QNAP Systems QTS和QNAP Systems QuTS hero 安全漏洞

QNAP Systems QTS and QNAP Systems QuTS hero are both products of China Weilian Technology QNAP Systems.QNAP Systems QTS is a starter operating system.QNAP Systems QuTS hero is an operating system. A security vulnerability exists in QNAP QTS prior to version 5.2.1.2930 build 20241025 and QuTS hero...

Kofax Power PDF 缓冲区错误漏洞

Kofax Power PDF is a professional PDF editing and management software from Kofax Corporation. Kofax Power PDF suffers from a buffer error vulnerability that stems from improper validation of user-supplied data, resulting in out-of-bounds reads during the parsing of JP2 files, potentially allowing...

IrfanView 缓冲区错误漏洞

IrfanView is an image viewer by the individual developer Irfan Skiljan. It supports image browsing, image editing, image format conversion and more. IrfanView suffers from a buffer error vulnerability that stems from the SID file parsing feature containing an out-of-bounds write issue. An attacke...

Tungsten Automation Power PDF 缓冲区错误漏洞

Tungsten Automation Power PDF Kofax Power PDF is a powerful PDF processing software from Tungsten Automation. Tungsten Automation Power PDF suffers from a buffer error vulnerability that stems from a PDF file parsing issue that includes an out-of-bounds write problem. An attacker could exploit th...

PDF-XChange Editor 缓冲区错误漏洞

PDF-XChange Editor is a PDF file viewing software from PDF-XChange, Inc. that runs on Microsoft Windows systems. PDF-XChange Editor suffers from a buffer error vulnerability that stems from the JB2 file parsing feature containing an out-of-bounds read issue. An attacker exploiting this...

PDF-XChange Editor 缓冲区错误漏洞

PDF-XChange Editor is a PDF file viewing software from PDF-XChange that runs on Microsoft Windows systems. PDF-XChange Editor suffers from a buffer error vulnerability that stems from improper validation of user-supplied data when parsing PDF files, resulting in out-of-bounds writes that could...

The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages lies in the fact that operations are performed outside of the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

Intel Graphics Drivers 缓冲区错误漏洞

Intel Graphics Drivers is an integrated graphics driver from Intel Corporation USA. Intel Graphics Drivers suffers from a buffer error vulnerability that originates from a memory out-of-bounds write. An attacker can exploit the vulnerability to elevate privileges...

Microsoft Windows USB Video Class driver 缓冲区错误漏洞

Microsoft Windows USB Video Class driver is a driver for webcams or digital camcorders from Microsoft Corporation USA. A buffer error vulnerability exists in Microsoft Windows USB Video Class driver. An attacker could exploit the vulnerability to elevate privileges. The following products and...

Microsoft Windows USB Video Class driver 缓冲区错误漏洞

Microsoft Windows USB Video Class driver is a driver for webcams or digital camcorders from Microsoft Corporation USA. A buffer error vulnerability exists in Microsoft Windows USB Video Class driver. An attacker could exploit the vulnerability to elevate privileges. The following products and...

OpenHarmony 缓冲区错误漏洞

OpenHarmony is a kind of Hongmeng operating system open source project of China OpenAtom OpenAtom Foundation. A buffer error vulnerability exists in OpenHarmony v4.1.0 and earlier versions, which originated from a vulnerability that allows a local attacker to disclose sensitive information by...

Autodesk AutoCAD 安全漏洞

Autodesk AutoCAD is a suite of professional 3D drawing software from Autodesk, Inc. Autodesk AutoCAD suffers from a buffer error vulnerability that stems from a maliciously constructed CATPART file parsed in ASMKERN230A.dll that can lead to out-of-bounds writes, which can be exploited to cause a...

NVIDIA GPU Display Driver 缓冲区错误漏洞

NVIDIA GPU Display Driver is a driver software from NVIDIA Corporation for interactive support of graphics card display modules in operating systems. The NVIDIA GPU Display Driver suffers from a buffer error vulnerability that originates from a vulnerability in the display driver's user mode laye...

Exploit for Use After Free in Linux Linux_Kernel

RU GenIoURingExploit is a PoC exploit targeting a specific...

Autodesk Navisworks 缓冲区错误漏洞

Autodesk Navisworks is 3D model review software for architecture, engineering, and construction from Autodesk, Inc. A buffer error vulnerability exists in Autodesk Navisworks version 2025, which stems from a maliciously crafted DWFX file that can be forced to read out-of-bounds and can be exploit...

Adobe After Effects 缓冲区错误漏洞

Adobe After Effects is a suite of visual effects and motion graphics production software from the American company Audobee Adobe. The software is mainly used for 2D and 3D compositing, animation and visual effects production. A buffer error vulnerability exists in Adobe After Effects versions...

Adobe Photoshop 缓冲区错误漏洞

Adobe Photoshop is a suite of image processing software from the American company Audobee Adobe. The software is primarily used for processing images. A buffer error vulnerability exists in Adobe Photoshop versions 24.x through 24.7.4 and 25.x through versions prior to 25.11, which stems from bei...

ESP-NOW 缓冲区错误漏洞

ESP-NOW is a Wi-Fi communication protocol open-sourced by Espressif Systems. A buffer error vulnerability exists in ESP-NOW versions 2.5.1 and earlier, which stems from a failure to check the addrsnum field when implementing ESP-NOW group type messages, which could lead to memory corruption relat...

Microsoft Windows Remote Access Connection Manager 缓冲区错误漏洞

Microsoft Windows Remote Access Connection Manager is a Windows service from Microsoft that manages virtual private network VPN connections from your computer to the Internet.If this service is disabled, the VPN client application will If you disable this service, VPN client applications will not...

CODESYS OSCAT Basic Library 缓冲区错误漏洞

CODESYS OSCAT Basic Library is an open source library from CODESYS Corporation, known as the Open Source Community for Automation Technology. A buffer error vulnerability exists in CODESYS OSCAT Basic Library versions prior to 3.3.5, which stems from the presence of an out-of-bounds read...