2110 matches found
Design/Logic Flaw
Horner Automation's Cscape version 9.90 SP 7 and prior does not properly validate user-supplied data. If a user opens a maliciously formed FNT file, then an attacker could execute arbitrary code within the current process by accessing an uninitialized pointer, leading to an out-of-bounds memory...
CVE-2022-3378
Horner Automation's Cscape version 9.90 SP 7 and prior does not properly validate user-supplied data. If a user opens a maliciously formed FNT file, then an attacker could execute arbitrary code within the current process by accessing an uninitialized pointer, leading to an out-of-bounds memory...
PT-2022-21869 · Horner Automation · Cscape
Name of the Vulnerable Software and Affected Versions: Horner Automation's Cscape versions 9.90 SP 6 and prior Description: The issue arises from improper validation of user-supplied data. If a user opens a maliciously formed FNT file, an attacker could execute arbitrary code within the current...
The vulnerability of the Adobe Photoshop graphic editor relates to the use of an uninitialized pointer, which allows a hacker to execute arbitrary code.
The vulnerability of the Adobe Photoshop graphic editor is related to the use of an uninitialized pointer. Exploiting this vulnerability allows a hacker to execute arbitrary code using a specially created malicious file...
CVE-2022-29055
A access of uninitialized pointer in Fortinet FortiOS version 7.2.0, 7.0.0 through 7.0.5, 6.4.0 through 6.4.8, 6.2.0 through 6.2.10, 6.0.x, FortiProxy version 7.0.0 through 7.0.4, 2.0.0 through 2.0.9, 1.2.x allows a remote unauthenticated or authenticated attacker to crash the sslvpn daemon via a...
CVE-2022-29055
A access of uninitialized pointer in Fortinet FortiOS version 7.2.0, 7.0.0 through 7.0.5, 6.4.0 through 6.4.8, 6.2.0 through 6.2.10, 6.0.x, FortiProxy version 7.0.0 through 7.0.4, 2.0.0 through 2.0.9, 1.2.x allows a remote unauthenticated or authenticated attacker to crash the sslvpn daemon via a...
Cross site request forgery (csrf)
A access of uninitialized pointer in Fortinet FortiOS version 7.2.0, 7.0.0 through 7.0.5, 6.4.0 through 6.4.8, 6.2.0 through 6.2.10, 6.0.x, FortiProxy version 7.0.0 through 7.0.4, 2.0.0 through 2.0.9, 1.2.x allows a remote unauthenticated or authenticated attacker to crash the sslvpn daemon via a...
CVE-2022-22236
An Access of Uninitialized Pointer vulnerability in SIP Application Layer Gateway ALG of Juniper Networks Junos OS on SRX Series and MX Series allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. When specific valid SIP packets are received the PFE will crash and...
CVE-2022-22236
The CVE-2022-22236 affects Juniper Junos OS on SRX/MX series, caused by an uninitialized pointer in the SIP Application Layer Gateway (ALG) that can crash the PFE and trigger DoS when specific SIP packets arrive. Affected versions include 20.4R3-S4 and earlier for 20.4, 21.1R3-S2 and earlier, 21....
CVE-2022-22236 Junos OS: SRX Series and MX Series: When specific valid SIP packets are received the PFE will crash
An Access of Uninitialized Pointer vulnerability in SIP Application Layer Gateway ALG of Juniper Networks Junos OS on SRX Series and MX Series allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. When specific valid SIP packets are received the PFE will crash and...
The vulnerability of the Adobe Photoshop graphic editor relates to the use of an uninitialized pointer, which allows a hacker to execute arbitrary code.
The vulnerability of the Adobe Photoshop graphic editor is related to the use of an uninitialized pointer. Exploiting this vulnerability could allow a attacker to execute arbitrary code using a specially created file...
CVE-2022-41851
A vulnerability has been identified in JTTK All versions V11.1.1.0, Simcenter Femap V2022.1 All versions V2022.1.3, Simcenter Femap V2022.2 All versions V2022.2.2. The JTTK library is vulnerable to an uninitialized pointer reference vulnerability while parsing specially crafted JT files. An...
CVE-2022-41851
A vulnerability has been identified in JTTK All versions V11.1.1.0, Simcenter Femap V2022.1 All versions V2022.1.3, Simcenter Femap V2022.2 All versions V2022.2.2. The JTTK library is vulnerable to an uninitialized pointer reference vulnerability while parsing specially crafted JT files. An...
Null pointer dereference
A vulnerability has been identified in JTTK All versions V11.1.1.0, Simcenter Femap V2022.1 All versions V2022.1.3, Simcenter Femap V2022.2 All versions V2022.2.2. The JTTK library is vulnerable to an uninitialized pointer reference vulnerability while parsing specially crafted JT files. An...
PT-2022-26098 · Siemens · Simcenter Femap
Name of the Vulnerable Software and Affected Versions: JTTK versions prior to 11.1.1.0 Simcenter Femap V2022.1 versions prior to 2022.1.3 Simcenter Femap V2022.2 versions prior to 2022.2.2 Description: A vulnerability has been identified in the JTTK library, which is vulnerable to an uninitialize...
CVE-2022-41851
A vulnerability has been identified in JTTK All versions V11.1.1.0, Simcenter Femap V2022.1 All versions V2022.1.3, Simcenter Femap V2022.2 All versions V2022.2.2. The JTTK library is vulnerable to an uninitialized pointer reference vulnerability while parsing specially crafted JT files. An...
CVE-2022-41851
A vulnerability has been identified in JTTK All versions V11.1.1.0, Simcenter Femap V2022.1 All versions V2022.1.3, Simcenter Femap V2022.2 All versions V2022.2.2. The JTTK library is vulnerable to an uninitialized pointer reference vulnerability while parsing specially crafted JT files. An...
Siemens JT Open Toolkit and Simcenter Femap
1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Siemens Equipment: JT Open Toolkit and Simcenter Femap Vulnerability: Access of Uninitialized Pointer 2. RISK EVALUATION Successful exploitation of this vulnerability could crash the application or lead to arbitrary code...
CVE-2022-29055
CVE-2022-29055 describes an access of an uninitialized pointer in Fortinet FortiOS and FortiProxy that can crash the sslvpn daemon via an HTTP GET request. Affected products include FortiOS versions 6.0.x, 6.2.0–6.2.10, 6.4.0–6.4.8, 7.0.0–7.0.5, 7.2.0 and FortiProxy 1.2.x, 2.0.0–2.0.9, 7.0.0–7.0....
Protect
An access of uninitialized pointer vulnerability CWE-824 in the SSL VPN portal of FortiOS & FortiProxy may allow a remote unauthenticated or authenticated see Affected Products section attacker to crash the sslvpn daemon via an HTTP GET request...