Lucene search
K

537 matches found

BDU FSTEC
BDU FSTEC
added 2025/02/24 12:0 a.m.6 views

The vulnerability of the `binfmt_flat` component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the binfmtflat component in the Linux operating system is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS7AI score0.0021EPSS
Exploits0References29Affected Software5
Positive Technologies
Positive Technologies
added 2025/02/20 12:0 a.m.5 views

PT-2025-28699 · Irfanview · Irfanview +1

Name of the Vulnerable Software and Affected Versions: IrfanView affected versions not specified Description: The IrfanView CADImage plugin contains a memory buffer overflow issue during DXF file parsing. Successful exploitation of this issue could allow an attacker to execute arbitrary code usin...

7.8CVSS7.9AI score0.0022EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/02/20 12:0 a.m.6 views

PT-2025-28701 · Irfanview · Irfanview +1

Name of the Vulnerable Software and Affected Versions: IrfanView versions affected versions not specified Description: A memory buffer overflow issue exists in the CADImage plugin for IrfanView, a graphics, video, and audio file viewer and player. Exploitation of this issue could allow an attacke...

7.8CVSS7.9AI score0.0022EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/02/20 12:0 a.m.5 views

PT-2025-28665 · Irfanview +1 · Irfanview +1

Name of the Vulnerable Software and Affected Versions: IrfanView CADImage Plugin affected versions not specified Description: The IrfanView CADImage plugin contains a memory buffer overflow issue during DWG file parsing. Successful exploitation of this issue could allow an attacker to execute...

5.5CVSS4.8AI score0.00209EPSS
Exploits0References5
Redos
Redos
added 2025/02/13 12:0 a.m.5 views

ROS-20250212-07

Vulnerability of JxlEncoderAddJPEGFrame function of JPEG XL decoder of Libjxl library is related to operation outside of memory buffer boundaries. operation beyond the buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of...

9.8CVSS7AI score0.0063EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/02/13 12:0 a.m.7 views

The vulnerability of the IOMobileFrameBuffer component in operating systems such as MacOs, tvOs, watchOs, iPadOs, and iOS allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the IOMobileFrameBuffer component in operating systems such as MacOs, tvOS, watchOS, iPadOS, and iOS lies in the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to compromise the confidentiality, integrity, and...

7.8CVSS7.4AI score0.00241EPSS
Exploits0References5Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/02/12 12:0 a.m.6 views

The vulnerability in macOS operating systems arises from the operation of writing data beyond the buffer in memory, allowing an attacker to read arbitrary files.

The vulnerability of macOS operating systems lies in the fact that operations are performed outside of the buffer in memory. Exploiting this vulnerability allows an attacker to read arbitrary files...

5.5CVSS5.8AI score0.00262EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/05 8:51 p.m.8 views

CVE-2022-28194

NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot module tegrablcbo.c, where, if TFTP is enabled, a local attacker with elevated privileges can cause a memory buffer overflow, which may lead to code execution, loss of Integrity, limited denial of service, and some impact to...

7.3CVSS7AI score0.003EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/02/03 12:0 a.m.8 views

The vulnerability of the eeprom component in the Linux operating system’s kernel allows attackers to gain elevated privileges within the system.

The vulnerability of the eeprom component in the Linux operating system’s kernel is related to the operation of the operation outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...

4.4CVSS5.8AI score0.00281EPSS
Exploits0References19Affected Software10
Tenable Nessus
Tenable Nessus
added 2025/02/03 12:0 a.m.9 views

SUSE SLES12 Security Update : hplip (SUSE-SU-2025:0290-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:0290-1 advisory. This update for hplip fixes the following security issues: - CVE-2020-6923: Fixed a memory buffer overflow in the HP Linux Imaging and Printing HPLIP...

5.7CVSS5.8AI score0.00298EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2025/01/30 12:0 a.m.9 views

SUSE: Security Advisory (SUSE-SU-2025:0290-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.7CVSS6.5AI score0.00298EPSS
Exploits0References7
Rosalinux
Rosalinux
added 2025/01/28 7:33 p.m.21 views

Advisory ROSA-SA-2025-2661

software: perl 5.30.3 OS: ROSA-CHROME packageevrstring: perl-5.30.3 CVE-ID: CVE-2023-47100 BDU-ID: 2023-08382 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the Sparseunipropstring function of the regcomp.c file of the Perl programming language interpreter is related to an operation exceeding...

9.8AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/01/27 12:0 a.m.4 views

The vulnerability of the Substance 3D Stager software lies in the possibility of an operation going beyond the buffer boundaries in memory, allowing a hacker to execute arbitrary code.

The vulnerability of the Substance 3D Stager software-related 3D design software is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a hacker to execute arbitrary code in the context of the current user, using a specially created...

7.8CVSS6.4AI score0.00212EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/24 12:0 a.m.5 views

The vulnerability of the OLE2 form file analysis component in the Clam Antivirus anti-virus program allows a hacker to trigger a service failure.

The vulnerability of the OLE2 form file analysis component in the Clam Antivirus antivirus program lies in the overflow of memory buffers. Exploiting this vulnerability can allow an attacker to cause a service failure by sending a specially crafted file...

6.2CVSS6.7AI score0.01509EPSS
Exploits0References3Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/01/23 12:0 a.m.6 views

The vulnerability of the Windows operating system’s Telephony Service allows a perpetrator to execute arbitrary code.

The vulnerability of the Windows operating system’s Telephony Service is related to overflowing buffers in the dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.1AI score0.01067EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/01/20 12:0 a.m.4 views

The vulnerability of the Substance 3D Designer’s texture and material creation software lies in the overflow of buffers in dynamic memory, allowing attackers to execute arbitrary code.

The vulnerability of the Substance 3D Designer’s texture and material creation software is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a hacker to execute arbitrary code in the context of the current user, using a specially created malicious file...

7.8CVSS6.3AI score0.00257EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.3 views

PT-2025-1056 · Microsoft · Windows Telephony Service +1

Name of the Vulnerable Software and Affected Versions: Windows Telephony Service affected versions not specified Description: The issue is related to a remote code execution problem in the Windows Telephony Service. It involves a buffer overflow in dynamic memory, which can be exploited by a remo...

10CVSS9.9AI score0.01624EPSS
Exploits0References8
Redos
Redos
added 2025/01/09 12:0 a.m.18 views

ROS-20250109-08

The ungetbyte and ungetc methods of StringIO string handler for Ruby programming language are vulnerable to with an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker, acting remotely, to affect the confidentiality of protected information...

9.8CVSS6.9AI score0.02364EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/01/08 12:0 a.m.6 views

The vulnerability of the Teamcenter Visualization lifecycle management system and the Siemens Tecnomatix Plant Simulation software environment, related to the execution of operations beyond the buffer in memory, allows attackers to trigger service failures or execute arbitrary code.

The vulnerability of the Teamcenter Visualization lifecycle management system and the Siemens Tecnomatix Plant Simulation software environment relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to trigger service failures or...

7.8CVSS6.2AI score0.00237EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/01/06 12:0 a.m.5 views

The vulnerability of the Adobe Substance 3D Modeler software for 3D modeling lies in buffer overflows in dynamic memory, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Substance 3D Modeler software for 3D modeling is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially crafted file...

7.8CVSS6.3AI score0.00484EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder