Design/Logic Flaw

Adobe Premiere Rush versions 1.5.16 and earlier allows access to an uninitialized pointer vulnerability that allows remote attackers to disclose sensitive information on affected installations. User interaction is required to exploit this vulnerability in that the target must visit a malicious pa...

CVE-2021-38409 Fuji Electric Tellus Lite V-Simulator uninitialized pointer

Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable to an access of uninitialized pointer, which may allow an attacker read from or write to unexpected memory locations, leading to a denial-of-service...

CVE-2021-38409

CVE-2021-38409 affects Fuji Electric Tellus Lite V-Simulator and V-Server Lite, prior to version 4.0.12.0. The vulnerability is an access of an uninitialized pointer that can allow reading from or writing to unintended memory, leading to a denial of service. Affected products: V-Server Lite and T...

CVE-2021-43746 Adobe Premiere Rush MP4 File Parsing Uninitialized Variable Information Disclosure Vulnerability

Adobe Premiere Rush versions 1.5.16 and earlier allows access to an uninitialized pointer vulnerability that allows remote attackers to disclose sensitive information on affected installations. User interaction is required to exploit this vulnerability in that the target must visit a malicious pa...

CVE-2021-43746

Adobe Premiere Rush 1.5.16 and earlier is affected by CVE-2021-43746 due to an uninitialized memory access in MP4 file parsing, allowing remote information disclosure after user visits a malicious page or opens a crafted file. The issue is a pointer initialization flaw in parsing MP4s, leading to...

CVE-2021-43030

Adobe Premiere Rush (Windows/macOS)

The vulnerability of the monitoring software for PLK devices from Fuji Electric, namely V-Server Lite and Tellus Lite V-Simulator, stems from the use of an uninitialized pointer. This allows a intruder to trigger a service failure.

The vulnerability of the monitoring software for PLK devices from Fuji Electric, namely V-Server Lite and Tellus Lite V-Simulator, is related to the use of an uninitialized pointer. Exploiting this vulnerability could allow a hacker to cause a service failure...

Tencent WeChat WXAM Decoder Uninitialized Pointer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Tencent WeChat. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the WXAM decoder. T...

OpenText Brava! Desktop pdf2dl Uninitialized Pointer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of OpenText Brava! Desktop. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

Siemens NX JT Translator

1. EXECUTIVE SUMMARY CVSS v3 3.3 ATTENTION: Low attack complexity Vendor: Siemens Equipment: NX Vulnerabilities: Out-of-bounds Read, Access of Uninitialized Pointer 2. RISK EVALUATION Successful exploitation of these vulnerabilities could lead to access violation and arbitrary code execution on...

Siemens NX OBJ Translator

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: low attack complexity Vendor: Siemens Equipment: NX Vulnerabilities: Use After Free, Access of Uninitialized Pointer 2. RISK EVALUATION Successful exploitation of these vulnerabilities could lead to an access violation and arbitrary code execution on...

CVE-2021-34596

A crafted request may cause a read access to an uninitialized pointer in CODESYS V2 Runtime Toolkit 32 Bit full and PLCWinNT prior to versions V2.4.7.56, resulting in a denial-of-service condition...

CVE-2021-34596

A crafted request may cause a read access to an uninitialized pointer in CODESYS V2 Runtime Toolkit 32 Bit full and PLCWinNT prior to versions V2.4.7.56, resulting in a denial-of-service condition...

Race condition

A crafted request may cause a read access to an uninitialized pointer in CODESYS V2 Runtime Toolkit 32 Bit full and PLCWinNT prior to versions V2.4.7.56, resulting in a denial-of-service condition...

CVE-2021-34596 CODESYS V2 runtime: Access of Uninitialized Pointer may result in denial-of-service

A crafted request may cause a read access to an uninitialized pointer in CODESYS V2 Runtime Toolkit 32 Bit full and PLCWinNT prior to versions V2.4.7.56, resulting in a denial-of-service condition...

CODESYS 缓冲区错误漏洞

CODESYS is a controller development system from Germany's 3S-Smart Software Solutions A buffer error vulnerability exists in CODESYS V2 Runtime Toolkit 32 Bit full and PLCWinNT versions prior to V2.4.7.56, which stems from a crafted request that could result in a denial-of-service condition due t...

Fuji Electric V-Server Lite 缓冲区错误漏洞

Fuji Electric V-Server Lite is a remote monitoring software for industrial environments from Fuji Electric Japan. The software collects information from PLCs, temperature controllers, inverters, and other devices. A buffer error vulnerability exists in Fuji Electric Tellus Lite V-Simulator and...

PT-2021-20571 · 3S Smart Software Solutions · Codesys V2 Runtime Toolkit +1

Name of the Vulnerable Software and Affected Versions: CODESYS V2 Runtime Toolkit 32 Bit full versions prior to V2.4.7.56 PLCWinNT versions prior to V2.4.7.56 Description: A crafted request may cause a read access to an uninitialized pointer, resulting in a denial-of-service condition...

Fuji Electric Tellus Lite V-Simulator and V-Server Lite

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Fuji Electric Equipment: Tellus Lite V-Simulator, and V-Server Lite Vulnerabilities : Stack-based Buffer Overflow, Out-of-bounds Write, Untrusted Pointer Dereference, Out-of-bounds Read, Access of Uninitialized Pointer,...

The vulnerability in the implementation of authentication, authorization, and accounting functions for Cisco IOS XE operating systems allows a perpetrator to bypass the authentication process and trigger a service failure.

The vulnerability of the implementation of authentication, authorization, and accounting functions in Cisco IOS XE operating systems is related to the use of an uninitialized pointer. Exploiting this vulnerability can allow a malicious actor to bypass authentication procedures and trigger service...