1540 matches found
Input validation
IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could disclose sensitive information due to hazardous input validation during QR code generation. IBM X-Force ID: 212040...
CVE-2021-38957
IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could disclose sensitive information due to hazardous input validation during QR code generation. IBM X-Force ID: 212040...
The vulnerability of the Unraid operating system, related to improper code generation, allows a hacker to execute arbitrary code.
The vulnerability of the Unraid operating system is related to incorrect code generation management. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Media Foundation component in Microsoft Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of the Media Foundation component in Microsoft Windows operating systems is related to improper code generation. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially crafted request...
The vulnerability in the index.php script of the D-Link DSL-3782 router’s microprogramming software allows a hacker to execute arbitrary code.
The vulnerability of the index.php script in the D-Link DSL-3782 router microprogramming system is related to incorrect code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Hyper-V hardware virtualization system for Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of the Hyper-V hardware virtualization technology for Windows operating systems is related to improper code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Identity Service in operating systems such as tvOS, iOS, iPadOS, and watchOS allows a hacker to bypass security restrictions.
The vulnerability of the Identity Service for operating systems tvOS, iOS, iPadOS, and watchOS is related to incorrect code generation. Exploiting this vulnerability can allow attackers to circumvent security restrictions...
The vulnerability of HEVC Video Extensions relates to improper code generation, allowing attackers to execute arbitrary code.
The vulnerability of HEVC Video Extensions is related to improper code generation. Exploiting this vulnerability allows an attacker to execute arbitrary code...
The vulnerability of the Moodle administration system, related to errors in code generation, allows a hacker to execute arbitrary code.
The vulnerability of the Moodle administration system is related to errors in code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted request...
The vulnerability of the Microsoft Dynamics 365 resource planning software, related to improper code generation management, allows an attacker to execute arbitrary code.
The vulnerability of the Microsoft Dynamics 365 resource planning software is related to improper code generation. Exploitation of this vulnerability allows a malicious actor to execute arbitrary code remotely and completely compromise the vulnerable system by using specially crafted requests...
Microsoft Edge browser vulnerability, related to improper code generation management, allows attackers to execute arbitrary code.
The vulnerability of Microsoft Edge is related to incorrect code generation management. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the CommCell storage management software lies in its flawed code generation mechanism, which allows an attacker to execute arbitrary code.
The vulnerability of the CommCell storage management software is related to improper handling of code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted request remotely...
The vulnerability of the DNS Server component of the Microsoft Windows operating system, which allows a perpetrator to execute arbitrary code.
The vulnerability of the DNS Server component of the Microsoft Windows operating system is related to improper code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the vBulletin commercial web forum, related to errors in code generation, allows a hacker to execute arbitrary commands.
The vulnerability of the commercial vBulletin web forum is related to errors in code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands using a specially created parameter in the ajax/render/widgetphp script...
The vulnerability of the Microsoft Windows Media Foundation component in the Windows operating system allows a hacker to execute arbitrary code.
The vulnerability of the Microsoft Windows Media Foundation component in the Windows operating system is related to improper code generation. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the font driver for Microsoft Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of the font driver in Microsoft Windows operating systems is related to incorrect code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Microsoft Exchange Server mail server, related to errors in code generation, allows a hacker to execute arbitrary code.
The vulnerability of Microsoft Exchange Server is related to errors in code generation management. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of the Microsoft Exchange Server mail server, related to errors in code generation, allows a hacker to execute arbitrary code.
The vulnerability of Microsoft Exchange Server is related to errors in code generation management. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
Information disclosure
In code generated by BuildParcelFields of generatecpp.cpp, there is a possible way for a crafted parcelable to reveal uninitialized memory of a target process due to uninitialized data. This could lead to local information disclosure across Binder transactions with no additional execution...
PT-2021-6651 · Microsoft · Sharepoint Server +1
Name of the Vulnerable Software and Affected Versions: Microsoft SharePoint Server affected versions not specified Description: The issue is related to incorrect code generation management in Microsoft SharePoint Server, Microsoft SharePoint Foundation, and SharePoint Enterprise Server. This can...