17 matches found
Heap-based Buffer Overflow
Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the H5Trefmemsetnull function. An attacker can cause a heap buffer overflow by supplying a specially crafted HDF5 .h5 file, which may result in denial of service or potentially allow execution of arbitrary...
CVE-2024-32611 affecting package hdf5 for versions less than 1.14.4.3-1
CVE-2024-32611 affecting package hdf5 for versions less than 1.14.4.3-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-32615 affecting package hdf5 for versions less than 1.14.4.3-1
CVE-2024-32615 affecting package hdf5 for versions less than 1.14.4.3-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-32609 affecting package hdf5 for versions less than 1.14.4.3-1
CVE-2024-32609 affecting package hdf5 for versions less than 1.14.4.3-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-32607 affecting package hdf5 for versions less than 1.14.4.3-1
CVE-2024-32607 affecting package hdf5 for versions less than 1.14.4.3-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-32622 affecting package hdf5 for versions less than 1.14.4.3-1
CVE-2024-32622 affecting package hdf5 for versions less than 1.14.4.3-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-29159 affecting package hdf5 for versions less than 1.14.4.3-1
CVE-2024-29159 affecting package hdf5 for versions less than 1.14.4.3-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-32605 affecting package hdf5 for versions less than 1.14.4.3-1
CVE-2024-32605 affecting package hdf5 for versions less than 1.14.4.3-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-29163 affecting package hdf5 for versions less than 1.14.4.3-1
CVE-2024-29163 affecting package hdf5 for versions less than 1.14.4.3-1. An upgraded version of the package is available that resolves this issue...
AZL-40562 CVE-2024-32610 affecting package hdf5 for versions less than 1.14.4.3-1
HDF5 Library through 1.14.3 has a SEGV in H5Tclosereal in H5T.c, resulting in a corrupted instruction pointer...
AZL-40556 CVE-2024-32605 affecting package hdf5 for versions less than 1.14.4.3-1
HDF5 Library through 1.14.3 has a heap-based buffer over-read in H5VMmemcpyvv in H5VM.c called from H5Dcompactreadvv in H5Dcompact.c...
AZL-40609 CVE-2024-29160 affecting package hdf5 for versions less than 1.14.4.3-1
HDF5 through 1.14.3 contains a heap buffer overflow in H5HGcacheheapdeserialize, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...
CVE-2020-3717
Magento versions 2.3.3 and earlier, 2.2.10 and earlier, 1.14.4.3 and earlier, and 1.9.4.3 and earlier have a path traversal vulnerability. Successful exploitation could lead to sensitive information disclosure...
PT-2020-17702 · Adobe · Magento
Name of the Vulnerable Software and Affected Versions: Magento versions 2.3.3 and earlier Magento versions 2.2.10 and earlier Magento versions 1.14.4.3 and earlier Magento versions 1.9.4.3 and earlier Description: The issue is related to an sql injection vulnerability. Successful exploitation cou...
PT-2020-17698 · Adobe · Magento
Name of the Vulnerable Software and Affected Versions: Magento versions 2.3.3 and earlier Magento versions 2.2.10 and earlier Magento versions 1.14.4.3 and earlier Magento versions 1.9.4.3 and earlier Description: The issue is a stored cross-site scripting vulnerability. Successful exploitation...
CVE-2019-8155
Magento prior to 1.9.4.3 and prior to 1.14.4.3 included a user's CSRF token in the URL of a GET request. This could be exploited by an attacker with access to network traffic to perform unauthorized actions...
Magento Remote Code Execution Vulnerability
Magento is an open source PHP e-commerce system of the United States Magento company . The system provides rights management , search engines and payment gateways and other functions. A remote code execution vulnerability exists in Magento Open Source versions prior to 1.9.4.3 and Magento Commerc...