5805 matches found
squid: Buffer over-read in the HTTP Message processing feature
A buffer over-read flaw was found in Squid's HTTP Message processing feature. This issue may allow attackers to perform remote denial of service...
The vulnerability of the loginAuth function (/cgi-bin/cstecgi.cgi) in the Totolink N350RT router software allows a hacker to execute arbitrary code.
The vulnerability of the loginAuth function /cgi-bin/cstecgi.cgi in the Totolink N350RT router software lies in the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
RHEL 8 : squid:4 (RHSA-2024:0772)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0772 advisory. Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid: DoS against...
SUSE CVE-2024-20290
A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in a heap buffer...
PT-2024-1550 · Clamav +1 · Clamav +1
Name of the Vulnerable Software and Affected Versions: ClamAV affected versions not specified Description: A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability ...
The vulnerability of Apple Neural Engine in the macOS operating system allows a hacker to execute arbitrary code with root privileges.
The vulnerability of Apple Neural Engine in the macOS operating system relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code with root privileges...
The vulnerability of the setWrlBasicInfo function in the httpd component of the Tenda W9 wireless access point allows a attacker to execute arbitrary code.
The vulnerability of the setWrlBasicInfo function in the httpd component of the wireless access point Tenda W9 microprogramming system involves reading data beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the formWifiMacFilterGet function in the httpd component of the wireless access point Tenda W9 allows a hacker to execute arbitrary code.
The vulnerability of the formWifiMacFilterGet function in the httpd component of the wireless access point Tenda W9 microprogramming system is related to reading data outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the setWrlAccessList function in the wireless access point software of Tenda W9 allows a intruder to execute arbitrary code.
The vulnerability of the setWrlAccessList function in the wireless access point software Tenda W9 involves reading data beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability in the web interface of the wireless access point Tenda A15’s microprogramming software allows a perpetrator to execute arbitrary code.
The vulnerability of the web interface for managing wireless access points of the Tenda A15 micro-programming system is related to reading data outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code using the deviceList argument...
The vulnerability of the formOfflineSet function in the httpd component of the wireless access point Tenda W9 allows a attacker to execute arbitrary code.
The vulnerability of the formOfflineSet function in the httpd component of the wireless access point Tenda W9 microprogramming system involves reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the formQosManage_user function in the httpd microprogramming system for the Tenda W9 wireless access point allows a attacker to execute arbitrary code.
The vulnerability of the formQosManageuser function in the httpd microprogramming system for the wireless access point Tenda W9 involves reading data beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability in the web interface of the wireless access point Tenda A15’s microprogramming software allows a perpetrator to execute arbitrary code.
The vulnerability of the web interface for managing microprogramming software in the Tenda A15 wireless access point is related to reading data outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability in the web interface of the wireless access point Tenda A15’s microprogramming software allows a perpetrator to execute arbitrary code.
The vulnerability in the web interface of the wireless access point Tenda A15 involves reading data beyond the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using the wpapskcrypto24g argument...
The vulnerability of the `formAddSysLogRule` function in the wireless access point software Tenda W9 allows a hacker to execute arbitrary code.
The vulnerability of the formAddSysLogRule function in the wireless access point software Tenda W9 involves reading data beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the formQosManage_auto function in the wireless access point Tenda W9 software allows a intruder to execute any code they desire.
The vulnerability of the formQosManageauto function in the wireless access point software Tenda W9 relates to reading data outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
PT-2024-40421 · Ckb · Ckb
Name of the Vulnerable Software and Affected Versions: ckb affected versions not specified Description: The issue arises from multiple type conversions in ckb that unsafely cast between byte pointers and other types of pointers, resulting in unaligned pointers. This is considered undefined behavi...
The vulnerability of the fromAddressNat function in the Tenda AC10U router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the fromAddressNat function in the Tenda AC10U router’s microprogramming system is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of th...
The vulnerability of the formSetVirtualSer function in the microprogramming software for Tenda AC10U allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the formSetVirtualSer function in the Tenda AC10U router’s microprogramming software relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of...
The vulnerability of the `saveParentControlInfo` function in the Tenda AC10U router software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the saveParentControlInfo function in the Tenda AC10U router’s microprogramming software relates to the reading of data beyond the buffer in memory. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of...