Lucene search
K

146 matches found

CNVD
CNVD
added 2022/03/31 12:0 a.m.22 views

Omron CX-Position Buffer Overflow Vulnerability

Omron CX-Position is a position control software from Omron Corporation of Japan. Simplifies all aspects of position control, from creating/editing data used in a position control unit NC unit to online communication and monitoring operations.Omron CX-Position suffers from a buffer overflow...

6.8CVSS8AI score0.01985EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2022/01/25 12:0 a.m.38 views

vim buffer overflow vulnerability (CNVD-2022-08159)

Vim is an editor for the UNIX platform. A buffer error vulnerability exists in vim that originates when a networked system or product performs an operation on memory without properly validating data boundaries, resulting in an incorrect read or write operation being performed to an associated oth...

5.5CVSS7.5AI score0.0144EPSS
Exploits1References1
Ubuntu
Ubuntu
added 2022/01/11 5:22 a.m.122 views

USN-5219-1: Linux kernel vulnerability

It was discovered that the eBPF implementation in the Linux kernel did not properly validate the memory size of certain ring buffer operation arguments. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code...

7.1CVSS7.5AI score0.01095EPSS
Exploits1References1
Ubuntu
Ubuntu
added 2022/01/11 4:56 a.m.141 views

USN-5217-1: Linux kernel (OEM) vulnerabilities

It was discovered that the NFS server implementation in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2021-4090 It was discovered that the eBPF implementation in th...

7.1CVSS7.5AI score0.01095EPSS
Exploits1References1
CNVD
CNVD
added 2021/12/19 12:0 a.m.30 views

Teeworlds buffer overflow vulnerability

Teeworlds is an online multiplayer shooter game. Teeworlds suffers from a buffer overflow vulnerability that originates when a networked system or product performs an operation on memory that does not properly validate data boundaries, resulting in an incorrect read or write operation being...

7.8CVSS4.4AI score0.01382EPSS
Exploits1References1
CNVD
CNVD
added 2021/11/22 12:0 a.m.21 views

Moddable SDK Stack Overflow Vulnerability

Moddable SDK is a software development kit SDK for IoT embedded software development from Moddable U.S. A security vulnerability exists in the Moddable SDK, which stems from a networked system or product that does not properly validate data boundaries when performing operations on memory, resulti...

7.8CVSS2AI score0.0073EPSS
Exploits1References1
NVD
NVD
added 2021/11/12 7:15 a.m.16 views

CVE-2021-30266

Possible use after free due to improper memory validation when initializing new interface via Interface add command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired...

6.7CVSS0.0017EPSS
Exploits0References1
Prion
Prion
added 2021/11/12 7:15 a.m.25 views

Input validation

Possible use after free due to improper memory validation when initializing new interface via Interface add command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired...

4.6CVSS6.9AI score0.0017EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/11/12 6:16 a.m.26 views

CVE-2021-30266

Possible use after free due to improper memory validation when initializing new interface via Interface add command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired...

6.7CVSS7.1AI score0.0017EPSS
Exploits0References1
CVE
CVE
added 2021/11/12 6:16 a.m.63 views

CVE-2021-30266

CVE-2021-30266 describes a use-after-free due to improper memory validation when initializing a new interface via the Interface add command in Qualcomm Snapdragon devices (multiple product families). Affected component is memory handling during interface initialization; impact is rated high for c...

6.7CVSS6.8AI score0.0017EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2021/11/01 12:0 a.m.5 views

多款Qualcomm产品资源管理错误漏洞

Qualcomm MDM9206 and others are products of Qualcomm Incorporated Qualcomm, U.S.A. The MDM9206 is a central processing unit CPU product.The MDM9650 is a central processing unit CPU product.The MSM8996AU is a central processing unit CPU product. A resource management error vulnerability exists in...

6.7CVSS6.7AI score0.0017EPSS
Exploits0References4
CNVD
CNVD
added 2021/07/09 12:0 a.m.7 views

Mikrotik RouterOs Buffer Overflow Vulnerability (CNVD-2021-48922)

MikroTik RouterOS is a Linux-based router operating system developed by the Latvian company MikroTik. The system can be deployed in a PC to enable it to provide router functionality. A buffer error vulnerability exists in Mikrotik RouterOs, which stems from the product's /nova/bin/diskd process...

6.5CVSS6.7AI score0.01547EPSS
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2021/03/15 12:0 a.m.10 views

Microsoft .NET Framework Privilege Escalation (CVE-2015-2504)

A privilege escalation vulnerability exists in Microsoft .NET Framework. The vulnerability is due to an issue with the way that the .NET Framework validates the number of objects in memory before copying those objects into an array. A remote attacker code exploit this vulnerability by enticing a...

9.3CVSS6.6AI score0.2102EPSS
Exploits0
Prion
Prion
added 2020/12/17 5:15 p.m.11 views

Out-of-bounds

Lack of validation on data read from guest memory in IntPeGetDirectory, IntPeParseUnwindData, IntLogExceptionRecord, IntKsymExpandSymbol and IntLixTaskDumpTree may lead to out-of-bounds read or it could cause DoS due to integer-overflor IntPeGetDirectory, TOCTOU IntPeParseUnwindData or insufficie...

2.1CVSS5.4AI score0.00271EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2020/10/16 12:0 a.m.9 views

Microsoft Windows Hyper-V Elevation of Privilege Vulnerability (CNVD-2021-08829)

Microsoft Windows Hyper-V is a tool from Microsoft USA that provides hardware virtualization. The software allows the creation of virtual hard drives, virtual switches, and many other virtual devices. An elevation of privilege vulnerability exists in Microsoft Windows Hyper-V, which can be...

7.8CVSS8.9AI score0.00875EPSS
Exploits0References1
CNVD
CNVD
added 2020/06/28 12:0 a.m.11 views

Pillow Buffer Overflow Vulnerability

Pillow is a Python based image processing library. A buffer overflow vulnerability exists in the libImaging/TiffDecode.c file in Pillow versions prior to 7.1.0. The vulnerability stems from a networked system or product that performs operations in memory without properly validating data boundarie...

7.8CVSS6.9AI score0.01129EPSS
Exploits0References1
CNVD
CNVD
added 2020/06/05 12:0 a.m.3 views

Foxit PhantomPDF Mac and Reader for Mac Buffer Overflow Vulnerability

Foxit PhantomPDF Mac and Foxit Reader for Mac are both China Foxit Foxit company's a macOS-based PDF document reader. A buffer overflow vulnerability exists in Foxit PhantomPDF Mac versions prior to 3.3 and Reader for Mac versions prior to 3.3. The vulnerability originates when a networked system...

9.8CVSS7.3AI score0.01717EPSS
Exploits0References1
CNVD
CNVD
added 2020/05/08 12:0 a.m.2 views

FreeRDP Buffer Overflow Vulnerability (CNVD-2020-29360)

FreeRDP is an open source implementation of the Remote Desktop Protocol RDP from the FreeRDP team. FreeRDP suffers from a buffer overflow vulnerability. The vulnerability stems from a networked system or product performing operations in memory without properly validating data boundaries, resultin...

5.5CVSS9.8AI score0.01324EPSS
Exploits0References1
CNVD
CNVD
added 2020/04/29 12:0 a.m.8 views

Buffer overflow vulnerability in multiple NETGEAR products (CNVD-2021-46566)

NETGEAR D3600 and others are products of NETGEAR, Inc.NETGEAR D3600 is a wireless modem.NETGEAR D6100 is a wireless modem.NETGEAR R6100 is a wireless router.NETGEAR R6100 is a wireless router.NETGEAR R6100 is a wireless router.NETGEAR R6100 is a wireless router.NETGEAR R6100 is a wireless...

8.8CVSS7.3AI score0.00694EPSS
Exploits0References1
CNVD
CNVD
added 2020/04/29 12:0 a.m.8 views

Buffer overflow vulnerability in multiple NETGEAR products (CNVD-2021-46571)

NETGEAR D3600 and others are products of NETGEAR, Inc.NETGEAR D3600 is a wireless modem.NETGEAR D6000 is a wireless modem.NETGEAR WNDR3700 is a wireless router.NETGEAR WNDR3700 is a wireless router.NETGEAR WNDR3700 is a wireless router.NETGEAR WNDR3700 is a wireless router.NETGEAR WNDR3700 is a...

8.8CVSS7.3AI score0.00629EPSS
Exploits0References1
Rows per page
Query Builder