Buffer overflow

A memory buffer error vulnerability exists in a component interface of Huawei Smartphone. Local attackers may exploit this vulnerability by carefully constructing attack scenarios to cause out-of-bounds read...

CVE-2020-9146

CVE-2020-9146 affects Huawei Smartphone via a memory buffer error in a component interface. The vulnerability allows local attackers to cause memory leakage and potential DoS by crafting specific attack scenarios. Affected details and exact vulnerable components/versions are not provided in the c...

CVE-2020-9147

A memory buffer error vulnerability exists in a component interface of Huawei Smartphone. Local attackers may exploit this vulnerability by carefully constructing attack scenarios to cause out-of-bounds read...

CVE-2020-9147

CVE-2020-9147 affects Huawei Emui Huawei Smartphone: a memory buffer error in a component interface can lead to an out-of-bounds read by a local attacker. The documented impact is partial confidentiality, integrity, and availability, with local access and no user interaction required per the CVSS...

Rust 缓冲区错误漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in Rust that stems from the loss of uninitialized memory that sometimes occurs. No details of the vulnerability are provided at this time...

SUSE ovmf 缓冲区错误漏洞

SUSE ovmf is a firmware from SUSE Germany. It is used to support virtual machines for UEFI. A buffer error vulnerability exists in SUSE ovmf that stems from heap corruption...

DaviewIndy 缓冲区错误漏洞

DaviewIndy is a document viewing application. The program supports the viewing of documents and images in multiple formats. A security vulnerability exists in DaviewIndy, which can be exploited by an attacker to leverage this and arbitrary code execution...

Cisco IOS XE Software 缓冲区错误漏洞

Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. An arbitrary code execution vulnerability exists in the Simple Virtual Switching System VSS feature of Cisco IOS XE. The vulnerability stems from incorrect boundary checking of...

libass 缓冲区错误漏洞

libass is an ASS/SSA format based subtitle renderer by an individual developer. A buffer error vulnerability exists in libass before 0.14.0 which allows remote attackers to cause a denial of service or remote code execution via a crafted file...

NETGEAR 多款产品缓冲区错误漏洞

Netgear NETGEAR is a router from the American company Netgear. A hardware device that connects two or more networks and acts as a gateway between networks. A buffer error vulnerability exists in several NETGEAR products. An authenticated attacker could exploit the vulnerability to cause a...

Mozilla Firefox 缓冲区错误漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. Mozilla Firefox suffers from a security vulnerability, and no details of the vulnerability are provided at this time...

Mozilla Firefox 缓冲区错误漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. Mozilla Firefox suffers from a security vulnerability, and no details of the vulnerability are provided at this time...

Foxit PhantomPDF 缓冲区错误漏洞

Foxit PhantomPDF is China's Foxit Foxit company a PDF document reader. Foxit PhantomPDF has a remote code execution vulnerability that can be exploited by an attacker to execute code in the context of the current process...

Linux kernel 缓冲区错误漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. The Linux kernel suffers from a security vulnerability that stems from a memory access flaw. The vulnerability can be exploited by an attacker to gain access to out-of-bounds...

Linux kernel 缓冲区错误漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel. An attacker could exploit this vulnerability in the host operating system to cause a denial of service...

Adobe Animate 缓冲区错误漏洞

Adobe Animate is a set of Flash animation software from the American company Audobee Adobe. A memory corruption vulnerability exists in Adobe Animate 21.0.3 and earlier versions, which can be exploited by an unauthenticated attacker to execute arbitrary code via a malicious file...

Red Hat Package Manager 缓冲区错误漏洞

Red Hat Package Manager is a packaging and installation tool for Internet downloadable packages from Red Hat USA. It is included in some Linux distributions. It generates files with the .RPM extension. Similar to Dpkg. Red Hat Package Manager suffers from a buffer error vulnerability that allows ...

Facebook HHVM 缓冲区错误漏洞

Facebook HHVM a.k.a. HipHop Virtual Machine is a virtual machine from Facebook Inc. that significantly improves the performance of loading dynamic pages in PHP. A vulnerability exists in HHVM. The following products and versions are affected: 4.33.0 and 4.56.0, 4.57.0, 4.58.0, 4.58.1, 4.59.0,...

Microsoft Windows 缓冲区错误漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A buffer error vulnerability exists in Windows Graphics Component. The following products and editions are affected: Windows 10 Version 1909 for ARM64-based Systems,Windows Server, versio...

LibTIFF 缓冲区错误漏洞

LibTIFF is a library for reading and writing TIFF Tagged Image File Format files. The library contains some command line tools for working with TIFF files. LibTIFF suffers from a buffer error vulnerability, which stems from a memory malloc error in tifpixarlog.c. Carefully crafted TIFF documents...