537 matches found
PT-2024-1084 · Microsoft · Azure Storage Mover
Name of the Vulnerable Software and Affected Versions: Azure Storage Mover affected versions not specified Description: The issue is related to a buffer overflow in memory, allowing an attacker to execute arbitrary code. Recommendations: At the moment, there is no information about a newer versio...
CVE-2023-6931
A flaw was found in the Linux kernel's Performance Events system component. A condition can be triggered that allows data to be written past the end or before the beginning of the intended memory buffer. This may lead to a system crash, code execution, or local privilege escalation. Mitigation It...
The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in the ability to write code beyond the buffer boundaries in memory, allowing attackers to execute arbitrary code.
The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in the writing of code beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code within the context of the current user...
The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in its ability to read data beyond the buffer limit in memory, allowing an attacker to execute arbitrary code.
The vulnerability of Adobe After Effects’ video and dynamic image editing software relates to reading beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code in the context of the current user...
The vulnerability of the BIG-IP Access Policy Manager’s access control and remote authentication mechanisms, as well as the software products such as BIG-IP Advanced Firewall Manager, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Hybrid Defender, BIG-IP Domain Name System, BIG-IP Fraud Protection Service, BIG-IP Link Controller, BIG-IP Local Traffic Manager, BIG-IP Policy Enforcement Manager, BIG-IP Orchestrator, allows a perpetrator to trigger a service failure.
The vulnerabilities of the BIG-IP Access Policy Manager, as well as the BIG-IP Advanced Firewall Manager, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Hybrid Defender, BIG-IP Domain Name System, BIG-IP Fraud Protection Service, BIG-IP Link...
The vulnerability of the Adobe Media Encoder application, related to reading beyond the buffer in memory, allows a hacker to execute arbitrary code.
The vulnerability of the Adobe Media Encoder application relates to reading beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code in the context of the current user...
The vulnerability of Adobe Audition’s audio editor, related to recording beyond buffer boundaries in memory, allows a hacker to execute arbitrary code.
The vulnerability of Adobe Audition is related to recording beyond the buffer limits in memory. Exploiting this vulnerability allows a hacker to execute arbitrary code in the context of the current user, using a specially created file...
ROS-20231114-02
Vulnerability of XIChangeDeviceProperty Xi/xiproperty.c and RRChangeOutputProperty functions randr/rrrproperty.c of X Window System Xorg-server is related to the possibility of writing outside the boundaries of the buffer in memory. Exploitation of the vulnerability could allow an attacker to cau...
The vulnerability of the tif_jbig.c component of the JBIG1 data compression standard, which is used for working with JBIG images in the JBIG-KIT framework, allows a hacker to cause a service failure.
The vulnerability of the tifjbig.c component of the JBIG1 data compression standard, which is used for processing JBIG images, in the JBIG-KIT framework, relates to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to...
The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2020, Adobe Acrobat Reader 2020, and Adobe Acrobat 2017 involve reading data beyond the buffer in memory, allowing attackers to disclose protected information.
The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2020, Adobe Acrobat Reader 2020, Adobe Acrobat 2017, and Adobe Acrobat Reader 2017 are related to reading data beyond the buffer in memory. Exploiting...
The vulnerability of the Adobe Photoshop graphic editor, related to writing beyond the buffer boundaries in memory, allows a hacker to execute arbitrary code.
The vulnerability of the Adobe Photoshop graphic editor is related to the writing of data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created file...
The vulnerability of Firefox browser, related to the execution of operations beyond the buffer in memory, allows attackers to execute arbitrary code.
The vulnerability of the Firefox browser is related to the issue of operations going beyond the buffer boundaries in memory when processing HTML content. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
CVE-2023-27854
An arbitrary code execution vulnerability was reported to Rockwell Automation in Arena Simulation that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow. The threat-actor could then execute malicious code on the system...
Buffer overflow
An arbitrary code execution vulnerability was reported to Rockwell Automation in Arena Simulation that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow. The threat-actor could then execute malicious code on the system...
CVE-2023-27854 Rockwell Automation Arena® Simulation Out of Bounds Read Vulnerability
An arbitrary code execution vulnerability was reported to Rockwell Automation in Arena Simulation that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow. The threat-actor could then execute malicious code on the system...
CVE-2023-27854 Rockwell Automation Arena® Simulation Out of Bounds Read Vulnerability
An arbitrary code execution vulnerability was reported to Rockwell Automation in Arena Simulation that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow. The threat-actor could then execute malicious code on the system...
CVE-2023-27854
CVE-2023-27854 affects Rockwell Automation Arena (Arena) 16.20.x; vulnerability is a memory boundary issue (out-of-bounds read) and related uninitialized pointer, triggered by processing crafted files. Exploitation could allow arbitrary code execution with local access and user interaction requir...
PT-2023-6581 · Rockwell Automation · Rockwell Automation Arena
Name of the Vulnerable Software and Affected Versions: Rockwell Automation Arena affected versions not specified Description: The issue is related to a memory buffer overflow, allowing an attacker to execute arbitrary code in the context of the current user. This could affect the confidentiality,...
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2023-12874)
The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-12874 advisory. - x86: KVM: SVM: always update the x2avic msr interception Maxim Levitsky Orabug: 35857366 CVE-2023-5090 - netfilter: ipset: add the missing...
The vulnerability of the WPLSoft programming software lies in the possibility of an operation going beyond the buffer boundaries in memory, which can allow a hacker to cause a system failure.
The vulnerability of the WPLSoft PLC programming software lies in the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to cause system failures remotely...