Apache HTTP Server 安全漏洞

Apache HTTP Server is an open-source web server developed by the Apache Foundation in the United States. This server is known for its speed, reliability, and ability to be expanded through simple APIs. Apache HTTP Server versions 2.4.66 and earlier contain security vulnerabilities, which stem fro...

Postfix 安全漏洞

Postfix is an open-source mail transfer agent software developed by Postfix. Vulnerabilities existed in versions prior to Postfix 3.8.16, 3.9.10, and 3.10.9. These vulnerabilities stemmed from the lack of text after the third digit in enhanced status codes, which could lead to excessive buffer...

GIMP 安全漏洞

GIMP is an open-source bitmap image editor developed by the GIMP team. GIMP has a security vulnerability, which stems from excessive heap buffer reading in the icnsslurp function. This vulnerability may cause the application to crash or lead to information leaks when processing specially crafted...

RTI Connext Professional 安全漏洞

RTI Connext Professional is a connectivity platform developed by RTI Corporation in the United States, designed to meet the demanding requirements of Industrial Internet of Things IIoT. There is a security vulnerability in RTI Connext Professional, which stems from excessive buffer reading. The...

OCaml Security Advisory Database 安全漏洞

The OCaml Security Advisory Database is a security database developed under the open-source OCaml language. Versions prior to 4.14.3 and 5.x versions before 5.4.1 of the OCaml Security Advisory Database contain security vulnerabilities. These vulnerabilities stem from excessive buffer reading...

ROS-20260203-73-0007

A vulnerability in the trace.c component of the Linux operating system kernel is related to reading outside the allowed data buffer boundaries. Exploitation of the vulnerability may allow an attacker to affect data integrity...

CVE-2019-2337

While Skipping unknown IES, EMM is reading the buffer even if the no of bytes to read are more than message length which may cause device to shutdown in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053,...

Linux Distros Unpatched Vulnerability : CVE-2023-53668

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ring-buffer: Fix deadloop issue on reading tracepipe Soft lockup occurs when reading file 'tracepipe': watchdog: BUG: soft lockup - CPU6 stuck for 22s! cat:448...

EUVD-2019-11979

Malware in sbrugna...

EUVD-2024-15932

Malicious code in bioql PyPI...

EUVD-2025-5782

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2017-14603

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Asterisk 11.x before 11.25.3, 13.x before 13.17.2, and 14.x before 14.6.2 and Certified Asterisk 11.x before 11.6-cert18 and 13.x before 13.13-cert6,...

The vulnerability of the gf_ac4parser_bs function in the MP4Box multimedia platform of GPAC allows a hacker to cause a service failure or disclose protected information.

The vulnerability of the gfac4parserbs function in the MP4Box utility of the GPAC multimedia platform is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause system failures or disclose protected information...

The vulnerability of the parse_module() function in the bfd/vms-alpha.c component of the GNU Binutils development environment allows a attacker to access confidential data and also trigger a service failure.

The vulnerability of the parsemodule function in the bfd/vms-alpha.c component of the GNU Binutils development environment is related to reading data from beyond the allowed buffer limits. Exploiting this vulnerability could allow an attacker to access confidential data and also cause service...

CVE-2024-53029

Memory corruption while reading a value from a buffer controlled by the Guest Virtual Machine...

CVE-2024-53031

CVE-2024-53031 affects Qualcomm chipsets; memory corruption occurs when reading a type value from a buffer controlled by the Guest Virtual Machine. Root cause is described as improper input handling/validation in several sources. Impact is high (confidentiality, integrity, and availability). Loca...

Qualcomm Chipsets 输入验证错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. An input validation error vulnerability exists in Qualcomm Chipsets that originates from a memory corruption when reading values from a buffer controlled by Guest Virtual Machine...

CVE-2023-45663

stbimage is a single file MIT licensed library for processing images. The stbigetn function reads a specified number of bytes from context typically a file into the specified buffer. In case the file stream points to the end, it returns zero. There are two places where its return value is not...

The vulnerability of Microsoft Office and Microsoft 365 Apps packages, related to reading data beyond the buffer in memory, allows attackers to exploit the protected information.

The vulnerability of Microsoft Office and Microsoft 365 Apps packages is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information using a specially crafted file...

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in its ability to read data beyond the buffer in memory, allowing attackers to gain unauthorized access to protected information.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to reading beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...