Buffer overflow

An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing macro could lead to a miscalculation of the h-nets array offset, providing attackers with the primitive to arbitrarily increment/decrement a memory buffer out-of-bound. This issue may allow a local...

CVE-2023-42753 Kernel: netfilter: potential slab-out-of-bound access due to integer underflow

An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing macro could lead to a miscalculation of the h-nets array offset, providing attackers with the primitive to arbitrarily increment/decrement a memory buffer out-of-bound. This issue may allow a local...

CVE-2023-42753

An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing macro could lead to a miscalculation of the h-nets array offset, providing attackers with the primitive to arbitrarily increment/decrement a memory buffer out-of-bound. This issue may allow a local...

CVE-2023-42753

CVE-2023-42753 is a Linux kernel netfilter nftables/IPSET issue caused by a missing IP_SET_HASH_WITH_NET0 macro, leading to incorrect CIDR_POS calculations and potential slab out-of-bounds access. Local unprivileged users could trigger memory corruption or crashes; privilege escalation is possibl...

Accusoft ImageGear pictwread heap-based buffer overflow vulnerability

Talos Vulnerability Report TALOS-2023-1760 Accusoft ImageGear pictwread heap-based buffer overflow vulnerability September 25, 2023 CVE Number CVE-2023-35002 SUMMARY A heap-based buffer overflow vulnerability exists in the pictwread functionality of Accusoft ImageGear 20.1. A specially crafted...

x11/libXpm multiple vulnerabilities

The X.Org project reports: CVE-2023-43788: Out of bounds read in XpmCreateXpmImageFromBuffer An out-of-bounds read is located in ParseComment when reading from a memory buffer instead of a file, as it continued to look for the closing comment marker past the end of the buffer. CVE-2023-43789: Out...

CVE-2023-28581 Improper Restriction of Operations within the Bounds of a Memory Buffer in WLAN Firmware

Memory corruption in WLAN Firmware while parsing receieved GTK Keys in GTK KDE...

CVE-2023-21654 Improper Restriction of Operations within the Bounds of a Memory Buffer in Audio

Memory corruption in Audio during playback session with audio effects enabled...

Denial Of Service (DoS)

radare2 is vulnerable to Denial of Service DoS attacks. The vulnerability exists in the rregsetvalue function in the radare2 codebase. The function is responsible for setting the value of a register. The vulnerability occurs when the function fails to properly free a memory buffer. This can allow...

Design/Logic Flaw

UNSUPPPORTED WHEN ASSIGNED UNSUPPORTED WHEN ASSIGNED Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Hitachi EH-VIEW KeypadDesigner allows local attackers to potentially disclose information and execute arbitray code on affected EH-VIEW installations. User...

CVE-2023-39984 Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability in Hitachi EH-VIEW (KeypadDesigner)

UNSUPPORTED WHEN ASSIGNED Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Hitachi EH-VIEW KeypadDesigner allows local attackers to potentially disclose information and execute arbitray code on affected EH-VIEW installations. User interaction is required to...

CVE-2023-39984

Hitachi EH-VIEW (KeypadDesigner) is affected by a memory-buffer bounds-check vulnerability (Improper Restriction of Operations within the Bounds of a Memory Buffer). The issue enables local attackers to potentially disclose information and execute arbitrary code on affected installations. Exploit...

CVE-2023-39984 Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability in Hitachi EH-VIEW (KeypadDesigner)

UNSUPPORTED WHEN ASSIGNED Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Hitachi EH-VIEW KeypadDesigner allows local attackers to potentially disclose information and execute arbitray code on affected EH-VIEW installations. User interaction is required to...

CVE-2023-3953

The CVE-2023-3953 entry concerns Schneider Electric Pro-face GP-Pro EX. A memory buffer overflow due to improper manipulation of memory buffer bounds can cause memory corruption when an authenticated user opens a tampered log file from GP-Pro EX. Connected sources (CNVD-2023-64088 and PT-2023-419...

PT-2023-4195 · Pro Face · Gp-Pro Ex

Name of the Vulnerable Software and Affected Versions: GP-Pro EX affected versions not specified Description: The issue is related to a memory buffer overflow, which could allow an attacker to impact the confidentiality, integrity, and availability of protected information. This occurs when an...

CVE-2022-4046

In CODESYS Control in multiple versions a improper restriction of operations within the bounds of a memory buffer allow an remote attacker with user privileges to gain full access of the device...

CVE-2022-4046

In CODESYS Control in multiple versions a improper restriction of operations within the bounds of a memory buffer allow an remote attacker with user privileges to gain full access of the device...

CVE-2022-4046 CODESYS: Improper memory restrictions fro CODESYS Control

In CODESYS Control in multiple versions a improper restriction of operations within the bounds of a memory buffer allow an remote attacker with user privileges to gain full access of the device...

Panasonic Control FPWin Pro7

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Panasonic Equipment: Control FPWIN Pro7 Vulnerabilities: Type Confusion, Stack-based Buffer Overflow, Improper Restriction of Operations within the Bounds of a Memory Buffer 2. RISK EVALUATION Successful exploitation of...

SUSE-SU-2023:2782-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-35828: Fixed a use-after-free flaw inside renesasusb3remove in drivers/usb/gadget/udc/renesasusb3.c bsc1212513. - CVE-2023-35823: Fixed a...