CVE-2021-34912

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

CVE-2021-34880

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

CVE-2021-34885

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

CVE-2021-34888

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

CVE-2021-34887

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

CVE-2021-34890

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

The vulnerability of the Wi-Fi driver microprogramming software for MediaTek’s MC7603E, MC7610, MC7612, MC7613, MC7615, MC7620, MC7622, MC7628, MC7629, and MC7915 microchips allows a hacker to trigger a service failure.

The vulnerability of the Wi-Fi driver microprogramming software for MediaTek’s MC7603E, MC7610, MC7612, MC7613, MC7615, MC7620, MC7622, MC7628, MC7629, and MC7915 lies in the reading of data outside of the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause servic...

The vulnerability of the Wi-Fi driver microprogramming software for MediaTek’s MC7603E, MC7610, MC7612, MC7613, MC7615, MC7620, MC7622, MC7628, MC7629, and MC7915 allows attackers to enhance their privileges.

The vulnerability of the Wi-Fi driver microprogramming software for MediaTek’s MC7603E, MC7610, MC7612, MC7613, MC7615, MC7620, MC7622, MC7628, MC7629, and MC7915 lies in the reading of data outside of the buffer in memory. Exploiting this vulnerability can allow a malicious actor to gain elevate...

ALPINE-CVE-2022-22816

pathgetbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path...

PYSEC-2022-9

pathgetbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path...

CVE-2022-22816

pathgetbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path...

UBUNTU-CVE-2022-22816

pathgetbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path...

Pillow 缓冲区错误漏洞

Pillow is a Python-based image processing library. An out-of-bounds read vulnerability exists in versions of Pillow prior to 9.0.0, which stems from a buffer over-read in pathgetbbox in path.c during initialization of ImagePath. An attacker could exploit this vulnerability to read memory-sensitiv...

The vulnerability in the command-line utility BusyBox, related to reading beyond the buffer limit, allows an attacker to access confidential information.

The vulnerability of the BusyBox command-line utility lies in its ability to read beyond the buffer boundaries. Exploiting this vulnerability allows a remote attacker to trigger a read buffer overflow, thereby reading memory contents of the system or performing a denial-of-service attack...

The vulnerability of the libjpeg-turbo codec, related to reading beyond the buffer boundary, allows attackers to access confidential information or cause service failures.

The vulnerability of the libjpeg-turbo codec is related to reading beyond the buffer boundaries. Exploiting this vulnerability can allow a remote attacker to access confidential information or cause service failures by creating a specially crafted file...

jp2_decode in jp2/jp2_dec.c in libjasper in JasPer 2.0.24 has a heap-based buffer over-read when there is an invalid relationship between the number of channels and the number of image components.

...

The vulnerability of the Audio component in the Google Chrome browser, related to reading beyond the buffer in memory, allows an attacker to gain unauthorized access to protected information.

The vulnerability of the Audio component in the Google Chrome browser relates to reading beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of the mod_proxy_uwsgi function in the Apache HTTP Server allows a hacker to cause a service failure.

The vulnerability of the modproxyuwsgi function in the Apache HTTP Server is related to the reading of data beyond the specified buffer. Exploiting this vulnerability can allow a malicious actor to cause a service failure for an application through a uri-path request...

CVE-2021-44004

A vulnerability has been identified in JT2Go All versions V13.2.0.5, Teamcenter Visualization All versions V13.2.0.5. The TiffLoader.dll is vulnerable to an out of bounds read past the end of an allocated buffer when parsing TIFF files. An attacker could leverage this vulnerability to leak...

The vulnerability of embedded Qualcomm microprogramming software, related to reading data beyond the buffer in memory, allows a hacker to cause a system failure.

The vulnerability of embedded Qualcomm software is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service failure remotely...