CVE-2025-3194

Versions of the package bigint-buffer from 0.0.0 are vulnerable to Buffer Overflow in the toBigIntLE function. Attackers can exploit this to crash the application...

Huawei HarmonyOS 授权问题漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A command authentication bypass vulnerability exists in the Huawei HarmonyOS Findnetwork module, which can be exploited by an attacker to submit a special...

The Heimdal Software Kerberos 5 implementation is vulnerable to a null pointer dereferance. An attacker with network access to an application that depends on the vulnerable code path can cause the application to crash.

...

USN-5751-1 libmaxminddb vulnerability

It was discovered that libmaxminddb incorrectly handled certain memory operations. A remote attacker could possibly use this issue to cause applications using libmaxminddb to crash, resulting in a denial of service...

Dell EMC iDRAC Stack Overflow Vulnerability

Dell EMC iDRAC is a U.S. Dell Dell for system administrators to update and manage Dell systems located on the server motherboard hardware. Dell EMC iDRAC has a stack overflow vulnerability, which can be exploited by remote attackers to submit special requests that can crash applications or...

Dell EMC iDRAC 缓冲区错误漏洞

Dell EMC iDRAC is a U.S. Dell Dell for system administrators to update and manage Dell systems located on the server motherboard hardware. Dell EMC iDRAC has a stack overflow vulnerability, which can be exploited by remote attackers to submit special requests that can crash applications or...

Oracle MySQL 缓冲区错误漏洞

Oracle MySQL is an open source relational database management system from Oracle Corporation. MySQL Cluster is a highly useful, highly redundant version of Oracle MySQL Cluster for distributed computing environments. Oracle MySQL Cluster is vulnerable to buffer overflow, which can be exploited to...

D-Link DIR-809 formStaticDHCP Buffer Overflow Vulnerability

D-Link DIR-809 is a dual-band router from D-Link, China. buffer overflow vulnerability exists in the fun80034d60 function in the D-Link DIR-809 formStaticDHCP, which can be exploited by attackers to submit special requests that can crash applications or execute arbitrary code...

CVE-2021-43610

CVE-2021-43610 describes a denial-of-service issue in Belledonne Belle-sip before 5.0.20, where an unauthenticated SIP message containing an invalid From header (request URI without a parameter) can crash applications such as Linphone. This is a separate issue from CVE-2021-33056. The Red Hat and...

Industrial Light and Magic OpenEXR 输入验证错误漏洞

OpenEXR is an image file format from Industrial Light and Magic for high dynamic range HDR images. industrial Light and Magic OpenEXR is vulnerable to a resource management error that could be exploited by attackers to crash applications...

UBUNTU-CVE-2017-7519

In Ceph, a format string flaw was found in the way libradosstriper parses input from user. A user could crash an application or service using the libradosstriper library...

CVE-2017-18201

A double-free flaw was found in the way libcdio handled processing of ISO files. An attacker could potentially use this flaw to crash applications using libcdio by tricking them into processing crafted ISO files...

Apache Mesos Denial of Service Vulnerability

Apache Mesos is open source cluster management software , support for Hadoop, ElasticSearch, Spark, Storm and Kafka application architecture. Apache Mesos has a security vulnerability that allows remote attackers to exploit requests submitted through the vulnerability and crash applications...

EulerOS 2.0 SP1 : gstreamer (EulerOS-SA-2017-1205)

According to the versions of the gstreamer packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple flaws were found in gstreamer1, gstreamer1-plugins-base, gstreamer1-plugins-good, and gstreamer1-plugins-bad-free packages. An...

Unspecified Vulnerability in Google Chrome and Chrome OS (CNVD-2017-06653)

Google Chrome is a web browser.Google Chrome OS is an open source web-based operating system. A security vulnerability exists in Google Chrome and Chrome OS that allows remote attackers to exploit the vulnerability to build malicious web pages that can be tricked into parsing by users, which can...

OpenSSL: Multiple vulnerabilities

Background OpenSSL is an Open Source toolkit implementing the Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 as well as a general purpose cryptography library. Description Multiple vulnerabilities have been discovered in OpenSSL. Please review the CVE identifiers referenced...

USN-3143-1 c-ares vulnerability

Gzob Qq discovered that c-ares incorrectly handled certain hostnames. A remote attacker could use this issue to cause applications using c-ares to crash, resulting in a denial of service, or possibly execute arbitrary code...

Facebook HHVM has multiple vulnerabilities (CNVD-2016-06543)

Facebook HHVM aka HipHop Virtual Machine is a virtual machine from Facebook that significantly improves the performance of loading dynamic pages in PHP. An integer overflow vulnerability and a denial of service vulnerability exists in Facebook HHVM. An attacker can exploit this vulnerability to...

Apple iOS/watchOS/tvOS and OS X El Capitan libxml2 arbitrary code execution vulnerability (CNVD-2016-03521)

Apple iOS is an operating system on Apple's cell phones. oS X El Capitan is a dedicated operating system developed for Mac computers. watchOS is a smartwatch operating system. A security vulnerability in libxml2 in Apple iOS, watchOS, and OS X El Capitan could be exploited by an attacker to submi...

Mozilla Firefox and Firefox ESR Denial of Service Vulnerability

Firefox is an open source Web browser ; Firefox ESR is an extended support version of Firefox.Graphite is a set of Python language , written using the Django framework for enterprise-class open source system monitoring tools . A security vulnerability exists in Mozilla Firefox and Firefox ESR,...