CVE-2021-22335

CVE-2021-22335 describes a memory buffer issue in Huawei Smartphone (Huawei EMUI/Magic UI). The vulnerability, labeled as memory buffer improper operation limit (also reflected as a heap overflow in several sources), can cause exceptions in image processing when exploited locally. Connected docum...

CVE-2021-22335

There is a Memory Buffer Improper Operation Limit vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause exceptions in image processing...

The vulnerability of the Remote Desktop Protocol (RDP) implementation on Microsoft Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Remote Desktop Protocol RDP implementation on Microsoft Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

Accusoft ImageGear TIF IP_planar_raster_unpack improper array index validation vulnerability

Summary An improper array index validation vulnerability exists in the TIF IPplanarrasterunpack functionality of Accusoft ImageGear 19.9. A specially crafted malformed file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability. Tested Versions...

Siemens SIMATIC S7-1200 and S7-1500 CPU Families (Update A)

1. EXECUTIVE SUMMARY CVSS v3 8.1 ATTENTION: Exploitable remotely Vendor: Siemens Equipment: SIMATIC S7-1200 and S7-1500 CPU Families Vulnerability: Improper Restriction of Operations within the Bounds of a Memory Buffer 2. UPDATE INFORMATION This updated advisory is a follow-up to the original...

DEBIAN-CVE-2021-30501

An assertion abort was found in upx MemBuffer::alloc in mem.cpp, in version UPX 4.0.0. The flow allows attackers to cause a denial of service abort via a crafted file...

UBUNTU-CVE-2021-30501

An assertion abort was found in upx MemBuffer::alloc in mem.cpp, in version UPX 4.0.0. The flow allows attackers to cause a denial of service abort via a crafted file...

Improper Input Validation

Overview Affected versions of this package are vulnerable to Improper Input Validation. An assertion abort was found in upx MemBuffer::alloc in mem.cpp, in version UPX 4.0.0. The flow allows attackers to cause a denial of service abort via a crafted file. Remediation Upgrade upx to version 4.2.1 ...

CVE-2021-22705

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause denial of service or unauthorized access to system information when interacting directly with a driver installed by Vijeo Designer or EcoStruxure Machine Expert...

CVE-2021-22705

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause denial of service or unauthorized access to system information when interacting directly with a driver installed by Vijeo Designer or EcoStruxure Machine Expert...

CVE-2021-22705

CVE-2021-22705 describes an Improper Restriction of Operations within the Bounds of a Memory Buffer that could allow denial of service or unauthorized access to system information when interacting with a driver installed by Schneider Electric’s Vijeo Designer or EcoStruxure Machine Expert. The co...

Schneider Electric 缓冲区错误漏洞

A buffer error vulnerability exists in Schneider Electric that stems from an improper restriction of operations within a memory buffer range. An attacker interacting with drivers installed by Vijeo Designer or EcoStruxure Machine Expert could cause a denial of service or unauthorized access to...

UPX 输入验证错误漏洞

UPX is an open source executable file packaging program that supports a variety of file formats from different operating systems. An assertion abort vulnerability exists in MemBuffer::alloc in mem.cpp in UPX version 4.0.0. An attacker can exploit this vulnerability via a specially crafted file to...

The vulnerability of the Adobe Animate software for creating multimedia and computer animations lies in its ability to read data beyond the boundaries of the memory buffer. This allows attackers to gain unauthorized access to protected information.

The vulnerability of the Adobe Animate program for creating multimedia and computer animations is related to reading beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information in the context of the current user, usin...

The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to reading beyond the buffer in memory. This allows attackers to gain unauthorized access to protected information.

The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to reading data beyond the buffer limit in memory. Exploiting these vulnerabilities can allow an attacker to gain...

The vulnerability of the Adobe Bridge file manager, related to reading beyond the buffer in memory, allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the Adobe Bridge file manager is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the web page rendering module in WebKitGTK on Apple MacOS operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Web page rendering module in WebKitGTK on Apple MacOS operating systems is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created malicious web page...

Siemens SIMATIC S7-1500

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Siemens Equipment: SIMATIC S7-1500 CPU 1518F-4 Vulnerabilities: Improper Initialization, Improper Restriction of Operations within the Bounds of a Memory Buffer 2. RISK EVALUATION Successful exploitation of these Intel...

CVE-2020-28022

Exim 4 before 4.94.2 has Improper Restriction of Write Operations within the Bounds of a Memory Buffer. This occurs when processing name=value pairs within MAIL FROM and RCPT TO commands...

CVE-2020-28022

Exim 4 before 4.94.2 has Improper Restriction of Write Operations within the Bounds of a Memory Buffer. This occurs when processing name=value pairs within MAIL FROM and RCPT TO commands...