CVE-2021-22712

A CWE-119:Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists in Interactive Graphical SCADA System IGSS Definition Def.exe V15.0.0.21041 and prior, which could result in arbitrary read or write conditions when malicious CGF Configuration Group File file i...

CVE-2021-22713

A CWE-119:Improper restriction of operations within the bounds of a memory buffer vulnerability exists in PowerLogic ION8650, ION8800, ION7650, ION7700/73xx, and ION83xx/84xx/85xx/8600 see security notifcation for affected versions, which could cause the meter to reboot...

Design/Logic Flaw

A CWE-119:Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists in Interactive Graphical SCADA System IGSS Definition Def.exe V15.0.0.21041 and prior, which could result in loss of data or remote code execution when malicious CGF Configuration Group File fil...

Design/Logic Flaw

A CWE-119:Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists in Interactive Graphical SCADA System IGSS Definition Def.exe V15.0.0.21041 and prior, which could result in arbitrary read or write conditions when malicious CGF Configuration Group File file i...

Schneider Electric PowerLogic 缓冲区错误漏洞

Schneider Electric PowerLogic is an industrial control device from Schneider Electric, France. It provides increased power factor to improve power quality and troubleshoot power failures to protect networks, devices, and operators. A security vulnerability exists in PowerLogic, which stems from a...

Google Android 缓冲区错误漏洞

Google Android is a Linux-based open source operating system from the USGoogleOpen Handheld Alliance Google. Google Android/Pixel suffers from a security vulnerability that may allow out-of-bounds writes due to a lack of boundary checking...

Digium Certified Asterisk Buffer Error Vulnerability

Digium Certified Asterisk is a set of open source telephone exchange PBX system software from Digium, USA. The software supports voicemail, multi-party voice conferencing, interactive voice response IVR, and more. A buffer error vulnerability exists in Digium Certified Asterisk. The vulnerability...

Mitsubishi Electric FA Engineering Software Buffer Error Vulnerability

Mitsubishi Electric FA Engineering Software is a series of engineering software from Mitsubishi Electric Japan. A buffer error vulnerability exists in Mitsubishi Electric FA Engineering Software. The vulnerability stems from the software's mishandling of parameter lengths, and could allow an...

FinalWire AIDA64 Engineer Buffer Error Vulnerability

Finalwire FinalWire AIDA64 Engineer is a hardware detection engine from the Hungarian company FinalWire Finalwire. The engine has diagnostic features and overclocking support, and supports real-time monitoring of transmitted voltage, temperature, and fan speed readings, among other things. A buff...

Tencent WeChat Buffer Error Vulnerability

Tencent WeChat 微信 is an online social networking application from the Chinese company Tencent. The program supports sending voice messages, videos, images, and text. A buffer error vulnerability exists in Tencent WeChat that originates when a network system or product performs an operation in...

Intel XTU Security Vulnerability

A buffer error vulnerability exists in Intel XTU that originates when a networked system or product performs an operation in memory without properly validating the data boundaries, resulting in incorrect read and write operations being performed to other memory locations in the association. An...

Microsoft Windows Address Book Buffer Error Vulnerability

Microsoft Windows Address Book is a Microsoft application with a local database and a user interface for finding and editing information about people so that network directory servers can be queried using a lightweight directory access protocol. It allows users to keep a list of contacts that can...

Acrobat Reader DC 缓冲区错误漏洞

Adobe Acrobat is a PDF editing software developed by Adobe.Adobe Reader also known as Acrobat Reader is a PDF file reader developed by Adobe. An out-of-bounds write vulnerability exists in several Adobe products. An attacker can exploit this vulnerability to execute arbitrary code...

Adobe Photoshop 缓冲区错误漏洞

Adobe Photoshop is a set of image processing software from the American company Audobee Adobe. Adobe Photoshop suffers from an out-of-bounds read vulnerability. An attacker could exploit this vulnerability to execute arbitrary code...

Modesty pdfjson buffer error vulnerability

Modesty Pdf2json is Modesty individual developers of a Java-based PDF files can interact with Json files code library. A buffer error vulnerability exists in pdf2json 0.69, which stems from a buffer overflow that allows a local user to execute arbitrary code by converting a carefully crafted PDF...

Horner Automation Cscape 缓冲区错误漏洞

Cscape is an application that can program the full range of OCS. An out-of-bounds read vulnerability exists in Cscape versions prior to 9.90 SP3.5. The vulnerability stems from a failure to properly validate user-supplied data when parsing a project file. An attacker can exploit the vulnerability...

Apple iOS and Apple iPadOS Buffer Error Vulnerability

Apple iOS and Apple iPadOS are both products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A buffer error vulnerability exists in multiple Apple products, which arises from an input out-of-bounds read. The...

Apple iOS and iPadOS Buffer Error Vulnerability

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS 14.4 and iPadOS 14.4, which originates from an input out-of-bounds read...

Apple iOS and Apple iPadOS Buffer Error Vulnerability

Apple iOS and Apple iPadOS are both products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A buffer error vulnerability exists in multiple Apple products, which arises from input out-of-bounds reads. The...

RUSTSEC-2021-0017 `Read` on uninitialized buffer may cause UB (`impl Walue for Vec<u8>`)

Affected versions of this crate passes an uninitialized buffer to a user-provided Read implementation. Arbitrary Read implementations can read from the uninitialized buffer memory exposure and also can return incorrect number of bytes written to the buffer. Reading from uninitialized memory...