The vulnerability of the gwcfg_cgi_set_manage_post_data() function in the microprogramming software for industrial Wi-Fi routers Yifan YF325 allows a hacker to influence the integrity, accessibility, and confidentiality of the protected information.

The vulnerability of the gwcfgcgisetmanagepostdata function in the microprogramming-based industrial Wi-Fi routers from Yifan YF325 relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to influence the integrity, availability,...

The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation, related to the execution of operations beyond the buffer boundaries in memory, allows a hacker to execute arbitrary code.

The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially crafted SPP file...

DEBIAN-CVE-2023-45862

An issue was discovered in drivers/usb/storage/eneub6250.c for the ENE UB6250 reader driver in the Linux kernel before 6.2.5. An object could potentially extend beyond the end of an allocation...

The vulnerability relates to the set of tools and libraries used for creating, importing, and exporting 3D models with the Autodesk FBX SDK. It stems from writing beyond buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the tools and libraries used for creating, importing, and exporting 3D models in the Autodesk FBX SDK is related to writing data beyond buffer boundaries in memory. Exploiting this vulnerability can allow attackers to execute arbitrary code...

CVE-2023-44081

A vulnerability has been identified in Tecnomatix Plant Simulation V2201 All versions V2201.0009, Tecnomatix Plant Simulation V2302 All versions V2302.0003. The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted SPP file. Thi...

The vulnerability of the AcroForm component in the PDF viewer software from Foxit PDF Reader allows a hacker to execute arbitrary code.

The vulnerability of the AcroForm component in the PDF viewer software from Foxit PDF Reader relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user, using a specially...

The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation in simulation models for systems and processes involves writing code beyond the buffer boundaries of memory, allowing attackers to execute arbitrary code with privileges of the current process.

The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation lies in the writing beyond buffer boundaries. Exploiting this vulnerability allows an attacker to execute arbitrary code with privileges of the current process, using a specially crafted SPP file...

The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation in simulation models for systems and processes involves writing code beyond the buffer boundaries of memory, allowing attackers to execute arbitrary code with privileges of the current process.

The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation lies in the writing beyond buffer boundaries. Exploiting this vulnerability allows an attacker to execute arbitrary code with privileges of the current process, using a specially crafted SPP file...

The vulnerability of the Neural Engine component in operating systems such as iPadOS, tvOS, iOS, watchOS, and macOS allows attackers to execute arbitrary code.

The vulnerability of the Neural Engine component in iPadOS, tvOS, iOS, watchOS, and macOS relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of SiPass integrated software for security and access control systems arises from operations that go beyond the buffer in memory, allowing attackers to cause system failures.

The vulnerability of SiPass integrated software for security and access control systems is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

The vulnerability of the SetWan3Settings() function in D-Link DIR-3040 wireless router software allows a hacker to execute arbitrary code.

The vulnerability of the SetWan3Settings function in D-Link DIR-3040 wireless router microprogramming software is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending specially crafted HNAP...

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing software, related to the occurrence of operations outside the buffer in memory, allows attackers to gain unauthorized access to protected information.

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing functionality lies in the issue of operations going beyond the buffer in memory during the processing of EMF files. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of PDF-XChange Editor’s document viewing and editing software lies in the possibility of an operation going beyond the buffer in memory, allowing attackers to execute arbitrary code.

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing functionality lies in the issue of operations going beyond the buffer in memory when processing JPG files. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-2898)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2023:3988-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3988-1 advisory. The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security and bugfixes. The following security bugs were...

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2023-054 (ALASKERNEL-5.4-2023-054)

The version of kernel installed on the remote host is prior to 5.4.253-167.359. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2023-054 advisory. A use-after-free flaw was found in btrfssearchslot in fs/btrfs/ctree.c in btrfs in the Linux Kernel.This...

The vulnerability of the Sandbox component in operating systems such as iPadOS, tvOS, iOS, watchOS, and macOS allows a hacker to re-record any files they desire.

The vulnerability of the Sandbox component in operating systems such as iPadOS, tvOS, iOS, watchOS, and macOS arises from the execution of operations outside the buffer in memory. Exploiting this vulnerability allows an attacker to overwrite arbitrary files...

Amazon Linux 2 : kernel, --advisory ALAS2-2023-2268 (ALAS-2023-2268)

The version of kernel installed on the remote host is prior to 4.14.322-244.536. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2268 advisory. A flaw in the Linux Kernel found in the GFS2 file system. On corrupted gfs2 file systems the evict code can try to...

SUSE-SU-2023:3971-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-38457: Fixed a use-after-free vulnerability in vmwgfx driver that allowed a local attacker to cause a denial of service bsc1203330. - CVE-2022-40133:...

SUSE-SU-2023:3969-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-2007: Fixed a flaw in the DPT I2O Controller driver that could allow an attacker to escalate privileges and execute arbitrary code in the context of the...