Beckhoff TwinCAT Package Manager Installed (Windows)

Binary data beckhofftwincatpackagemanagerwininstalled.nbin...

Siemens Solid Edge Installed (Windows)

Binary data siemenssolidedgewininstalled.nbin...

The software for configuring, monitoring, and controlling industrial equipment, Easergy Studio, has vulnerabilities related to insecure management of privileges. This allows attackers to escalate their privileges.

The vulnerability of the Easergy Studio software for configuring, monitoring, and controlling industrial equipment is related to insecure management of privileges. Exploiting this vulnerability could allow an attacker to enhance their privileges by modifying binary data...

Low: Red Hat Security Advisory: binutils security update

An update for binutils is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

The vulnerability in the `TracePluginImpl::writePacket` method of the `TracePluginImpl.cpp` module of the “Red Database” database management system allows a hacker to perform operations without being recorded in the audit log.

The vulnerability of the TracePluginImpl::writePacket method in the TracePluginImpl.cpp module of the “Red Database” database management system is related to the use of binary auditing when the cancelonerror parameter is enabled. Exploiting this vulnerability allows a remote attacker to even canc...

ALSA-2024:9689 Low: binutils security update

The binutils packages provide a collection of binary utilities for the manipulation of object code in various object file formats. It includes the ar, as, gprof, ld, nm, objcopy, objdump, ranlib, readelf, size, strings, strip, and addr2line utilities. Security Fixes: binutils: heap-based buffer...

The vulnerability of the BinaryStreamDriver component in the Java library for converting objects to XML or JSON format, XStream. This vulnerability allows an attacker to perform a “denial-of-service” attack.

The vulnerability of the BinaryStreamDriver component in the Java library for converting objects to XML or JSON format, XStream, is related to buffer overflows in the stack of the manipulated binary input stream. Exploiting this vulnerability could allow a remote attacker to execute a...

CVE-2024-25647

Incorrect default permissions for some IntelR Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2024-23312

Uncontrolled search path for some IntelR Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2024-23312

The CVE-2024-23312 issue affects Intel® Binary Configuration Tool (BCT) for Windows prior to version 3.4.5. The root cause is an uncontrolled search path element, which could allow an authenticated local attacker to escalate privileges. Publicly documented impact in connected sources confirms loc...

CVE-2024-23312

Uncontrolled search path for some IntelR Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2024-25647

CVE-2024-25647 affects the Intel® Binary Configuration Tool for Windows, prior to v3.4.5. The root cause is incorrect default permissions that may allow an authenticated user with local access to escalate privileges. The advisory reports a CVSSv3.1 base score of 6.7 (LOCAL, HIGH impact on confide...

Intel Binary Configuration Tool 安全漏洞

Intel Binary Configuration Tool is a utility program from Intel Corporation that is used to change configuration settings embedded in Intel FSP Firmware Support Package binaries. A security vulnerability exists in Intel Binary Configuration Tool versions prior to 3.4.5 that stems from incorrect...

Intel Binary Configuration Tool 代码问题漏洞

Intel Binary Configuration Tool is an Intel Corporation utility program for changing configuration settings embedded in Intel FSP Firmware Support Package binaries. A code issue vulnerability exists in Intel Binary Configuration Tool versions prior to 3.4.5 that stems from an uncontrolled search...

CVE-2024-47906

Excessive binary privileges in Ivanti Connect Secure before version 22.7R2.3 Not Applicable to 9.1Rx and Ivanti Policy Secure before version 22.7R1.2 Not Applicable to 9.1Rx allows a local authenticated attacker to escalate privileges...

encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion

A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635...

Ivanti Connect Secure 安全漏洞

Ivanti Connect Secure is a secure remote network connection tool from Ivanti Corporation, USA. A security vulnerability exists in Ivanti Connect Secure that stems from the inclusion of an excessive binary privilege vulnerability...

PT-2024-8686 · Intel · Intel Binary Configuration Tool

Name of the Vulnerable Software and Affected Versions: Intel Binary Configuration Tool versions prior to 3.4.5 Description: The issue is related to an uncontrolled search path element in the Intel Binary Configuration Tool. Exploitation of this issue may allow an attacker to potentially enable...

PT-2024-8685 · Intel · Intel Binary Configuration Tool

Name of the Vulnerable Software and Affected Versions: Intel Binary Configuration Tool versions prior to 3.4.5 Description: The issue is related to incorrect default permissions in the Intel Binary Configuration Tool software for Windows, which may allow an authenticated user to potentially enabl...

Intel® Binary Configuration Tool Software Advisory

Summary: Potential security vulnerabilities in some Intel® Binary Configuration Tool software may allow escalation of privilege. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2024-25647 Description: Incorrect default permissions...