Lucene search
K

101 matches found

Positive Technologies
Positive Technologies
added 2025/03/12 12:0 a.m.7 views

PT-2025-29158 · Honeywell · Cn100 +10

Name of the Vulnerable Software and Affected Versions: Honeywell Experion PKS versions 520.1 through 520.2 TCU9 Honeywell Experion PKS versions 530 through 530 TCU3 Honeywell OneWireless WDM versions 322.1 through 322.4 Honeywell OneWireless WDM versions 330.1 through 330.3 Description: The...

9CVSS7.5AI score0.00423EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2025/02/27 12:0 a.m.3 views

The vulnerability of UEFI microprogramming systems of Intel processors allows a hacker to gain unauthorized access to protected information.

The vulnerability of Intel UEFI microprogramming systems lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

5.3CVSS5.9AI score0.00186EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/25 12:0 a.m.12 views

Siemens SIMATIC Devices Linux Kernel Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2022-3564)

A vulnerability classified as critical was found in Linux Kernel. Affected by this vulnerability is the function l2capreassemblesdu of the file net/bluetooth/l2capcore.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The...

7.1CVSS6.2AI score0.0129EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/02/25 12:0 a.m.5 views

Siemens SIMATIC Devices Linux Kernel Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2022-3649)

A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the function nilfsnewinode of the file fs/nilfs2/inode.c of the component BPF. The manipulation leads to use after free. It is possible to launch the attack remotely. It is recommended to apply a patch t...

7CVSS5.9AI score0.00758EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/02/24 12:0 a.m.7 views

Siemens SCALANCE W700 Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2024-33016)

memory corruption when an invalid firehose patch command is invoked. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid502913; scriptversion"1.3";...

6.8CVSS5.5AI score0.00153EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/02/05 9:18 p.m.12 views

CVE-2022-2947

Altair HyperView Player versions 2021.1.0.27 and prior perform operations on a memory buffer but can read from or write to a memory location outside of the intended boundary of the buffer. This hits initially as a read access violation, leading to a memory corruption situation...

7.8CVSS7AI score0.00286EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/04 10:28 p.m.6 views

CVE-2024-8938

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a potential arbitrary code execution after a successful Man-In-The-Middle attack followed by sending a crafted Modbus function call to tamper with memory area involved in memory...

9.2CVSS7.5AI score0.00517EPSS
Exploits0References1
NVD
NVD
added 2025/01/17 11:15 a.m.10 views

CVE-2024-10498

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could allow an unauthorized attacker to modify configuration values outside of the normal range when the attacker sends specific Modbus write packets to the device which could result in...

6.9CVSS0.0042EPSS
Exploits0References1
CVE
CVE
added 2025/01/17 10:30 a.m.47 views

CVE-2024-10498

Schneider Electric PowerLogic HDPM6000 is affected (CVE-2024-10498) by CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer. A memory-buffer bounds violation allows a remote attacker to modify configuration values outside the permitted range by sending specific Modbus ...

6.9CVSS6.5AI score0.0042EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/17 10:30 a.m.12 views

CVE-2024-10498

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could allow an unauthorized attacker to modify configuration values outside of the normal range when the attacker sends specific Modbus write packets to the device which could result in...

6.9CVSS0.0042EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/17 10:30 a.m.3 views

CVE-2024-10498

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could allow an unauthorized attacker to modify configuration values outside of the normal range when the attacker sends specific Modbus write packets to the device which could result in...

6.9CVSS6.5AI score0.0042EPSS
Exploits0References1
NVD
NVD
added 2025/01/17 9:15 a.m.12 views

CVE-2024-11139

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could allow local attackers to exploit these issues to potentially execute arbitrary code when opening a malicious project file...

4.6CVSS0.00228EPSS
Exploits0References1
CVE
CVE
added 2025/01/17 8:37 a.m.45 views

CVE-2024-11139

CVE-2024-11139 affects Schneider Electric EcoStruxure Power Build Rapsody. A CWE-119-style memory-bounds vulnerability (buffer bounds) may allow local attackers to execute arbitrary code when opening a malicious project file. Reported impact is memory corruption with potential for local code exec...

4.6CVSS7.6AI score0.00228EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/17 8:37 a.m.18 views

CVE-2024-11139

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could allow local attackers to exploit these issues to potentially execute arbitrary code when opening a malicious project file...

4.6CVSS0.00228EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/11/28 12:0 a.m.12 views

Schneider Electric Modicon M340, MC80, and Momentum Unity M1E Improper Restriction of Operations Within the Bounds of a Memory Buffer (CVE-2024-8937)

Arbitrary code execution can potentially be achieved after a successful Man-In-The Middle attack followed by sending a crafted Modbus function call to tamper with memory area involved in the authentication process. This plugin only works with Tenable.ot. Please visit...

8.3CVSS6.1AI score0.00573EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/11/17 12:0 a.m.5 views

The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages lies in the fact that operations are performed outside of the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS6.2AI score0.00736EPSS
Exploits0References2
NVD
NVD
added 2024/07/01 9:15 a.m.39 views

CVE-2024-0153

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arm Ltd Valhall GPU Firmware, Arm Ltd Arm 5th Gen GPU Architecture Firmware allows a local non-privileged user to make improper GPU processing operations to access a limited amount outside of buffer bounds. I...

7.8CVSS0.00217EPSS
Exploits0References1
NVD
NVD
added 2024/03/26 4:15 p.m.14 views

CVE-2024-21920

A memory buffer vulnerability in Rockwell Automation Arena Simulation could potentially let a threat actor read beyond the intended memory boundaries. This could reveal sensitive information and even cause the application to crash, resulting in a denial-of-service condition. To trigger this, the...

7.1CVSS4.9AI score0.0022EPSS
Exploits0References1
OSV
OSV
added 2024/03/26 4:15 p.m.6 views

CVE-2024-21920

A memory buffer vulnerability in Rockwell Automation Arena Simulation could potentially let a threat actor read beyond the intended memory boundaries. This could reveal sensitive information and even cause the application to crash, resulting in a denial-of-service condition. To trigger this, the...

7.1CVSS6AI score0.0022EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/26 3:48 p.m.23 views

CVE-2024-21920 Rockwell Automation Arena Simulation Vulnerable To Buffer Overflow

A memory buffer vulnerability in Rockwell Automation Arena Simulation could potentially let a threat actor read beyond the intended memory boundaries. This could reveal sensitive information and even cause the application to crash, resulting in a denial-of-service condition. To trigger this, the...

4.4CVSS6.7AI score0.0022EPSS
Exploits0References1
Rows per page
Query Builder