48 matches found
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.04 / 25.10 : CUPS vulnerability (USN-7897-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.04 / 25.10 host has packages installed that are affected by a vulnerability as referenced in the USN-7897-1 advisory. It was discovered that CUPS incorrectly handled input from users in the web configuration settings...
Prototype Pollution
Overview org.webjars.npm:rollbar is an Effortlessly track and debug errors in your JavaScript applications with Rollbar. This package includes advanced error tracking features and an intuitive interface to help you identify and fix issues more quickly. Affected versions of this package are...
Publii CMS 安全漏洞
Publii CMS is a static website generator from the Polish company Publii. A security vulnerability exists in Publii CMS version v0.46.5, which stems from an uncleaned configuration field input and could lead to a stored cross-site scripting attack...
EUVD-2016-3480
Malware in sbrugna...
The vulnerabilities of microprogramming software for AMD, Qualcomm, and Imagination allow attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of microprogramming software for AMD, Qualcomm, and Imagination relates to incorrect input of configuration data. Exploiting this vulnerability can allow attackers to compromise the confidentiality, integrity, and accessibility of protected information...
CVE-2025-20200
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to elevate privileges to root on the underlying operating system of an affected device. This vulnerability is due to insufficient input validation when processing specific...
CVE-2025-20199
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to elevate privileges to root on the underlying operating system of an affected device. This vulnerability is due to insufficient input validation when processing specific...
CVE-2025-20199
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to elevate privileges to root on the underlying operating system of an affected device. This vulnerability is due to insufficient input validation when processing specific...
CVE-2025-20200
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to elevate privileges to root on the underlying operating system of an affected device. This vulnerability is due to insufficient input validation when processing specific...
The vulnerability of the memory management block for IOMMU operations in AMD’s microprogramming software for processors allows attackers to circumvent security restrictions and compromise the integrity of the protected information.
The vulnerability of the memory management block for IOMMU operations in AMD microprogramming systems is related to incorrect input of configuration data. Exploiting this vulnerability can allow attackers to circumvent security restrictions and compromise the integrity of protected information...
The vulnerability of microprogrammed software in Mitsubishi Electric’s M800V/M80V Series, M800/M80/E80 Series, C80 Series, and M700V/M70V/E70V Series programmable logic controllers is related to incorrect input of configuration data. This vulnerability allows a malicious actor to cause malfunctions during maintenance operations.
The vulnerability of microprogrammed software in Mitsubishi Electric’s M800V/M80V Series, M800/M80/E80 Series, C80 Series, M700V/M70V/E70 Series programmable logic controllers is related to incorrect input of configuration data. Exploiting this vulnerability can allow an attacker, operating...
USN-6676-1 c-ares vulnerability
Vojtěch Vobr discovered that c-ares incorrectly handled user input from local configuration files. An attacker could possibly use this issue to cause a denial of service via application crash...
The vulnerability of the kernel mode of NVIDIA GeForce, Studio, RTX/Quadro, NVS, and Tesla graphics processors allows a hacker to trigger a service failure.
The vulnerability of the kernel mode of NVIDIA GeForce, Studio, RTX/Quadro, NVS, and Tesla graphics processors is related to incorrect input of configuration data. Exploiting this vulnerability can allow attackers to cause service failures...
Mitsubishi Electric MC Works64 代码问题漏洞
Mitsubishi Electric MC Works64 is a data acquisition and monitoring system SCADA from Mitsubishi Electric Japan. A code issue vulnerability exists in Mitsubishi Electric MC Works64 that stems from incorrect validation of inputs to the project configuration file...
CVE-2021-30293
Possible assertion due to lack of input validation in PUSCH configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT...
Denial Of Service (DoS)
ffmpeg is vulnerable to denial of service. A memory leak in the configinput function in afacrossover.c allows an attacker to crash the application...
FFmpeg Denial of Service Vulnerability (CNVD-2021-40486)
FFmpeg is a complete solution for recording, converting and streaming audio and video. A security vulnerability exists in FFmpeg due to a memory leak in the configuration input function in af across . The vulnerability can be exploited by an attacker to conduct a denial of service attack...
CVE-2019-19393
The Web application on Rittal CMC PU III 7030.000 V3.00 V3.11.002 to V3.15.704 devices fails to sanitize user input on the system configurations page. This allows an attacker to backdoor the device with HTML and browser-interpreted content such as JavaScript or other client-side scripts as the...
CVE-2016-2396
The GMS ViewPoint GMSVP web application in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1 before Hotfix 168056 allows remote authenticated users to execute arbitrary commands via vectors related to configuration input...
CVE-2016-2396
The GMS ViewPoint GMSVP web application in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1 before Hotfix 168056 allows remote authenticated users to execute arbitrary commands via vectors related to configuration input...