Juniper Junos OS Vulnerability (JSA79176)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA79176 advisory. - An Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows an...

PT-2024-3102 · Juniper Networks · Junos

Name of the Vulnerable Software and Affected Versions: Junos OS versions 21.2 before 21.2R3-S7 Junos OS versions 21.4 before 21.4R3-S6 Junos OS versions 22.1 before 22.1R3-S5 Junos OS versions 22.2 before 22.2R3-S3 Junos OS versions 22.3 before 22.3R3-S2 Junos OS versions 22.4 before 22.4R3 Junos...

PT-2024-2778 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a security-feature bypass vulnerability in the implementation of the Secure Boot protocol in Windows operating systems. It is caused by a buffer overflow in memory,...

ROS-20240403-09

Vulnerability of the peekforas4capability function of the software tool for implementing network routing on Unix-like systems FRRouting is related to flaws in the use of the assert function. Unix-like systems FRRouting is related to flaws in using assert function. Exploitation The vulnerability...

SUSE CVE-2024-26646

In the Linux kernel, the following vulnerability has been resolved: thermal: intel: hfi: Add syscore callbacks for system-wide PM The kernel allocates a memory buffer and provides its location to the hardware, which uses it to update the HFI table. This allocation occurs during boot and remains...

ROS-20240328-12

The vulnerability of the Sparseunipropstring function of the regcomp.c file of the Perl programming language interpreter is related to the operation exceeding the memory buffer boundaries. is related to an operation exceeding the buffer boundaries in memory. Exploitation of the vulnerability coul...

DEBIAN-CVE-2024-26646

In the Linux kernel, the following vulnerability has been resolved: thermal: intel: hfi: Add syscore callbacks for system-wide PM The kernel allocates a memory buffer and provides its location to the hardware, which uses it to update the HFI table. This allocation occurs during boot and remains...

CVE-2024-21920

A memory buffer vulnerability in Rockwell Automation Arena Simulation could potentially let a threat actor read beyond the intended memory boundaries. This could reveal sensitive information and even cause the application to crash, resulting in a denial-of-service condition. To trigger this, the...

CVE-2024-21920

A memory buffer vulnerability in Rockwell Automation Arena Simulation could potentially let a threat actor read beyond the intended memory boundaries. This could reveal sensitive information and even cause the application to crash, resulting in a denial-of-service condition. To trigger this, the...

CVE-2024-21920 Rockwell Automation Arena Simulation Vulnerable To Buffer Overflow

A memory buffer vulnerability in Rockwell Automation Arena Simulation could potentially let a threat actor read beyond the intended memory boundaries. This could reveal sensitive information and even cause the application to crash, resulting in a denial-of-service condition. To trigger this, the...

CVE-2024-21920

Rockwell Automation Arena Simulation (Arena Simulation Software) version 16.00 is affected by a memory boundary vulnerability in which an attacker could read beyond allocated memory and cause a crash or potential data disclosure after a user opens a malicious file. The vulnerability family spans ...

CVE-2024-21918

Rockwell Automation Arena Simulation Software (Arena Simulation) is affected by CVE-2024-21918, a memory corruption vulnerability in the memory handling (memory corruption/overflow) that could allow an attacker to execute arbitrary code after opening a malicious file. Affected product: Arena Simu...

CVE-2024-21913 Rockwell Automation Arena Simulation Vulnerable To Memory Corruption

A heap-based memory buffer overflow vulnerability in Rockwell Automation Arena Simulation software could potentially allow a malicious user to insert unauthorized code into the software by overstepping the memory boundaries, which triggers an access violation. Once inside, the threat actor can ru...

Advisory ROSA-SA-2024-2379

software: curl 8.4.0 WASP: ROSA-CHROME packageevrstring: curl-8.4.0-1.src.rpm CVE-ID: CVE-2023-38545 BDU-ID: 2023-06576 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the SOCKS5 protocol implementation of the cURL command line utility is related to an operation exceeding buffer boundaries in memory...

Rockwell Automation Arena Simulation Software 缓冲区错误漏洞

Rockwell Automation Arena Simulation Software is a suite of simulation software from Rockwell Automation that provides 3D animation and graphics capabilities. A security vulnerability exists in Rockwell Automation Arena Simulation Software, which stems from a memory buffer vulnerability that coul...

Advisory ROSA-SA-2024-2373

Software: pixman 0.38.4 OS: ROSA Virtualization 2.1 packageevrstring: pixman-0.38.4.src.rpm CVE-ID: CVE-2022-44638 BDU-ID: 2022-06667 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the rasterizeedges8 function of the Pixman library is related to the ability to write beyond buffer boundaries in...

CVE-2024-22041

CVE-2024-22041 pertains to the network communication library in Siemens Cerberus PRO EN and Sinteso/Sinteso Mobile/product ecosystems, which improperly handles memory buffers when parsing X.509 certificates. This leads to an unauthenticated remote attacker potentially crashing the affected networ...

CVE-2024-22041

A vulnerability has been identified in Cerberus PRO EN Engineering Tool All versions, Cerberus PRO EN Fire Panel FC72x IP6 All versions, Cerberus PRO EN Fire Panel FC72x IP7 All versions, Cerberus PRO EN Fire Panel FC72x IP8 All versions IP8 SR4, Cerberus PRO EN X200 Cloud Distribution IP7 All...

Siemens Sinteso EN Cerberus PRO EN Fire Protection Systems

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

redis: Heap Buffer Overflow may lead to potential remote code execution

A flaw was found in Redis. When processing a certain sequence of payloads, Redis may incorrectly handle the resizing of memory buffers, leading to a heap-based buffer overflow, potentially resulting in a denial of service or remote code execution...