PT-2026-43910

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.11-1.1 Description An issue exists in the RDMA/rxe component where the rxe rcv function fails to properly validate the incoming packet length before calculating the payload size. The payload size calculation...

CVE-2020-37216

Hirschmann HiOS devices versions prior to 08.1.00 and 07.1.01 contain a denial of service vulnerability in the EtherNet/IP stack where improper handling of packet length fields allows remote attackers to crash or hang the device. Attackers can send specially crafted UDP EtherNet/IP packets with a...

GPAC code-related vulnerabilities

GPAC is an open-source multimedia framework developed by GPAC. Versions of GPAC prior to 2.4.0 have code vulnerabilities. These vulnerabilities stem from incorrect handling of parameters in the Name field in the src/mediatools/mediaexport.c file, which may lead to null pointer dereferencing...

EUVD-2019-17261

Malware in sbrugna...

EUVD-2018-1605

Malware in sbrugna...

Nokia Single RAN 安全漏洞

Nokia Single RAN is a wireless network technology from Nokia, Finland. A security vulnerability exists in Nokia Single RAN 24R1-SR versions prior to 1.0 MP, which stems from improper handling of the archive field of a SOAP provision operation message in the MNO internal RAN management network,...

CVE-2023-52968

MariaDB Server 10.4 before 10.4.33, 10.5 before 10.5.24, 10.6 before 10.6.17, 10.7 through 10.11 before 10.11.7, 11.0 before 11.0.5, and 11.1 before 11.1.4 calls fixfieldsifneeded under mysqlderivedprepare when derived is not yet prepared, leading to a findfieldintable crash...

Cross-Site Scripting (XSS)

Trix is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to improper handling of the link field, allowing attackers to trick users into pasting a malicious javascript: URL, which could execute arbitrary JavaScript code within the user's session...

Moodle 3.9.x < 3.9.14 Multiple Vulnerabilities

The version of Moodle installed on the remote host is 3.9.x prior to 3.9.14, 3.10.x prior to 3.10.11, 3.11.x prior to 3.11.7 or 4.0.x prior to 4.0.1. It is, therefore, affected by multiple vulnerabilities: - A stored Cross-Site Scripting XSS vulnerability in ID numbers displayed when bulk...

SoftMaker Office PlanMaker 缓冲区错误漏洞

SoftMaker Office PlanMaker is a spreadsheet suite in office software that supports multiple platforms. A buffer overflow vulnerability exists in the SoftMaker Office PlanMaker Version/Instance 0x0005/0x0016 field handling, which can be exploited by an attacker to crash the application or execute...

SoftMaker Office PlanMaker 缓冲区错误漏洞

SoftMaker Office PlanMaker is a spreadsheet suite in office software that supports multiple platforms. A buffer overflow vulnerability exists in the SoftMaker Office PlanMaker Version/Instance 0x0005/0x0016 field handling, which can be exploited by an attacker to crash the application or execute...

CVE-2018-17698

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit PhantomPDF 9.2.0.9297. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2018-17698

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit PhantomPDF 9.2.0.9297. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2018-15504

An issue was discovered in Embedthis GoAhead before 4.0.1 and Appweb before 7.0.2. The server mishandles some HTTP request fields associated with time, which results in a NULL pointer dereference, as demonstrated by If-Modified-Since or If-Unmodified-Since with a month greater than 11...

WordPress Responsive Cookie Consent plugin authentication cross-site scripting vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform using PHP language development, the platform supports in PHP and MySQL server set up personal blog site.Responsive Cookie Consent plugin is used in which a cookie confirmation plugin. A security vulnerability exists in...

Foxit Reader Format Operation Memory Error References Remote Code Execution Vulnerability

Foxit Reader is a small PDF document viewer and printing program. Foxit Reader has a security vulnerability in field handling that could allow the reuse of a pointer that has been released in a hanging pointer. An attacker could execute arbitrary code in the current process context...

UBUNTU-CVE-2015-6244

The dissectzbeesecure function in epan/dissectors/packet-zbee-security.c in the ZigBee dissector in Wireshark 1.12.x before 1.12.7 improperly relies on length fields contained in packet data, which allows remote attackers to cause a denial of service application crash via a crafted packet...

[Full-Disclosure] iDEFENSE Security Advisory 07.09.04: wvWare Library Buffer Overflow Vulnerability

wvWare Library Buffer Overflow Vulnerability iDEFENSE Security Advisory 07.09.04 www.idefense.com/application/poi/display?id=115&type=vulnerabilities July 09, 2004 I. BACKGROUND Caoln McNamara and Dom Lachowicz's wvWare is a library used to load and parse Microsoft Word files on unix-based system...