SAP Business One Code Injection Vulnerability (CNVD-2022-56957)

SAP Business One is the German SAP SAP company's set of financial management, operations management and human resources management and other functions of enterprise management software. A code injection vulnerability exists in SAP Business One, which can be exploited by a remote attacker to submi...

Secheron SEPCOS Control and Protection Relay Elevation of Privilege Vulnerability

Secheron SEPCOS Control and Protection Relay is a relay from Secheron. Control and protect your DC panels and contact lines from short circuits and other electrical faults, and benefit from enhanced communication capabilities.An elevation of privilege vulnerability exists in the Secheron SEPCOS...

Secheron SEPCOS Control and Protection Relay 安全漏洞

Secheron SEPCOS Control and Protection Relay is a relay from Secheron. Control and protect your DC panels and contact lines from short circuits and other electrical faults, and benefit from enhanced communication capabilities.An elevation of privilege vulnerability exists in the Secheron SEPCOS...

H3C Magic R100 Buffer Overflow Vulnerability (CNVD-2022-50705)

H3C Magic R100 is a router from H3C. H3C Magic R100 is vulnerable to a buffer overflow vulnerability, which can be exploited by remote attackers to submit special requests that can crash an application or execute arbitrary code in the application context...

Ever wanted to rewrite a query in Spring Data JPA?

Sometimes, no matter how many features you try to apply, it seems impossible to get Spring Data JPA to apply every thing youd like to a query before it is sent to the EntityManager. With 3.0.0-SNAPSHOT and targeted for the next milestone release train of Spring Data, you now have the ability to g...

Google Android Elevation of Privilege Vulnerability (CNVD-2022-28910)

Google Android is a Linux-based open-source operating system from the US company Google. Google Android has security vulnerabilities that can be exploited by attackers to submit special requests that can execute arbitrary code in the application context and elevate privileges...

Google Android Elevation of Privilege Vulnerability (CNVD-2022-28909)

Google Android is a Linux-based open source operating system from Google, Inc. The Google Android Framework has security vulnerabilities that can be exploited by attackers to submit special requests that can execute arbitrary code in application context and elevate privileges...

TP-Link TL-WR886N Stack Overflow Vulnerability (CNVD-2022-21168)

The TP-Link TL-WR886N is a wireless router from China P&L. A stack overflow vulnerability exists in the TP-Link TL-WR886N /cloudconfig/routerpost/checkregverifycode, which can be exploited by a remote attacker to submit a special request that can crash the application or can be used to execute...

Tenda AX1806 Stack Overflow Vulnerability

Tenda AX1806 is a WiFi6 wireless router from Tenda, a Chinese company. Tenda AX1806 is vulnerable to a stack overflow vulnerability, which allows remote attackers to submit special requests that could crash an application or execute arbitrary code in application context...

Foxit PDF Reader Buffer Overflow Vulnerability (CNVD-2024-17009)

Foxit PDF Reader is a popular PDF parsing software. Foxit PDF Reader suffers from a buffer overflow vulnerability that can be exploited by a remote attacker to submit a special file request that induces the user to parse it, which can cause the user's program to crash or can be used to execute...

Foxit PDF Reader pdf Buffer Overflow Vulnerability

Foxit PDF Reader is a PDF reader. Foxit PDF Reader has a security vulnerability that can be exploited by remote attackers to submit a special file request, which induces the user to parse it and can crash the application or execute arbitrary code in the application context...

Dell EMC iDRAC Stack Overflow Vulnerability

Dell EMC iDRAC is a U.S. Dell Dell for system administrators to update and manage Dell systems located on the server motherboard hardware. Dell EMC iDRAC has a stack overflow vulnerability, which can be exploited by remote attackers to submit special requests that can crash applications or...

Blackmagic Design DaVinci Resolve Code Execution Vulnerability

Blackmagic Design DaVinci Resolve is an all-in-one software tool for editing, color correction, visual effects, motion graphics and audio post-production.A code execution vulnerability exists in Blackmagic Design DaVinci Resolve, which could be exploited by attackers to execute arbitrary code in...

Vulnerability Spotlight: Code execution vulnerability in Nitro Pro PDF

A Cisco Talos team member discovered these vulnerabilities. Blog by Jon Munshaw. Cisco Talos recently discovered a vulnerability in the Nitro Pro PDF reader that could allow an attacker to execute code in the context of the application. Nitro Pro PDF is part of Nitro Software’s... This is only th...

Tuxera NTFS-3G Buffer Overflow Vulnerability (CNVD-2022-82656)

Tuxera NTFS-3G is an open source, cross-platform set of drivers from Tuxera Finland for reading and writing NTFS partitions.Tuxera NTFS-3G is vulnerable to a buffer overflow vulnerability that could be exploited by an attacker to crash a program or execute arbitrary code in the application contex...

Tuxera NTFS-3G 缓冲区错误漏洞

Tuxera NTFS-3G is an open source, cross-platform set of drivers from Tuxera Finland for reading and writing NTFS partitions.Tuxera NTFS-3G is vulnerable to a buffer overflow vulnerability that could be exploited by an attacker to crash an application or execute arbitrary code in the application...

Autodesk Design Review Buffer Overflow Vulnerability (CNVD-2021-53947)

Autodesk Design Review ADR is a suite of AutoCAD drafting software assist software from Autodesk, Inc. The software supports viewing, marking, measuring, printing, and tracking changes to 2D and 3D design files.Autodesk Design Review is vulnerable to a buffer error vulnerability that could be...

Command Execution Vulnerability in Zhongxin Golden Shield Information Security Management System

Zhongxin Network Information Security Co., Ltd. is a high-tech company integrating network security products, software and hardware development. A command execution vulnerability exists in the Zhongxin Golden Shield information security management system, which can be exploited by an attacker to...

IrfanView WPG plugin out-of-bounds writing vulnerability

IrfanView is an image viewer that supports image browsing, image editing, image format conversion, etc. An out-of-bounds write vulnerability in IrfanView WPG plugin allows remote attackers to submit special requests that could crash the application or execute arbitrary code in the application...

SoftMaker Office PlanMaker Buffer Overflow Vulnerability

SoftMaker Office PlanMaker is a German Softmaker SoftMaker company supports multi-platform office software in the spreadsheet suite. SoftMaker Office PlanMaker 2021 suffers from a buffer overflow vulnerability that stems from a specially crafted document that could result in a heap-based buffer...