SoLoud 缓冲区错误漏洞

SoLoud is a game audio engine developed by Jari Komppa personally. Versions of soloud 20200207 and earlier contained a buffer error vulnerability, which stemmed from memory corruption in the function located in the component WAV File Parser, specifically in the file...

lily 缓冲区错误漏洞

Lily is a programming language developed by FascinatedBox’s individual developers. Versions of Lily prior to 2.3 contained a buffer error vulnerability, which stemmed from an out-of-bounds read in the clearstorages function located in the file src/lilyemitter.c...

libvips 缓冲区错误漏洞

libvips is an open-source fast image processing library with low memory requirements. Version 8.19.0 of libvips contains a buffer error vulnerability. This vulnerability stems from incorrect handling of the parameter alphaband in the function vipsunpremultiplybuild found in the file...

FreeRDP 缓冲区错误漏洞

FreeRDP is an open-source RDP protocol implementation developed by the FreeRDP team. Versions prior to FreeRDP 2.11.8 and 3.23.0 contained a buffer error vulnerability. This vulnerability stemmed from out-of-bounds read operations in the RDP GFX channel, which could allow malicious RDP servers to...

Buffer Access with Incorrect Length Value

Overview Magick.NET-Q16-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

Mozilla Firefox和Mozilla Thunderbird 缓冲区错误漏洞

Mozilla Firefox and Mozilla Thunderbird are both products of the American Mozilla Foundation. Mozilla Firefox is an open-source web browser. Mozilla Thunderbird is an email client software that emerged independently from the Mozilla Application Suite. This software supports IMAP and POP email...

GIMP 缓冲区错误漏洞

GIMP is an open-source bitmap image editor developed by the GIMP team. GIMP has a buffer error vulnerability, which stems from the lack of validation of data provided to users during the parsing of XWD files. This vulnerability may lead to out-of-bounds writing and remote code execution...

openbabel 缓冲区错误漏洞

OpenBabel is an open-source chemical toolkit software developed by Open Babel. Versions of OpenBabel 3.1.1 and earlier contained a buffer error vulnerability, which stemmed from an out-of-bounds read in the function OBAtom::SetFormalCharge within the library file include/openbabel/atom.h...

CVE-2024-36311

A Time-of-check time-of-use TOCTOU race condition in the SMM communications buffer could allow a privileged attacker to bypass input validation and perform an out of bounds read or write, potentially resulting in loss of confidentiality, integrity, or availability...

CVE-2026-21316

Audition versions 25.3 and earlier are affected by an Access of Memory Location After End of Buffer vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to cause the application to crash or become unresponsive. Exploitation of this issue...

Siemens Simcenter Femap和Siemens Simcenter Nastran 缓冲区错误漏洞

Siemens Simcenter Femap and Siemens Simcenter Nastran are both products of German company Siemens. Siemens Simcenter Femap is a cutting-edge engineering simulation application used for creating, editing, and importing/reusing finite element analysis models for complex products or systems. Siemens...

MicroPython 缓冲区错误漏洞

MicroPython is a small open-source Python programming language interpreter developed by MicroPython. Versions of MicroPython 1.27.0 and earlier contained a buffer error vulnerability, which was caused by incorrect operations on the function mpimportall in the file py/runtime.c. This vulnerability...

Autodesk 3ds Max 缓冲区错误漏洞

Autodesk 3ds Max is a full-featured 3D computer graphics software developed by Autodesk, Inc. Autodesk 3ds Max has a buffer error vulnerability, which stems from memory corruption during the parsing of specially crafted RGB files. This vulnerability may allow for the execution of arbitrary code...

Espressif ESP-IDF 缓冲区错误漏洞

Espressif ESP-IDF is an IoT development framework developed by Espressif, a Chinese company. Versions 5.5.2, 5.4.3, 5.3.4, 5.2.6, and 5.1.6 of Espressif ESP-IDF contain buffer error vulnerabilities. These vulnerabilities stem from issues with out-of-bounds read operations during the BLE ATT Prepa...

Autodesk 3ds Max 缓冲区错误漏洞

Autodesk 3ds Max is a full-featured 3D computer graphics software developed by Autodesk, Inc. Autodesk 3ds Max has a buffer error vulnerability, which stems from memory corruption during the parsing of specially crafted RGB files. This vulnerability may allow for the execution of arbitrary code...

EUVD-2026-4718

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in CardboardPowered cardboard src/main/java/org/cardboardpowered/impl/world modules. This vulnerability is associated with program files WorldImpl.Java. This issue affects cardboard: before 1.21.4...

PT-2026-4861

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in anyrtcIO-Community anyRTC-RTMP-OpenSource third party/faad2-2.7/libfaad modules. This vulnerability is associated with program files bits.C, syntax.C. This issue affects anyRTC-RTMP-OpenSource: before 1.0...

FreeRDP 缓冲区错误漏洞

FreeRDP is an open source implementation of the Remote Desktop Protocol RDP from the FreeRDP team. A buffer error vulnerability exists in versions prior to FreeRDP 3.20.1, which stems from a heap out-of-bounds read in the smart card SetAttrib path that occurs when cbAttrLen does not match the...

Adobe Substance3D Designer 缓冲区错误漏洞

Adobe Substance3D Designer is a texture and material creation software from Audobee Adobe USA. A buffer error vulnerability exists in Adobe Substance3D Designer 15.0.3 and prior versions, which originates from an out-of-bounds read and could lead to memory exposure and information disclosure...

Adobe Substance3D Modeler 缓冲区错误漏洞

Adobe Substance 3D Modeler is a software focused on 3D sculpting that allows users to create 3D models in both desktop and VR environments using digital clay-like intuitive tools.... Adobe Substance 3D Modeler suffers from an out-of-bounds write vulnerability that can be exploited by an attacker ...