Siemens SCALANCE X-200RNA Switch Devices Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2016-2176)

The X509NAMEoneline function in crypto/x509/x509obj.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to obtain sensitive information from process stack memory or cause a denial of service buffer over-read via crafted EBCDIC ASN.1 data. This plugin only works with...

Siemens SCALANCE X-200RNA Switch Devices Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2015-0287)

The ASN1itemexd2i function in crypto/asn1/tasndec.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not reinitialize CHOICE and ADB data structures, which might allow attackers to cause a denial of service invalid write operation and memory...

PT-2025-29158 · Honeywell · Cn100 +10

Name of the Vulnerable Software and Affected Versions: Honeywell Experion PKS versions 520.1 through 520.2 TCU9 Honeywell Experion PKS versions 530 through 530 TCU3 Honeywell OneWireless WDM versions 322.1 through 322.4 Honeywell OneWireless WDM versions 330.1 through 330.3 Description: The...

Siemens Teamcenter Visualization和Siemens Tecnomatix Plant Simulation 缓冲区错误漏洞

Siemens Teamcenter Visualization and Siemens Tecnomatix Plant Simulation are products of Siemens, Germany. Siemens Teamcenter Visualization is a software that provides teamwork capabilities for designing 2D and 3D scenarios. Siemens Teamcenter Visualization is a software that provides teamwork...

Ashlar-Vellum Cobalt 缓冲区错误漏洞

Ashlar-Vellum Cobalt is a parameter-based computer-aided design and 3D modeling program from Ashlar-Vellum. A buffer error vulnerability exists in Ashlar-Vellum Cobalt that stems from an out-of-bounds read in VS file parsing, which could lead to a remote attacker executing arbitrary code...

Siemens Teamcenter Visualization和Siemens Tecnomatix Plant Simulation 缓冲区错误漏洞

Siemens Teamcenter Visualization and Siemens Tecnomatix Plant Simulation are products of Siemens, Germany. Siemens Teamcenter Visualization is a software that provides teamwork capabilities for designing 2D and 3D scenarios. Siemens Teamcenter Visualization is a software that provides teamwork...

PyTorch 缓冲区错误漏洞

PyTorch is a Python package open-sourced by PyTorch. A security vulnerability exists in PyTorch version 2.6.0+cu124, which stems from the torch.ops.profiler.callendcallbacksonjitfut function that could lead to memory corruption...

Google Pixel 缓冲区错误漏洞

Google Pixel is a smartphone from the American company Google Google. Google Pixel suffers from a logic error vulnerability that originates from a code logic error in ppcfw.c's ppcfwdenysecdramaccess, which can be exploited by an attacker to cause an arbitrary read from the TEE memory without...

QNAP Systems QTS和QNAP Systems QuTS hero 缓冲区错误漏洞

QNAP Systems QTS and QNAP Systems QuTS hero are both products of China Weilian Technology QNAP Systems, Inc.QNAP Systems QTS is an entry operating system.QNAP Systems QuTS hero is an operating system. A buffer error vulnerability exists in QNAP Systems QTS and QNAP Systems QuTS hero that originat...

OpenHarmony 缓冲区错误漏洞

OpenHarmony is a kind of Hongmeng operating system open source project of China OpenAtom OpenAtom Foundation. A buffer error vulnerability exists in OpenHarmony 5.0.2 and earlier versions, which stems from an out-of-bounds read and is vulnerable to denial-of-service attacks...

The vulnerability of the library for working with the DICOM format in DCMT, related to the occurrence of operations outside the buffer in memory, allows a malicious actor to trigger a service failure.

The vulnerability of the library for working with the DICOM format in DCMT is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures...

libwebsockets 缓冲区错误漏洞

Libwebsockets is a canonical libwebsockets networking library open-sourced by lws-team. A security vulnerability exists in versions of libwebsockets prior to 4.3.4, which stems from improper pointer manipulation and can lead to out-of-bounds memory accesses...

CVE-2025-21777 ring-buffer: Validate the persistent meta data subbuf array

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Validate the persistent meta data subbuf array The meta data for a mapped ring buffer contains an array of indexes of all the subbuffers. The first entry is the reader page, and the rest of the entries lay out the...

The vulnerability of UEFI microprogramming systems of Intel processors allows a hacker to gain unauthorized access to protected information.

The vulnerability of Intel UEFI microprogramming systems lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

NVIDIA CUDA toolkit 缓冲区错误漏洞

The NVIDIA CUDA toolkit is a toolkit from NVIDIA, Inc. It provides a development environment for creating high-performance GPU-accelerated applications. A buffer error vulnerability exists in NVIDIA CUDA toolkit, which stems from an out-of-bounds read in the cuobjdump binary, which could lead to ...

NVIDIA CUDA toolkit 缓冲区错误漏洞

The NVIDIA CUDA toolkit is a toolkit from NVIDIA, Inc. It provides a development environment for creating high-performance GPU-accelerated applications. A buffer error vulnerability exists in NVIDIA CUDA toolkit, which stems from an out-of-bounds read in the cuobjdump binary, which could lead to ...

Siemens SIMATIC Devices Linux Kernel Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2022-3649)

A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the function nilfsnewinode of the file fs/nilfs2/inode.c of the component BPF. The manipulation leads to use after free. It is possible to launch the attack remotely. It is recommended to apply a patch t...

Siemens SIMATIC Devices Linux Kernel Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2022-3564)

A vulnerability classified as critical was found in Linux Kernel. Affected by this vulnerability is the function l2capreassemblesdu of the file net/bluetooth/l2capcore.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The...

Siemens SCALANCE W700 Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2024-33016)

memory corruption when an invalid firehose patch command is invoked. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid502913; scriptversion"1.3";...

GRUB 缓冲区错误漏洞

GNU GRUB is a Linux system boot program from the GNU community. GRUB suffers from a buffer error vulnerability that stems from an integer overflow not checked when reading .mo files, which can lead to out-of-bounds reads and writes and bypass secure boot...