7640 matches found
MediaTek Chipsets å®å Øę¼ę“
MediaTek Chipsets is a series of chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Chipsets that stems from a lack of boundary checking, which could lead to out-of-bounds writes and local elevation of privilege...
MediaTek Chipsets å®å Øę¼ę“
MediaTek Chipsets is a series of chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Chipsets that stems from a lack of boundary checking and could lead to a remote denial of service attack...
MediaTek Chipsets å®å Øę¼ę“
MediaTek Chipsets is a series of chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Chipsets, which stems from a lack of boundary checking and could lead to out-of-bounds reads and local elevation of privilege...
gimp: GIMP ICNS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
A remote code execution RCE vulnerability exists in GIMP due to improper bounds checking during the parsing of ICNS image files. When a user opens a specially crafted ICNS file, it can trigger an out-of-bounds write, allowing attackers to execute arbitrary code within the context of the GIMP...
WordPress Refund Request for WooCommerce plugin unauthorized data modification vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. An unauthorized data modification vulnerability exists in the WordPress Refund Request for WooCommerce plugin, which stems from a lack of privilege checking and can be exploited...
EUVD-2025-199676
Unauthenticated Arbitrary File Upload patchcontents.php in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 allows an attacker to perform Unrestricted file upload in patchcontents.php allows uploading malicious files...
xorg: xmayland: Value overflow in XkbSetCompatMap()
A flaw was identified in the X.Org X serverās X Keyboard Xkb extension where improper bounds checking in the XkbSetCompatMap function can cause an unsigned short overflow. If an attacker sends specially crafted input data, the value calculation may overflow, leading to memory corruption or a cras...
ROS-20251125-11
A vulnerability in the Redis database management system DBMS is associated with boundary checking errors in the command XACKDEL. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...
WordPress plugin Blog2Social: Social Media Auto Post & Scheduler å®å Øę¼ę“
WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. A security vulnerability exists in the WordPress plugin Blog2Social: Social Media Auto Post &...
DEBIAN-CVE-2025-40213
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: fix crash in setmeshsync and setmeshcomplete There is a BUG: KASAN: stack-out-of-bounds in setmeshsync due to memcpy from badly declared on-stack flexible array. Another crash is in setmeshcomplete due to double...
gimp: GIMP ICNS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
A remote code execution RCE vulnerability exists in GIMP due to improper bounds checking during the parsing of ICNS image files. When a user opens a specially crafted ICNS file, it can trigger an out-of-bounds write, allowing attackers to execute arbitrary code within the context of the GIMP...
kernel: NFS: Fix filehandle bounds checking in nfs_fh_to_dentry()
A flaw out of boundary read in the Linux kernel NFS functionality was found in the way connected user sends malicious data to the server. A remote user could use this flaw to crash the system...
Moderate: Red Hat Security Advisory: kernel security update
An update for kernel is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
BASICS: Binary Analysis and Stack Integrity Checker System for Buffer Overflow Mitigation
Cyber-Physical Systems have played an essential role in our daily lives, providing critical services such as power and water, whose operability, availability, and reliability must be ensured. The C programming language, prevalent in CPS development, is crucial for system control where reliability...
EUVD-2025-198518
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, visionOS 2.5, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, macOS Sequoia 15.5, watchOS 11.5. An attacker in physical proximity may be able to cause an out-of-bounds rea...
kernel: wifi: cfg80211: sme: cap SSID length in __cfg80211_connect_result()
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: sme: cap SSID length in cfg80211connectresult If the ssid-datalen is more than IEEE80211MAXSSIDLEN 32 it would lead to memory corruption so add some bounds checking...
ctf-toolkit
Bug Bounty Recon Tool š The Ultimate Bug Bounty Recon Tool...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-41097)
usb: atm: cxacru: incomplete endpoint checking in cxacrubind. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504539; scriptversion"1.2";...
libtiff: LibTIFF Buffer Overflow
A flaw was found in libtiff. The setrow function in file tools/thumbnail.c contains a buffer overflow vulnerability triggered by manipulation of image data, which can allow a local attacker to cause a denial of service. This overflow occurs when processing a crafted file. The vulnerability stems...
Updated webkit2 packages fix security vulnerabilities
CVE-2024-27838 A maliciously crafted webpage may be able to fingerprint the user. Description: The issue was addressed by adding additional logic. CVE-2024-27851 Processing maliciously crafted web content may lead to arbitrary code execution. Description: The issue was addressed with improved...