5805 matches found
Amazon Linux 2023 : squid (ALAS2023-2024-578)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-578 advisory. Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a Buffer Overread bug Squid is vulnerable to a Denial of Service attack against Squid HTTP Message processing...
xorg server -- Multiple vulnerabilities
The X.Org project reports: CVE-2024-31080: Heap buffer overread/data leakage in ProcXIGetSelectedEvents The ProcXIGetSelectedEvents function uses the byte-swapped length of the return data for the amount of data to return to the client, if the client has a different endianness than the X server...
The vulnerability of the Arena Simulation software in simulating and automating discrete events lies in its ability to read data beyond the buffer in memory. This allows attackers to execute arbitrary code and compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the Arena Simulation software for modeling and automating discrete events is related to reading data beyond the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code and compromise the confidentiality, integrity, and accessibility of...
Important: squid
Issue Overview: Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a Buffer Overread bug Squid is vulnerable to a Denial of Service attack against Squid HTTP Message processing. This bug is fixed by Squid version 6.5. Users are advised to upgrade. There are no know...
The vulnerability of the addWifiMacFilter function (/goform/addWifiMacFilter) in the Tenda FH1203 router software allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the addWifiMacFilter function /goform/addWifiMacFilter of the Tenda FH1203 router’s microprogramming software lies in the reading of data outside the buffer in memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and...
The vulnerability of the fromAddressNat function (/goform/addressNat) in the Tenda F1202 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the fromAddressNat function /goform/addressNat in the Tenda FH1202 router microprogramming system involves reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility ...
The vulnerability of the fromAddressNat function (/goform/addressNat) in the Tenda F1202 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the fromAddressNat function /goform/addressNat in the Tenda FH1202 router microprogramming system involves reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility ...
The vulnerability of the fromAddressNat function (/goform/addressNat) in the Tenda FH1202 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the fromAddressNat function /goform/addressNat in the Tenda FH1202 router microprogramming system involves reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibilit...
The vulnerability of the fromAddressNat function (/goform/addressNat) in the Tenda FH1202 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the fromAddressNat function /goform/addressNat in the Tenda FH1202 router microprogramming system involves reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility ...
The vulnerability of the fromAddressNat function (/goform/addressNat) in the Tenda FH1202 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the fromAddressNat function /goform/addressNat in the Tenda FH1202 router microprogramming system involves reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility ...
The vulnerability of the fromDhcpListClient function (/goform/DhcpListClient) in the Tenda FH1203 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the fromDhcpListClient function /goform/DhcpListClient in the Tenda FH1203 router software lies in the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility...
The vulnerability of the addWifiMacFilter function (/goform/addWifiMacFilter) in the Tenda FH1202 router software allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the addWifiMacFilter function /goform/addWifiMacFilter in the Tenda FH1202 router software lies in the reading of data outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of the...
SUSE CVE-2023-45919
Mesa 23.0.4 was discovered to contain a buffer over-read in glXQueryServerString. NOTE: this is disputed because there are no common situations in which users require uninterrupted operation with an attacker-controller server...
PT-2024-23321 · Foxit · Foxit Pdf Reader
Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this issue, where the...
PT-2024-23320 · Foxit · Foxit Pdf Reader
Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this, where the target...
UBUNTU-CVE-2024-0074
NVIDIA GPU Display Driver for Linux contains a vulnerability where an attacker may access a memory location after the end of the buffer. A successful exploit of this vulnerability may lead to denial of service and data tampering...
DEBIAN-CVE-2023-45919
Mesa 23.0.4 was discovered to contain a buffer over-read in glXQueryServerString. NOTE: this is disputed because there are no common situations in which users require uninterrupted operation with an attacker-controller server...
X11 Mesa 3D Graphics Library 安全漏洞
X11 Mesa 3D Graphics Library is a 3D graphics library. A security vulnerability exists in Mesa version 23.0.4, which stems from the discovery of a buffer over-read in glXQueryServerString...
GHSA-V5H6-C2HV-HV3R StringIO buffer overread vulnerability
An issue was discovered in StringIO 3.0.1, as distributed in Ruby 3.0.x through 3.0.6 and 3.1.x through 3.1.4. The ungetbyte and ungetc methods on a StringIO can read past the end of a string, and a subsequent call to StringIO.gets may return the memory value. This vulnerability is not affected...
StringIO buffer overread vulnerability
An issue was discovered in StringIO 3.0.1, as distributed in Ruby 3.0.x through 3.0.6 and 3.1.x through 3.1.4. The ungetbyte and ungetc methods on a StringIO can read past the end of a string, and a subsequent call to StringIO.gets may return the memory value. This vulnerability is not affected...