153 matches found
SUSE CVE-2016-0505
Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to Options...
SUSE CVE-2019-2708
Vulnerability in the Data Store component of Oracle Berkeley DB. Supported versions that are affected are Prior to 6.138, prior to 6.2.38 and prior to 18.1.32. Easily exploitable vulnerability allows low privileged attacker having Local Logon privilege with logon to the infrastructure where Data...
SUSE CVE-2019-2983
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Serialization. Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...
SUSE CVE-2022-21323
Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.5.24 and prior, 7.6.20 and prior and 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physical communication...
PT-2022-28246 · Bitly · Bitly
Name of the Vulnerable Software and Affected Versions: Bitly affected versions not specified Description: A change in the link quota policy for free tokens has been implemented, reducing the quota to 50 per month, effective December 8, 2022. This change renders the service less useful, leading to...
The vulnerability of the Linux operating system’s kernel, related to pointer arithmetic errors, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.
The vulnerability of the Linux operating system’s kernel is related to pointer arithmetic errors. Exploiting this vulnerability allows an attacker to access confidential data, compromise its integrity, and cause service failures...
CVE-2022-41602
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application TA.Successful exploitation of this vulnerability may affect the fingerprint service...
PT-2022-25977 · Unknown · Fingerprint Trusted Application
Name of the Vulnerable Software and Affected Versions: Fingerprint trusted application TA affected versions not specified Description: The issue concerns heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application. Successful exploitation may affect...
PT-2022-25972 · Unknown · Fingerprint Trusted Application
Name of the Vulnerable Software and Affected Versions: Fingerprint trusted application TA affected versions not specified Description: The issue is related to heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application. Successful exploitation of thi...
Researcher discovered vulnerabilities in Layer-2 managed switches
A researcher has found vulnerabilities in network security techniques at the Layer-2 level. The vulnerabilities reside in the fact that the QinQ functionality IEEE 802.1ad standard incorrectly allows VLAN 0 priority tag and 802.2 LLC/SNAP headers can be stacked multiple define VLANs within VLANs....
The vulnerability of the flac_buffer_copy function in the libsndfile library, which allows a hacker to cause a service failure.
The vulnerability of the flacbuffercopy function in the libsndfile library relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information, as well as cause service...
The vulnerability of the `find_field_in_tables` and `find_order_in_list` components of the MariaDB database, which allows a hacker to cause service failures.
The vulnerability of the findfieldintables and findorderinlist components of the MariaDB database system is related to errors during resource release. Exploiting this vulnerability allows an attacker to cause service failures...
The vulnerability of the DGifDecompressLine function in the dgif_lib.c component of the GIFLIB library allows a perpetrator to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the DGifDecompressLine function in the dgiflib.c component of the GIF file processing library GIFLIB is related to the lack of array index checking. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause servi...
mariadb: server crashes in query_arena::set_query_arena upon SELECT from view
A flaw was found in the MariaDB Server. It contains a segmentation fault via the component, sql/sqlclass.cc, impacting availability...
The vulnerability of the form_fast_setting_wifi_set() function in the Tenda AC18 router’s microprogramming software allows a hacker to induce a service failure.
The vulnerability of the formfastsettingwifiset function in the Tenda AC18 router’s microprogramming software is related to the issue of writing operations outside the buffer in memory when processing the ssid parameter. Exploiting this vulnerability could allow a malicious actor to cause service...
The vulnerability of the CONFIG_IP_DEFRAG function in the implementation of the IP packet defragmentation algorithm for U-Boot bootloaders of embedded Linux-based operating systems allows a hacker to cause a service failure.
The vulnerability of the CONFIGIPDEFRAG function in the implementation of the IP packet defragmentation algorithm for U-Boot bootloaders of embedded Linux operating systems is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a malicious...
The vulnerability of the sapi/cgi/cgi_main.c component of the PHP programming language interpreter allows a attacker to cause a service failure.
The vulnerability of the sapi/cgi/cgimain.c component of the PHP programming language interpreter exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures remotely...
The vulnerability of the fread function (ext/standard/file.c) in the PHP programming language allows a hacker to cause a service failure or potentially have other adverse effects.
The vulnerability of the fread function ext/standard/file.c in the PHP programming language interpreter is caused by a numerical overflow. Exploiting this vulnerability could allow an attacker to cause service failures or potentially other adverse effects...
The vulnerability of the php_escape_html_entities_ex function (ext/standard/html.c) in the PHP language interpreter allows a attacker to trigger a service failure or possibly cause other effects.
The vulnerability of the phpescapehtmlentitiesex function ext/standard/html.c in the PHP language interpreter is caused by a numerical overflow condition. Exploiting this vulnerability could allow an attacker to cause service failures or potentially cause other adverse effects...
The vulnerability of the wddx_stackdestroy function in the PHP programming language allows a hacker to trigger a service failure or potentially cause other effects.
The vulnerability of the wddxstackdestroy function ext/wddx/wddx.c in the PHP programming language is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to cause service interruptions or potentially have other effects through an XML documen...