PT-2023-20909 · Unknown +1 · Prestashop +1

Name of the Vulnerable Software and Affected Versions: Prestashop cdesigner versions 3.1.3 through 3.1.8 Description: A code injection issue was found in the component CdesignerSaverotateModuleFrontController::initContent. This allows for code injection, potentially leading to unauthorized access...

PT-2023-20896 · Tenda · Tenda Ac10

Name of the Vulnerable Software and Affected Versions: Tenda AC10 US AC10V4.0si V16.03.10.13 cn Description: The issue is related to a stack overflow via the get parentControl list Info function, allowing attackers to cause a Denial of Service DoS or execute arbitrary code via a crafted payload...

PT-2023-16989 · Filseclab · Filseclab Twister Antivirus

Name of the Vulnerable Software and Affected Versions: Filseclab Twister Antivirus version 8 Description: A problematic vulnerability has been found in the IoControlCode Handler component of the library fildds.sys. The manipulation of the 0x80112053 function leads to denial of service. The attack...

PT-2022-27125 · Tenda · Tenda Ac15

Name of the Vulnerable Software and Affected Versions: Tenda AC15 version 15.03.05.19 Description: The issue is related to a Buffer Overflow that can be triggered via the formSetIpMacBind function. This allows for potential exploitation. No information is provided about the estimated number of...

PT-2022-22560 · Swftools · Swftools

Name of the Vulnerable Software and Affected Versions: SWFTools version 772e55a2 Description: A floating point exception FPE was discovered in SWFTools via the DCTStream::readMCURow function at /xpdf/Stream.cc. This issue may be related to a problem in the readMCURow function. Recommendations: Fo...

PT-2022-25534 · Bento4 · Bento4

Name of the Vulnerable Software and Affected Versions: Bento4 versions 1.6.0-639 and earlier Description: An issue was discovered in Bento4, where a NULL pointer dereference occurs in the AP4 StszAtom::WriteFields function. Recommendations: For Bento4 versions 1.6.0-639 and earlier, as a temporar...

PT-2022-23416 · H3C · H3C Magic Nx18 Plus

Name of the Vulnerable Software and Affected Versions: H3C Magic NX18 Plus version NX18PV100R003 Description: A stack overflow issue was discovered via the function edditactionlist. Recommendations: For H3C Magic NX18 Plus version NX18PV100R003, as a temporary workaround, consider disabling the...

PT-2022-12382 · Totolink · Totolink A720R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A720R version 4.1.5cu.470 B20200911 Description: A stack overflow was discovered in the setWiFiWpsStart function, allowing attackers to cause a Denial of Service DoS via the pin parameter. Recommendations: For TOTOLINK A720R version...

PT-2022-12507 · Gnu +3 · Gnu Recutils +3

Name of the Vulnerable Software and Affected Versions: GNU Recutils version 1.8.90 Description: The issue is related to an Use-After-Free vulnerability in the rec record destroy function at rec-record.c. This vulnerability can lead to a segmentation fault or application crash. Recommendations: Fo...

PT-2022-12508 · Gnu +3 · Gnu Recutils +3

Name of the Vulnerable Software and Affected Versions: GNU Recutils version 1.8.90 Description: The issue is related to an Use-After-Free vulnerability in the rec mset elem destroy function at rec-mset.c. This vulnerability can lead to a segmentation fault or application crash. Recommendations: F...

PT-2021-23301 · Mp4Box · Mp4Box

Name of the Vulnerable Software and Affected Versions: MP4Box version 1.0.1 Description: The issue is a stack buffer overflow in the nhmldmx send sample function, specifically with the szXmlTo parameter, located at src/filters/dmx nhml.c:1004. This leads to a denial of service vulnerability...

PT-2024-11315 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 20798dfe249a Description: A NULL dereference vulnerability has been resolved in the Linux kernel. The issue occurs in the nfsd component, specifically in the nfs3svc encode getaclres function, where the dentry m...

PT-2020-6929

Name of the Vulnerable Software and Affected Versions libcroco versions 0.6.13 and earlier Description The issue is related to the cr parser parse any core function in the cr-parser.c component of the libcroco library, which is used for working with cascading style sheets css2. It is associated...

PT-2023-14945 · Gpac +2 · Gpac +2

Name of the Vulnerable Software and Affected Versions: GPAC version 2.1-DEV-rev505-gb9577e6ad-master Description: A memory leak was discovered in GPAC via the gf isom box parse ex function at box funcs.c. This issue may allow for unauthorized access or other malicious activities. Recommendations:...

PT-2023-15159 · Unknown +1 · Gpac Mp4Box +1

Name of the Vulnerable Software and Affected Versions: GPAC MP4Box version 2.1-DEV-rev574-g9d5bb184b Description: The issue is related to a segmentation violation via the function gf sm load init swf at scene manager/swf parse.c. No information is provided about the estimated number of potentiall...

PT-2023-1156 · Gpac +2 · Gpac +2

Name of the Vulnerable Software and Affected Versions: gpac/gpac versions prior to 2.3.0-DEV Description: The issue is related to a Use After Free condition in the gpac/gpac multimedia platform, specifically concerning the gf odf vvc cfg read bs function. This condition involves the use of memory...

PT-2023-15453 · Unknown +1 · Gpac Mp4Box +1

Name of the Vulnerable Software and Affected Versions: GPAC MP4Box version 2.1-DEV-rev644-g5c4df2a67 Description: The issue is related to a buffer overflow in the hevc parse vps extension function, located in the media tools/av parsers.c file at line 7662. This buffer overflow can be exploited,...

PT-2017-19291 · Lrzip +1 · Lrzip +1

Name of the Vulnerable Software and Affected Versions: lrzip version 0.631 Description: A stack buffer overflow was found in the get fileinfo function in lrzip.c, which allows attackers to cause a denial of service via a crafted file. Recommendations: For lrzip version 0.631, as a temporary...

PT-2017-3260

Name of the Vulnerable Software and Affected Versions libxml2 version 20904-GITv2.9.4-16-g0741801 Description The issue is caused by a heap-based buffer over-read in the xmlDictComputeFastKey function in dict.c. This can cause programs that use libxml2, such as PHP, to crash. The problem exists d...