4195 matches found
CVE-2019-7167
Zcash, before the Sapling network upgrade 2018-10-28, had a counterfeiting vulnerability. A key-generation process, during evaluation of polynomials related to a to-be-proven statement, produced certain bypass elements. Availability of these elements allowed a cheating prover to bypass a...
Design/Logic Flaw
Zcash, before the Sapling network upgrade 2018-10-28, had a counterfeiting vulnerability. A key-generation process, during evaluation of polynomials related to a to-be-proven statement, produced certain bypass elements. Availability of these elements allowed a cheating prover to bypass a...
CVE-2019-7167
Zcash, before the Sapling network upgrade 2018-10-28, had a counterfeiting vulnerability. A key-generation process, during evaluation of polynomials related to a to-be-proven statement, produced certain bypass elements. Availability of these elements allowed a cheating prover to bypass a...
CVE-2019-7167
Zcash, before the Sapling network upgrade 2018-10-28, had a counterfeiting vulnerability. A key-generation process, during evaluation of polynomials related to a to-be-proven statement, produced certain bypass elements. Availability of these elements allowed a cheating prover to bypass a...
CVE-2019-9936
In SQLite 3.27.2, running fts5 prefix queries inside a transaction could trigger a heap-based buffer over-read in fts5HashEntrySort in sqlite3.c, which may lead to an information leak. This is related to ext/fts5/fts5hash.c...
Heap overflow
In SQLite 3.27.2, running fts5 prefix queries inside a transaction could trigger a heap-based buffer over-read in fts5HashEntrySort in sqlite3.c, which may lead to an information leak. This is related to ext/fts5/fts5hash.c...
DEBIAN-CVE-2019-9936
In SQLite 3.27.2, running fts5 prefix queries inside a transaction could trigger a heap-based buffer over-read in fts5HashEntrySort in sqlite3.c, which may lead to an information leak. This is related to ext/fts5/fts5hash.c...
CVE-2019-9936
CVE-2019-9936 is a SQLite vulnerability in which, on SQLite 3.27.2, running fts5 prefix queries inside a transaction can trigger a heap-based buffer over-read in fts5HashEntrySort (sqlite3.c), potentially causing an information leak. The description is corroborated by IBM’s Security Bulletin list...
UBUNTU-CVE-2019-9936
In SQLite 3.27.2, running fts5 prefix queries inside a transaction could trigger a heap-based buffer over-read in fts5HashEntrySort in sqlite3.c, which may lead to an information leak. This is related to ext/fts5/fts5hash.c...
CVE-2019-9806
A vulnerability exists during authorization prompting for FTP transaction where successive modal prompts are displayed and cannot be immediately dismissed. This allows for a denial of service DOS attack. This vulnerability affects Firefox 66...
A vulnerability in the transaction.c file of the Linux operating system’s kernel allows a hacker to trigger a service failure or increase their privileges.
The vulnerability in the transaction.c file of the Linux operating system is related to writing data beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause service failures or increase their privileges by using a specially created ext4 file system image...
Monero: RingCT malformed tx prevents target from being able to sweep balance
Summary: An attacker can send a malformed RingCT transaction to an attackee wallet that prevents the attackee from sweeping their wallet balance. This is done by the attacker changing the mask amount in genRctSimple with a modified wallet. The attacker does not need any intervention from the...
CVE-2019-4032
IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.1.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-ForceID: 155998...
Sql injection
IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.1.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-ForceID: 155998...
CVE-2019-4032
IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.1.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-ForceID: 155998...
CVE-2019-4032
A set of IBM Financial Transaction Manager products are affected by CVE-2019-4032 (SQL injection): FTM for Digital Payments for Multi-Platform (DP) v3.1.0 vulnerable to remote SQL injection enabling viewing/modifying/deleting back-end data. IBM advisories list affected ranges and fixes: FTM DP pa...
PT-2019-16850 · Ibm · Ibm Financial Transaction Manager For Digital Payments For Multi-Platform
Name of the Vulnerable Software and Affected Versions: IBM Financial Transaction Manager for Digital Payments for Multi-Platform version 3.1.0 Description: The issue allows a remote attacker to send specially-crafted SQL statements, which could enable the attacker to view, add, modify, or delete...
Wireshark Null Pointer Dereference Vulnerability (CNVD-2019-18501)
Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A null pointer dereference vulnerability exists in the TCAP parser in Wireshark versions...
UBUNTU-CVE-2019-9208
In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the TCAP dissector could crash. This was addressed in epan/dissectors/asn1/tcap/tcap.cnf by avoiding NULL pointer dereferences...
Security Bulletin: Financial Transaction Manager for Corporate Payment Services for Multi-Platform v2.1.1 is affected by a potential SQL Injection vulnerability CVE-2018-1819
Summary Financial Transaction Manager for Corporate Payment Services for Multi-Platform FTM CPS has addressed the following vulnerability: Potential SQL Injection CVE-2018-1819 Vulnerability Details CVEID: CVE-2018-1819 DESCRIPTION: IBM Financial Transaction Manager for Digital Payments for...