On 64-bit targe...
GHSA-4P46-PWFR-66X6 Some AES functions may panic when overflow checking is enabled in ring
ring::aead::quic::HeaderProtectionKey::newmask may panic when overflow checking is enabled. In the QUIC protocol, an attacker can induce this panic by sending a specially-crafted packet. Even unintentionally it is likely to occur in 1 out of every 232 packets sent and/or received. On 64-bit targe...
RUSTSEC-2025-0009 Some AES functions may panic when overflow checking is enabled.
ring::aead::quic::HeaderProtectionKey::newmask may panic when overflow checking is enabled. In the QUIC protocol, an attacker can induce this panic by sending a specially-crafted packet. Even unintentionally it is likely to occur in 1 out of every 232 packets sent and/or received. On 64-bit targe...
Linux Distros Unpatched Vulnerability : CVE-2024-53045
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ASoC: dapm: fix bounds checker error in dapmwidgetlistcreate The widgets array in the...
Linux Distros Unpatched Vulnerability : CVE-2024-53189
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: fix bounds checker error in nl80211parseschedscan The channels array in the...
[SECURITY] Fedora 41 Update: exim-4.98.1-1.fc41
Exim is a message transfer agent MTA developed at the University of Cambridge for use on Unix systems connected to the Internet. It is freely available under the terms of the GNU General Public Licence. In style it is similar to Smail 3, but its facilities are more general. There is a great deal ...
Linux Distros Unpatched Vulnerability : CVE-2020-7942
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Previously, Puppet operated on a model that a node with a valid certificate was entitled to all information in the system and that a compromised certificate...
Linux Distros Unpatched Vulnerability : CVE-2024-41097
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: atm: cxacru: fix endpoint checking in cxacrubind Syzbot is still reporting quite an old issue 1 that occurs due to incomplete checking of present usb...
Huawei HarmonyOS 安全漏洞
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A privilege checking vulnerability exists in the Huawei HarmonyOS media library module, which can be exploited by an attacker to compromise confidentiality...
Huawei EMUI和Huawei HarmonyOS 安全漏洞
Huawei EMUI is a mobile operating system developed based on Android.Huawei HarmonyOS is an operating system. Provides a full-scene distributed operating system based on a microkernel. Huawei EMUI and HarmonyOS have a bypass privilege checking vulnerability that can be exploited by an attacker to...
Linux Distros Unpatched Vulnerability : CVE-2018-16509
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Artifex Ghostscript before 9.24. Incorrect restoration of privilege checking during handling of /invalidaccess exceptions could be us...