EUVD-2022-41311

Malicious code in bioql PyPI...

The vulnerability of the fromNetToolGet() function (/goform/setPingInfo) in the Tenda O3 wireless access point software allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the fromNetToolGet function /goform/setPingInfo in the Tenda O3 wireless access point software arises due to buffer overflows during the processing of the ip parameter. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause service failures...

The vulnerability of the sql_tree_hash_1 component in the Virtuoso-OpenSource web application development platform allows a attacker to trigger a service failure.

The vulnerability of the sqltreehash1 component in the Virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to cause service interruptions by sending specially...

The vulnerability of the irqchip/imx-irqsteer components in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the irqchip/imx-irqsteer components in the Linux operating system is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the qca component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the qca component in the Linux operating system’s kernel is related to incorrect validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the wlanTimerRuleJsonToBin() function in TP-Link TL-WDR7660 router software allows a hacker to trigger a service failure.

The vulnerability of the wlanTimerRuleJsonToBin function in TP-Link TL-WDR7660 router software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a malicious actor to trigger a service failure through a specially crafted HTTP...

The vulnerability of the DRM component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the DRM component in the Linux operating system’s kernel is related to the assignment of NULL pointers. Exploiting this vulnerability could allow a hacker to trigger a service failure...

The vulnerability of the iwl_dealloc_ucode() function in the driver code `drivers/net/wireless/intel/iwlwifi/iwl-drv.c` of the iwlwifi kernel in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the iwldeallocucode function in the drivers/net/wireless/intel/iwlwifi/iwl-drv.c file of the iwlwifi driver for the Linux operating system is related to the reclamation of memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the software for updating Intel Driver & Support Assistant (DSA) stems from deficiencies in access control mechanisms, allowing attackers to trigger a service failure.

The vulnerability of the software for updating Intel Driver & Support Assistant DSA is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2022-38744

CVE-2022-38744 affects Rockwell Automation FactoryTalk Alarm and Events Server. It exploits improper access control to allow an unauthenticated remote attacker with network access to open a connection, fault the service, and render the server unavailable. Affected component is the FactoryTalk Ala...

PT-2022-24549 · Rockwell Automation · Rockwell Automation Factorytalk Alarm/Events Service

Name of the Vulnerable Software and Affected Versions: Rockwell Automation FactoryTalk Alarm and Events service affected versions not specified Description: The issue allows an unauthenticated attacker with network access to cause the Rockwell Automation FactoryTalk Alarm and Events service to...

Vulnerability of the Server component: The Optimizer component of the MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component of the database management system exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the mcrypt extension in the PHP programming language interpreter allows a hacker to trigger a service failure or possibly cause other effects.

The vulnerability of the mcrypt extension in the PHP programming language interpreter is caused by a numerical overflow condition. Exploiting this vulnerability could allow an attacker to cause service failures or potentially have other adverse effects...

The vulnerability of the NVIDIA GPU Display Driver, related to errors in resource release, allows a hacker to trigger a service failure.

The vulnerability of the NVIDIA GPU Display Driver is related to errors during resource release. Exploiting this vulnerability allows a hacker to cause service failures...

Vulnerability of the bj10v_print_page() function (contrib/japanese/gdev10v.c) in the software suite for processing, transforming, and generating Ghostscript documents, allowing a hacker to trigger a service failure

The vulnerability of the bj10vprintpage function contrib/japanese/gdev10v.c in the software suite for processing, transforming, and generating Ghostscript documents is related to a division by zero error. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the web interface of the Cisco Video Surveillance Media Server allows a intruder to trigger a service failure.

The vulnerability of the Cisco Video Surveillance Media Server’s web interface is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to cause service failures by using a specially crafted link...

Unable to Propagate Changes After Upgrade from StoreFront 3.5 to 3.6

Unable to propagate changes after upgrade from StoreFront 3.5 to 3.6. Log Name: Citrix Delivery Services Source: Citrix Configuration Replication Service Date: 6/27/2016 9:39:26 AM Event ID: 19 Task Category: 2801 Level: Error Keywords: Classic User: N/A Computer: XXXXX.XXXXX.XXXXX Description:...

The vulnerability of the Flash Player software allows a perpetrator to trigger a service failure or execute arbitrary code.

The vulnerability of the Flash Player software arises due to buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a service failure such as reading beyond the memory limit or memory corruption using specially crafted MPEG-4 data...

The vulnerability of the Internet Explorer browser, which allows a hacker to execute arbitrary code or trigger a service failure.

The Internet Explorer browser contains a vulnerability related to memory handling errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a service failure by using a specially crafted web page...