14 matches found
PT-2025-22222
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the version that includes the fix for the uninit-value issue in do output route4 Description A vulnerability has been resolved in the Linux kernel related to an uninit-value issue for the saddr argument in the do...
PT-2025-10716 · Libzvbi +5 · Libzvbi +5
Name of the Vulnerable Software and Affected Versions: libzvbi versions 0.2.43 and earlier Description: A critical issue has been found that affects the vbi search new function in the src/search.c file. The manipulation of the pat len argument leads to an integer overflow. This issue can be...
PT-2024-14384 · Unknown · Jfreechart
Name of the Vulnerable Software and Affected Versions: JFreeChart version 1.5.4 Description: The issue is related to an ArrayIndexOutOfBounds condition via the setSeriesNeedleint index, int type method. However, it is noted that the existence of this issue is disputed by multiple third parties,...
PT-2023-7415 · Ibm · Ibm Db2
Name of the Vulnerable Software and Affected Versions: IBM Db2 for Linux, UNIX and Windows includes DB2 Connect Server version 11.5 CLI Description: The issue is related to insufficient input validation in the database management system, which can be exploited by a remote attacker to cause a deni...
PT-2023-24173 · Unknown · Whaleal Icefrog +1
Name of the Vulnerable Software and Affected Versions: whaleal IceFrog version 1.1.8 Description: A problematic vulnerability has been found in the Aviator Template Engine component, leading to deserialization of untrusted data. The manipulation with this issue may be used since the exploit has...
PT-2023-22673 · Yasm +1 · Yasm +1
Name of the Vulnerable Software and Affected Versions: YASM version 1.3.0 Description: A heap overflow issue was discovered in YASM via the handle dot label function at /nasm/nasm-token.re. This issue has been disputed by third parties, arguing it is a bug rather than a security issue because YAS...
PT-2023-16930 · Sourcecodester · Sourcecodester Computer Parts Sales/Inventory System
Name of the Vulnerable Software and Affected Versions: SourceCodester Computer Parts Sales and Inventory System version 1.0 Description: A problematic issue was found in the Add User Account component, where the manipulation of the username argument leads to cross-site scripting. This issue can b...
PT-2023-33235 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.82 Description: A memory leak issue was discovered in the raydium i2c send function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to...
PT-2023-11820 · Ionicabizau · Node-Gry
Name of the Vulnerable Software and Affected Versions: IonicaBizau node-gry versions up to 5.x Description: A critical issue was found, affecting an unknown part of the software, leading to command injection. The estimated number of potentially affected devices worldwide is not available. There i...
PT-2022-25855 · Bento4 · Bento4
Name of the Vulnerable Software and Affected Versions: Bento4 version 1.6.0-639 Description: A memory leak was discovered in Bento4 via the AP4 Processor::Process function in the mp4encrypt binary. Recommendations: For version 1.6.0-639, consider restricting the use of the AP4 Processor::Process...
PT-2021-15488 · Nedb · Nedb
Name of the Vulnerable Software and Affected Versions: nedb versions all Description: The library could be tricked into adding or modifying properties of Object.prototype using a proto or constructor.prototype payload. This issue affects all versions of the package. Recommendations: For all...
PT-2019-5665 · Kubernetes +1 · Kubernetes +1
Name of the Vulnerable Software and Affected Versions: Kubernetes versions 1.1 through 1.12 Kubernetes versions prior to 1.13.11 Kubernetes versions prior to 1.14.7 Kubernetes versions prior to 1.15.4 Description: The issue is related to the Kubernetes kubectl cp command, which allows an attacker...
PT-2018-16860 · Malwarebytes · Malwarebytes Premium
Name of the Vulnerable Software and Affected Versions: Malwarebytes Premium version 3.3.1.2183 Description: The issue allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e02c in the driver file...
PT-2017-18755 · Autotrace +1 · Autotrace +1
Name of the Vulnerable Software and Affected Versions: AutoTrace version 0.31.1 Description: The issue is related to a heap-based buffer overflow in the ReadImage function, located in the input-bmp.c file. This overflow occurs at line 497, column 29, and is associated with the libautotrace.a...