CVE-2021-40741

CVE-2021-40741 affects Adobe Audition 14.4 and earlier. The issue is a memory/buffer access vulnerability (memory corruption/out-of-bounds) that occurs when parsing a specially crafted file, enabling a denial-of-service in the context of the current user. Exploitation requires user interaction (v...

CVE-2021-40767 Adobe Character Animator Memory Corruption could lead to Application denial-of-service

Adobe Character Animator version 4.4 and earlier is affected by an Access of Memory Location After End of Buffer vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the...

Webroot Secure Anywhere 缓冲区错误漏洞

Webroot Secure Anywhere is a comprehensive antivirus program from Webroot USA. Webroot Secure Anywhere 21.4 suffers from a buffer error vulnerability that stems from a specially crafted executable that could lead to a denial of service. An attacker can issue an ioctl to trigger this vulnerability...

Apple macOS Big Sur 缓冲区错误漏洞

Apple macOS Big Sur is a mobile application app from Apple USA. A buffer error vulnerability exists in Apple macOS Big Sur prior to 11.6.5, which stems from the fact that processing a maliciously crafted AppleScript binary may result in an unexpected application termination or process memory...

Apple GarageBand和Apple macOS Monterey 缓冲区错误漏洞

Apple GarageBand and Apple macOS Monterey are both products of Apple Inc.Apple GarageBand is a software application. A fully equipped music creation studio-with a complete sound library that includes presets for instruments, guitars, and voices, as well as an amazing selection of session drummers...

Apple macOS Big Sur 缓冲区错误漏洞

Apple macOS Big Sur is a mobile application app from Apple USA. Apple macOS Big Sur before 11.6.5 suffers from a buffer error vulnerability that could allow an application to elevate privileges...

Apple macOS Monterey 缓冲区错误漏洞

Apple macOS Monterey is the 18th major release of Apple's macOS for the Macintosh desktop operating system. A buffer error vulnerability exists in Apple macOS Monterey versions prior to 12.3, which originates from a boundary error in the system's SMB daemon when handling untrusted input. A remote...

Yandex ClickHouse 缓冲区错误漏洞

Yandex ClickHouse is a set of open source columnar databases for online analytical processing from the Russian company Yandex. Yandex ClickHouse suffers from a buffer error vulnerability that stems from a heap out-of-bounds read in Clickhouse's LZ4 compression codec when parsing a malicious query...

abcm2ps 缓冲区错误漏洞

abcm2ps is a command line program by Sammy S. Individual developer in the United States. It can convert music tunes from ABC music notation to PostScript or SVG. A security vulnerability exists in abcm2ps v8.14.11, which originates from an out-of-bounds read included in the function calculatebeam...

Microsoft HEVC Video Extensions 缓冲区错误漏洞

Microsoft HEVC Video Extensions is a video extension application from Microsoft Corporation USA. Microsoft HEVC Video Extensions is a remote code execution vulnerability that can be exploited by attackers to execute arbitrary code on a system...

Microsoft HEVC Video Extensions 缓冲区错误漏洞

Microsoft HEVC Video Extensions is a video extension application from Microsoft Corporation USA. Microsoft HEVC Video Extensions is a remote code execution vulnerability that can be exploited by attackers to execute arbitrary code on a system...

Microsoft HEVC Video Extensions 缓冲区错误漏洞

Microsoft HEVC Video Extensions is a video extension application from Microsoft Corporation USA. Microsoft HEVC Video Extensions is a remote code execution vulnerability that can be exploited by attackers to execute arbitrary code on a system...

Siemens Simcenter STAR-CCM+ Viewer

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Siemens Equipment: Simcenter STAR-CCM+ Viewer Vulnerability: Improper Restriction of Operations within the Bounds of a Memory Buffer 2. RISK EVALUATION Successful exploitation of this vulnerability could cause a crash,...

Autodesk AutoCAD 缓冲区错误漏洞

Autodesk AutoCAD is a suite of professional 3D drawing software from Autodesk, Inc. A buffer error vulnerability exists in Autodesk AutoCAD that stems from a lack of proper validation of the length of user-supplied data before copying it to a stack-based buffer...

FRRouting FRR 缓冲区错误漏洞

FRRouting FRR is a suite of software that implements and manages various IPV4 and IPV6 routing protocols. A security vulnerability exists in FRRouting FRR prior to 8.1.0 that stems from incorrectly checking the input packet length in isisd/isistlvs.c. The vulnerability is caused by the following...

Daniel Kamil Kozar tsMuxer 缓冲区错误漏洞

Daniel Kamil Kozar tsMuxer is an open source application by Daniel Kamil Kozar. Transport stream mixer for remixing/mixing elementary streams. A buffer error vulnerability exists in the tsMuxer git-c6a0277 version, which stems from a segmentation error in DTSStreamReader::findFrame in the...

Slic3r 缓冲区错误漏洞

Slic3r is a Slic3r open source 3-D printing toolkit used to convert various 3-D print model file types to machine code for a specific printer A buffer error vulnerability exists in Slic3r libslic3r, which stems from an out-of-bounds read vulnerability in the GCode::extrude function in Slic3r...

Accusoft ImageGear 缓冲区错误漏洞

Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, USA. A security vulnerability exists in Accusoft ImageGear, which can be exploited by an attacker to send a specially crafted file and execute arbitrary code on the target system...

Siemens Simcenter Femap 缓冲区错误漏洞

Simcenter Femap is an advanced simulation application for creating, editing, and inspecting finite element models of complex products or systems.Siemens Simcenter Femap out-of-bounds write vulnerability can be exploited by attackers to execute code in the context of the current process...

TP-LINK AC1750 缓冲区错误漏洞

The TP-LINK AC1750 is a wireless router from China P&L TP-LINK. A buffer error vulnerability exists in the TP-Link AC1750 version 1.1.4 Build 20211022 rel.59103, which stems from a lack of proper validation of user-supplied data, which could result in reading beyond the end of an allocated buffer...