172 matches found
CVE-2022-22514
An authenticated, remote attacker can gain access to a dereferenced pointer contained in a request. The accesses can subsequently lead to local overwriting of memory in the CmpTraceMgr, whereby the attacker can neither gain the values read internally nor control the values to be written. If inval...
Design/Logic Flaw
An authenticated, remote attacker can gain access to a dereferenced pointer contained in a request. The accesses can subsequently lead to local overwriting of memory in the CmpTraceMgr, whereby the attacker can neither gain the values read internally nor control the values to be written. If inval...
CVE-2021-34595
The CVE-2021-34595 issue affects CODESYS V2 Runtime Toolkit 32 Bit full and PLCWinNT versions prior to V2.4.7.56. A crafted request with invalid offsets can trigger an out-of-bounds read or write, leading to a denial-of-service condition or local memory overwrite. The issue’s impact is reflected ...
CVE-2021-38150
When an attacker manages to get access to the local memory, or the memory dump of a victim, for example by a social engineering attack, SAP Business Client versions - 7.0, 7.70, will allow him to read extremely sensitive data, such as credentials. This would allow the attacker to compromise the...
Local Memory Corruption Vulnerability in Modbus Poll
Modbus Poll is a useful modbus development and debugging tool, can be very convenient for modbus debugging, is a very useful Modbus host simulation program. A local memory corruption vulnerability exists in Modbus Poll. An attacker can exploit the vulnerability by constructing malformed files tha...
CVE-2020-7131
This document describes a security vulnerability in Blade Maintenance Entity, Integrated Maintenance Entity and Maintenance Entity products. All J/H-series NonStop systems have a security vulnerability associated with an open UDP port 17185 on the Maintenance LAN which could result in information...
CVE-2020-7131
CVE-2020-7131 affects Blade Maintenance Entity, Integrated Maintenance Entity and Maintenance Entity on J/H-series NonStop systems. The issue arises from an open UDP port 17185 on the Maintenance LAN, enabling information disclosure, DoS, local memory corruption, and potentially full system contr...
CVE-2020-7131
This document describes a security vulnerability in Blade Maintenance Entity, Integrated Maintenance Entity and Maintenance Entity products. All J/H-series NonStop systems have a security vulnerability associated with an open UDP port 17185 on the Maintenance LAN which could result in information...
CVE-2018-20856
A flaw was found in the Linux kernel’s block driver implementation blkdrainqueue function where a use-after-free condition could be triggered while draining the outstanding command queue in the systems block device subsystem. An attacker could use this flaw to crash the system or corrupt local...
UBUNTU-CVE-2019-13748
Insufficient policy enforcement in developer tools in Google Chrome prior to 79.0.3945.79 allowed a local attacker to obtain potentially sensitive information from process memory via a crafted HTML page...
kernel: Heap overflow in mwifiex_uap_parse_tail_ies function in drivers/net/wireless/marvell/mwifiex/ie.c
A flaw was found in the mwifiex implementation in the Linux kernel. A system connecting to wireless access point could be manipulated by an attacker with advanced permissions on the access point into localized memory corruption or possibly privilege escalation...
Linux kernel CVE-2019-18198 Local Memory Corruption Vulnerability
Description Linux kernel is prone to a local memory-corruption vulnerability. An attacker can exploit this issue to cause a denial-of-service condition, denying service to legitimate users. Given the nature of this issue, attackers may also be able to execute arbitrary code, but this has not been...
CVE-2018-12219
Insufficient input validation in Kernel Mode Driver in IntelR Graphics Driver for Windows before versions 10.18.x.5059 aka 15.33.x.5059, 10.18.x.5057 aka 15.36.x.5057, 20.19.x.5063 aka 15.40.x.5063 21.20.x.5064 aka 15.45.x.5064 and 24.20.100.6373 potentially enables an unprivileged user to read...
Remote Memory Exposure in request
Affected versions of request will disclose local system memory to remote systems in certain circumstances. When a multipart request is made, and the type of body is number, then a buffer of that size will be allocated and sent to the remote server as the body. Proof of Concept js var request =...
Citrix XenServer Local Memory Disclosure Vulnerability (CTX235225)
The version of Citrix XenServer running on the remote host is missing a security hotfix. It is, therefore, affected by a local memory disclosure vulnerability. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid110265; scriptversion"1.7";...
BSA-2018-522
Security Advisory ID : BSA-2018-522 Component : HW: CPU Revision : 1.2: Interim In total, security researchers disclosed three variants of CPU Data cache timing abuse. The variants lead to vulnerabilities that take advantage of the implementation of speculative execution of instructions on many...
Linux kernel local memory corruption vulnerability (CNVD-2017-34130)
The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A local memory corruption vulnerability exists in the Linux kernel. A local attacker could exploit this vulnerability with arbitrary values to overwrite arbitrary locations or...
USN-3360-1 linux vulnerabilities
It was discovered that the Linux kernel did not properly initialize a Wake- on-Lan data structure. A local attacker could use this to expose sensitive information kernel memory. CVE-2014-9900 It was discovered that the Linux kernel did not properly restrict access to /proc/iomem. A local attacker...
X.org X Server Local Memory Misreference Vulnerability
X.Org X Server is an X Window System display server from the X.Org Foundation. A local memory misreference vulnerability exists in X.org X Server. An attacker could exploit this vulnerability to execute arbitrary code...
The vulnerability of the Linux operating system, which allows a perpetrator to trigger a service failure or cause other effects
The vulnerability of the Linux operating system’s driver/net/ieee802154/atusb.c component is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause service failures or other effects such as memory corruption to occur locally...