376 matches found
GHSA-V5HV-4PW3-Q6H9 ADMesh improper array index validation
An improper array index validation vulnerability exists in the stlfixnormaldirections functionality of ADMesh Master Commit 767a105 and v0.98.4. A specially-crafted stl file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2022-38072
An improper array index validation vulnerability exists in the stlfixnormaldirections functionality of ADMesh Master Commit 767a105 and v0.98.4. A specially-crafted stl file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...
DEBIAN-CVE-2022-38072
An improper array index validation vulnerability exists in the stlfixnormaldirections functionality of ADMesh Master Commit 767a105 and v0.98.4. A specially-crafted stl file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...
Heap overflow
An improper array index validation vulnerability exists in the stlfixnormaldirections functionality of ADMesh Master Commit 767a105 and v0.98.4. A specially-crafted stl file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2022-38072
An improper array index validation vulnerability exists in the stlfixnormaldirections functionality of ADMesh Master Commit 767a105 and v0.98.4. A specially-crafted stl file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2022-38072
CVE-2022-38072 affects ADMesh (Master commit 767a105 and v0.98.4). The vulnerability resides in the stl_fix_normal_directions function due to improper array index validation, leading to a heap buffer overflow when processing crafted STL files. An attacker can trigger this via a malicious STL inpu...
PT-2023-13581 · Admesh · Admesh
Name of the Vulnerable Software and Affected Versions: ADMesh versions 0.98.4 and Master Commit 767a105 Description: An improper array index validation issue exists in the stl fix normal directions functionality, which can lead to a heap buffer overflow when a specially-crafted stl file is...
PT-2023-36075 · Admesh · Admesh
Name of the Vulnerable Software and Affected Versions: ADMesh versions prior to the fixed version Description: The issue is related to improper array index validation in the stl fix normal directions functionality. This can be exploited by providing a specially-crafted stl file, leading to a heap...
ADMesh stl_fix_normal_directions improper array index validation vulnerability
Talos Vulnerability Report TALOS-2022-1594 ADMesh stlfixnormaldirections improper array index validation vulnerability April 3, 2023 CVE Number CVE-2022-38072 SUMMARY An improper array index validation vulnerability exists in the stlfixnormaldirections functionality of ADMesh Master Commit 767a10...
EulerOS 2.0 SP10 : ppp (EulerOS-SA-2023-1560)
According to the versions of the ppp package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability classified as problematic has been found in ppp. Affected is the function dumpppp of the file pppdump/pppdump.c of the component...
PT-2023-1685 · Schneider Electric · Powerlogic Hdpm6000
Name of the Vulnerable Software and Affected Versions: PowerLogic HDPM6000 affected versions not specified Description: A CWE-129: Improper validation of an array index issue exists where a specially crafted Ethernet request could result in denial of service or remote code execution...
CVE-2022-40537 Improper Validation of Array Index in Bluetooth HOST
Memory corruption in Bluetooth HOST while processing the AVRCPDUGETPLAYERAPPVALUETEXT AVRCP response...
CVE-2022-33256
CVE-2022-33256: A memory corruption issue in Qualcomm closed‑source components due to improper validation of an array index in the Multi‑mode call processor. Affected: Qualcomm closed‑source components; Root cause: improper array index validation. Impact: Critical (CVSS v3.1: 9.8) with remote cod...
PT-2023-13267 · Qualcomm · Snapdragon +61
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to memory corruption due to improper validation of an array index in the Multi-mode call processor. No information is provided abou...
PT-2023-13823 · Google · Automotive Android Os
Name of the Vulnerable Software and Affected Versions: Automotive Android OS affected versions not specified Description: The issue is related to memory corruption in Automotive Android OS due to improper validation of an array index. This can lead to unspecified consequences. Recommendations: At...
Input validation
The affected products are vulnerable to an improper validation of array index, which could allow an attacker to crash the server and remotely execute arbitrary code...
PT-2023-16504 · Softwarex · Softwarex
Name of the Vulnerable Software and Affected Versions: SoftwareX affected versions not specified Description: The issue is related to an improper validation of array index. This could allow an attacker to crash the server and remotely execute arbitrary code. Recommendations: At the moment, there ...
SUSE CVE-2019-1000016
FFMPEG version 4.1 contains a CWE-129: Improper Validation of Array Index vulnerability in libavcodec/cbsav1.c that can result in Denial of service. This attack appears to be exploitable via specially crafted AV1 file has to be provided as input. This vulnerability appears to have been fixed in...
SUSE CVE-2020-28589
An improper array index validation vulnerability exists in the LoadObj functionality of tinyobjloader v2.0-rc1 and tinyobjloader development commit 79d4421. A specially crafted file could lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
SUSE CVE-2022-1237
Improper Validation of Array Index in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability is heap overflow and may be exploitable. For more general description of heap buffer overflow, see CWE...