Lucene search
K

182 matches found

OSV
OSV
added 2019/06/05 5:29 p.m.3 views

CVE-2019-12554

In SweetScape 010 Editor 9.0.1, improper validation of arguments in the internal implementation of the WSubStr function provided by the scripting engine allows an attacker to cause a denial of service by crashing the application...

7.5CVSS7.1AI score0.01225EPSS
Exploits1References2
Prion
Prion
added 2019/06/05 5:29 p.m.23 views

Input validation

In SweetScape 010 Editor 9.0.1, improper validation of arguments in the internal implementation of the StrCat function provided by the scripting engine allows an attacker to overwrite arbitrary memory, which could lead to code execution...

7.5CVSS9.2AI score0.02439EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2019/06/05 5:29 p.m.23 views

CVE-2019-12555

In SweetScape 010 Editor 9.0.1, improper validation of arguments in the internal implementation of the SubStr function provided by the scripting engine allows an attacker to cause a denial of service by crashing the application...

7.5CVSS7.3AI score0.01225EPSS
Exploits1References2
Cvelist
Cvelist
added 2019/06/05 4:17 p.m.31 views

CVE-2019-12555

In SweetScape 010 Editor 9.0.1, improper validation of arguments in the internal implementation of the SubStr function provided by the scripting engine allows an attacker to cause a denial of service by crashing the application...

7.3AI score0.01225EPSS
Exploits1References2
OSV
OSV
added 2019/05/16 5:29 p.m.5 views

CVE-2019-1780

A vulnerability in the CLI of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker with administrator credentials to execute arbitrary commands on the underlying operating system of an affected device with elevated privileges. The vulnerability is due to...

6.7CVSS6.2AI score0.00446EPSS
Exploits0References2
OSV
OSV
added 2019/05/15 8:29 p.m.2 views

CVE-2019-1783

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker with administrator credentials to execute arbitrary commands on the underlying Linux operating system with the privilege level of root. The vulnerability is due to insufficient validation of arguments...

6.7CVSS6AI score0.00463EPSS
Exploits0References2
OSV
OSV
added 2019/05/15 8:29 p.m.2 views

CVE-2019-1778

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying Linux operating system with the privilege level of root. The vulnerability is due to insufficient validation of arguments passed to a specific CLI comman...

6.7CVSS6.9AI score0.00463EPSS
Exploits0References2
OSV
OSV
added 2019/05/15 8:29 p.m.5 views

CVE-2019-1784

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying Linux operating system with the privilege level of root. The vulnerability is due to insufficient validation of arguments passed to a specific CLI comman...

6.7CVSS6.9AI score0.00463EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2019/05/15 12:0 a.m.3 views

PT-2019-2370 · Cisco · Cisco Nx-Os +1

Name of the Vulnerable Software and Affected Versions: Cisco NX-OS Software affected versions not specified Description: A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker with administrator credentials to execute arbitrary commands on the underlying...

7.2CVSS5AI score0.00449EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2019/03/22 12:0 a.m.4 views

The vulnerability of the command-line interface of the Cisco Nexus Operating System allows a hacker to execute any command they desire.

The vulnerability of the command-line interface of the Cisco Nexus Operating System is related to insufficient checking of arguments passed in commands. Exploiting this vulnerability allows a local attacker to execute arbitrary commands...

6.7CVSS6AI score0.00459EPSS
Exploits0References2
OSV
OSV
added 2019/03/11 9:29 p.m.3 views

CVE-2019-1610

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device. The vulnerability is due to insufficient validation of arguments passed to certain CLI commands. An attacker coul...

6.7CVSS6.3AI score0.00463EPSS
Exploits0References2
OSV
OSV
added 2018/08/10 2:0 a.m.6 views

USN-3735-1 openjdk-7 vulnerability

It was discovered that the PatternSyntaxException class in OpenJDK did not properly validate arguments passed to it. An attacker could use this to potentially construct a class that caused a denial of service excessive memory consumption...

4.3CVSS6.7AI score0.04184EPSS
Exploits0References2
Prion
Prion
added 2018/04/18 2:29 p.m.22 views

Design/Logic Flaw

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile MDM9625, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 820, and SD 820A, no address argument validation is performed on calls to the...

10CVSS8.1AI score0.01169EPSS
Exploits0References2
Prion
Prion
added 2018/04/18 2:29 p.m.22 views

Null pointer dereference

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile MDM9625, SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, and SD 820A, no address argument validation performed on calls to a QSEE syscall may lead to arbitrary read/write or NUL...

10CVSS8.2AI score0.0118EPSS
Exploits0References2
NVD
NVD
added 2017/08/18 6:29 p.m.16 views

CVE-2016-10347

In all Qualcomm products with Android releases from CAF using the Linux kernel, an argument to a hypervisor function is not properly validated...

10CVSS8.9AI score0.00836EPSS
Exploits0References2
Prion
Prion
added 2017/08/18 6:29 p.m.16 views

Design/Logic Flaw

In all Qualcomm products with Android releases from CAF using the Linux kernel, an argument to a hypervisor function is not properly validated...

10CVSS7AI score0.00836EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/08/18 6:0 p.m.22 views

CVE-2015-9068

In all Qualcomm products with Android releases from CAF using the Linux kernel, an argument to a mink syscall is not properly validated...

8.4AI score0.00836EPSS
Exploits0References2
OSV
OSV
added 2016/09/11 9:59 p.m.1 views

CVE-2016-3874

CORE/HDD/src/wlanhddwext.c in the Qualcomm Wi-Fi driver in Android before 2016-09-05 on Nexus 5X devices does not properly validate the arguments array, which allows attackers to gain privileges via a crafted application that sends a WEUNITTESTCMD command, aka Android internal bug 29944562 and...

7.8CVSS7.3AI score
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2016/08/12 12:0 a.m.36 views

FreeBSD : FreeBSD -- Incorrect argument validation in sysarch(2) (7b6a11b5-600a-11e6-a6c3-14dae9d210b8)

A special combination of sysarch2 arguments, specify a request to uninstall a set of descriptors from the LDT. The start descriptor is cleared and the number of descriptors are provided. Due to lack of sufficient bounds checking during argument validity verification, unbound zero'ing of the proce...

6.2CVSS6.8AI score0.01263EPSS
Exploits6References2
FreeBSD
FreeBSD
added 2016/03/16 12:0 a.m.35 views

FreeBSD -- Incorrect argument validation in sysarch(2)

Problem Description: A special combination of sysarch2 arguments, specify a request to uninstall a set of descriptors from the LDT. The start descriptor is cleared and the number of descriptors are provided. Due to lack of sufficient bounds checking during argument validity verification, unbound...

6.2CVSS3.6AI score0.01263EPSS
Exploits6
Rows per page
Query Builder