537 matches found
The vulnerability of the `binfmt_flat` component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the binfmtflat component in the Linux operating system is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...
PT-2025-28699 · Irfanview · Irfanview +1
Name of the Vulnerable Software and Affected Versions: IrfanView affected versions not specified Description: The IrfanView CADImage plugin contains a memory buffer overflow issue during DXF file parsing. Successful exploitation of this issue could allow an attacker to execute arbitrary code usin...
PT-2025-28701 · Irfanview · Irfanview +1
Name of the Vulnerable Software and Affected Versions: IrfanView versions affected versions not specified Description: A memory buffer overflow issue exists in the CADImage plugin for IrfanView, a graphics, video, and audio file viewer and player. Exploitation of this issue could allow an attacke...
PT-2025-28665 · Irfanview +1 · Irfanview +1
Name of the Vulnerable Software and Affected Versions: IrfanView CADImage Plugin affected versions not specified Description: The IrfanView CADImage plugin contains a memory buffer overflow issue during DWG file parsing. Successful exploitation of this issue could allow an attacker to execute...
ROS-20250212-07
Vulnerability of JxlEncoderAddJPEGFrame function of JPEG XL decoder of Libjxl library is related to operation outside of memory buffer boundaries. operation beyond the buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of...
The vulnerability of the IOMobileFrameBuffer component in operating systems such as MacOs, tvOs, watchOs, iPadOs, and iOS allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the IOMobileFrameBuffer component in operating systems such as MacOs, tvOS, watchOS, iPadOS, and iOS lies in the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to compromise the confidentiality, integrity, and...
The vulnerability in macOS operating systems arises from the operation of writing data beyond the buffer in memory, allowing an attacker to read arbitrary files.
The vulnerability of macOS operating systems lies in the fact that operations are performed outside of the buffer in memory. Exploiting this vulnerability allows an attacker to read arbitrary files...
CVE-2022-28194
NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot module tegrablcbo.c, where, if TFTP is enabled, a local attacker with elevated privileges can cause a memory buffer overflow, which may lead to code execution, loss of Integrity, limited denial of service, and some impact to...
The vulnerability of the eeprom component in the Linux operating system’s kernel allows attackers to gain elevated privileges within the system.
The vulnerability of the eeprom component in the Linux operating system’s kernel is related to the operation of the operation outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...
SUSE SLES12 Security Update : hplip (SUSE-SU-2025:0290-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:0290-1 advisory. This update for hplip fixes the following security issues: - CVE-2020-6923: Fixed a memory buffer overflow in the HP Linux Imaging and Printing HPLIP...
SUSE: Security Advisory (SUSE-SU-2025:0290-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Advisory ROSA-SA-2025-2661
software: perl 5.30.3 OS: ROSA-CHROME packageevrstring: perl-5.30.3 CVE-ID: CVE-2023-47100 BDU-ID: 2023-08382 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the Sparseunipropstring function of the regcomp.c file of the Perl programming language interpreter is related to an operation exceeding...
The vulnerability of the Substance 3D Stager software lies in the possibility of an operation going beyond the buffer boundaries in memory, allowing a hacker to execute arbitrary code.
The vulnerability of the Substance 3D Stager software-related 3D design software is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a hacker to execute arbitrary code in the context of the current user, using a specially created...
The vulnerability of the OLE2 form file analysis component in the Clam Antivirus anti-virus program allows a hacker to trigger a service failure.
The vulnerability of the OLE2 form file analysis component in the Clam Antivirus antivirus program lies in the overflow of memory buffers. Exploiting this vulnerability can allow an attacker to cause a service failure by sending a specially crafted file...
The vulnerability of the Windows operating system’s Telephony Service allows a perpetrator to execute arbitrary code.
The vulnerability of the Windows operating system’s Telephony Service is related to overflowing buffers in the dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Substance 3D Designer’s texture and material creation software lies in the overflow of buffers in dynamic memory, allowing attackers to execute arbitrary code.
The vulnerability of the Substance 3D Designer’s texture and material creation software is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a hacker to execute arbitrary code in the context of the current user, using a specially created malicious file...
PT-2025-1056 · Microsoft · Windows Telephony Service +1
Name of the Vulnerable Software and Affected Versions: Windows Telephony Service affected versions not specified Description: The issue is related to a remote code execution problem in the Windows Telephony Service. It involves a buffer overflow in dynamic memory, which can be exploited by a remo...
ROS-20250109-08
The ungetbyte and ungetc methods of StringIO string handler for Ruby programming language are vulnerable to with an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker, acting remotely, to affect the confidentiality of protected information...
The vulnerability of the Teamcenter Visualization lifecycle management system and the Siemens Tecnomatix Plant Simulation software environment, related to the execution of operations beyond the buffer in memory, allows attackers to trigger service failures or execute arbitrary code.
The vulnerability of the Teamcenter Visualization lifecycle management system and the Siemens Tecnomatix Plant Simulation software environment relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to trigger service failures or...
The vulnerability of the Adobe Substance 3D Modeler software for 3D modeling lies in buffer overflows in dynamic memory, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Substance 3D Modeler software for 3D modeling is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially crafted file...