The vulnerability in operating systems macOS, iOS, and iPadOS, related to operations beyond the buffer when processing objects in memory, allows attackers to execute arbitrary code.

The vulnerability of operating systems macOS, iOS, and iPadOS stems from the operation of operations beyond the buffer when processing objects in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of the Adobe Framemaker desktop publishing system, related to writing beyond the buffer boundaries in memory, allows a hacker to disclose protected information.

The vulnerability of the Adobe Framemaker desktop publishing system lies in the writing of data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to disclose protected information...

The vulnerability in the implementation of the WebRTC technology in Google Chrome browser allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the WebRTC technology implemented in Google Chrome browser is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information through a specially crafted HTML page...

The vulnerability of the AMD Secure Encrypted Virtualization (SEV) implementation, a micro-software solution for AMD processors, allows attackers to disclose protected information.

The vulnerability of the AMD Secure Encrypted Virtualization SEV technology, a micro-software solution for AMD processors, arises from the execution of operations beyond the buffer in memory due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to...

The vulnerability of the 3D Builder software, related to the execution of operations beyond the buffer boundaries in memory, allows an attacker to execute arbitrary code.

The vulnerability of the 3D Builder software for designing and preparing objects for 3D printing is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

CVE-2022-32512

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause remote code execution when a command which exploits this vulnerability is utilized. Affected Products: CanBRASS Versions prior to V7.5.1...

The vulnerability of the UnZip file archiver lies in the possibility of an operation exceeding the buffer limit in memory, allowing a hacker to trigger a service failure.

The vulnerability of the UnZip file archiver is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to trigger a service failure using a specially created zip file...

The vulnerability of the detection and prevention mechanism for malicious scripts in Avast Script Shield arises from the possibility of the operation exceeding the buffer in memory. This allows attackers to bypass the sandbox protection mechanisms or trigger a service failure.

The vulnerability of the detection and prevention mechanism of Avast Script Shield lies in the fact that the operation escapes the buffer in memory during the loading of the aswjsflt.dll library. Exploiting this vulnerability can allow a malicious actor to bypass the sandbox’s security mechanisms...

The vulnerability of the AXSLE.dll file in PDF viewing and editing programs from Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, and Adobe Acrobat Reader Document Cloud 2017 arises from reading data beyond the buffer in memory. This allows attackers to disclose protected information.

The vulnerability of the AXSLE.dll file in PDF viewing and editing programs from Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, and Adobe Acrobat Reader Document Cloud 2017 is related to reading data beyond the buffer in memory. Exploiting this vulnerabilit...

CVE-2022-24937 Malformed Zigbee packet causes Assert in EmberZNet 7.0.0 or earlier

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Silicon Labs Ember ZNet allows Overflow Buffers...

The vulnerability of the njs_promise_reaction_job function in the njs interpreter of the nginx server allows a attacker to cause a service failure.

The vulnerability of the njspromisereactionjob function in the njs interpreter of the nginx server is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

CVE-2022-3379

Horner Automation's Cscape version 9.90 SP7 and prior does not properly validate user-supplied data. If a user opens a maliciously formed FNT file, then an attacker could execute arbitrary code within the current process by writing outside the memory buffer...

The vulnerability of Adobe InDesign’s computer layout automation tool, related to buffer overflow in dynamic memory, allows attackers to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to overflowing buffers in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code in the context of the current user, using a specially crafted file...

PT-2022-6886 · Libtiff +7 · Libtiff +7

Name of the Vulnerable Software and Affected Versions: LibTIFF version 4.4.0 Description: The issue is related to an out-of-bounds write in the TIFFmemset function, allowing attackers to cause a denial-of-service via a crafted tiff file. This can be triggered when the TIFFmemset function is calle...

The vulnerability of the QNAP QVR Elite, QVR Pro, and the QVR Guard application for managing emergency switching in video surveillance systems lies in the recording of data beyond the buffer in memory, allowing a intruder to execute arbitrary code.

The vulnerability of QNAP QVR Elite, QVR Pro, and the QVR Guard application, which is used for managing emergency switching of video surveillance systems, lies in data recording beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code...

The vulnerability of the Adobe InCopy text creation and editing software lies in the reading of data outside the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Adobe InCopy text creation and editing software relates to the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code using a specially created SVG file...

The vulnerability of Adobe InDesign’s computer layout automation tool, related to buffer overflow in dynamic memory, allows attackers to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to overflowing buffers in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created SVG file...

The vulnerability of the Adobe Bridge file manager, related to writing beyond the buffer boundaries in memory, allows a hacker to execute arbitrary code.

The vulnerability of the Adobe Bridge file manager is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created malicious file...

PT-2022-5402 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows affected versions not specified Description: The issue is related to a privilege escalation vulnerability in the Microsoft Windows COM+ Event System Service. It is caused by a buffer overflow in memory, which can be exploite...

The vulnerability of the swtpm TPM emulator, related to reading beyond the buffer in memory, allows a malicious actor to trigger a service failure.

The vulnerability of the swtpm TPM emulator is related to reading beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...