Trend Micro Antivirus for Mac Link Following Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Antivirus for Mac. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

Arbitrary Code Execution in Docker

Docker before 1.3.2 allows remote attackers to write to arbitrary files and execute arbitrary code via a 1 symlink or 2 hard link attack in an image archive in a a pull or b load operation...

TP-Link TL-WR940N Buffer Overflow Vulnerability

Tp-link TP-Link TL-WR940N is a wireless router from China P&L Tp-link. The TP-Link TL-WR940N suffers from a buffer overflow vulnerability that stems from a lack of proper validation of the length of user-supplied data before copying it into a fixed-length stack-based buffer. An attacker could...

Authentication flaw

Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate privileges Execute arbitrary commands Bypass authentication and authorization protections Fetch and run unsigned softwa...

CVE-2021-41445

A reflected cross-site-scripting attack in web application of D-Link DIR-X1860 before v1.10WWB09Beta allows a remote unauthenticated attacker to execute code in the device of the victim via sending a specific URL to the unauthenticated victim...

Bentley MicroStation CONNECT Out-of-Bounds Write Vulnerability (CNVD-2022-30766)

Bentley MicroStation CONNECT is a Cad software platform for 2D and 3D design and drafting from Bentley Systems, U.S.A. An out-of-bounds write vulnerability exists in Bentley MicroStation CONNECT, which could be exploited by an attacker to trigger, via crafted data in a PN image an out-of-bounds...

Bentley Systems MicroStation Buffer Overflow Vulnerability (CNVD-2022-16161)

Bentley Systems MicroStation is a Cad software platform for 2D and 3D design and drafting from Bentley Systems, USA. A buffer overflow vulnerability exists in Bentley Systems MicroStation that can be exploited by an attacker to execute code in the context of the current process...

Bentley Systems Bentley View Resource Management Error Vulnerability (CNVD-2022-77007)

Bentley Systems Bentley View is a free viewer from Bentley Systems, Inc. Bentley Systems Bentley View is vulnerable to a resource management error that could be exploited by an attacker to execute code in the context of the current process...

Bentley Systems MicroStation Buffer Overflow Vulnerability (CNVD-2022-15815)

Bentley Systems MicroStation is a Cad software platform for 2D and 3D design and drafting from Bentley Systems, USA. A buffer overflow vulnerability exists in Bentley Systems MicroStation that can be exploited by an attacker to execute code in the context of the current process...

Bentley Systems Bentley View Buffer Overflow Vulnerability (CNVD-2022-15835)

Bentley Systems Bentley View is a free viewer from Bentley Systems, USA. A buffer overflow vulnerability exists in Bentley View that can be exploited by an attacker to execute code in the context of the current process...

Bentley Systems Bentley View Resource Management Error Vulnerability (CNVD-2022-77006)

Bentley Systems Bentley View is a free viewer from Bentley Systems, Inc. A resource management error vulnerability exists in Bentley Systems Bentley View, which originally failed to verify the existence of an object before performing further free operations on the object, and could be exploited b...

Bentley Systems MicroStation Buffer Overflow Vulnerability (CNVD-2022-16159)

Bentley Systems MicroStation is a Cad software platform for 2D and 3D design and drafting from Bentley Systems, USA. A buffer overflow vulnerability exists in Bentley Systems MicroStation that can be exploited by an attacker to execute code in the context of the current process...

Bentley Systems Bentley View Buffer Overflow Vulnerability (CNVD-2022-15834)

Bentley Systems Bentley View is a free viewer from Bentley Systems, USA. A buffer overflow vulnerability exists in Bentley View that can be exploited by an attacker to execute code in the context of the current process...

CVE-2021-46158

A vulnerability has been identified in Simcenter Femap V2020.2 All versions, Simcenter Femap V2021.1 All versions. Affected application contains a stack based buffer overflow vulnerability while parsing NEU files. This could allow an attacker to execute code in the context of the current process...

Siemens OpenSSL Vulnerability in Industrial Products

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an unauthenticated remote attacker to execute arbitrary code or to cause a denial-of-service condition. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this...

Korenix Technology Korenix JetWave 安全漏洞

Korenix Technology Korenix JetWave is a series of wireless access points from Korenix Technology. A security vulnerability exists in Korenix JetWave that stems from the software's lack of authentication of user data. An authenticated user can execute arbitrary code via syscmd.asp...

CVE-2021-23521

This affects the package juce-framework/JUCE before 6.1.5. This vulnerability is triggered when a malicious archive is crafted with an entry containing a symbolic link. When extracted, the symbolic link is followed outside of the target dir allowing writing arbitrary files on the target host. In...

Mageia: Security Advisory (MGASA-2015-0029)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2015-0012)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Internet Explorer Memory Corruption Vulnerability

Microsoft Internet Explorer contains a memory corruption vulnerability that allows remote attackers to execute code in the context of the current user...