Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. An improper array index validation vulnerability exists in the Huawei HarmonyOS audio codec module, which can be exploited by an attacker to cause audio...

jq: jq has signed integer overflow in jv.c:jvp_array_write

A flaw was found in jq, a command line JSON processor. An integer overflow can occur when attempting to assign a value using an array index of 2147483647 or when creating an array with 2147483647 elements, the maximum value for a 32-bit signed integer. This issue causes out-of-bounds memory acces...

Lightweight Fault Detection Architecture for NTT on FPGA

Post-Quantum Cryptographic PQC algorithms are mathematically secure and resistant to quantum attacks but can still leak sensitive information in hardware implementations due to natural faults or intentional fault injections. The intent fault injection in side-channel attacks reduces the reliabili...

Linux Distros Unpatched Vulnerability : CVE-2022-49186

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: clk: visconti: prevent array overflow in visconticlkregistergates This code was using -1 to...

Linux Distros Unpatched Vulnerability : CVE-2023-52603

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - UBSAN: array-index-out-of-bounds in dtSplitRoot Syzkaller reported the following issue: oop0: detected capacity change from 0 to 32768 UBSAN:...

PT-2025-33767

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A stack out-of-bounds write issue exists in the tc entry parsing within the mqprio module of the Linux kernel. The TCA MQPRIO TC ENTRY INDEX is validated using NLA POLICY MAXNLA U32, T...

Linux Distros Unpatched Vulnerability : CVE-2023-53112

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/i915/sseu: fix maxsubslices array-index-out-of-bounds access It seems that commit...

CVE-2014-125121

Array Networks vAPV version 8.3.2.17 and vxAG version 9.2.0.34 appliances are affected by a privilege escalation vulnerability caused by a combination of hardcoded SSH credentials or SSH private key and insecure permissions on a startup script. The devices ship with a default SSH login or a...

Exploit for Relative Path Traversal in Articatech Artica_Proxy

LFI to RCE Exploit via Log Poisoning Python3 exploit for CVE...

CVE-2014-125121

Array Networks vAPV version 8.3.2.17 and vxAG version 9.2.0.34 appliances are affected by a privilege escalation vulnerability caused by a combination of hardcoded SSH credentials or SSH private key and insecure permissions on a startup script. The devices ship with a default SSH login or a...

CVE-2014-125121 Array Networks vAPV and vxAG Default Credential Privilege Escalation

Array Networks vAPV version 8.3.2.17 and vxAG version 9.2.0.34 appliances are affected by a privilege escalation vulnerability caused by a combination of hardcoded SSH credentials or SSH private key and insecure permissions on a startup script. The devices ship with a default SSH login or a...

CVE-2014-125121

CVE-2014-125121 affects Array Networks vAPV (v8.3.2.17) and vxAG (v9.2.0.34). The vulnerability arises from a combination of hardcoded SSH credentials (or SSH private key) and insecure permissions on a startup script, allowing remote authentication with limited privileges. An authenticated attack...

CVE-2014-125121 Array Networks vAPV and vxAG Default Credential Privilege Escalation

Array Networks vAPV version 8.3.2.17 and vxAG version 9.2.0.34 appliances are affected by a privilege escalation vulnerability caused by a combination of hardcoded SSH credentials or SSH private key and insecure permissions on a startup script. The devices ship with a default SSH login or a...

Array Networks vAPV和Array Networks vxAG 安全漏洞

Array Networks vAPV and Array Networks vxAG are both products of Array Networks, Inc. of the U.S.A. Array Networks vAPV is a Virtual Application Delivery Controller.Array Networks vxAG is a Virtual Secure Access System. A security vulnerability exists in Array Networks vAPV version 8.3.2.17 and...

PT-2025-33772

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The software node does not specify a count of property entries, and the array is not null-terminated. This can lead to a fault in the downstream cs35l56 amplifier driver, as the node...

PT-2025-31541 · Undefined · Undefined

Array Networks vAPV version 8.3.2.17 and vxAG version 9.2.0.34 appliances are affected by a privilege escalation vulnerability caused by a combination of hardcoded SSH credentials or SSH private key and insecure permissions on a startup script. The devices ship with a default SSH login or a...

SUSE CVE-2025-38407

In the Linux kernel, the following vulnerability has been resolved: riscv: cpuopssbi: Use static array for bootdata Since commit 6b9f29b81b15 "riscv: Enable pcpu page first chunk allocator", if NUMA is enabled, the page percpu allocator may be used on very sparse configurations, or when requested...

Dell XtremIO 日志信息泄露漏洞

DELL XtremIO is an all-flash enterprise-class storage array from EMC, a Dell Technologies company, designed to enhance the performance of virtualization, database and analytics applications. DELL XtremIO suffers from a log information disclosure vulnerability that originates from the system...

RLSA-2025:8246 Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: wifi: rtw89: Fix array index mistake in rtw89stainfogetiter CVE-2024-43842 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other relat...

The vulnerability in the module arch/loongarch/kvm/intc/eiointc.c of Linux operating systems allows a hacker to cause a service failure.

The vulnerability in the arch/loongarch/kvm/intc/eiointc.c module of Linux operating systems is related to incorrect array index checking. Exploiting this vulnerability can allow an attacker to cause a service failure...