CVE-2023-42055

PDF-XChange Editor contains a vulnerability in U3D file parsing that can cause an out-of-bounds read, enabling arbitrary code execution in the process. The flaw stems from insufficient validation of user-supplied data during U3D parsing. Attacks require user interaction (visiting a malicious page...

The vulnerability of the RTSP server of D-Link’s DCS-8300LHV2 wireless camera software allows a intruder to execute arbitrary code.

The vulnerability of the RTSP server of D-Link’s DCS-8300LHV2 wireless camera software lies in the reading of data outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Rocky Linux 8 : php:7.3 (RLSA-2020:3662)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2020:3662 advisory. - Function iconvmimedecodeheaders in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6 may perform out-of-buffer read due to...

The vulnerability of the avi_parse_input_file function (media_tools/avilib.c:2083) in the multimedia platform GPAC, related to inaccessible read and reread operations on buffers, allows a hacker to cause a service failure.

The vulnerability of the aviparseinputfile function mediatools/avilib.c:2083 in the multimedia platform GPAC is related to buffer overflow attacks. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2023-40166

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer read overflow in FileManager::detectLanguageFromTextBegining . The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. ...

CVE-2023-40166 Notepad++ heap buffer read overflow in FileManager::detectLanguageFromTextBegining

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer read overflow in FileManager::detectLanguageFromTextBegining . The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. ...

CVE-2023-40166 Notepad++ heap buffer read overflow in FileManager::detectLanguageFromTextBegining

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer read overflow in FileManager::detectLanguageFromTextBegining . The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. ...

CVE-2023-40164 Notepad++ global buffer read overflow in nsCodingStateMachine::NextState

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to global buffer read overflow in nsCodingStateMachine::NextStater. The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. As of time...

CVE-2023-40036 Notepad++ global buffer read overflow in CharDistributionAnalysis::HandleOneChar

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to global buffer read overflow in CharDistributionAnalysis::HandleOneChar. The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. As ...

PT-2023-5409 · Siemens · Parasolid +1

Name of the Vulnerable Software and Affected Versions: Parasolid versions prior to V34.1.258 Parasolid versions prior to V35.0.254 Parasolid versions prior to V35.1.184 Teamcenter Visualization versions prior to V14.2.0.12 Teamcenter Visualization versions prior to V14.3.0.9 Teamcenter...

The vulnerability of Adobe InDesign’s computer design automation tool, related to reading data outside the buffer in memory, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to reading data outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the read_descriptors() function in the drivers/usb/core/sysfs.c file of the Linux kernel’s USB driver allows a attacker to cause a service failure.

The vulnerability of the readdescriptors function in the drivers/usb/core/sysfs.c file of the Linux kernel’s USB driver is related to reading a reserved buffer from outside the system. Exploiting this vulnerability could allow an attacker to cause a service failure...

Out-of-bounds

TP-Link TL-WR940N V2/V4/V6, TL-WR841N V8, TL-WR941ND V5, and TL-WR740N V1/V2 were discovered to contain a buffer read out-of-bounds via the component /userRpm/VirtualServerRpm. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted GET request...

CVE-2023-36356

TP-Link TL-WR940N V2/V4/V6, TL-WR841N V8, TL-WR941ND V5, and TL-WR740N V1/V2 were discovered to contain a buffer read out-of-bounds via the component /userRpm/VirtualServerRpm. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted GET request...

PT-2023-25288 · Ashlar Vellum · Ashlar-Vellum Cobalt

Name of the Vulnerable Software and Affected Versions: Ashlar-Vellum Cobalt affected versions not specified Description: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required, as the target must visit a...

Out-of-bounds

Contiki-NG is an open-source, cross-platform operating system for IoT devices. When reading the TCP MSS option value from an incoming packet, the Contiki-NG OS does not verify that certain buffer indices to read from are within the bounds of the IPv6 packet buffer, uipbuf. In particular, there is...

CVE-2023-2977

A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in pkcs15 cardoshaveverifyrcpackage. The attacker can supply a smart card package with malformed ASN1 context. The cardoshaveverifyrcpackage function scans the ASN1 buffer for 2 tags, where remaining lengt...

Samba SMB1 Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Samba. Authentication is required to exploit this vulnerability, and SMB1 must be enabled on the target. The specific flaw exists within the Samba service, which listens on TCP port 139 by...

CVE-2023-25668 TensorFlow vulnerable to heap out-of-buffer read in the QuantizeAndDequantize operation

TensorFlow is an open source platform for machine learning. Attackers using Tensorflow prior to 2.12.0 or 2.11.1 can access heap memory which is not in the control of user, leading to a crash or remote code execution. The fix will be included in TensorFlow version 2.12.0 and will also cherrypick...

PT-2023-5364 · Siemens · Tecnomatix Plant Simulation

Name of the Vulnerable Software and Affected Versions: Tecnomatix Plant Simulation versions prior to V2201.0006 Description: The issue is related to an out of bounds read past the end of an allocated structure while parsing specially crafted SPP files. This could allow an attacker to execute code...