146 matches found
Omron CX-Position Buffer Overflow Vulnerability
Omron CX-Position is a position control software from Omron Corporation of Japan. Simplifies all aspects of position control, from creating/editing data used in a position control unit NC unit to online communication and monitoring operations.Omron CX-Position suffers from a buffer overflow...
vim buffer overflow vulnerability (CNVD-2022-08159)
Vim is an editor for the UNIX platform. A buffer error vulnerability exists in vim that originates when a networked system or product performs an operation on memory without properly validating data boundaries, resulting in an incorrect read or write operation being performed to an associated oth...
USN-5219-1: Linux kernel vulnerability
It was discovered that the eBPF implementation in the Linux kernel did not properly validate the memory size of certain ring buffer operation arguments. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code...
USN-5217-1: Linux kernel (OEM) vulnerabilities
It was discovered that the NFS server implementation in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2021-4090 It was discovered that the eBPF implementation in th...
Teeworlds buffer overflow vulnerability
Teeworlds is an online multiplayer shooter game. Teeworlds suffers from a buffer overflow vulnerability that originates when a networked system or product performs an operation on memory that does not properly validate data boundaries, resulting in an incorrect read or write operation being...
Moddable SDK Stack Overflow Vulnerability
Moddable SDK is a software development kit SDK for IoT embedded software development from Moddable U.S. A security vulnerability exists in the Moddable SDK, which stems from a networked system or product that does not properly validate data boundaries when performing operations on memory, resulti...
CVE-2021-30266
Possible use after free due to improper memory validation when initializing new interface via Interface add command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired...
Input validation
Possible use after free due to improper memory validation when initializing new interface via Interface add command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired...
CVE-2021-30266
Possible use after free due to improper memory validation when initializing new interface via Interface add command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired...
CVE-2021-30266
CVE-2021-30266 describes a use-after-free due to improper memory validation when initializing a new interface via the Interface add command in Qualcomm Snapdragon devices (multiple product families). Affected component is memory handling during interface initialization; impact is rated high for c...
多款Qualcomm产品资源管理错误漏洞
Qualcomm MDM9206 and others are products of Qualcomm Incorporated Qualcomm, U.S.A. The MDM9206 is a central processing unit CPU product.The MDM9650 is a central processing unit CPU product.The MSM8996AU is a central processing unit CPU product. A resource management error vulnerability exists in...
Mikrotik RouterOs Buffer Overflow Vulnerability (CNVD-2021-48922)
MikroTik RouterOS is a Linux-based router operating system developed by the Latvian company MikroTik. The system can be deployed in a PC to enable it to provide router functionality. A buffer error vulnerability exists in Mikrotik RouterOs, which stems from the product's /nova/bin/diskd process...
Microsoft .NET Framework Privilege Escalation (CVE-2015-2504)
A privilege escalation vulnerability exists in Microsoft .NET Framework. The vulnerability is due to an issue with the way that the .NET Framework validates the number of objects in memory before copying those objects into an array. A remote attacker code exploit this vulnerability by enticing a...
Out-of-bounds
Lack of validation on data read from guest memory in IntPeGetDirectory, IntPeParseUnwindData, IntLogExceptionRecord, IntKsymExpandSymbol and IntLixTaskDumpTree may lead to out-of-bounds read or it could cause DoS due to integer-overflor IntPeGetDirectory, TOCTOU IntPeParseUnwindData or insufficie...
Microsoft Windows Hyper-V Elevation of Privilege Vulnerability (CNVD-2021-08829)
Microsoft Windows Hyper-V is a tool from Microsoft USA that provides hardware virtualization. The software allows the creation of virtual hard drives, virtual switches, and many other virtual devices. An elevation of privilege vulnerability exists in Microsoft Windows Hyper-V, which can be...
Pillow Buffer Overflow Vulnerability
Pillow is a Python based image processing library. A buffer overflow vulnerability exists in the libImaging/TiffDecode.c file in Pillow versions prior to 7.1.0. The vulnerability stems from a networked system or product that performs operations in memory without properly validating data boundarie...
Foxit PhantomPDF Mac and Reader for Mac Buffer Overflow Vulnerability
Foxit PhantomPDF Mac and Foxit Reader for Mac are both China Foxit Foxit company's a macOS-based PDF document reader. A buffer overflow vulnerability exists in Foxit PhantomPDF Mac versions prior to 3.3 and Reader for Mac versions prior to 3.3. The vulnerability originates when a networked system...
FreeRDP Buffer Overflow Vulnerability (CNVD-2020-29360)
FreeRDP is an open source implementation of the Remote Desktop Protocol RDP from the FreeRDP team. FreeRDP suffers from a buffer overflow vulnerability. The vulnerability stems from a networked system or product performing operations in memory without properly validating data boundaries, resultin...
Buffer overflow vulnerability in multiple NETGEAR products (CNVD-2021-46566)
NETGEAR D3600 and others are products of NETGEAR, Inc.NETGEAR D3600 is a wireless modem.NETGEAR D6100 is a wireless modem.NETGEAR R6100 is a wireless router.NETGEAR R6100 is a wireless router.NETGEAR R6100 is a wireless router.NETGEAR R6100 is a wireless router.NETGEAR R6100 is a wireless...
Buffer overflow vulnerability in multiple NETGEAR products (CNVD-2021-46571)
NETGEAR D3600 and others are products of NETGEAR, Inc.NETGEAR D3600 is a wireless modem.NETGEAR D6000 is a wireless modem.NETGEAR WNDR3700 is a wireless router.NETGEAR WNDR3700 is a wireless router.NETGEAR WNDR3700 is a wireless router.NETGEAR WNDR3700 is a wireless router.NETGEAR WNDR3700 is a...