879 matches found
PT-2021-5699 · Microsoft · Defender For Iot
Name of the Vulnerable Software and Affected Versions: Microsoft Defender for IoT affected versions not specified Description: The issue is related to incorrect code generation management in Microsoft Defender for IoT. It can be exploited by a remote attacker using a specially crafted request,...
PT-2021-6247 · Microsoft · Defender For Iot
Name of the Vulnerable Software and Affected Versions: Microsoft Defender for IoT affected versions not specified Description: The issue is related to incorrect code generation management in Microsoft Defender for IoT. It can be exploited by a remote attacker using a specially crafted request,...
PT-2021-6222 · Microsoft · Hevc Video Extensions
Name of the Vulnerable Software and Affected Versions: HEVC Video Extensions affected versions not specified Description: The issue is related to incorrect code generation management in the HEVC Video Extensions codec. Exploitation of this issue may allow an attacker to execute arbitrary code...
PT-2021-5304 · Microsoft · Edge
Name of the Vulnerable Software and Affected Versions: Microsoft Edge affected versions not specified Description: The issue is related to incorrect code generation management in the browser, which can be exploited by a remote attacker to execute arbitrary code. Recommendations: At the moment,...
PT-2021-5043 · Microsoft · Windows Ntfs +1
Name of the Vulnerable Software and Affected Versions: Windows NTFS affected versions not specified Description: The issue is related to incorrect code generation management in the Windows NTFS file system, allowing remote attackers to execute arbitrary code using a specially crafted request. Thi...
PT-2021-5003 · Microsoft · Malware Protection Engine
Name of the Vulnerable Software and Affected Versions: Microsoft Malware Protection Engine MPE affected versions not specified Description: The issue is related to errors in code generation management within the Microsoft Malware Protection Engine MPE. Exploitation of this issue may allow an...
PT-2021-5070 · Microsoft · Office Excel +1
Name of the Vulnerable Software and Affected Versions: Microsoft Excel affected versions not specified Description: The issue is related to incorrect code generation management in Microsoft Excel, allowing remote attackers to execute arbitrary code. This can be exploited by attackers to gain...
PT-2021-5265 · Microsoft · Windows Media Foundation +1
Name of the Vulnerable Software and Affected Versions: Microsoft Windows Media Foundation affected versions not specified Description: The issue is related to incorrect code generation management in the Microsoft Windows Media Foundation component of the Windows operating system. It allows remote...
PT-2021-4815 · Microsoft · Virtual Machine Bus +1
Name of the Vulnerable Software and Affected Versions: Microsoft Virtual Machine Bus VMBus affected versions not specified Description: The issue is related to incorrect code generation management in the Microsoft Virtual Machine Bus VMBus component of the Windows operating system. This allows a...
PT-2021-4804 · Microsoft · Com +1
Name of the Vulnerable Software and Affected Versions: Microsoft COM for Windows affected versions not specified Description: The issue is related to incorrect code generation management in the Microsoft COM component of the Windows operating system. This can be exploited by a remote attacker to...
Fedora: Security Advisory for CuraEngine (FEDORA-2021-16d848834d)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2021-42754
An improper control of generation of code vulnerability CWE-94 in FortiClientMacOS versions 7.0.0 and below and 6.4.5 and below may allow an authenticated attacker to hijack the MacOS camera without the user permission via the malicious dylib file...
CVE-2021-42754
An improper control of generation of code vulnerability CWE-94 in FortiClientMacOS versions 7.0.0 and below and 6.4.5 and below may allow an authenticated attacker to hijack the MacOS camera without the user permission via the malicious dylib file...
CVE-2021-42754
An improper control of generation of code vulnerability CWE-94 in FortiClientMacOS versions 7.0.0 and below and 6.4.5 and below may allow an authenticated attacker to hijack the MacOS camera without the user permission via the malicious dylib file...
CVE-2021-42754
Fortinet FortiClientMacOS (versions ≤7.0.0 and ≤6.4.5) is affected by CVE-2021-42754 due to an improper control of code generation (CWE-94). A malicious dylib loader can cause FortiClient’s camera handling to hijack the MacOS camera without user permission. The vulnerability requires an authentic...
Generated code can read and write out of bounds in safe code
Code generated by flatbuffers' compiler is unsafe but not marked as such. See https://github.com/google/flatbuffers/issues/6627 for details. For example, if generated code is used to decode malformed or untrusted input, undefined behavior and thus security vulnerabilities is possible even without...
PT-2021-4392 · Microsoft · Windows Hyper-V +1
Name of the Vulnerable Software and Affected Versions: Windows Hyper-V affected versions not specified Description: The issue is related to incorrect code generation management in the Hyper-V hardware virtualization system of the Windows operating system. It allows remote attackers to execute...
PT-2021-4370 · Microsoft · Office Word +1
Name of the Vulnerable Software and Affected Versions: Microsoft Word affected versions not specified Description: The issue is related to incorrect code generation management in Microsoft Word, allowing a remote attacker to execute arbitrary code. This can be exploited by remote attackers,...
PT-2021-4393 · Microsoft · Office Excel +1
Name of the Vulnerable Software and Affected Versions: Microsoft Excel affected versions not specified Description: The issue is related to incorrect code generation management in Microsoft Excel, allowing a remote attacker to potentially elevate their privileges. This can enable remote attackers...
PT-2021-4378 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to incorrect code generation management in the Windows operating system. It allows remote attackers to execute arbitrary code and affect the system. Recommendations: At...