PostgreSQL DB Compliance Checks

Binary data postgresqldbcompliancecheck.nbin...

Microsoft SQL Server DB Compliance Checks

Binary data mssqldbcompliancecheck.nbin...

Oracle DB Compliance Checks

Binary data oracledbcompliancecheck.nbin...

MySQL DB Compliance Checks

Binary data mysqldbcompliancecheck.nbin...

OESA-2022-2012 protobuf security update

Security Fixes: A parsing vulnerability for the MessageSet type in the ProtocolBuffers versions prior to and including 3.16.1, 3.17.3, 3.18.2, 3.19.4, 3.20.1 and 3.21.5 for protobuf-cpp, and versions prior to and including 3.16.1, 3.17.3, 3.18.2, 3.19.4, 3.20.1 and 4.21.5 for protobuf-python can...

Iterations over all tiers in recordMintBestAvailableTier can render system unusable

Lines of code Vulnerability details Impact JBTiered721DelegateStore.recordMintBestAvailableTier potentially iterates over all tiers to find the one with the highest contribution floor that is lower than amount. When there are many tiers, this loop can always run out of gas, which will cause some...

Trend Micro Apex One Server Authentication Bypass (CVE-2022-40144)

Binary data trendmicroapexonecve-2022-40144.nbin...

SUSE SLES15 / openSUSE 15 Security Update : buildah (SUSE-SU-2022:3655-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3655-1 advisory. Buildah was updated to version 1.27.1: - CVE-2021-20206: Fixed an issue in libcni that could allow an attacker to...

ROS-20221020-02

A vulnerability in the Java Protocol Buffers protobuf-java runtime library is related to a problem analyzing binary data. Exploitation of the vulnerability could allow an attacker acting remotely to send data containing multiple instances of non-repeating embedded messages to the application's...

Apache Commons Text JAR Detection

Binary data apachecommonstextjardetect.nbin...

Code injection

An attacker can pre-create the /Applications/Google\ Drive.app/Contents/MacOS directory which is expected to be owned by root to be owned by a non-root user. When the Drive for Desktop installer is run for the first time, it will place a binary in that directory with execute permissions and set i...

Binary vulnerability in totolink X5000R router (CNVD-2022-78386)

The totolink X5000R is an AX1800 Wi-Fi 6 router with the latest generation of Wi-Fi 6 technology. A binary vulnerability exists in the totolink X5000R router, which can be exploited by remote attackers to cause a denial of service attack...

Google protobuf-java denial of service vulnerability

Google protobuf is a data interchange format from the US company Google. google protobuf-java core and lite versions parse binary data for a denial of service vulnerability, which can be exploited by attackers to cause a denial of service...

Apple iOS < 16.0.3 Vulnerability (HT213480)

Binary data appleios1603check.nbin...

Zyxel Unified Security Gateway (USG) Web Detection

Binary data zyxelusgwebdetect.nbin...

Zimbra Collaboration Server 9.0.0 < 9.0.0 Patch 27 Multiple Vulnerabilities

According to its self-reported version number, Zimbra Collaboration Server is affected by a multiple vulnerabilities: including the following: - An attacker can upload arbitrary files through amavisd via a cpio loophole that can lead to incorrect access to any other user accounts. CVE-2022-41352 ...

Zimbra Collaboration Server 8.8.15 < 8.8.15 Patch 34 Multiple Vulnerabilities

According to its self-reported version number, Zimbra Collaboration Server is affected by a multiple vulnerabilities: including the following: - An attacker can upload arbitrary files through amavisd via a cpio loophole that can lead to incorrect access to any other user accounts. CVE-2022-41352 ...

DEBIAN-CVE-2022-3171

A parsing issue with binary data in protobuf-java core and lite versions prior to 3.21.7, 3.20.3, 3.19.6 and 3.16.3 can lead to a denial of service attack. Inputs containing multiple instances of non-repeated embedded messages with repeated or unknown fields causes objects to be converted...

Design/Logic Flaw

A parsing issue with binary data in protobuf-java core and lite versions prior to 3.21.7, 3.20.3, 3.19.6 and 3.16.3 can lead to a denial of service attack. Inputs containing multiple instances of non-repeated embedded messages with repeated or unknown fields causes objects to be converted...

USN-5671-1: AdvanceCOMP vulnerabilities

It was discovered that AdvanceCOMP did not properly manage memory of function beuint32read under certain circumstances. If a user were tricked into opening a specially crafted binary file, a remote attacker could possibly use this issue to cause AdvanceCOMP to crash, resulting in a denial of...