EUVD-2024-17637

Malicious code in bioql PyPI...

Incorrect Pointer Scaling

Overview Affected versions of this package are vulnerable to Incorrect Pointer Scaling through the inftrees.c component. An attacker can cause undefined behavior by exploiting improper pointer arithmetic. This is only exploitable if the PCL version is older than 1.14.0 or the user specifically...

The vulnerability of the pdf_base_font_alloc() function in the software suite for processing, transforming, and generating Ghostscript documents allows a attacker to execute arbitrary code or cause a service failure.

The vulnerability of the pdfbasefontalloc function in the software suite for processing, transforming, and generating Ghostscript documents is related to buffer overflows caused by improper scaling of the pointer "".F" PRIINTPTR". Exploitation of this vulnerability could allow a malicious actor t...

Mitsubishi Electric MELSEC-Q/L Series Incorrect Pointer Scaling (CVE-2024-0802)

Incorrect Pointer Scaling vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series and MELSEC-L Series CPU modules allows a remote unauthenticated attacker to read arbitrary information from a target product or execute malicious code on a target product by sending a specially crafted...

Mitsubishi Electric MELSEC-Q/L Series Incorrect Pointer Scaling (CVE-2024-1915)

Incorrect Pointer Scaling vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series and MELSEC-L Series CPU modules allows a remote unauthenticated attacker to execute malicious code on a target product by sending a specially crafted packet. This plugin only works with Tenable.ot. Please...

CVE-2024-1915

Incorrect Pointer Scaling vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series and MELSEC-L Series CPU modules allows a remote unauthenticated attacker to execute malicious code on a target product by sending a specially crafted packet...

CVE-2024-0802

Incorrect Pointer Scaling vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series and MELSEC-L Series CPU modules allows a remote unauthenticated attacker to read arbitrary information from a target product or execute malicious code on a target product by sending a specially crafted pack...

CVE-2024-1915

Incorrect Pointer Scaling vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series and MELSEC-L Series CPU modules allows a remote unauthenticated attacker to execute malicious code on a target product by sending a specially crafted packet...

CVE-2024-1915

Incorrect Pointer Scaling vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series and MELSEC-L Series CPU modules allows a remote unauthenticated attacker to execute malicious code on a target product by sending a specially crafted packet...

CVE-2024-0802

Incorrect Pointer Scaling vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series and MELSEC-L Series CPU modules allows a remote unauthenticated attacker to read arbitrary information from a target product or execute malicious code on a target product by sending a specially crafted pack...

Mitsubishi Electric MELSEC-Q/L Series (Update B)

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low attack complexity Vendor : Mitsubishi Electric Equipment : MELSEC-Q/L Series Vulnerabilities : Incorrect Pointer Scaling, Integer Overflow or Wraparound 2. RISK EVALUATION Successful exploitation of these...

PT-2024-2281 · Mitsubishi · Melsec-Q Series +1

Name of the Vulnerable Software and Affected Versions: MELSEC-Q Series affected versions not specified MELSEC-L Series affected versions not specified Description: The issue is related to errors in pointer scaling, which can be exploited by a remote attacker to execute arbitrary code by sending a...

PT-2024-2144 · Mitsubishi · Melsec-L Series +1

Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric Corporation MELSEC-Q Series and MELSEC-L Series CPU modules affected versions not specified Description: The issue is related to an Incorrect Pointer Scaling vulnerability in the CPU modules of Mitsubishi Electric...

(Pwn2Own) Linux Kernel nftables Incorrect Pointer Scaling Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the processing of nft...