CVE-2026-28418 Vim has Heap-based Buffer Overflow in Emacs tags parsing

Vim is an open source, command line text editor. Prior to version 9.2.0074, a heap-based buffer overflow out-of-bounds read exists in Vim's Emacs-style tags file parsing logic. When processing a malformed tags file, Vim can be tricked into reading up to 7 bytes beyond the allocated memory boundar...

The vulnerability of the Goto_chidx() function in the login.cgi script of the Wavlink WN530H4, WN530HG4, and WN572HG3 router microprogramming systems allows a intruder to execute arbitrary code or cause a service failure.

The vulnerability of the Gotochidx function in the login.cgi script of the Wavlink WN530H4, WN530HG4, and WN572HG3 router microprogramming systems is related to the reading of data beyond the buffer boundaries in memory during the processing of the wlanUrl parameter. Exploiting this vulnerability...

The vulnerability of the X509_V_FLAG_CRL_CHECK component in the OpenSSL cryptographic library allows a attacker to trigger a service failure.

The vulnerability of the X509VFLAGCRLCHECK component in the OpenSSL cryptographic library is related to reading data beyond the memory boundaries. Exploiting this vulnerability could allow a malicious actor to cause a service failure...

The vulnerability of the NFSD component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the NFSD component in the Linux operating system’s kernel involves reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the ieee_write_file function in the /output/outieee.c component of the Netwide Assembler (NASM) compiler allows a hacker to cause a service failure.

The vulnerability of the ieeewritefile function in the /output/outieee.c component of the Netwide Assembler NASM compiler is related to reading beyond the memory boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure...

PT-2024-3023 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a memory boundary read and can allow an attacker to disclose protected information. There is no information provided about the estimated number of potentially affect...

The vulnerability of Siemens Solid Edge’s design and simulation tools relates to reading beyond the memory boundary, allowing a malicious actor to execute arbitrary code.

The vulnerability of Siemens Solid Edge software for design and simulation tools is related to reading beyond the memory limit. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of Siemens Solid Edge’s design and simulation tools relates to reading beyond the memory boundary, allowing a malicious actor to execute arbitrary code.

The vulnerability of Siemens Solid Edge’s design and simulation tools is related to reading beyond the memory limit. Exploiting this vulnerability can allow an attacker to execute arbitrary code using specially created PAR files...

The vulnerability of the tiffcrop utility in the libtiff library, which allows a hacker to cause a service failure.

The vulnerability of the tiffcrop utility in the libtiff library relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

PT-2023-9324 · Unknown +2 · Netwide Assembler +2

Name of the Vulnerable Software and Affected Versions: Netwide Assembler NASM version 2.16 Description: The issue is related to a segmentation violation in the ieee write file component at /output/outieee.c of the Netwide Assembler NASM. This can lead to a denial of service. The problem is...

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in its ability to read data beyond the memory boundaries. This allows attackers to gain unauthorized access to protected information and also cause system failures.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to reading beyond the memory boundaries. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information, as well as cause service failures for the current user...

PT-2021-6424 · Oracle +1 · Mysql Cluster +1

Name of the Vulnerable Software and Affected Versions: MySQL Cluster versions 7.4.34 and prior MySQL Cluster versions 7.5.24 and prior MySQL Cluster versions 7.6.20 and prior MySQL Cluster versions 8.0.27 and prior Description: The issue allows a high-privileged attacker with access to the physic...

The vulnerability of the Opus audio codec in browsers like Firefox, Firefox ESR, and the email client Thunderbird allows a hacker to trigger a service failure.

The vulnerability of the Opus audio codec in browsers like Firefox, Firefox ESR, and the email client Thunderbird is related to reading data from memory beyond the buffer boundaries. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

ALPINE-CVE-2020-29362

An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a serialized PKCS11 function call, the receiving...

The vulnerability of the rfx_process_message_tileset function in the implementation of the remote desktop protocol FreeRDP allows a intruder to cause a service failure.

The vulnerability of the rfxprocessmessagetileset function in the implementation of the remote desktop protocol FreeRDP is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures...

The vulnerability of the “process_secondary_order” function implementation in the RDP client rdesktop allows for reading beyond the memory boundary, enabling attackers to cause service failures.

The vulnerability of the “processsecondaryorder” function in the RDP client rdesktop implementation relates to reading data beyond the memory boundary. Exploiting this vulnerability could allow an attacker to cause service failures remotely...

Cisco WebEx Business Suite meeting sites and WebEx Meetings sites WebEx Recording Format Player information disclosure vulnerability

Cisco WebEx Business Suite meeting sites and WebEx Meetings sites are video conferencing solutions from Cisco.WebEx Recording Format WRF Player is one of the players, which is mainly used to play WRF WebEx Recording Format WRF Player is one of the players, which is mainly used to play the WRF...

Vulnerabilities of iOS and Mac OS X operating systems, which allow attackers to gain access to protected information or cause service failures

The vulnerability of the kernel in iOS and Mac OS X operating systems is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor to gain access to protected information or cause a service failure reading beyond the memory boundary through a...