Qualcomm 组件缓冲区错误漏洞

The Qualcomm Component is a component of Qualcomm Incorporated USA. An intrinsic part that provides the functionality of Qualcomm devices. A security vulnerability exists in the Qualcomm Component that stems from a buffer over-read when decompressing RTCP packets, where we may read additional byt...

CVE-2021-31431

This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.5-47309. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw...

CVE-2021-31430

This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.5-47309. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw...

DEBIAN-CVE-2020-23922

An issue was discovered in giflib through 5.1.4. DumpScreen2RGB in gif2rgb.c has a heap-based buffer over-read...

DEBIAN-CVE-2020-23915

An issue was discovered in cpp-peglib through v0.1.12. peg::resolveescapesequence in peglib.h has a heap-based buffer over-read...

UBUNTU-CVE-2020-23915

An issue was discovered in cpp-peglib through v0.1.12. peg::resolveescapesequence in peglib.h has a heap-based buffer over-read...

The vulnerability of the njs interpreter on the nginx server, which allows attackers to cause service failures.

The vulnerability of the njs interpreter on the nginx server is related to reading beyond the buffer boundaries. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the implementation of the IPv6 TCP/IP stack in the Trace protocol allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the IPv6 TCP/IP implementation in the Trace stack is related to reading data beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

PT-2023-4471 · Sqlite3 +1 · Sqlite3 +1

Name of the Vulnerable Software and Affected Versions: SQLite3 version 3.35.4 Description: The issue in the appendvfs.c component of the SQLite database management system is related to reading beyond the valid boundaries of a data buffer. This can be exploited by a remote attacker to cause a deni...

The vulnerability of the IPv6OverIPv4 component in the Trace TCP/IP stack allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the IPv6OverIPv4 component in the TCP/IP stack is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the syntax analysis function for domain name records in the Simotics Connect 400 software and hardware suite allows a perpetrator to cause service interruptions.

The vulnerability of the syntax analysis function for DNS domain names in the Simotics Connect 400 software/hardware suite is related to reading data beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

The vulnerability of Samba software, related to reading data beyond the specified buffer, allows a hacker to cause an unexpected termination of the application.

The vulnerability of Samba software relates to the reading of data beyond the specified buffer. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause an unexpected termination of the application...

SUSE: Security Advisory (SUSE-SU-2018:4128-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2015:0669-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2021-27260

This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 16.0.1-48919. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw...

CVE-2021-27247

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Tencent WeChat 2.9.5 desktop version. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

CVE-2021-29997

An issue was discovered in Wind River VxWorks 7 before 21.03. A specially crafted packet may lead to buffer over-read on IKE...

ALPINE-CVE-2021-1404

A vulnerability in the PDF parsing module in Clam AntiVirus ClamAV Software versions 0.103.0 and 0.103.1 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper buffer size tracking that may result in a hea...

UBUNTU-CVE-2021-1404

A vulnerability in the PDF parsing module in Clam AntiVirus ClamAV Software versions 0.103.0 and 0.103.1 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper buffer size tracking that may result in a hea...

OESA-2021-1127 python-pillow security update

Pillow is the friendly PIL fork by Alex Clark and Contributors. PIL is the Python Imaging Library by Fredrik Lundh and Contributors. As of 2019, Pillow development is supported by Tidelift. Security Fixes: In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SG...