The vulnerability of the prog.cgi component in D-Link DIR-X3260 Wi-Fi routers allows a hacker to execute arbitrary code.

The vulnerability of the prog.cgi component in D-Link DIR-X3260 Wi-Fi routers involves reading data outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the prog.cgi component in D-Link DIR-X3260 Wi-Fi routers allows a hacker to execute arbitrary code.

The vulnerability of the prog.cgi component in D-Link DIR-X3260 Wi-Fi routers involves reading data outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the prog.cgi component in D-Link DIR-X3260 Wi-Fi routers allows a hacker to execute arbitrary code.

The vulnerability of the prog.cgi component in D-Link DIR-X3260 Wi-Fi routers involves reading data outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the prog.cgi component in D-Link DIR-X3260 Wi-Fi routers allows a hacker to execute arbitrary code.

The vulnerability of the prog.cgi component in D-Link DIR-X3260 Wi-Fi routers involves reading data outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the prog.cgi component in D-Link DIR-X3260 Wi-Fi routers allows a hacker to execute arbitrary code.

The vulnerability of the prog.cgi component in D-Link DIR-X3260 Wi-Fi routers involves reading data outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of D-Link DCS-8300LHV2 Wi-Fi camera software allows a intruder to execute arbitrary code.

The vulnerability of D-Link DCS-8300LHV2 Wi-Fi cameras’ microprogramming software lies in the reading of data outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code during the syntactic analysis of XML elements...

libuv: Buffer Overread

Background libuv is a multi-platform support library with a focus on asynchronous I/O. Description libuv fails to ensure that a pointer lies within the bounds of a defined buffer in the uvidnatoascii function before reading and manipulating the memory at that address. Impact The overread can resu...

GLSA-202401-23 : libuv: Buffer Overread

The remote host is affected by the vulnerability described in GLSA-202401-23 libuv: Buffer Overread - Node.js before 16.4.1, 14.17.2, 12.22.2 is vulnerable to an out-of-bounds read when uvidnatoascii is used to convert strings to ASCII. The pointer p is read and increased without checking whether...

The vulnerability of the loginAuth function (/cgi-bin/cstecgi.cgi) in the Totolink N350RT router software allows a hacker to execute arbitrary code.

The vulnerability of the loginAuth function /cgi-bin/cstecgi.cgi in the Totolink N350RT router software lies in the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of the main function (/cgi-bin/cstecgi.cgi?action=login&flag=1) of the Totolink N350RT router’s software allows a hacker to execute arbitrary code.

The vulnerability of the main function /cgi-bin/cstecgi.cgi?action=login&flag=1 of the Totolink N350RT router’s software is related to reading data beyond the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of the Substance 3D Stager software lies in its ability to read data beyond the buffer boundaries, allowing attackers to exploit this to disclose protected information.

The vulnerability of the Substance 3D Stager software-related 3D design software is related to reading beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to disclose protected information...

The vulnerability of the Kofax PowerPDF software, which is used for creating, converting, editing, and publishing PDF files, relates to the reading of data beyond the specified buffer. This vulnerability allows an attacker to execute arbitrary code.

The vulnerability of the Kofax PowerPDF software for creating, converting, editing, and publishing PDF files lies in its ability to read data beyond the specified buffer. Exploiting this vulnerability could allow an attacker to execute arbitrary code using a specially created U3D file...

The vulnerability of the Substance 3D Stager software lies in its ability to read data beyond the buffer boundaries, allowing attackers to exploit this to disclose protected information.

The vulnerability of the Substance 3D Stager software-related 3D design software is related to reading beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to disclose protected information...

The vulnerability of the Substance 3D Stager software lies in its ability to read data beyond the buffer boundaries, allowing attackers to exploit this to disclose protected information.

The vulnerability of the Substance 3D Stager software-related 3D design software is related to reading beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to disclose protected information...

Oracle Linux 9 : squid (ELSA-2024-0071)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-0071 advisory. - squid: Denial of Service in SSL Certificate validation CVE-2023-46724 - squid: NULL pointer dereference in the gopher protocol code CVE-2023-46728 -...

FreeImage 安全漏洞

FreeImage is a cross-platform open source library for supporting popular graphic image formats. An out-of-bounds read vulnerability exists in FreeImage version 3.18.0, which stems from the lack of proper validation of user-supplied data by the component Exif.cpp::ReadInt32, and can be exploited b...

Important: squid

Issue Overview: Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a Buffer Overread bug Squid is vulnerable to a Denial of Service attack against Squid HTTP Message processing. This bug is fixed by Squid version 6.5. Users are advised to upgrade. There are no know...

Rocky Linux 8 : squid:4 (RLSA-2024:0046)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:0046 advisory. - Squid is a caching proxy for the Web. Due to an Improper Validation of Specified Index bug, Squid versions 3.3.0.1 through 5.9 and 6.0 prior to 6.4...

Amazon Linux AMI : squid (ALAS-2024-1901)

The version of squid installed on the remote host is prior to 3.5.20-17.53. It is, therefore, affected by a vulnerability as referenced in the ALAS-2024-1901 advisory. Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a Buffer Overread bug Squid is vulnerable to a...

Medium: ncurses

Issue Overview: There is a heap-based buffer over-read in the ncfindentry function in tinfo/comphash.c in the terminfo library in ncurses before 6.1-20191012. CVE-2019-17594 There is a heap-based buffer over-read in the fmtentry function in tinfo/comphash.c in the terminfo library in ncurses befo...