468 matches found
Snappier 缓冲区错误漏洞
Snappier is a pure C port of Google's Snappy compression algorithm by the individual developer Brant Burnett. A buffer error vulnerability exists in Snappier version 1.1.0. An attacker could exploit this vulnerability to cause a buffer overflow and thus process termination...
GO-2023-1602 Denial of service via deflate decompression bomb in github.com/russellhaering/gosaml2
A bug in SAML authentication library can result in Denial of Service attacks. Attackers can craft a "deflate"-compressed request which will consume significantly more memory during processing than the size of the original request. This may eventually lead to memory exhaustion and the process bein...
SUSE CVE-2018-19640
If the attacker manages to create files in the directory used to collect log files in supportutils before version 3.1-5.7.1 e.g. with CVE-2018-19638 he can kill arbitrary processes on the local machine...
PT-2023-14281 · Estsoft · Estsoft Alyac
Name of the Vulnerable Software and Affected Versions: ESTsoft Alyac version 2.5.8.645 Description: A denial of service issue exists in the malware scan functionality. This can be triggered by a specially-crafted PE file, leading to the termination of the target process. An attacker can exploit...
rust-libp2p 资源管理错误漏洞
rust-libp2p is a Rust implementation of the libp2p network stack from the libp2p open source. A security vulnerability exists in versions prior to rust-libp2p v0.45.1 , which can be exploited by an attacker to cause a victim node to allocate a large number of small memory blocks , eventually...
expat: Integer overflow in build_model in xmlparse.c
expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...
CVE-2022-41836
When an 'Attack Signature False Positive Mode' enabled security policy is configured on a virtual server, undisclosed requests can cause the bd process to terminate...
CVE-2022-41694
In BIG-IP versions 16.1.x before 16.1.3, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5, and all versions of 13.1.x, and BIG-IQ versions 8.x before 8.2.0.1 and all versions of 7.x, when an SSL key is imported on a BIG-IP or BIG-IQ system, undisclosed input can cause MCPD to terminate...
Code injection
When an 'Attack Signature False Positive Mode' enabled security policy is configured on a virtual server, undisclosed requests can cause the bd process to terminate...
CVE-2022-41836 BIG-IP Advanced WAF and ASM bd vulnerability CVE-2022-41836
When an 'Attack Signature False Positive Mode' enabled security policy is configured on a virtual server, undisclosed requests can cause the bd process to terminate...
CVE-2022-41836 BIG-IP Advanced WAF and ASM bd vulnerability CVE-2022-41836
When an 'Attack Signature False Positive Mode' enabled security policy is configured on a virtual server, undisclosed requests can cause the bd process to terminate...
CVE-2022-41691 BIG-IP Advanced WAF/ASM bd vulnerability CVE-2022-41691
When a BIG-IP Advanced WAF/ASM security policy is configured on a virtual server, undisclosed requests can cause the bd process to terminate...
F5 BIG-IP 输入验证错误漏洞
F5 BIG-IP is an application delivery platform that integrates network traffic management, application security management, load balancing, and other features from F5 USA. An input validation error vulnerability exists in F5 BIG-IP versions 16.1.x through prior to 16.1.3, 15.1.x through prior to...
F5 BIG-IP Advanced WAF/ASM 安全漏洞
F5 BIG-IP Advanced WAF/ASM is a web application firewall from F5 USA. A security vulnerability exists in F5 BIG-IP Advanced WAF/ASM that stems from an undisclosed request that could cause the bd process to terminate...
Apple macOS Big Sur 缓冲区错误漏洞
Apple macOS Big Sur is the 17th major release of macOS, Apple's operating system for the MAC, from Apple USA. Apple macOS Big Sur suffers from a buffer error vulnerability that stems from the fact that processing a maliciously crafted AppleScript binary may result in the unexpected termination or...
Apple macOS Big Sur 缓冲区错误漏洞
Apple macOS Big Sur is the 17th major release of macOS, Apple's operating system for the MAC, from Apple USA. Apple macOS Big Sur suffers from a buffer error vulnerability that stems from the fact that processing a maliciously crafted AppleScript binary may result in the unexpected termination or...
CVE-2022-2088
An authenticated user with admin privileges may be able to terminate any process on the system running Elcomplus SmartICS v2.3.4.0...
Design/Logic Flaw
An authenticated user with admin privileges may be able to terminate any process on the system running Elcomplus SmartICS v2.3.4.0...
CVE-2022-2088
CVE-2022-2088 affects Elcomplus SmartICS v2.3.4.0. The root cause is an improper access control vulnerability that allows an authenticated user with admin privileges to terminate any process on the system running SmartICS. This is documented in multiple sources including the CISA ICS advisory (IC...
CVE-2022-2088 Elcomplus SmartICS Access Control
An authenticated user with admin privileges may be able to terminate any process on the system running Elcomplus SmartICS v2.3.4.0...