4213 matches found
The vulnerability of the microprogramming software for Rockwell Automation communication modules 1756-EN2T, 1756-EN2TK, 1756-EN2TXT, 1756-EN2TP, 1756-EN2TPK, 1756-EN2TPXT, 1756-EN2TR, 1756-EN2TRK, 1756-EN2TRXT, 1756-EN2F, 1756-EN2FK, 1756-EN3TR, 1756-EN3TRK, 1756-EN4TR, 1756-EN4TRK, and 1756-EN4TRXT controllers from the Allen-Bradley ControlLogix series allows a hacker to execute arbitrary code.
The vulnerability of the microprogrammed software for Rockwell Automation communication modules 1756-EN2T, 1756-EN2TK, 1756-EN2TXT, 1756-EN2TP, 1756-EN2TPK, 1756-EN2TPXT, 1756-EN2TR, 1756-EN2TRK, 1756-EN2TRXT, 1756-EN2F, 1756-EN2FK, 1756-EN3TR, 1756-EN3TRK, 1756-EN4TR, 1756-EN4TRK, and 1756-EN4TR...
AZL-34788 CVE-2022-28733 affecting package grub2 for versions less than 2.06-14
Integer underflow in grubnetrecvip4packets; A malicious crafted IP packet can lead to an integer underflow in grubnetrecvip4packets function on rsm-totallen value. Under certain circumstances the totallen value may end up wrapping around to a small integer number which will be used in memory...
UBUNTU-CVE-2022-28733
Integer underflow in grubnetrecvip4packets; A malicious crafted IP packet can lead to an integer underflow in grubnetrecvip4packets function on rsm-totallen value. Under certain circumstances the totallen value may end up wrapping around to a small integer number which will be used in memory...
Amazon Linux 2023 : libzstd, libzstd-devel, libzstd-static (ALAS2023-2023-244)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-244 advisory. In zstd, supplying an empty string as an argument to either --output-dir-flat or --output-dir-mirror may cause a buffer overrun. CVE-2022-4899 Tenable has extracted the preceding description block...
The vulnerability in the /sqlite3_aflpp/shell.c component of the SQLite database management system allows a attacker to cause a service failure.
The vulnerability in the /sqlite3aflpp/shell.c component of the SQLite database management system arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to cause a service failure...
The vulnerability of the format_log_line() function in the CUPS printing server allows a attacker to cause a service failure.
The vulnerability of the formatlogline function in the CUPS printing server is related to writing beyond buffer boundaries. Exploiting this vulnerability could allow a malicious actor to cause service failures...
The vulnerability of the fromDhcpListClient() function in the microprogrammed software for Tenda routers such as F1202, FH1202, AC10, AC1206, ACV7, AC5, and AC9 allows a hacker to execute arbitrary code or cause service failures.
The vulnerability of the fromDhcpListClient function in the microprogrammed routing devices Tenda F1202, FH1202, AC10, AC1206, ACV7, AC5, and AC9 relates to the issue of the operation going beyond the buffer boundaries in memory when processing the page parameter. Exploiting this vulnerability...
The vulnerability of the ezxml_internal_dtd function in the XML document syntax analysis library ezXML allows a attacker to cause a service failure.
The vulnerability of the ezxmlinternaldtd function in the XML document syntax analysis library ezXML is related to writing beyond the buffer boundaries. Exploiting this vulnerability allows a malicious actor to trigger a service failure using a specially created XML file...
The vulnerability of the WPE WebKit and WebKitGTK web page rendering modules, related to writing beyond the buffer limit, allows attackers to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the WPE WebKit and WebKitGTK web page rendering modules is related to writing beyond the buffer boundaries. Exploiting this vulnerability allows a remote attacker to access confidential data, compromise its integrity, and cause service failures...
Medium: zstd
Issue Overview: In zstd, supplying an empty string as an argument to either --output-dir-flat or --output-dir-mirror may cause a buffer overrun. CVE-2022-4899 Affected Packages: zstd Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference...
Medium: zstd
Issue Overview: In zstd, supplying an empty string as an argument to either --output-dir-flat or --output-dir-mirror may cause a buffer overrun. CVE-2022-4899 Affected Packages: zstd Issue Correction: Run dnf update zstd --releasever 2023.1.20230719 or dnf update --advisory ALAS2023-2023-244...
The vulnerability of the nft_byteorder_eval() function in the net/netfilter/nft_byteorder.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the nftbyteordereval function in the net/netfilter/nftbyteorder.c module of the Linux operating system is related to the issue of data being written outside of the buffer during pointer handling. Exploiting this vulnerability could allow an attacker to compromise the...
The vulnerability of the Remote Procedure Call (RPC) technology in Windows operating systems allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Remote Procedure Call RPC technology in Windows operating systems relates to operations that go beyond buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
SUSE CVE-2023-29451
Specially crafted string can cause a buffer overrun in the JSON parser library leading to a crash of the Zabbix Server or a Zabbix Proxy...
CVE-2023-29451
Specially crafted string can cause a buffer overrun in the JSON parser library leading to a crash of the Zabbix Server or a Zabbix Proxy...
CVE-2023-29451
Specially crafted string can cause a buffer overrun in the JSON parser library leading to a crash of the Zabbix Server or a Zabbix Proxy...
CVE-2023-29451
Specially crafted string can cause a buffer overrun in the JSON parser library leading to a crash of the Zabbix Server or a Zabbix Proxy...
DEBIAN-CVE-2023-29451
Specially crafted string can cause a buffer overrun in the JSON parser library leading to a crash of the Zabbix Server or a Zabbix Proxy...
CVE-2023-29451
Specially crafted string can cause a buffer overrun in the JSON parser library leading to a crash of the Zabbix Server or a Zabbix Proxy...
CVE-2023-29451 Denial of service caused by a bug in the JSON parser
Specially crafted string can cause a buffer overrun in the JSON parser library leading to a crash of the Zabbix Server or a Zabbix Proxy...