CVE-2022-26698

An out-of-bounds read issue was addressed with improved bounds checking. This issue is fixed in Security Update 2022-004 Catalina, macOS Monterey 12.4, macOS Big Sur 11.6.6. Processing a maliciously crafted AppleScript binary may result in unexpected application termination or disclosure of proce...

Input validation

An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in Security Update 2022-004 Catalina, macOS Monterey 12.4, macOS Big Sur 11.6.6. Processing a maliciously crafted AppleScript binary may result in unexpected application termination or disclosure of...

Information disclosure

An out-of-bounds read issue was addressed with improved bounds checking. This issue is fixed in Security Update 2022-004 Catalina, macOS Monterey 12.4, macOS Big Sur 11.6.6. Processing a maliciously crafted AppleScript binary may result in unexpected application termination or disclosure of proce...

CVE-2022-26698

An out-of-bounds read issue was addressed with improved bounds checking. This issue is fixed in Security Update 2022-004 Catalina, macOS Monterey 12.4, macOS Big Sur 11.6.6. Processing a maliciously crafted AppleScript binary may result in unexpected application termination or disclosure of proce...

CVE-2022-26698

CVE-2022-26698 is an out-of-bounds read in the processing of a maliciously crafted AppleScript binary. Root cause: insufficient bounds checking in the affected AppleScript handling. Affected platforms and fixes per documents: macOS Catalina via Security Update 2022-004; macOS Monterey 12.4; macOS...

CVE-2022-26697

CVE-2022-26697 describes an out-of-bounds read issue in macOS components where processing a maliciously crafted AppleScript binary could terminate the application or disclose process memory. The common public record confirms the root cause as an out-of-bounds read with memory disclosure implicati...

FindFunc - Advanced Filtering/Finding of Functions in IDA Pro

FindFunc is an IDA Pro plugin to find code functions that contain a certain assembly or byte pattern, reference a certain name or string, or conform to various other constraints. This is not a competitor to tools like Diaphora or BinNavi, but it is ideal to find a known function in a new binary f...

EulerOS 2.0 SP3 : hesiod (EulerOS-SA-2022-1729)

According to the versions of the hesiod package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The hesiodinit function in lib/hesiod.c in Hesiod 3.2.1 compares EUID with UID to determine whether to use configurations from environment...

EulerOS 2.0 SP3 : mercurial (EulerOS-SA-2022-1747)

According to the versions of the mercurial package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The validaterepo function in sshpeer in Mercurial before 3.2.4 allows remote attackers to execute arbitrary commands via a crafted repository...

CVE-2021-44974

radareorg radare2 version 5.5.2 is vulnerable to NULL Pointer Dereference via libr/bin/p/binsymbols.c binary symbol parser...

Null pointer dereference

radareorg radare2 version 5.5.2 is vulnerable to NULL Pointer Dereference via libr/bin/p/binsymbols.c binary symbol parser...

UBUNTU-CVE-2021-44974

radareorg radare2 version 5.5.2 is vulnerable to NULL Pointer Dereference via libr/bin/p/binsymbols.c binary symbol parser...

CVE-2021-44974

radareorg radare2 version 5.5.2 is vulnerable to NULL Pointer Dereference via libr/bin/p/binsymbols.c binary symbol parser...

radare2 代码问题漏洞

radare2 is a set of libraries and tools for working with binary files. radare2 version 5.5.2 suffers from a denial of service vulnerability that stems from a NULL pointer dereference in the libr/bin/p/binsymbols.c binary symbols parser. An attacker could exploit this vulnerability to cause a deni...

PT-2022-12275 · Radare2 +1 · Radare2 +1

Name of the Vulnerable Software and Affected Versions: radare2 version 5.5.2 Description: The issue is related to a NULL Pointer Dereference via the binary symbol parser in libr/bin/p/bin symbols.c. This affects the radare2 binary analysis tool. No information is provided about the estimated numb...

CVE-2022-1669

A buffer overflow vulnerability has been detected in the firewall function of the device management web portal. The device runs a CGI binary index.cgi to offer a management web application. Once authenticated with valid credentials in this web portal, a potential attacker could submit any "Addres...

Buffer overflow

A buffer overflow vulnerability has been detected in the firewall function of the device management web portal. The device runs a CGI binary index.cgi to offer a management web application. Once authenticated with valid credentials in this web portal, a potential attacker could submit any "Addres...

CVE-2022-1669

CVE-2022-1669 affects Circutor COMPACT DC-S BASIC (CIR_CDC_v1.2.17). A stack-based buffer overflow exists in the firewall function of the provisioning/management portal: an authenticated user can send a long Address value to a strcpy‑based copy without length checks, overflowing the process stack...

Scalyr Agent Missing SSL Certificate Validation

The Scalyr Agent before 2.1.10 has Missing SSL Certificate Validation because, in some circumstances, the openssl binary is called without the -verifyhostname option...

Potential Exposure to BPFDoor (Local Check - Linux)

Binary data bpfdoorlocaldetect.nbin...