Apple macOS AMDRadeonX6000MTLDriver KTX Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the Metal framework is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the...

CVE-2024-7180

TOTOLINK A3600R is affected by a buffer overflow in the setPortForwardRules function (in /cgi-bin/cstecgi.cgi) caused by improper validation of the comment parameter. Affected version: 4.1.2cu.5182_B20201102. The issue can be exploited remotely, and public exploits have been disclosed. Multiple s...

RHEL 8 : squid:4 (RHSA-2023:7213)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7213 advisory. Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: Deni...

RHEL 8 : squid:4 (RHSA-2023:6804)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:6804 advisory. Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: Deni...

CVE-2022-28733

Integer underflow in grubnetrecvip4packets; A malicious crafted IP packet can lead to an integer underflow in grubnetrecvip4packets function on rsm-totallen value. Under certain circumstances the totallen value may end up wrapping around to a small integer number which will be used in memory...

CVE-2022-31784

A vulnerability in the management interface of MiVoice Business through 9.3 PR1 and MiVoice Business Express through 8.0 SP3 PR3 could allow an unauthenticated attacker that has network access to the management interface to conduct a buffer overflow attack due to insufficient validation of URL...

Huawei EulerOS: Security Advisory for aide (EulerOS-SA-2022-1642)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Buffer overflow

On Xilinx Zynq-7000 SoC devices, physical modification of an SD boot image allows for a buffer overflow attack in the ROM. Because the Zynq-7000's boot image header is unencrypted and unauthenticated before use, an attacker can modify the boot header stored on an SD card so that a secure image...

MGASA-2021-0220 Updated bind packages fix security vulnerabilities

A broken inbound incremental zone update IXFR can cause named to terminate unexpectedlyCVE-2021-25214. Mageia 7 version not affected. An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself CVE-2021-25215. This affects both...

Stack Overflow Vulnerability in Multiple TPLINK Routers

The TP-Link TL-WDR5620 is a smart router.The TP-Link TL-WDR5650 is a dual-band wireless router.The TP-LINK TL-WR842N is a wireless router.The TP-link TL-WDR7660, TL-WDR7620, TL-WDR7661, TL-WDR7650 and the TL-R470P-AC are all gigabit version routers.TP-link TL-WA933RE is a cellular wireless...

SUSE-SU-2021:14714-1 Security update for bind

This update for bind fixes the following issues: - CVE-2021-25214: Fixed a broken inbound incremental zone update IXFR which could have caused named to terminate unexpectedly bsc1185345. - CVE-2021-25215: Fixed an assertion check which could have failed while answering queries for DNAME records...

SUSE-SU-2021:1469-1 Security update for bind

This update for bind fixes the following issues: - CVE-2021-25214: Fixed a broken inbound incremental zone update IXFR which could have caused named to terminate unexpectedly bsc1185345. - CVE-2021-25215: Fixed an assertion check which could have failed while answering queries for DNAME records...

ISC BIND Buffer Overflow Vulnerability (CVE-2021-25216) - Windows

ISC BIND is prone to a buffer overflow vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE Security Update : bind (openSUSE-2021-375)

This update for bind fixes the following issues : - CVE-2020-8625: A vulnerability in BIND's GSSAPI security policy negotiation can be targeted by a buffer overflow attack bsc1182246 This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The...

CVE-2021-21154

Heap buffer overflow in Tab Strip in Google Chrome prior to 88.0.4324.182 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...

Arbitrary Code Execution

openjpeg is vulnerable to arbitrary code execution. A stack-based buffer overflow in the pgxtoimage function in bin/jp2/convert.c allows an attacker to execute arbitrary code on the system or crash the application...

Samsung Mobile Device Buffer Overflow Vulnerability (CNVD-2020-32861)

Android is a free and open source operating system from Google based on the Linux kernel without GNU components. A buffer overflow vulnerability exists in Samsung mobile devices, which can be exploited by an attacker to execute arbitrary code on the system...

MGASA-2020-0046 Updated ffmpeg packages fix security vulnerabilities

Updated ffmpeg packages fix security vulnerabilities: This update provides ffmpeg version 4.1.5, which fixes several bugs, and atleasst the follwing security vulnerabilities: In FFmpeg before 4.2, avcodecopen2 in libavcodec/utils.c allows a NULL pointer dereference and possibly unspecified other...

Denial Of Service (DoS) Through Heap Buffer Overflow

ImageMagick is vulnerable to denial of service DoS attacks through a heap buffer overflow. A malicious user can pass a sfw file to the application to cause a heap buffer overflow, crashing the application...

VX Search Enterprise 9.9.12 Buffer Overflow

!/usr/bin/python Exploit Title : VX Search Enterprise v9.9.12 - 'Import Command' Buffer Overflow Discovery by : Anurag Srivastava Email : [email protected] Website : www.pyramidcyber.com Discovery Date : 22/08/2017 Software Link :...