The vulnerability of Microsoft Office and Microsoft 365 Apps for Enterprise packages, related to array indexing errors, allows attackers to execute arbitrary code.

The vulnerability of Microsoft Office and Microsoft 365 Apps for Enterprise packages stems from errors in array indexing during syntax analysis of EMF files. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created file...

in v2fly/v2ray-core

Description Good afternoon. While looking at your code, we discovered an off-by-one index comparison against length may lead to out-of-bounds read flaw in your v2ray-core repository. Indexing operations on arrays, slices or strings should use an index at most one less than the length. If the inde...

The vulnerability of the GoGolang Protobuf library function, which allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability in the plugin/unmarshal/unmarshal.go library of GoGo Protobuf is related to incorrect array indexing. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

PT-2021-4715 · Microsoft · Office Visio

Name of the Vulnerable Software and Affected Versions: Microsoft Office Visio affected versions not specified Description: The issue is caused by errors in array indexing when parsing EMF files, allowing an attacker to execute arbitrary code using a specially crafted file. Recommendations: At the...

tinyexr Denial of Service Vulnerability (CNVD-2021-94957)

tinyexr is a small library for loading and saving OpenEXR .exr images. tinyexr version 0.9.5 suffers from a denial-of-service vulnerability. The vulnerability stems from an array indexing error in the tinyexr::SaveEXR component. An attacker could exploit this vulnerability to cause a denial of...

tinyexr denial of service vulnerability

tinyexr is a small library for loading and saving OpenEXR .exr images. tinyexr version 0.9.5 suffers from a denial-of-service vulnerability. The vulnerability stems from an array indexing error in the tinyexr::DecodeEXRImage component. An attacker could exploit this vulnerability to cause a denia...

tinyexr commit 输入验证错误漏洞

tinyexr is a small library for loading and saving OpenEXR .exr images. tinyexr version 0.9.5 suffers from a denial-of-service vulnerability. The vulnerability stems from an array indexing error in the tinyexr::SaveEXR component. An attacker could exploit this vulnerability to cause a denial of...

CVE-2021-3588

The clifeatreadcb function in src/gatt-database.c does not perform bounds checks on the 'offset' variable before using it as an index into an array for reading...

GSD-2021-1000022 KVM: VMX: Don't use vcpu->run->internal.ndata as an array index

KVM: VMX: Don't use vcpu-run-internal.ndata as an array index This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.32 by commit...

The vulnerability of Linux software’s kernel graphics processor drivers from Qualcomm, related to array indexing errors, allows attackers to execute arbitrary code.

The vulnerability of the graphics processor driver of the Linux operating system software developed by Qualcomm is related to array indexing errors. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the DIAG Mode implementation in Qualcomm’s embedded software allows a perpetrator to execute arbitrary code or cause malfunctions during maintenance operations.

The vulnerability of the DIAG Mode implementation in Qualcomm’s embedded software lies in the lack of checks for buffer size during array indexing. Exploiting this vulnerability can allow attackers to execute arbitrary code or cause system failures...

PT-2021-7598 · Cgal +1 · Cgal +1

Name of the Vulnerable Software and Affected Versions: CGAL versions prior to 5.1.1 CGAL libcgal version 5.1.1 Description: The issue is related to unverified array indexing in the SNC io parser::read vertex function of the Nef S2/SNC io parser.h component in the CGAL library. This can be exploit...

PT-2021-7610 · Cgal +1 · Cgal +1

Name of the Vulnerable Software and Affected Versions: CGAL versions prior to 5.1.1 Description: The issue is related to unverified array indexing in the SNC io parser::read vertex function of the Nef S2/SNC io parser.h component in the CGAL library. This can be exploited by a remote attacker usi...

The vulnerability of the nsDirIndexParser::ParseFormat method (netwerk\streamconv\converters\nsDirIndexParser.cpp) in browsers such as Firefox, Firefox ESR, and the email client Thunderbird arises from the lack of checks during array-based indexing. This allows an attacker to gain access to protected information.

The vulnerability of the nsDirIndexParser::ParseFormat method netwerk\streamconv\converters\nsDirIndexParser.cpp in browsers such as Firefox, Firefox ESR, and the email client Thunderbird is related to the lack of checks during array indexing. Exploiting this vulnerability can allow an attacker,...

libsixel unvalidated array indexing vulnerability

libsixel is a SIXEL encoder/decoder implementation. libsixel 1.8.6 is vulnerable to an unvalidated array indexing vulnerability. An attacker could exploit this vulnerability to cause out-of-bounds access to the gifoutcode function in fromgif.c...

libsixel 缓冲区错误漏洞

libsixel is a SIXEL encoder/decoder implementation. libsixel 1.8.6 is vulnerable to an unvalidated array indexing vulnerability. An attacker could exploit this vulnerability to cause out-of-bounds access to the gifoutcode function in fromgif.c...

CVE-2020-15211

In TensorFlow Lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, saved models in the flatbuffer format use a double indexing scheme: a model has a set of subgraphs, each subgraph has a set of operators and each operator has a set of input/output tensors. The flatbuffer format uses indice...

CVE-2020-15211

In TensorFlow Lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, saved models in the flatbuffer format use a double indexing scheme: a model has a set of subgraphs, each subgraph has a set of operators and each operator has a set of input/output tensors. The flatbuffer format uses indice...

MikroTik RouterOS Resource Management Error Vulnerability (CNVD-2020-52205)

MikroTik RouterOS is a Linux-based router operating system developed by the Latvian company MikroTik. The system can be deployed in a PC to enable it to provide router functionality. A resource management error vulnerability exists in MikroTik RouterOS versions 6.41.3 through 6.46.5 and 7, which...

Arbitrary Code Execution

gstreamer-plugins-good is vulnerable to arbitrary code execution. The vulnerability exists through multiple heap buffer overflows and an array indexing error were found in the GStreamer's QuickTime media file format decoding plugin. An attacker could create a carefully-crafted QuickTime media .mo...