MediaTek 多款产品缓冲区错误漏洞

MediaTek Mt Series is a series of smartphone chips from China's MediaTek. A security vulnerability exists in several MediaTek products, which stems from a lack of boundary checking in the preloader usb, which may result in out-of-bounds writes. The following products and versions are affected:...

Tenda AX12 缓冲区错误漏洞

Tenda Ax12 is a dual-band Gigabit Wifi 6 wireless router from Tenda China.The Tenda AX12 has a security vulnerability that can be exploited by attackers to cause a denial of service DoS via list parameters...

abcm2ps 缓冲区错误漏洞

abcm2ps is a command-line program that converts music tunes from ABC music notation to PostScript or SVG. It can convert music tunes from ABC music notation to PostScript or SVG. abcm2ps v8.14.11 contains a security vulnerability that can be exploited by remote attackers to cause a denial of...

Ming 缓冲区错误漏洞

Ming is a Flash SWF output library written in C language. A security vulnerability exists in Ming that can be exploited by an attacker to cause a direct segmentation error and result in a denial of service...

Microsoft Remote Desktop Protocol Client 缓冲区错误漏洞

Microsoft Remote Desktop Protocol Client is a client software application for connecting to remote desktops from Microsoft Corporation USA. A buffer error vulnerability exists in the Microsoft Remote Desktop Protocol Client. The following products and editions are affected: Windows 10 Version 21H...

Microsoft Windows Media Foundation 缓冲区错误漏洞

Microsoft Media Foundation, a next-generation multimedia platform for Windows, is vulnerable to information disclosure. An attacker could use this vulnerability to obtain sensitive information...

Mozilla Firefox 缓冲区错误漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation. Mozilla Firefox suffers from a buffer error vulnerability that exists due to a boundary error when processing HTML content. A remote attacker could create a specially crafted website, trick a victim into opening it, trigge...

Microsoft Windows Media Foundation 缓冲区错误漏洞

Microsoft Windows Media Foundation is a multimedia development library from Microsoft that aims to provide a unified multimedia solution for the Windows platform, allowing developers to play video and sound files, encode audio and video, or transcode multimedia files. Developers can use Media...

Qualcomm 芯片 缓冲区错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc., and are from time to time fabricated on the surface of semiconductor wafers. A buffer error vulnerability exists in several Qualcomm products,...

Google Android 缓冲区错误漏洞

Google Android is a Linux-based open-source operating system from the U.S. company Google. Google Android is vulnerable to permission and access control issues, which can be exploited by attackers to cause local privilege escalation...

Google Android 缓冲区错误漏洞

Google Android is a Linux-based open source operating system from Google, Inc. An elevation-of-privilege vulnerability exists in Google Android due to a code logic error in kbasejduserbufpinpages in malikbasemem.c. error. An attacker could exploit this vulnerability to elevate local privileges...

Autodesk AutoCAD 缓冲区错误漏洞

Autodesk AutoCAD is a suite of professional 3D drawing software from Autodesk, Inc. A buffer error vulnerability exists in Autodesk AutoCAD because the product does not fully check the security of a DWF file during parsing. The vulnerability can be exploited to cause memory corruption and code...

OMRON Corporation 缓冲区错误漏洞

OMRON Corporation is an industrial control product. A security vulnerability exists in OMRON Corporation, no information about this vulnerability is available at this time, please stay tuned to CNNVD or vendor announcements...

Omron CX-Programmer缓冲区错误漏洞

Omron CX-Programmer is a PLC Programmable Logic Controller programming software from Omron, Japan. A security vulnerability exists in CX-Programmer v9.76.1 and earlier versions, which can be exploited by an attacker to trick a user into opening a carefully crafted CXP file to cause information...

Gerbv 缓冲区错误漏洞

Gerbv is a Gerber file Rs-274X only viewer. It is used to view Rs-274X Gerber files, Excellon borehole files, and Pick-N-Place files. A buffer error vulnerability exists in Gerbv that stems from an out-of-bounds read vulnerability in the bore macro profile raw function. A carefully crafted Gerber...

ok-file-formats 缓冲区错误漏洞

ok-file-formats is an open source decoder for PNG, JPEG, WAV and several other file formats. A buffer error vulnerability exists in ok-file-formats version 97f78ca, which stems from a heap buffer overflow in okjpgconvertYCbCrtoRGB when using functions from the ok-file-formats project in "ok...

ok-file-formats 缓冲区错误漏洞

ok-file-formats is an open source decoder for PNG, JPEG, WAV and several other file formats. A buffer error vulnerability exists in version 203defd of ok-file-formats, which stems from a heap buffer overflow in the function okpngtransform in "/ok png.c:712" when using functions from the...

WatchGuard Firebox 缓冲区错误漏洞

Watchguard WatchGuard Firebox is a Watchguard company that provides a comprehensive range of network security services, from traditional IPS and GAV, to website/application control and malicious software prevention. A buffer error vulnerability exists in several WatchGuard products, which stems...

FATEK Automation FvDesigner 缓冲区错误漏洞

A buffer error vulnerability in FATEK Automation FvDesigner, a human-computer interaction device from FATEK, stems from the fact that when handling project files, the affected product is vulnerable to out-of-bounds reads, which can be exploited to create a project file that allows arbitrary code...

mruby 缓冲区错误漏洞

mruby is a lightweight implementation of the Ruby language. A security vulnerability exists in mruby that stems from reading pre-3.2 mruby in the GitHub repository...