The vulnerability of Google Chrome’s Visuals component allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of Google Chrome’s Visuals component is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service denial-of-service by loading a specially created malicious web page...

PT-2023-4195 · Pro Face · Gp-Pro Ex

Name of the Vulnerable Software and Affected Versions: GP-Pro EX affected versions not specified Description: The issue is related to a memory buffer overflow, which could allow an attacker to impact the confidentiality, integrity, and availability of protected information. This occurs when an...

The vulnerability of the kernel of iOS, iPadOS, and macOS allows a hacker to execute arbitrary code.

The vulnerability in the kernel of iOS, iPadOS, and macOS relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation, related to the execution of operations beyond the buffer boundaries in memory, allows a hacker to execute arbitrary code.

The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation lies in the execution of operations beyond the buffer boundaries in memory when processing PAR files. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the Linux operating system’s IPVLAN kernel driver allows attackers to increase their privileges.

The vulnerability of the Linux operating system’s IPVLAN kernel driver is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to increase their privileges...

Advisory ROSA-SA-2023-2174

software: redis 7.0.11 OS: ROSA-CHROME packageevrstring: redis-7.0.11-1.src.rpm CVE-ID: CVE-2022-35977 BDU-ID: 2023-00695 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the Redis database management system DBMS is related to integer overflow during object processing. Exploitation of the...

The vulnerability of the VMware ESXi hypervisor, related to writing beyond the buffer boundaries in memory, allows an intruder to gain unauthorized access to protected information.

The vulnerability of the VMware ESXi hypervisor is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Bluetooth technology implementation in Android devices based on MediaTek MT8167, MT8175, and MT8183 chips allows attackers to gain increased privileges.

The vulnerability of the Bluetooth technology implementation in Android devices based on MediaTek MT8167, MT8175, and MT8183 operating systems is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow attackers to gain increased privileges...

The vulnerability of the SwiftShader library in the Google Chrome web browser allows a hacker to execute arbitrary code.

The vulnerability of the SwiftShader library in the Google Chrome web browser relates to the ability to write data outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the FileReader::DoReadData() function in browsers like Firefox and Firefox ESR, as well as in the email client Thunderbird, allows a hacker to execute arbitrary code on the target system.

The vulnerability of the FileReader::DoReadData function in browsers like Firefox and Firefox ESR, as well as in the email client Thunderbird, is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary cod...

The vulnerability of the /goform/formLogin component in the D-Link DIR-816 A2 microprogramming router software allows a hacker to execute arbitrary code.

The vulnerability of the /goform/Diagnosis component of D-Link DIR-816 A2 microprogrammed software lies in the writing of data beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

Rockwell Automation Arena Simulation Software

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Rockwell Automation Equipment: Arena Simulation Software Vulnerabilities: Incorrect Restriction of Operations within the Bounds of a Memory Buffer 2. RISK EVALUATION Successful exploitation of these vulnerabilities could...

CVE-2023-29460

An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow potentially resulting in a complete loss of...

CVE-2023-29461

An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow in the heap. potentially resulting in a complet...

CVE-2023-29460

An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow potentially resulting in a complete loss of...

CVE-2023-29462

An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow in the heap. potentially resulting in a complet...

Buffer overflow

An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow in the heap. potentially resulting in a complet...

CVE-2023-29462 Rockwell Automation Arena Simulation Software Remote Code Execution Vulnerability

An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow in the heap. potentially resulting in a complet...

CVE-2023-29462

CVE-2023-29462 affects Rockwell Automation Arena Simulation Software. A heap-based memory buffer overflow in Arena can lead to arbitrary code execution. ZDI reports remote code execution via DOE file parsing with required user interaction (user must open a malicious page/file). ICS/CISA advisorie...

CVE-2023-29462 Rockwell Automation Arena Simulation Software Remote Code Execution Vulnerability

An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow in the heap. potentially resulting in a complet...