CVE-2021-42686

An Integer Overflow exists in Accops HyWorks Windows Client prior to v 3.2.8.200. The IOCTL Handler 0x22001B in the Accops HyWorks Windows Client prior to v 3.2.8.200 allow local attackers to execute arbitrary code in kernel mode or cause a denial of service memory corruption and OS crash via...

CVE-2021-43637

Amazon WorkSpaces agent is affected by Buffer Overflow. IOCTL Handler 0x22001B in the Amazon WorkSpaces agent below v1.0.1.1537 allow local attackers to execute arbitrary code in kernel mode or cause a denial of service memory corruption and OS crash via specially crafted I/O Request Packet...

CVE-2021-43000

Amzetta zPortal Windows zClient is affected by Buffer Overflow. IOCTL Handler 0x22001B in the Amzetta zPortal Windows zClient = v3.2.8180.148 allow local attackers to execute arbitrary code in kernel mode or cause a denial of service memory corruption and OS crash via specially crafted I/O Reques...

CVE-2021-42979

NoMachine Cloud Server is affected by Integer Overflow. IOCTL Handler 0x22001B in the NoMachine Cloud Server above 4.0.346 and below 7.7.4 allow local attackers to execute arbitrary code in kernel mode or cause a denial of service memory corruption and OS crash via specially crafted I/O Request...

Nomachine NoMachine 安全漏洞

NoMachine is a remote desktop access tool from the Luxembourg company NoMachine. A security vulnerability exists in NoMachine Cloud Server, which can be exploited by an attacker to execute arbitrary code in kernel mode or cause a denial of service memory corruption and operating system crash via...

Accops HyWorks输入验证错误漏洞

Accops HyWorks is a suite of solutions consisting of software and hardware from Accops India. It is used to instantly and securely access enterprise applications remotely from anywhere, on any device and from any network. An integer overflow vulnerability exists in the Accops HyWorks Windows...

NoMachine 安全漏洞

NoMachine is a remote desktop access tool from NoMachine Luxembourg. A security vulnerability exists in NoMachine Enterprise Desktop, which can be exploited by an attacker to execute arbitrary code in kernel mode or cause a denial of service memory corruption and operating system crash via...

Accops HyWorks安全漏洞

Accops HyWorks is a suite of solutions consisting of software and hardware from Accops India. It is used to instantly and securely access enterprise applications remotely from anywhere, on any device and from any network. A buffer overflow vulnerability exists in the Accops HyWorks Windows Client...

Donglify 输入验证错误漏洞

Electronic Team Donglify is an application from Electronic Team, Inc. that shares Usb security keys over the Internet. an integer overflow vulnerability exists in Electronic Team Donglify, which can be exploited by attackers to execute arbitrary code in kernel mode or via specially crafted I/O...

Donglify 安全漏洞

Donglify is an application for sharing Usb security keys over the Internet by Electronic Team USA. Donglify suffers from a buffer overflow vulnerability that can be exploited by a local attacker to cause a denial of service memory corruption and OS crash by executing arbitrary code in kernel mode...

Amazon FreeRTOS code issue vulnerability

A code issue vulnerability exists in Amazon FreeRTOS, an open source operating system for microcontrollers from Amazon.com, which stems from the product's failure to add valid permissions. An attacker could invoke the functions via non-kernel code through this vulnerability...

Amazon FreeRTOS 代码问题漏洞

A code issue vulnerability exists in Amazon FreeRTOS, an open source operating system for microcontrollers from Amazon.com, which stems from the product's failure to add valid permissions. An attacker could invoke the functions via non-kernel code through this vulnerability...

About the security content of watchOS 8.1

About the security content of watchOS 8.1 This document describes the security content of watchOS 8.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

About the security content of tvOS 15.1

About the security content of tvOS 15.1 This document describes the security content of tvOS 15.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

CVE-2021-30837

A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 15 and iPadOS 15, watchOS 8, tvOS 15. An application may be able to execute arbitrary code with kernel privileges...

Linux kernel 安全漏洞

Linux kernel is the kernel used by the Linux Foundation's open source operating system, Linux. Linux kernel 5.14-rc3 is vulnerable due to a type obfuscation flaw in eBPF program processing. By executing a carefully crafted eBPF program, an authenticated attacker could exploit this vulnerability t...

DEBIAN-CVE-2021-38300

arch/mips/net/bpfjit.c in the Linux kernel before 5.4.10 can generate undesirable machine code when transforming unprivileged cBPF programs, allowing execution of arbitrary code within the kernel context. This occurs because conditional branches can exceed the 128 KB limit of the MIPS architectur...

Apple iPadOS 缓冲区错误漏洞

Apple iPadOS is a suite of operating systems from Apple Inc. for the iPad tablet computer. Apple iPadOS suffers from a buffer error vulnerability that originates from a boundary error in the Attachment Manager. An attacker can exploit the vulnerability to trigger excessive memory consumption and...

PlayStation: size_t-to-int vulnerability in exFAT leads to memory corruption via malformed USB flash drives

Summary A heap-based buffer overflow can be triggered by a malformed exFAT USB flash drive. Vulnerability The vulnerability is in Sony's exFAT implementation where there is an integer truncation from 64bit to 32bit on a size variable that is used to allocate the up-case table: c int...

CVE-2021-30793

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. An application may be able to execute arbitrary code with kernel privileges...