AZL-44874 CVE-2020-23909 affecting package advancecomp 2.6-1

Heap-based buffer over-read in function pngconvert4 in file pngex.cc in AdvanceMAME through 2.1...

UBUNTU-CVE-2020-23909

Heap-based buffer over-read in function pngconvert4 in file pngex.cc in AdvanceMAME through 2.1...

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, and Adobe Acrobat 2020 are related to reading beyond the buffer in memory, allowing attackers to execute arbitrary code.

The vulnerability of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, Adobe Acrobat 2020, and Adobe Acrobat Reader 2020 is related to reading beyond the buffer in memory. Exploiting this...

The vulnerabilities of the libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, and Jt3dReadPsr—programming environments for rendering 3D models by Luxion KeyShot—allow attackers to execute arbitrary code.

The vulnerability of the Luxion KeyShot 3D-modeling software libraries—CatiaV53dRead, CatiaV63dRead, Step3dRead, Ug3dReadPsr, and Jt3dReadPsr—is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to execute arbitrary code...

The vulnerability of the 3D viewing tool JT and the Teamcenter Visualization lifecycle management system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the 3D viewing tool JT and the Teamcenter Visualization lifecycle management system lies in the reading of data beyond the buffer in memory. Exploiting this vulnerability could allow an intruder to gain unauthorized access to protected information when analyzing a specially...

The vulnerability of the 3D viewing tool JT and the Teamcenter Visualization lifecycle management system allows a perpetrator to execute arbitrary code.

The vulnerability of the 3D viewing tool JT and the Teamcenter Visualization lifecycle management system lies in the reading of data beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code within the context of the current process while analyzi...

The vulnerability of the _bfd_elf_parse_gnu_properties function in the elf-properties.c library of the GNU Binutils development toolset allows a attacker to cause a service failure.

The vulnerability of the bfdelfparsegnuproperties function in the elf-properties.c library of the GNU Binutils development toolset is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a system failure...

The vulnerability of .NET components in the communication protocol library for connecting components of ASU TP Triangle MicroWorks DNP3 Source Code Library, a control platform for managing public distribution and transmission networks of Schneider Electric Saitel DR RTU, allows a intruder to cause a service failure.

The vulnerability of .NET components in the communication protocol library used for connecting components of ASU systems like Triangle MicroWorks DNP3 Source Code Library in Schneider Electric Saitel DR RTU control platforms lies in the fact that the operation results are stored outside of the...

The vulnerability of the Freeimage graphic library, related to reading data beyond the buffer in memory, allows attackers to cause a service failure.

The vulnerability of the Freeimage graphic library relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure using a specially created JXR file...

The vulnerability of the Microsoft Visual Studio software allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Microsoft Visual Studio software relates to reading beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

openssl: Input buffer over-read in AES-XTS implementation on 64 bit ARM

A vulnerability was found in OpenSSL. This security flaw occurs because the AES-XTS cipher decryption implementation for the 64-bit ARM platform contains an issue that could cause it to read past the input buffer, leading to a crash...

CVE-2023-35862

libcoap 4.3.1 contains a buffer over-read via the function coapparseoscoreconfmem at coaposcore.c...

UBUNTU-CVE-2023-35862

libcoap 4.3.1 contains a buffer over-read via the function coapparseoscoreconfmem at coaposcore.c...

PT-2023-25351 · Libcoap · Libcoap

Name of the Vulnerable Software and Affected Versions: libcoap version 4.3.1 Description: The issue is related to a buffer over-read in the coap parse oscore conf mem function located at coap oscore.c. This function is part of the libcoap library. Recommendations: For libcoap version 4.3.1,...

The vulnerability of the Bluetooth technology implementation in Android devices based on MediaTek MT8167, MT8175, and MT8183 chips allows attackers to gain increased privileges.

The vulnerability of the Bluetooth technology implementation in Android devices based on MediaTek MT8167, MT8175, and MT8183 operating systems is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow attackers to increase their privileges...

PT-2023-5508 · Pdf Xchange · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this, where the target must...

PT-2023-24672 · Unknown · Contiki-Ng

Name of the Vulnerable Software and Affected Versions: Contiki-NG versions prior to 4.9 Description: The issue arises when the Contiki-NG OS processes ICMP DAO packets in the dao input storing function without verifying that the packet buffer is sufficiently large, leading to potential...

PT-2023-5494 · Pdf Xchange · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this, where the target must...

The vulnerability of the microprogramming software of the Cisco TelePresence Collaboration Endpoint conference call control device and the Cisco RoomOS operating system, related to access control deficiencies, allows a intruder to gain access to confidential data.

The vulnerability of the microprogramming software of the Cisco TelePresence Collaboration Endpoint conference call control device and the Cisco RoomOS operating system is related to reading data from buffers beyond the allowed limits. Exploiting this vulnerability allows a malicious actor to gai...

The vulnerability of the ntfs_set_ea() function in the fs/ntfs3/xattr.c driver of the Linux file system kernel allows a attacker to gain access to protected information or cause service failure.

The vulnerability of the ntfssetea function in the fs/ntfs3/xattr.c driver of the Linux file system is related to reading data beyond the allocated buffer, due to an incorrect definition of its boundaries. Exploiting this vulnerability can allow an attacker to access protected information or caus...