Lucene search
K

71 matches found

BDU FSTEC
BDU FSTEC
added 2024/02/12 12:0 a.m.5 views

The vulnerability of the formTmultiAP function in the /bin/boa file of the Totolink X2000R router’s microprogramming system allows a hacker to execute arbitrary code.

The vulnerability of the formTmultiAP function in the /bin/boa file of the Totolink X2000R router microprogramming system is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS7.6AI score0.0132EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/11/11 12:0 a.m.8 views

The vulnerability of the readimg function in the OpenImageIO image processing library allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the readimg function in the OpenImageIO image processing library is related to the copying of buffers without checking the input data. Exploiting this vulnerability can allow attackers to access confidential data, compromise its integrity, and even cause service failures...

7.8CVSS7.4AI score0.00425EPSS
Exploits1References10Affected Software5
BDU FSTEC
BDU FSTEC
added 2023/10/06 12:0 a.m.6 views

The vulnerability in the web interface of ArubaOS systems allows a hacker to trigger a service failure.

The vulnerability in the web interface of ArubaOS relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service interruptions...

5.3CVSS7.2AI score0.00532EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/09/08 12:0 a.m.8 views

The vulnerability of the DDP microprogramming software-based wireless access points from D-Link, model DAP-2622, allows a intruder to execute any arbitrary code.

The vulnerability of the DDP microprogramming software used in D-Link DAP-2622 wireless access points lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

8.8CVSS7.9AI score0.00872EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/08/03 12:0 a.m.8 views

Mitsubishi Electric CNC Series Security Breach

Mitsubishi Electric CNC Series is a series of CNC control systems from Mitsubishi Electric Japan. A security vulnerability exists in Mitsubishi Electric CNC Series, which arises from a failure to check input size during buffer copying...

9.8CVSS6.9AI score0.0167EPSS
Exploits0References4
Rosalinux
Rosalinux
added 2023/04/25 11:49 a.m.56 views

Advisory ROSA-SA-2023-2159

Software: httpd 2.4.37 OS: ROSA Virtualization 2.1 packageevrstring: 2.4.37 CVE-ID: CVE-2006-20001 BDU-ID: 2023-01105 CVE-Crit: HIGH CVE-DESC: A vulnerability in the moddav module of the Apache HTTP Server web server is related to an operation exceeding buffer boundaries. Exploitation of the...

9.8CVSS8.9AI score0.90039EPSS
Exploits3
BDU FSTEC
BDU FSTEC
added 2023/04/07 12:0 a.m.6 views

The vulnerability of the imageinfo.hpp file in the imageinfo library allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the imageinfo.hpp file in the imageinfo library is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS5.9AI score0.00375EPSS
Exploits1References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/03/23 12:0 a.m.7 views

The vulnerability of the Emscripten compiler in the encoding and decoding library for HEIF and AVIF files, which allows a hacker to trigger a service failure.

The vulnerability of the Emscripten compiler in the library for encoding and decoding HEIF and AVIF files is related to the copying of buffers without checking the size of the input data during image processing using the strided function. Exploiting this vulnerability can allow an attacker to cau...

7.8CVSS7.3AI score0.00307EPSS
Exploits0References9Affected Software5
CNNVD
CNNVD
added 2023/02/12 12:0 a.m.6 views

Qualcomm 芯片缓冲区错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuitry mainly semiconductor devices, but also passive components, etc. and is often fabricated on the surface of semiconductor wafers. The Qualcomm chip suffers from a security vulnerability that stems from memory...

9.3CVSS7.7AI score0.00116EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/12/24 12:0 a.m.6 views

The vulnerability of Cisco Catalyst 9100 access point software, related to copying buffers without checking the size of input data, allows a intruder to trigger a service failure.

The vulnerability of Cisco Catalyst 9100 access point software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker operating remotely to cause service interruptions...

8.6CVSS6.5AI score0.00425EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2022/12/13 12:0 a.m.2 views

Qualcomm Camera Driver 安全漏洞

Qualcomm Camera Driver is a camera driver from Qualcomm Incorporated. A security vulnerability exists in the Qualcomm Camera Driver that originates from a camera memory corruption due to buffer copying without checking the input size and affects the following products and versions: AQT1000,...

7.8CVSS7.6AI score0.00123EPSS
Exploits0References2
Rosalinux
Rosalinux
added 2022/12/06 10:20 a.m.30 views

Advisory ROSA-SA-2022-2056

Software: kernel 3.10.0 OS: rosa-server79 packageevrstring: kernel-3.10.0-1160.83.1.el7 CVE-ID: CVE-2022-2078 BDU-ID: 2022-04090 CVE-Crit: Not Relevant CVE-DESC: A vulnerability in the nftsetdescconcatparse function of the Linux operating systems kernel is related to buffer copying without checki...

5.5CVSS7.2AI score0.01013EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2022/10/13 12:0 a.m.7 views

The vulnerability of Siemens’ programmable logic controllers’ microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to execute arbitrary code.

The vulnerability of Siemens’ programmable logic controllers’ microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.1AI score0.05184EPSS
Exploits0References4Affected Software9
Redos
Redos
added 2022/10/07 12:0 a.m.44 views

ROS-20221007-05

Firefox browser vulnerability is related to a bounds error in HTML content processing. Exploitation The vulnerability could allow a remote attacker to create a customized website, trick the victim into opening it, cause memory corruption, and execute arbitrary code on the target system. the victi...

8.8CVSS9AI score0.01342EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2022/04/11 12:0 a.m.66 views

The vulnerability of the JavaScript MuJS interpreter, related to copying buffers without checking the input data, allows a violator to trigger a service failure.

The vulnerability of the JavaScript MuJS interpreter is related to the copying of buffers without checking the input data. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

7.8CVSS7.2AI score0.01554EPSS
Exploits1References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/04/11 12:0 a.m.5 views

The vulnerability of the `icmp6_send_response_with_addrs_and_netif()` function in the implementation of the TCP/IP protocol lwIP allows a attacker to gain access to confidential data.

The vulnerability of the icmp6sendresponsewithaddrsandnetif function in the TCP/IP protocol implementation of the lwIP stack is related to the copying of buffers without checking the input data. Exploiting this vulnerability allows a remote attacker to gain access to confidential data through a...

7.8CVSS7.2AI score0.01366EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/04/11 12:0 a.m.5 views

The vulnerability of the put_font function in the genpict2e.c component of the Fig2dev file conversion utility, related to copying buffers without checking the input data, allows a malicious actor to cause service failures.

The vulnerability of the putfont function in the genpict2e.c component of the Fig2dev file conversion utility is related to the copying of buffers without checking the input data. Exploiting this vulnerability allows an attacker to cause service interruptions by converting xfig files into pict2e...

7.1CVSS5.8AI score0.00799EPSS
Exploits1References5Affected Software2
Prion
Prion
added 2022/03/10 5:43 p.m.13 views

Design/Logic Flaw

There is a vulnerability of copying input buffer without checking its size in the video framework. Successful exploitation of this vulnerability may affect availability...

7.8CVSS7.6AI score0.00708EPSS
Exploits0References1Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/11/25 12:0 a.m.14 views

The vulnerability of Cisco Small Business LLDP switches, related to copying buffers without checking input data, allows a perpetrator to execute arbitrary code.

The vulnerability of Cisco Small Business LLDP switches lies in the copying of buffers without checking the input data. Exploiting this vulnerability allows an attacker to execute arbitrary code...

4.3CVSS5.8AI score0.00398EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/07/08 12:0 a.m.3 views

The vulnerability of the CUPS printing system lies in the copying of buffers without checking the size of the input data, which allows an attacker to compromise the integrity of the data.

The vulnerability of the CUPS printing system lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a malicious actor to compromise the integrity of data...

4.3CVSS5.7AI score0.02006EPSS
Exploits0References10Affected Software3
Rows per page
Query Builder