182 matches found
CVE-2019-12554
In SweetScape 010 Editor 9.0.1, improper validation of arguments in the internal implementation of the WSubStr function provided by the scripting engine allows an attacker to cause a denial of service by crashing the application...
Input validation
In SweetScape 010 Editor 9.0.1, improper validation of arguments in the internal implementation of the StrCat function provided by the scripting engine allows an attacker to overwrite arbitrary memory, which could lead to code execution...
CVE-2019-12555
In SweetScape 010 Editor 9.0.1, improper validation of arguments in the internal implementation of the SubStr function provided by the scripting engine allows an attacker to cause a denial of service by crashing the application...
CVE-2019-12555
In SweetScape 010 Editor 9.0.1, improper validation of arguments in the internal implementation of the SubStr function provided by the scripting engine allows an attacker to cause a denial of service by crashing the application...
CVE-2019-1780
A vulnerability in the CLI of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker with administrator credentials to execute arbitrary commands on the underlying operating system of an affected device with elevated privileges. The vulnerability is due to...
CVE-2019-1783
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker with administrator credentials to execute arbitrary commands on the underlying Linux operating system with the privilege level of root. The vulnerability is due to insufficient validation of arguments...
CVE-2019-1778
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying Linux operating system with the privilege level of root. The vulnerability is due to insufficient validation of arguments passed to a specific CLI comman...
CVE-2019-1784
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying Linux operating system with the privilege level of root. The vulnerability is due to insufficient validation of arguments passed to a specific CLI comman...
PT-2019-2370 · Cisco · Cisco Nx-Os +1
Name of the Vulnerable Software and Affected Versions: Cisco NX-OS Software affected versions not specified Description: A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker with administrator credentials to execute arbitrary commands on the underlying...
The vulnerability of the command-line interface of the Cisco Nexus Operating System allows a hacker to execute any command they desire.
The vulnerability of the command-line interface of the Cisco Nexus Operating System is related to insufficient checking of arguments passed in commands. Exploiting this vulnerability allows a local attacker to execute arbitrary commands...
CVE-2019-1610
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device. The vulnerability is due to insufficient validation of arguments passed to certain CLI commands. An attacker coul...
USN-3735-1 openjdk-7 vulnerability
It was discovered that the PatternSyntaxException class in OpenJDK did not properly validate arguments passed to it. An attacker could use this to potentially construct a class that caused a denial of service excessive memory consumption...
Design/Logic Flaw
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile MDM9625, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 820, and SD 820A, no address argument validation is performed on calls to the...
Null pointer dereference
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile MDM9625, SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, and SD 820A, no address argument validation performed on calls to a QSEE syscall may lead to arbitrary read/write or NUL...
CVE-2016-10347
In all Qualcomm products with Android releases from CAF using the Linux kernel, an argument to a hypervisor function is not properly validated...
Design/Logic Flaw
In all Qualcomm products with Android releases from CAF using the Linux kernel, an argument to a hypervisor function is not properly validated...
CVE-2015-9068
In all Qualcomm products with Android releases from CAF using the Linux kernel, an argument to a mink syscall is not properly validated...
CVE-2016-3874
CORE/HDD/src/wlanhddwext.c in the Qualcomm Wi-Fi driver in Android before 2016-09-05 on Nexus 5X devices does not properly validate the arguments array, which allows attackers to gain privileges via a crafted application that sends a WEUNITTESTCMD command, aka Android internal bug 29944562 and...
FreeBSD : FreeBSD -- Incorrect argument validation in sysarch(2) (7b6a11b5-600a-11e6-a6c3-14dae9d210b8)
A special combination of sysarch2 arguments, specify a request to uninstall a set of descriptors from the LDT. The start descriptor is cleared and the number of descriptors are provided. Due to lack of sufficient bounds checking during argument validity verification, unbound zero'ing of the proce...
FreeBSD -- Incorrect argument validation in sysarch(2)
Problem Description: A special combination of sysarch2 arguments, specify a request to uninstall a set of descriptors from the LDT. The start descriptor is cleared and the number of descriptors are provided. Due to lack of sufficient bounds checking during argument validity verification, unbound...