33 matches found
SAMSUNG Escargot 安全漏洞
SAMSUNG Escargot is a memory-optimized JavaScript engine developed by South Korea’s Samsung Corporation. It is suitable for mid-range devices such as smartphones, tablets, and TVs. SAMSUNG Escargot has a security vulnerability that stems from deserializing unreliable data, which can lead to proce...
NVIDIA DALI 代码问题漏洞
NVIDIA DALI is a data loading and preprocessing library developed by NVIDIA Corporation in the United States. NVIDIA DALI has code-related vulnerabilities; these vulnerabilities stem from the possibility of deserializing unreliable data, which may lead to the execution of arbitrary code...
ROS-20260407-73-0041
A vulnerability in the TLS traffic proxying mechanism of NGINX Plus and NGINX OSS web servers is related to the loading of external unreliable data along with reliable data. Exploitation of the vulnerability could allow an attacker acting remotely to inject data in plain text form...
ROS-20260216-73-0005
Vulnerability in unbound related to loading external unreliable data along with reliable data. Exploitation of the vulnerability may allow an attacker to execute arbitrary code...
The vulnerability of the SLNX PC Client of the embedded application and document management tool RICOH Streamline NX allows a perpetrator to elevate their privileges and execute arbitrary code.
The vulnerability of the SLNX PC Client of the embedded application and document management tool RICOH Streamline NX lies in the use of an unreliable data source during the download of updates. Exploiting this vulnerability can allow attackers to enhance their privileges and execute arbitrary cod...
AZL-63699 CVE-2025-38003 affecting package kernel for versions less than 6.6.96.1-1
In the Linux kernel, the following vulnerability has been resolved: can: bcm: add missing rcu read protection for procfs content When the procfs content is generated for a bcmop which is in the process to be removed the procfs output might show unreliable data UAF. As the removal of bcmop's is...
The vulnerability of the UrlMon component in Windows operating systems allows attackers to circumvent existing security restrictions.
The vulnerability of the UrlMon component in Windows operating systems relates to the loading of unreliable external data alongside reliable data. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions remotely...
The vulnerability of the ObjectSerializationDecoder decoder in the Apache MINA Java networking framework allows a attacker to execute arbitrary code.
The vulnerability of the ObjectSerializationDecoder decoder in the Apache MINA Java networking framework is related to the restoration of unreliable data due to improper code generation. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...
The vulnerability of the libpq component in the PostgreSQL database management system allows attackers to circumvent existing security restrictions and execute a type of “man-in-the-middle” attack.
The vulnerability of the libpq component in the PostgreSQL database management system is related to the use of an unreliable data source. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions and carry out a “man-in-the-middle” type attack...
The vulnerability of the Microsoft SharePoint Server software, related to deserialization of unreliable data, allows a attacker to trigger a service failure.
The vulnerability of the Microsoft SharePoint Server software relates to the deserialization of unreliable data. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service failures...
The vulnerability of the Clojure programming language interpreter, related to the deserialization of unreliable data, allows attackers to execute arbitrary code.
The vulnerability of the Clojure programming language interpreter is related to the deserialization of unreliable data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the AVEVA PI Asset Framework (AF) Client application for managing production process data, related to the recovery of unreliable data in memory, allows a attacker to execute arbitrary code.
The vulnerability of the AVEVA PI Asset Framework AF Client, a data management application for manufacturing processes, lies in its ability to restore unreliable data in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code using specially created data...
The vulnerability of the microprogramming software for UniLogic Studio programmable logic controllers of the UniStream series arises from the use of an unreliable data source, allowing a intruder to execute arbitrary code.
The vulnerability of the microprogramming software for UniLogic Studio series UniStream is related to the use of an unreliable data source. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...
The vulnerability of the jackson-databind library, related to the restoration of unreliable data in memory, allows an attacker to execute arbitrary code.
The vulnerability of the jackson-databind library is related to the restoration of unreliable data in memory. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...
The vulnerability of the PyArrow library, related to reading data from unreliable sources, allows a perpetrator to execute arbitrary code.
The vulnerability of the PyArrow library is related to the reading of data from unreliable sources. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
The vulnerability of Siemens SCALANCE industrial switches’ microprogramming software lies in the possibility of loading unreliable external data alongside reliable data, allowing a perpetrator to execute arbitrary code.
The vulnerability of Siemens SCALANCE industrial switches’ microprogramming software lies in the loading of unreliable external data alongside reliable data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the SolarWinds Access Rights Manager software lies in its ability to restore unreliable data in memory, allowing a intruder to execute arbitrary code.
The vulnerability of the SolarWinds Access Rights Manager access control software lies in the recovery of unreliable data in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the AbstractGatewayFunction class in industrial automation software, Inductive Automation Ignition, allows a perpetrator to execute arbitrary code.
The vulnerability of the AbstractGatewayFunction class in Inductive Automation Ignition software relates to the restoration of unreliable data in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code within the SYSTEM context...
The vulnerability of the Orchid Platform, related to the restoration of unreliable data in memory, allows a hacker to execute arbitrary code.
The vulnerability of the Orchid Platform relates to the restoration of unreliable data in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the cross-platform media center Plex Media Server, related to the restoration of unreliable data in memory, allows a hacker to execute arbitrary code.
The vulnerability of the cross-platform media server Plex Media Server lies in the recovery of unreliable data in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...