3792 matches found
PT-2020-20042 · Nextcloud +1 · Nextcloud Desktop Client +1
Name of the Vulnerable Software and Affected Versions: NextCloud Desktop Client version 2.6.4 Description: A memory corruption issue exists due to missing Address Space Layout Randomization ASLR and Data Execution Prevention DEP protections in the Windows version of the software, allowing memory...
PT-2020-3708 · Microsoft · Windows Kernel +1
Name of the Vulnerable Software and Affected Versions: Windows kernel affected versions not specified Description: An information disclosure issue exists in the Windows kernel, potentially allowing an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization...
WhyNot-HEAP-Exploitation
This repository is for a proof-of-concept PoC exploit for a vulnerability in the glibc library, specifically targeting the House of Force attack. The House of Force attack is a type of attack that exploits the way glibc handles memory allocation and deallocation, allowing an attacker to control t...
The vulnerability of the Layout Templates component of the Oracle BI Publisher software allows a malicious individual to gain access to read, modify, add, or delete data.
The vulnerability of the Layout Templates component in the Oracle BI Publisher reporting software is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to read, modify, add, or delete data using the HTTP protocol...
About the security content of watchOS 3 - Apple Support
For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. For more information about security, see the Apple Product Security...
Microsoft Windows Resource Policy Component Information Disclosure Vulnerability
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An information disclosure vulnerability exists in the Microsoft Windows Resource Policy...
Unspecified Vulnerability in Oracle Fusion Middleware BI Publisher Layout Templates Component
Oracle Fusion Middleware Oracle Fusion Middleware is a set of Oracle's Oracle business innovation platform for enterprise and cloud environments. The platform provides middleware, software collection and other functions. BI Publisher formerly known as XML Publisher is one of the reporting...
CVE-2020-14696
Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware component: Layout Templates. Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...
OSV-2020-827 Use-of-uninitialized-value in llvm_ks::isIntN
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22920 Crash type: Use-of-uninitialized-value Crash state: llvmks::isIntN X86AsmBackend::applyFixup llvmks::MCAssembler::layout...
DEBIAN-CVE-2020-12862
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-082...
Important: fribidi
Issue Overview: A buffer overflow in the fribidigetparembeddinglevelsex function in lib/fribidi-bidi.c of GNU FriBidi through 1.0.7 allows an attacker to cause a denial of service or possibly execute arbitrary code by delivering crafted text content to a user, when this content is then rendered b...
Kernel: net: using kernel space address bits to derive IP ID may potentially break KASLR
A flaw was found in the way the Linux kernel derived the IP ID field from a partial kernel space address returned by a nethashmix function. A remote user could observe this IP ID field to extract the kernel address bits used to derive its value, which may result in leaking the hash key and...
CVE-2020-9832
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.5. A malicious application may be able to determine kernel memory layout...
CVE-2020-9831
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15.5. A malicious application may be able to determine kernel memory layout...
CVE-2020-9809
An information disclosure issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application may be able to determine kernel memory layout...
CVE-2020-9797
An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application may be able to determine another application's memory layout...
Information disclosure
An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application may be able to determine another application's memory layout...
CVE-2020-9831
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15.5. A malicious application may be able to determine kernel memory layout...
CVE-2020-9832
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.5. A malicious application may be able to determine kernel memory layout...
CVE-2020-9832
CVE-2020-9832 is an out-of-bounds read in macOS that could let a malicious, local application determine the kernel memory layout. Apple fixed it in macOS Catalina 10.15.5. Public sources consistently reference kernel memory disclosure as the impact; patch via macOS 10.15.5 Security Update (and la...