The vulnerability of the PJMEDIA RTP decoder and the PJMEDIA SDP parser of the multimedia communication library PJSIP allows a perpetrator to execute arbitrary code.

The vulnerability of the PJMEDIA RTP decoder and the PJMEDIA SDP parser, which are part of the PJSIP multimedia communication library, stems from the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability in the web interface for managing microprogrammed software routers of Cisco Small Business RV110W, RV130, RV130W, and RV215W allows a perpetrator to execute arbitrary commands or cause service failures.

The vulnerability in the web interface for managing microprogrammed software routers of Cisco Small Business RV110W, RV130, RV130W, and RV215W arises from the copying of buffers without checking the size of the input data during the processing of user fields in incoming HTTP packets. Exploiting...

The vulnerability in the web interface for managing microprogrammed wireless router software from Cisco’s Small Business series—RV110W, RV130, RV130W, and RV215W—allows a attacker to execute arbitrary code or cause a service failure.

The vulnerability in the web interface for managing microprogramming software on Cisco Small Business RV110W, RV130, RV130W, and RV215W routers stems from the copying of buffers without checking the size of the input data during the processing of user fields in incoming HTTP packets. Exploiting...

The vulnerability of the Data Server database in the interactive graphical SCADA system, allowing a intruder to execute arbitrary code.

The vulnerability of the Data Server database in the Interactive Graphical SCADA System IGSS involves copying buffers without checking the size of the input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending specially crafted messages...

Denial Of Service (DoS)

Apache HTTP Server is vulnerable to denial of service. The vulnerability exists due to a lack of sanitization allowing an attacker to crash the system via an out of bounds read in apstrcmpmatch when provided with an extremely large input buffer...

DEBIAN-CVE-2022-28615

Apache HTTP Server 2.4.53 and earlier may crash or disclose information due to a read beyond bounds in apstrcmpmatch when provided with an extremely large input buffer. While no code distributed with the server can be coerced into such a call, third-party modules or lua scripts that use...

CVE-2021-40062

There is a vulnerability of copying input buffer without checking its size in the video framework. Successful exploitation of this vulnerability may affect availability...

CVE-2021-40062

There is a vulnerability of copying input buffer without checking its size in the video framework. Successful exploitation of this vulnerability may affect availability...

CVE-2021-40056

There is a vulnerability of copying input buffer without checking its size in the video framework. Successful exploitation of this vulnerability may affect availability...

CVE-2021-40056

There is a vulnerability of copying input buffer without checking its size in the video framework. Successful exploitation of this vulnerability may affect availability...

Design/Logic Flaw

There is a vulnerability of copying input buffer without checking its size in the video framework. Successful exploitation of this vulnerability may affect availability...

HUAWEI EMUI 安全漏洞

Huawei Emui is a mobile operating system developed on Android. magic Ui is a mobile operating system developed on Android. a denial of service vulnerability exists in Huawei Emui and Magic UI, which stems from copying the input buffer in the video framework without checking its size. An attacker...

CVE-2021-40056

There is a vulnerability of copying input buffer without checking its size in the video framework. Successful exploitation of this vulnerability may affect availability...

CVE-2021-40056

The CVE-2021-40056 entry concerns Huawei EMUI/Magic UI where the video framework copies an input buffer without verifying its size, leading to a denial-of-service condition (availability impact). Connected CNVD-2022-20298 describes the same root cause in Huawei EMUI and Magic UI. Specific affecte...

CVE-2021-40062

CVE-2021-40062 is described across multiple sources as a buffer overflow in Huawei EMUI/Magic UI video framework caused by copying the input buffer without size checks. This leads to a denial-of-service impact (availability). The connected CNVD/CNNVD entries corroborate a Huawei Android-based EMU...

CVE-2021-40062

There is a vulnerability of copying input buffer without checking its size in the video framework. Successful exploitation of this vulnerability may affect availability...

CLSA-2021-1640700669 Fixed 8 CVEs in libxml2

CVE-2021-3517.patch: validate UTF8 in xmlEncodeEntities - CVE-2021-3518.patch: fix user-after-free with 'xmllint --xinclude --dropdtd' - CVE-2021-3537.patch: propagate error in xmlParseElementChildrenContentDeclPriv - CVE-2021-3541.patch: parser fix for the billion laughs attack -...

The vulnerability of the programming software for PLCs (programmable logic controllers), EcoStruxure Control Expert, allows a intruder to trigger a service failure.

The vulnerability of the programming software for PLCs programmable logic controllers, EcoStruxure Control Expert, lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a malicious actor to cause malfunctions in the system remotely...

The vulnerability of the webSetFrmUpgrade function in the embedded web server, which involves copying buffers without checking the size of the input data, allows a hacker to escalate their privileges and cause a service failure.

The vulnerability of the webSetFrmUpgrade function in the embedded web server is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to increase their privileges and cause service interruptions using a specially crafte...

RUSTSEC-2021-0068 Soundness issue in `iced-x86` versions <= 1.10.3

Versions of iced-x86...