65 matches found
EUVD-2025-10831
Malicious code in bioql PyPI...
CVE-2025-52948
An Improper Handling of Exceptional Conditions vulnerability in Berkeley Packet Filter BPF processing of Juniper Networks Junos OS allows an attacker, in rare cases, sending specific, unknown traffic patterns to cause the FPC and system to crash and restart. BPF provides a raw interface to data...
CVE-2024-51560
This vulnerability exists in the Wave 2.0 due to improper exception handling for invalid inputs at certain API endpoint. An authenticated remote attacker could exploit this vulnerability by providing invalid inputs for “userId” parameter in the API request leading to generation of error message...
CVE-2023-42559
Improper exception management vulnerability in Knox Guard prior to SMR Dec-2023 Release 1 allows Knox Guard lock bypass via changing system time...
CVE-2021-25473
Assuming a shell privilege is gained, an improper exception handling for multisimbarhidebymeadiafull value in SystemUI prior to SMR Oct-2021 Release 1 allows an attacker to cause a permanent denial of service in user device before factory reset...
CVE-2020-9074
Huawei Smartphones HONOR 20 PRO;Honor View 20;HONOR 20 have an improper handling of exceptional condition Vulnerability. A component cannot deal with an exception correctly. Attackers can exploit this vulnerability by sending malformed message. This could compromise normal service of affected...
tomcat: Apache Tomcat: Authentication bypass when using Jakarta Authentication API
A flaw was found in Apache Tomcat when configured to use a custom Jakarta Authentication formerly JASPIC ServerAuthContext component. This vulnerability allows authentication bypass via improperly handled exceptions during the authentication process...
JetBrains TeamCity 安全漏洞
JetBrains TeamCity is a powerful continuous integration and continuous delivery CI/CD tool developed by JetBrains. JetBrains TeamCity suffers from an information disclosure vulnerability that stems from mishandling of an exception that results in the disclosure of credentials on the cloud...
LlamaIndex Improper Handling of Exceptional Conditions vulnerability
A vulnerability in the LangChainLLM class of the run-llama/llamaindex repository, version v0.12.5, allows for a Denial of Service DoS attack. The streamcomplete method executes the llm using a thread and retrieves the result via the getresponsegen method of the StreamingGeneratorCallbackHandler...
CVE-2024-20147
In Bluetooth FW, there is a possible reachable assertion due to improper exception handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389046 Note: For MT79XX chipsets / ALPS0913650...
CVE-2024-21525
All versions of the package node-twain are vulnerable to Improper Check or Handling of Exceptional Conditions due to the length of the source data not being checked. Creating a new twain.TwainSDK with a productName or productFamily, manufacturer, version.info property of length = 34 chars leads t...
CVE-2024-20147
In Bluetooth FW, there is a possible reachable assertion due to improper exception handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389046 Note: For MT79XX chipsets / ALPS0913650...
CVE-2024-20147
CVE-2024-20147 concerns a vulnerability in MediaTek Bluetooth firmware where an improper exception handling can lead to a reachable assertion, enabling remote denial of service without privileges or user interaction. Affected components are MediaTek chipsets, including MT79XX (and MT2737, MT3603,...
CVE-2024-20152
In wlan STA driver, there is a possible reachable assertion due to improper exception handling. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00389047 / ALPS09136505; Issue...
CVE-2024-20152
In wlan STA driver, there is a possible reachable assertion due to improper exception handling. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00389047 / ALPS09136505; Issue...
PT-2025-2281 · Unknown · Wlan Sta Driver
Name of the Vulnerable Software and Affected Versions: WLAN STA driver affected versions not specified Description: The issue is related to a reachable assertion in the WLAN STA driver due to improper exception handling. This could lead to a local denial of service if a malicious actor has alread...
PT-2024-18623 · Unknown · Wlan Driver
Name of the Vulnerable Software and Affected Versions: WLAN driver affected versions not specified Description: The issue is related to improper handling of exceptional conditions in the WLAN driver, which could lead to a remote denial of service with no additional execution privileges needed. Us...
Improper Handling of Exceptional Conditions
Overview Affected versions of this package are vulnerable to Improper Handling of Exceptional Conditions due to an invalid parse of the title in the vector-intro-page message. Remediation A fix was pushed into the master branch but not yet published. References - Gerrit Wikimedia - GitHub Commit ...
PT-2024-26056 · Unknown · Themecenter
Name of the Vulnerable Software and Affected Versions: ThemeCenter versions prior to SMR Sep-2024 Release 1 Description: The issue arises from improper handling of exceptional conditions in ThemeCenter, allowing local attackers to delete non-preloaded applications. This can be exploited by...
Siemens SINEMA Remote Connect Server Exception or Improper Exception Checking Vulnerability
Siemens SINEMA Remote Connect Server is a remote network management platform from Siemens, Germany. The platform is used to remotely access, maintain, control and diagnose the underlying network. Siemens SINEMA Remote Connect Server has an anomaly or improper anomaly checking vulnerability that c...