The vulnerability of embedded Qualcomm microprogramming software, related to the ability to read data beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of embedded Qualcomm software relates to the ability to read data beyond the buffer in memory. Exploiting this vulnerability can allow a hacker to execute arbitrary code...

PT-2024-38399 · Trimble · Trimble Sketchup Pro

Name of the Vulnerable Software and Affected Versions: Trimble SketchUp Pro affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations of Trimble SketchUp Pro. User interaction is required to exploit this, where the...

PT-2024-38403 · Ofono +1 · Ofono +1

Name of the Vulnerable Software and Affected Versions: oFono affected versions not specified Description: This issue allows local attackers to disclose sensitive information on affected installations of oFono. Authentication is not required to exploit this issue. The specific flaw exists within t...

openSUSE Security Advisory (SUSE-SU-2024:2635-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Dell BSAFE Micro Edition Suite和Dell BSAFE Crypto-C Micro Edition 缓冲区错误漏洞

The Dell BSAFE Micro Edition Suite and Dell BSAFE Crypto-C Micro Edition are both products of Dell Inc. The Dell BSAFE Micro Edition Suite is a development toolkit that provides encryption, certificates, and transport layer security for c/c++ applications, devices, and systems. Dell BSAFE Crypto-...

Security Bulletin: IBM Security Guardium is affected by denial of service vulnerabilities (CVE-2023-46728, CVE-2023-49285, CVE-2023-49286)

Summary IBM Security Guardium has addressed these vulnerabilities in an update. Vulnerability Details CVEID:CVE-2023-46728 DESCRIPTION: Squid-Cache Squid is vulnerable to a denial of service, caused by a NULL pointer dereference flaw in the Gopher gateway. By sending a specially crafted request, ...

CBL Mariner 2.0 Security Update: cloud-hypervisor-cvm / openssl (CVE-2024-5535)

The version of cloud-hypervisor-cvm / openssl installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-5535 advisory. - Issue summary: Calling the OpenSSL API function SSLselectnextproto with an empty...

PT-2024-37884 · Irfan Skiljan · Irfanview

Name of the Vulnerable Software and Affected Versions: IrfanView affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this issue, where the target must visit a...

CVE-2024-5535

...

CVE-2024-6874

A buffer overread vulnerability was found in Curl's URL API function curlurlget. This issue allows a remote attacker to obtain sensitive information due to a punycode buffer overread flaw. By sending a specially crafted request, an attacker can gain sensitive information and potentially launch...

The vulnerability of the fromDhcpListClient function (implemented in the Tenda FH1206 router’s software), allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the fromDhcpListClient function implemented in the Tenda FH1206 router’s microprogramming system is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and...

CURL-CVE-2024-6874 macidn punycode buffer overread

libcurl's URL API function curlurlget offers punycode conversions, to and from IDN. Asking to convert a name that is exactly 256 bytes, libcurl ends up reading outside of a stack based buffer when built to use the macidn IDN backend. The conversion function then fills up the provided buffer exact...

CVE-2024-6874 macidn punycode buffer overread

libcurl's URL API function curlurlget offers punycode conversions, to and from IDN. Asking to convert a name that is exactly 256 bytes, libcurl ends up reading outside of a stack based buffer when built to use the macidn IDN backend. The conversion function then fills up the provided buffer exact...

CVE-2024-6874

CVE-2024-6874 affects libcurl’s URL API function curl_url_get() when built with the macidn IDN backend. If the input name is exactly 256 bytes, the function may read past a stack-based buffer, and when the conversion fills the provided buffer, it does not null-terminate the string, potentially ca...

CVE-2024-6874 macidn punycode buffer overread

libcurl's URL API function curlurlget offers punycode conversions, to and from IDN. Asking to convert a name that is exactly 256 bytes, libcurl ends up reading outside of a stack based buffer when built to use the macidn IDN backend. The conversion function then fills up the provided buffer exact...

Internet Bug Bounty: curl: stack-buffer overread during punycode conversions

The vulnerability in libcurl's URL API function curlurlget was discovered, where it performed punycode conversions. When converting a 256-byte domain name, the function read outside of a stack-based buffer, potentially leaking adjacent stack memory as part of the converted string. The flaw was...

The vulnerability in the implementation of the Internet Key Exchange protocol (IKEv1) in Cisco IOS and IOS XE operating systems allows a hacker to induce a service failure.

The vulnerability of the Internet Key Exchange IKEv1 protocol implementation in Cisco IOS and IOS XE operating systems lies in the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

Medium: edk2

Issue Overview: Issue summary: Calling the OpenSSL API function SSLselectnextproto with an empty supported client protocols buffer may cause a crash or memory contents to be sent to the peer. Impact summary: A buffer overread can have a range of potential consequences such as unexpected applicati...

The vulnerability of the 3D model texturing program Adobe Substance 3D Designer, related to reading data beyond the buffer in memory, allows attackers to bypass the ASLR protection and gain unauthorized access to protected information.

The vulnerability of the 3D model texturing program Adobe Substance 3D Designer relates to reading data outside the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to bypass the ASLR protection and gain unauthorized access to protected information using a speciall...

Oracle Linux 8 : ruby (ELSA-2024-4499)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-4499 advisory. - Fix ReDoS vulnerability - upstream's incomplete fix for CVE-2023-28755. CVE-2023-36617 Resolves: RHEL-5614 - Fix Buffer overread vulnerability in...