5605 matches found
PT-2022-25789 · Siemens · Jt2Go +1
Name of the Vulnerable Software and Affected Versions: JT2Go versions prior to 14.1.0.6 Teamcenter Visualization V13.2 versions prior to 13.2.0.12 Teamcenter Visualization V13.3 versions prior to 13.3.0.8 Teamcenter Visualization V14.0 versions prior to 14.0.0.4 Teamcenter Visualization V14.1...
PT-2022-25794 · Siemens · Teamcenter Visualization +1
Name of the Vulnerable Software and Affected Versions: JT2Go versions prior to 14.1.0.6 Teamcenter Visualization V13.2 versions prior to 13.2.0.12 Teamcenter Visualization V13.3 versions prior to 13.3.0.8 Teamcenter Visualization V14.0 versions prior to 14.0.0.4 Teamcenter Visualization V14.1...
PT-2022-25793 · Siemens · Jt2Go +1
Name of the Vulnerable Software and Affected Versions: JT2Go versions prior to 14.1.0.6 Teamcenter Visualization V13.2 versions prior to 13.2.0.12 Teamcenter Visualization V13.3 versions prior to 13.3.0.8 Teamcenter Visualization V14.0 versions prior to 14.0.0.4 Teamcenter Visualization V14.1...
PT-2022-25786 · Siemens · Teamcenter Visualization +1
Name of the Vulnerable Software and Affected Versions: JT2Go versions prior to 14.1.0.6 Teamcenter Visualization V13.2 versions prior to 13.2.0.12 Teamcenter Visualization V13.3 versions prior to 13.3.0.8 Teamcenter Visualization V14.0 versions prior to 14.0.0.4 Teamcenter Visualization V14.1...
CVE-2022-41286
Summary: CVE-2022-41286 affects Siemens JT2Go and Teamcenter Visualization (versions listed in sources) where the CGM_NIST_Loader.dll parses CGM files and can perform an out-of-bounds write, enabling code execution in the current process. Affected portions include JT2Go (all versions < 14.1.0....
linux-loader reading beyond EOF could lead to infinite loop
Impact The linux-loader crate used the offsets and sizes provided in the ELF headers to determine the offsets to read from. If those offsets pointed beyond the end of the file this could lead to an infinite loop. Virtual Machine Monitors using the linux-loader crate could enter an infinite loop i...
GHSA-52H2-M2CF-9JH6 linux-loader reading beyond EOF could lead to infinite loop
Impact The linux-loader crate used the offsets and sizes provided in the ELF headers to determine the offsets to read from. If those offsets pointed beyond the end of the file this could lead to an infinite loop. Virtual Machine Monitors using the linux-loader crate could enter an infinite loop i...
PT-2022-16049 · Unknown · Linux-Loader
Name of the Vulnerable Software and Affected Versions: linux-loader versions prior to 0.8.1 Description: The issue arises when the linux-loader crate uses offsets and sizes from ELF headers to determine read offsets. If these offsets point beyond the file's end, it could lead to an infinite loop ...
[SECURITY] Fedora 35 Update: bcel-6.4.1-10.fc35
The Byte Code Engineering Library formerly known as JavaClass is intended to give users a convenient possibility to analyze, create, and manipulate binary Java class files those ending with .class. Classes are represented by objects which contain all the symbolic information of the given class:...
[SECURITY] Fedora 36 Update: bcel-6.4.1-10.fc36
The Byte Code Engineering Library formerly known as JavaClass is intended to give users a convenient possibility to analyze, create, and manipulate binary Java class files those ending with .class. Classes are represented by objects which contain all the symbolic information of the given class:...
PT-2025-49618
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.0.0-next-20221007-dirty 349 Description A flaw exists in the Linux kernel related to the handling of boot loader inodes. Specifically, a bug in the es tree search function within the ext4 filesystem can occur...
CVE-2022-43484
TERASOLUNA Global Framework 1.0.0 Public review version and TERASOLUNA Server Framework for Java Rich 2.0.0.2 to 2.0.5.1 are vulnerable to a ClassLoader manipulation vulnerability due to using the old version of Spring Framework which contains the vulnerability.The vulnerability is caused by an...
The vulnerability of the do_rename_gpt_parts() function (cmd/gpt.c) in the U-Boot loader for embedded Linux operating systems allows a hacker to execute arbitrary code.
The vulnerability of the dorenamegptparts function cmd/gpt.c in the U-Boot loader for embedded Linux-based operating systems is related to a memory reclamation error. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability of Grub2 operating system loaders, related to the execution of operations outside the buffer boundaries, allows attackers to execute arbitrary code.
The vulnerability of Grub2 operating system loaders is related to the issue where operations occur outside of the buffer in memory when rendering certain Unicode sequences using a specially crafted font. Exploiting this vulnerability allows an attacker to execute arbitrary code...
Prototype Pollution
node-loader-utils is vulnerable to Prototype Pollution. The vulnerability exists in function parseQuery in parseQuery.js in webpack loader-utils via the name variable in parseQuery.js which allows an attacker to cause a prototype pollution...
vulkan bug fix and enhancement update
An update is available for shaderc, glslang, spirv-tools, vulkan-loader, vulkan-headers, vulkan-validation-layers, vulkan-tools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...
PT-2022-27492 · Jenkins · Jenkins Loader.Io Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins loader.io Plugin versions 1.0.1 and earlier Description: A missing permission check in the Jenkins loader.io Plugin allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins. This can ...
vulkan bug fix and enhancement update
An update is available for spirv-tools, vulkan-loader, vulkan-headers, vulkan-validation-layers, vulkan-tools. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Fo...
CVE-2022-37603
A flaw was found in loader-utils webpack library. When the url variable from interpolateName is set, the prototype can be polluted. This issue could lead to a regular expression Denial of Service ReDoS, affecting the availability of the affected component...
Nokia ASIK AirScale 5G Common System Module 安全漏洞
The Nokia ASIK AirScale 5G Common System Module is a common system unit from Nokia, Finland. A security vulnerability exists in Nokia ASIK AirScale 5G Common System Module versions 474021A.101 and 474021A.102, which arises from its boot loader loading a public key used for firmware verification...