191 matches found
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure of the net: fec module to properly handle PTP state saving when dealing with unsupported PTPs,...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets, which arises from an out-of-bounds read vulnerability contained in the WLAN Host Communication module...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets, which stems from a post-release reuse vulnerability contained in the WLAN Host module...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets, which stems from an out-of-bounds read vulnerability contained in the WLAN Host module...
The vulnerability of the microprogramming software of Schneider Electric’s programmable logic controller Modicon M340 and its network modules, Modicon M340 BMXNOE0100, Modicon M340 BMXNOE0110, stems from the use of files and directories accessible to external parties. This allows attackers to disrupt the device’s firmware updates and cause improper operation of the web server.
The vulnerability of the microprogramming software of Schneider Electric’s programmable logic controller Modicon M340, as well as its network modules Modicon M340 BMXNOE0100 and Modicon M340 BMXNOE0110, stems from the use of files and directories accessible to external parties. Exploiting this...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from a post-release reuse vulnerability in the net:USB module...
Linux kernel security vulnerabilities
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a post-release reuse issue with the TLS device shutdown and startup of the net module...
The vulnerability of the tls_decrypt_done function in the Linux kernel’s net/tls/tls_sw.c file, which allows a hacker to trigger a service failure
The vulnerability of the tlsdecryptdone function in the Linux operating system’s kernel is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the net module calling asynchronous callbacks twice under certain circumstances. No details of the...
Google Chrome Network module memory misreference vulnerability
Google Chrome is a web browser from Google, an American company. A memory misreference vulnerability exists in the Google Chrome Network module, which stems from a confusion in the instructions responsible for freeing memory in the Network module. An attacker can exploit this vulnerability to...
SUSE CVE-2021-33630
NULL Pointer Dereference vulnerability in openEuler kernel on Linux network modules allows Pointer Manipulation. This vulnerability is associated with program files net/sched/schcbs.C. This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3...
Google Chrome 安全漏洞
Google Chrome is a web browser from Google, an American company. A memory misreference vulnerability exists in the Google Chrome Network module, which stems from a confusion in the instructions responsible for freeing memory in the Network module. An attacker can exploit this vulnerability to...
DEBIAN-CVE-2021-33630
NULL Pointer Dereference vulnerability in openEuler kernel on Linux network modules allows Pointer Manipulation. This vulnerability is associated with program files net/sched/schcbs.C. This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3...
UBUNTU-CVE-2021-33630
NULL Pointer Dereference vulnerability in openEuler kernel on Linux network modules allows Pointer Manipulation. This vulnerability is associated with program files net/sched/schcbs.C. This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3...
GHSA-JHWW-FX2J-3RF7 FoodCoopShop Server-Side Request Forgery vulnerability
There is a potential SSRF vulnerability in foodcoopshop. Since there is no security policy on your Github, I tried to use the emails to contact you. The potential issue is in the Network module, where a manufacturer account can use the /api/updateProducts.json endpoint to make the server send a...
CVE-2023-46725
FoodCoopShop is open source software for food coops and local shops. Versions starting with 3.2.0 prior to 3.6.1 are vulnerable to server-side request forgery. In the Network module, a manufacturer account can use the /api/updateProducts.json endpoint to make the server send a request to an...
Server side request forgery (ssrf)
FoodCoopShop is open source software for food coops and local shops. Versions starting with 3.2.0 prior to 3.6.1 are vulnerable to server-side request forgery. In the Network module, a manufacturer account can use the /api/updateProducts.json endpoint to make the server send a request to an...
CVE-2023-46725 FoodCoopShop Server-Side Request Forgery vulnerability
FoodCoopShop is open source software for food coops and local shops. Versions starting with 3.2.0 prior to 3.6.1 are vulnerable to server-side request forgery. In the Network module, a manufacturer account can use the /api/updateProducts.json endpoint to make the server send a request to an...
CVE-2023-46725 FoodCoopShop Server-Side Request Forgery vulnerability
FoodCoopShop is open source software for food coops and local shops. Versions starting with 3.2.0 prior to 3.6.1 are vulnerable to server-side request forgery. In the Network module, a manufacturer account can use the /api/updateProducts.json endpoint to make the server send a request to an...
CVE-2023-46725 FoodCoopShop Server-Side Request Forgery vulnerability
FoodCoopShop is open source software for food coops and local shops. Versions starting with 3.2.0 prior to 3.6.1 are vulnerable to server-side request forgery. In the Network module, a manufacturer account can use the /api/updateProducts.json endpoint to make the server send a request to an...