TencentOS Server 4: jq (TSSA-2025:0286)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0286 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

EUVD-2020-1725

Malware in sbrugna...

EUVD-2017-14172

Malware in sbrugna...

CVE-2020-0221

Airbrush FW's scratch memory allocator is susceptible to numeric overflow. When the overflow occurs, the next allocation could potentially return a pointer within the previous allocation's memory, which could lead to improper memory access.Product: AndroidVersions: Android kernelAndroid ID:...

STMicroelectronics X-CUBE-AZRTOS-WL 数字错误漏洞

STMicroelectronics X-CUBE-AZRTOS-WL is an Azure RTOS-based development kit for STM32 microcontrollers from STMicroelectronics, Switzerland. A numeric error vulnerability exists in STMicroelectronics X-CUBE-AZRTOS-WL version 2.0.0, which stems from an integer overflow in the PUT request function o...

The vulnerability of the tpm_read_log_efi() function in the drivers/char/tpm/eventlog/efi.c kernel module of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the tpmreadlogefi function in the drivers/char/tpm/eventlog/efi.c kernel module of the Linux operating system is related to a numerical overflow or cyclic shift. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the qsvghandler.cpp component of the cross-platform development framework for Qt software, which allows a hacker to trigger a service failure.

The vulnerability of the qsvghandler.cpp component of the cross-platform development framework for Qt software is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to cause a service failure...

The vulnerability of the svcrdma component in the Linux operating system allows a hacker to execute arbitrary code.

The vulnerability of the svcrdma component in the Linux operating system’s kernel is related to a numerical overflow condition. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the LPIT component in the Linux operating system’s kernel allows a hacker to execute arbitrary code.

The vulnerability of the LPIT component in the Linux operating system’s kernel is related to a numerical overflow in the lpitupdateresidency function. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of the desktop publishing system Adobe Framemaker, caused by a full overflow of integers, allows an attacker to execute arbitrary code.

The vulnerability of the desktop publishing system Adobe Framemaker arises from a numerical overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code in the context of the current user, using a specially created file...

The vulnerability in the implementation of the Secure Boot protocol for operating systems with Windows, which allows attackers to circumvent existing security restrictions.

The vulnerability of the Secure Boot protocol for loading operating systems on Windows is related to a numerical overflow condition. Exploiting this vulnerability could allow a malicious actor to bypass existing security restrictions remotely...

The vulnerability in the implementation of the Secure Boot protocol for operating systems with Windows, which allows attackers to circumvent existing security restrictions.

The vulnerability of the Secure Boot protocol for Windows operating systems is related to a numerical overflow condition. Exploiting this vulnerability could allow an attacker to bypass existing security restrictions remotely...

The vulnerability of the aqc111_rx_fixup() function in the Aquantia AQtion USB driver for the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the aqc111rxfixup function in the drivers/net/usb/aqc111.c module of the Aquantia AQtion USB driver for the Linux operating system is related to a numerical overflow. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the `get_scaler_data_for_plane()` function in the `drivers/gpu/drm/amd/display/dc/dml2/dml2_translation_helper.c` file, a video driver for AMD cores in the Linux operating system, allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the getscalerdataforplane function in the drivers/gpu/drm/amd/display/dc/dml2/dml2translationhelper.c file, a video driver for AMD cores in the Linux operating system, is related to a numerical overflow vulnerability. Exploiting this vulnerability could allow an attacker to...

Vulnerability of the Windows OLE operating system component, allowing a hacker to execute arbitrary code

The vulnerability of the Windows OLE operating system is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

The vulnerability of the user interface of the WebUI of Microsoft Edge and Google Chrome browsers allows a hacker to execute arbitrary code.

The vulnerability of the WebUI user interfaces of Microsoft Edge and Google Chrome is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

The vulnerability of the `simple_object_elf_match` function in the `libiberty/simple-object-elf.c` development toolset of the GNU Binutils allows a attacker to trigger a service failure.

The vulnerability of the simpleobjectelfmatch function in the libiberty/simple-object-elf.c development tool of the GNU Binutils library is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to cause service failures remotely...

The vulnerability of the _bfd_dwarf2_slurpdebug_info function in the bfd/dwarf2.c component of the GNU Binutils development environment allows a hacker to cause a service failure.

The vulnerability of the bfddwarf2slurpdebuginfo function in the bfd/dwarf2.c component of the GNU Binutils development environment is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to cause service interruptions...

The vulnerability of the Herces library on the C++ platform of the BigFix Platform for collaborative management of IT equipment allows a hacker to execute arbitrary code.

The vulnerability of the Herces library on the C++ platform used by the BigFix Platform for jointly managing IT equipment is due to a numerical overflow. Exploiting this vulnerability allows an attacker, operating remotely, to execute arbitrary code by sending a specially crafted HTTP request...

The vulnerability of the manage_post function in the microprogramming software of industrial Wi-Fi routers Yifan YF325 allows a hacker to execute arbitrary code.

The vulnerability of the managepost function in the microprogramming software for industrial Wi-Fi routers Yifan YF325 is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...