CryptoLib 缓冲区错误漏洞

CryptoLib is a NASA open source application. It is used to provide a software-only solution using the CCSDS space data link security protocol. A buffer error vulnerability exists in CryptoLib versions prior to 1.4.3 that stems from an out-of-bounds heap read in the cryptographyaeadencrypt functio...

Apache NimBLE 缓冲区错误漏洞

Apache NimBLE is an open source Bluetooth 5.4 stack host and controller from the Apache Foundation, USA, that completely replaces the proprietary SoftDevice on Nordic chipsets.It is part of the Apache Mynewt project. A buffer error vulnerability exists in Apache NimBLE 1.8 and earlier versions,...

CVE-2021-22350

There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause the device to crash and restart...

CVE-2021-22335

There is a Memory Buffer Improper Operation Limit vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause exceptions in image processing...

CVE-2021-22353

There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause the kernel to restart...

CVE-2019-2245

Possible integer underflow can happen when calculating length of elementary stream map from invalid packet length which is later used to read from input buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT,...

CVE-2021-27429

Texas Instruments TI-RTOS returns a valid pointer to a small buffer on extremely large values. This can trigger an integer overflow vulnerability in 'HeapTrackalloc' and result in code execution...

llama.cpp 缓冲区错误漏洞

llama.cpp is a multimodal model by the individual developer Georgi Gerganov. A buffer error vulnerability exists in llama.cpp 55d4206c8 and earlier versions, which stems from an unvalidated non-negative value of the ndiscard parameter, which can lead to out-of-bounds memory writes and remote code...

CVE-2017-6363

In the GD Graphics Library aka LibGD through 2.2.5, there is a heap-based buffer over-read in tiffWriter in gdtiff.c. NOTE: the vendor says "In my opinion this issue should not have a CVE, since the GD and GD2 formats are documented to be 'obsolete, and should only be used for development and...

PT-2026-2046

Name of the Vulnerable Software and Affected Versions Cisco Snort affected versions not specified Description A flaw exists in the processing of DCE/RPC requests that may allow a remote, unauthenticated attacker to cause the Snort 3 Detection Engine to leak sensitive information or restart, leadi...

QNAP Systems QTS和QNAP Systems QuTS hero 缓冲区错误漏洞

QNAP Systems QTS and QNAP Systems QuTS hero are both a software with data storage and management capabilities from QNAP Systems, Inc. of Taiwan, China. A buffer error vulnerability exists in QNAP Systems QTS and QNAP Systems QuTS hero that originates from an out-of-bounds read and could result in...

Espressif IoT Development Framework 缓冲区错误漏洞

Espressif IoT Development Framework is an open source IoT development framework from Espressif Systems. A buffer error vulnerability exists in the Espressif IoT Development Framework versions 5.5.1, 5.4.3, 5.3.4, 5.2.6, 5.1.6, and prior versions, which originates in the Bluetooth host stack in th...

Soda PDF Desktop 缓冲区错误漏洞

Soda PDF Desktop is a professional PDF processing software that integrates reading, editing, creating, converting and managing PDF documents. Soda PDF Desktop has an out-of-bounds read vulnerability that stems from a lack of validation of user-supplied data when parsing PDF files, which can be...

Soda PDF Desktop 缓冲区错误漏洞

Soda PDF Desktop is a full-featured PDF editing software from Soda Canada. A buffer error vulnerability exists in Soda PDF Desktop that stems from a lack of validation of user-supplied data when parsing PDF files, which could lead to memory corruption and information disclosure...

Soda PDF Desktop 缓冲区错误漏洞

Soda PDF Desktop is a full-featured PDF editing software from Soda Canada. Soda PDF Desktop suffers from a buffer error vulnerability that stems from a lack of validation of user-supplied data when parsing PDF files, which could lead to out-of-bounds writes and remote code execution...

OFFIS DCMTK 缓冲区错误漏洞

OFFIS DCMTK is a collection of libraries and applications that implement most of the DICOM standards from OFFIS Germany. Software for examining, building and converting DICOM image files, processing offline media, sending and receiving images over a network connection, and demonstrating image...

Apple macOS 缓冲区错误漏洞

Apple macOS is a suite of specialized operating systems developed for Mac computers by Apple Inc. in the United States. A buffer error vulnerability exists in Apple macOS Sonoma prior to 14.8.3 and Sequoia prior to 15.7.3, which stems from insufficient boundary checking and may result in memory...

SAP多款产品 缓冲区错误漏洞

SAP Web Dispatcher and others are products of SAP, Germany.SAP Web Dispatcher is a core component of Load Balancing, which supports load balancing and provides reverse proxy functionality, enabling external network users to access internal applications.SAP Internet Communication Manager SAP ICM i...

Google Android 缓冲区错误漏洞

Google Android is a Linux-based open source operating system from Google, Inc. in the United States. Google Android suffers from a buffer error vulnerability that stems from improper input validation and could lead to local elevation of privilege...

CIRCUTOR SGE-PLC1000和CIRCUTOR SGE-PLC50 缓冲区错误漏洞

The CIRCUTOR SGE-PLC1000 and CIRCUTOR SGE-PLC50 are both a network concentrator from CIRCUTOR Spain. A buffer error vulnerability exists in the CIRCUTOR SGE-PLC1000 and CIRCUTOR SGE-PLC50 v9.0.2, which stems from the DownloadFile function not validating the parameter range, which could lead to...