PT-2024-4680 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a buffer overflow in dynamic memory in the implementation of the Secure Boot protocol in Windows operating systems. This can be exploited by sending specially crafte...

The vulnerability of the SSL VPN remote access technology of the SonicOS operating system allows a intruder to trigger a service failure.

The vulnerability of the SSL VPN remote access technology for the SonicOS operating system is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow a malicious actor to cause a service failure...

ROS-20240620-18

Vulnerability in the ReadTIFFImage function of the ImageMagick console graphical editor related to a heap buffer overflow. Exploitation of the vulnerability could allow an attacker acting remotely, cause a denial of service A vulnerability in the importmultispectralquantum function of the...

ROS-20240620-17

Vulnerability of importmultispectralquantum function of ImageMagick console graphical editor is caused by by a buffer overflow in dynamic memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service Vulnerability in the ReadTIFFImage function of the ImageMagick...

ROS-20240625-04

A vulnerability in the e1000e component of the QEMU server is related to DMA re-entry. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the registervfs function hw/pci/pciesriov.c of the QEMU hardware emulator is related to a buffer overflo...

The vulnerability of the Dawn component in browsers Google Chrome and Microsoft Edge allows a hacker to execute arbitrary code.

The vulnerability of the Dawn component in Google Chrome and Microsoft Edge is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created file...

The vulnerability of the implementation of the Link Layer Topology Discovery Protocol (LLTD) in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Link Layer Topology Discovery Protocol LLTD implementation in Windows operating systems is related to buffer overflows in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending a specially crafted network packet...

The vulnerability of the implementation of the Link Layer Topology Discovery Protocol (LLTD) in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Link Layer Topology Discovery Protocol LLTD implementation in Windows operating systems is related to buffer overflows in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending a specially crafted network packet...

The vulnerability of the Cloud Files Mini Driver for operating systems running on Windows, which allows a hacker to increase their privileges.

The vulnerability of the Cloud Files Mini Filter driver for Windows operating systems is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of the Win32k.sys component in Windows operating systems, which allows a hacker to increase their privileges

The vulnerability of the Win32k.sys component in Windows operating systems is related to buffer overflows in dynamic memory. Exploiting this vulnerability can allow an attacker to increase their privileges using specially created data...

PT-2024-4144 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a buffer overflow in dynamic memory in the Winlogon program, which is part of the Windows operating system. This can be exploited by an attacker using specially...

ROS-20240607-03

A vulnerability in the lrzip.c:initializecontrol component of the Irzip software tool is caused by a buffer overflow in dynamic memory. buffer overflow in dynamic memory. Exploitation of the vulnerability could allow an attacker acting remotely, affect confidentiality, integrity and availability ...

CVE-2024-36914

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skip on writeback when it's not applicable WHY dynamic memory safety error detector KASAN catches and generates error messages "BUG: KASAN: slab-out-of-bounds" as writeback connector does not support certain...

CVE-2024-36914 drm/amd/display: Skip on writeback when it's not applicable

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skip on writeback when it's not applicable WHY dynamic memory safety error detector KASAN catches and generates error messages "BUG: KASAN: slab-out-of-bounds" as writeback connector does not support certain...

CVE-2024-36914 drm/amd/display: Skip on writeback when it's not applicable

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skip on writeback when it's not applicable WHY dynamic memory safety error detector KASAN catches and generates error messages "BUG: KASAN: slab-out-of-bounds" as writeback connector does not support certain...

The vulnerability of Siemens Solid Edge’s design and simulation tools relates to buffer overflow in dynamic memory, allowing an attacker to execute arbitrary code.

The vulnerability of Siemens Solid Edge’s design and simulation tools is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created PAR file...

Use After Free

Wireshark is vulnerable to Use After Free. The vulnerability is caused due to an incorrect use of dynamic memory during program operation which can cause a Denial Of Service DOS via crafted capture file...

Vulnerability of Windows Cryptographic Operating System services, allowing attackers to execute arbitrary code

The vulnerability of Windows Cryptographic Operating Systems is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Windows Hyper-V hardware virtualization system allows a perpetrator to execute arbitrary code.

The vulnerability of the Windows Hyper-V hardware virtualization system is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

CVE-2024-35943

The CVE-2024-35943 entry pertains to the Linux kernel, specifically a vulnerability in TI-related pmdomain handling where omap_prm_domain_init lacked a null-pointer check after a dynamic allocation. The issue arises because devm_kasprintf() can return NULL on allocation failure, and without verif...