936 matches found
CVE-2024-11139
CVE-2024-11139 affects Schneider Electric EcoStruxure Power Build Rapsody. A CWE-119-style memory-bounds vulnerability (buffer bounds) may allow local attackers to execute arbitrary code when opening a malicious project file. Reported impact is memory corruption with potential for local code exec...
Ivanti EPM 缓冲区错误漏洞
Ivanti EPM is a comprehensive endpoint management solution developed by Ivanti. Ivanti EPM suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to cause a denial of service...
Microsoft Windows Digital Media 缓冲区错误漏洞
Microsoft Windows Digital Media is a collection of technologies and features for playing, managing, sharing, delivering, and protecting digital media content from Microsoft Corporation USA. A buffer error vulnerability exists in Microsoft Windows Digital Media. An attacker could exploit the...
CVE-2024-7137
The L2CAP receive data buffer for L2CAP packets is restricted to packet sizes smaller than the maximum supported packet size. Receiving a packet that exceeds the restricted buffer length may cause a crash. A hard reset is required to recover the crashed device...
Autodesk Navisworks 缓冲区错误漏洞
Autodesk Navisworks is a 3D model review software for architecture, engineering and construction from Autodesk, Inc. in the United States. A buffer error vulnerability exists in Autodesk Navisworks version 2025, which stems from an out-of-bounds write vulnerability that can be triggered when a...
GStreamer 缓冲区错误漏洞
GStreamer is the GStreamer open source set of frameworks for processing streaming media. A buffer error vulnerability exists in GStreamer versions prior to 1.24.10, which stems from an out-of-bounds write vulnerability found in the converttos3341a function in isomp4/qtdemux.c. The vulnerability i...
GStreamer 缓冲区错误漏洞
GStreamer is an open source set of frameworks for processing streaming media from GStreamer. A buffer error vulnerability exists in GStreamer versions prior to 1.24.10, which stems from an out-of-bounds read vulnerability found in the qtdemuxparsecontainer function in qtdemux.c. The vulnerability...
GStreamer 缓冲区错误漏洞
GStreamer is an open source set of frameworks for processing streaming media from GStreamer. A buffer error vulnerability exists in GStreamer versions prior to 1.24.10, which stems from an out-of-bounds read found in the qtdemuxparsesvq3stsddata function in qtdemux.c. The vulnerability is caused ...
GStreamer 缓冲区错误漏洞
GStreamer is the GStreamer open source set of frameworks for processing streaming media. GStreamer suffers from a buffer error vulnerability that stems from an out-of-bounds write vulnerability found in the gstssaparseremoveoverridecodes function in the gstssaparse.c file...
GStreamer 缓冲区错误漏洞
GStreamer is a GStreamer open source set of frameworks for processing streaming media. GStreamer suffers from a buffer error vulnerability that stems from an out-of-bounds read vulnerability found in the parseds64 function in gstwavparse.c. The vulnerability is a result of an out-of-bounds read...
GStreamer 缓冲区错误漏洞
GStreamer is an open source set of frameworks for processing streaming media from GStreamer. GStreamer suffers from a buffer error vulnerability that stems from the detection of an out-of-bounds read vulnerability in the formatchannelmask function in gst-discoverer.c. The vulnerability is caused ...
Adobe Substance 3D Painter 缓冲区错误漏洞
Adobe Substance 3D Painter is a 3D texturing application from the American company Audobee Adobe. Adobe Substance 3D Painter suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute arbitrary code in the context of the current user...
Microsoft Windows Wireless Wide Area Network Service 缓冲区错误漏洞
Microsoft Windows Wireless Wide Area Network Service is a key component in Windows 10 and Windows 11 from Microsoft Corporation USA that facilitates wireless communication over cellular networks. A buffer error vulnerability exists in Microsoft Windows Wireless Wide Area Network Service. The...
Microsoft Windows Wireless Wide Area Network Service 缓冲区错误漏洞
Microsoft Windows Wireless Wide Area Network Service is a key component in Windows 10 and Windows 11 from Microsoft Corporation USA that facilitates wireless communication over cellular networks. A buffer error vulnerability exists in Microsoft Windows Wireless Wide Area Network Service. An...
Adobe InDesign 缓冲区错误漏洞
Adobe InDesign is a set of layout and editing applications from the American company Audobee Adobe. Adobe InDesign suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to cause a sensitive memory leak...
Microsoft Lightweight Directory Access Protocol 缓冲区错误漏洞
Microsoft Lightweight Directory Access Protocol LDAP is a directory services protocol from Microsoft Corporation USA that runs on a layer above the TCP/IP stack. A buffer error vulnerability exists in Microsoft Lightweight Directory Access Protocol. An attacker could exploit this vulnerability to...
Schneider Electric Modicon M340, MC80, and Momentum Unity M1E Improper Restriction of Operations Within the Bounds of a Memory Buffer (CVE-2024-8937)
Arbitrary code execution can potentially be achieved after a successful Man-In-The Middle attack followed by sending a crafted Modbus function call to tamper with memory area involved in the authentication process. This plugin only works with Tenable.ot. Please visit...
Fuji Electric Monitouch V-SFT 缓冲区错误漏洞
Fuji Electric Monitouch V-SFT is a configuration software for Human Machine Interfaces HMI from Fuji Electric. It supports a variety of features including customizable home screen, PDF document viewer, video player, alarm messages, 10 pop-up windows, and more. An out-of-bounds write code executio...
PDF-XChange Editor 缓冲区错误漏洞
PDF-XChange Editor is a PDF file viewing software from PDF-XChange, Inc. that runs on Microsoft Windows systems. PDF-XChange Editor suffers from a buffer error vulnerability that stems from the JB2 file parsing feature containing an out-of-bounds read issue. An attacker exploiting this...
Tungsten Automation Power PDF 缓冲区错误漏洞
Tungsten Automation Power PDF Kofax Power PDF is a powerful PDF processing software from Tungsten Automation. Tungsten Automation Power PDF suffers from a buffer error vulnerability that stems from the parsing of GIF files that contain an out-of-bounds read issue. An attacker exploiting this...