30 matches found
EUVD-2016-7111
Malware in sbrugna...
EUVD-2020-17373
Malware in sbrugna...
CVE-2022-41884
TensorFlow is an open source platform for machine learning. If a numpy array is created with a shape such that one element is zero and the others sum to a large number, an error will be raised. We have patched the issue in GitHub commit 2b56169c16e375c521a3bc8ea658811cc0793784. The fix will be...
CVE-2024-24563
Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. Arrays can be keyed by a signed integer, while they are defined for unsigned integers only. The typechecker doesn't throw when spotting the usage of an int as an index for an array. The typechecker allows the usage of...
CVE-2025-0973
A vulnerability classified as critical was found in CmsEasy 7.7.7.9. This vulnerability affects the function backAllaction in the library lib/admin/databaseadmin.php of the file /index.php?case=database&act=backAll&admindir=admin&site=default. The manipulation of the argument select leads to path...
Intel FPGA Security Vulnerability
Intel FPGA products is a series of applications from Intel Corporation USA. A security vulnerability exists in Intel Field Programmable Gate Array FPGA. An attacker exploiting this vulnerability could result in the disclosure of information...
CVE-2023-44114
Out-of-bounds array vulnerability in the dataipa module.Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2023-44114
CVE-2023-44114: An out-of-bounds array vulnerability affects the dataipa module. Multiple sources describe the root cause as an out-of-bounds access in dataipa, with potential impact on confidentiality. Public references span NVD, Red Hat, CVE lists, and Huawei/HarmonyOS advisories. Exploitation ...
CVE-2023-44114
Out-of-bounds array vulnerability in the dataipa module.Successful exploitation of this vulnerability may affect service confidentiality...
UBUNTU-CVE-2023-36201
An issue in JerryscriptProject jerryscript v.3.0.0 allows an attacker to obtain sensitive information via a crafted script to the arrays...
JerryScript 安全漏洞
JerryScript is a lightweight JavaScript engine from the Jerryscript Project. A security vulnerability exists in JerryscriptProject jerryscript version v.3.0.0. An attacker exploited the vulnerability to obtain sensitive information via a specially crafted array script...
CVE-2022-38475
An attacker could have written a value to the first element in a zero-length JavaScript array. Although the array was zero-length, the value was not written to an invalid memory address. This vulnerability affects Firefox 104...
Design/Logic Flaw
The storage maintenance and debugging module has an array out-of-bounds read vulnerability.Successful exploitation of this vulnerability will cause incorrect statistics of this module...
UBUNTU-CVE-2022-38475
An attacker could have written a value to the first element in a zero-length JavaScript array. Although the array was zero-length, the value was not written to an invalid memory address. This vulnerability affects Firefox 104...
Upgraded Q -> M from 264 [1659038303960]
Judge has assessed an item in Issue 264 as Medium risk. The relevant finding follows: L-05 Unbounded loop on array can lead to DoS As these arrays can grow quite large only push operations, no pop, the transaction's gas cost could exceed the block gas limit and make it impossible to call the...
Null pointer dereference
The kernel module has the null pointer and out-of-bounds array vulnerabilities. Successful exploitation of this vulnerability may affect system availability...
Undesired behavior
Lines of code Vulnerability details You push a parameter into an array of tokens without checking if it's already exists. And if at first it's added with amount 0 it can later on be pushed with a greater amount and be twice in the array. Then in all processing it will consider the first occurrenc...
CVE-2021-44992
CVE-2021-44992 affects JerryScript 3.0.0, caused by an assertion failure in ecma_object_is_typedarray (obj_p) within /jerry-core/ecma/operations/ecma-typedarray-object.c. Public entries describe it as a Denial of Service issue with the assertion triggering a crash; CVSS vectors in the NVD listing...
Cross-site Scripting in bootstrap-table
This affects all versions of package bootstrap-table. A type confusion vulnerability can lead to a bypass of input sanitization when the input provided to the escapeHTML function is an array instead of a string even if the escape attribute is set...
Extreme Office suffers from an array out-of-bounds read vulnerability (CNVD-2021-03430)
Extreme Office is an independently controlled office learning software developed by Beijing Haiteng Times Technology Co. An array out-of-bounds read vulnerability exists in Extreme Office. An attacker can exploit this vulnerability to cause the program to crash...