CVE-2024-53031

Memory corruption while reading a type value from a buffer controlled by the Guest Virtual Machine...

CVE-2020-15196

In Tensorflow version 2.3.0, the SparseCountSparseOutput and RaggedCountSparseOutput implementations don't validate that the weights tensor has the same shape as the data. The check exists for DenseCountSparseOutput, where both tensors are fully specified. In the sparse and ragged count weights a...

CVE-2024-0131

NVIDIA GPU kernel driver for Windows and Linux contains a vulnerability where a potential user-mode attacker could read a buffer with an incorrect length. A successful exploit of this vulnerability might lead to denial of service...

CVE-2024-9759

Tungsten Automation Power PDF is affected by CVE-2024-9759 due to a GIF file parsing flaw that allows an out-of-bounds read. The issue arises from insufficient validation of GIF data, leading to a read past the end of an allocated buffer and information disclosure. Impact is described as potentia...

CVE-2024-9718 Trimble SketchUp Viewer SKP File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

Trimble SketchUp Viewer SKP File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target...

PT-2024-8172 · Rockwell Automation · Rockwell Automation Thinmanager

Name of the Vulnerable Software and Affected Versions: Rockwell Automation ThinManage affected versions not specified Description: A Denial-of-Service issue exists in the affected product, potentially allowing a threat actor with network access to send crafted messages, resulting in...

Faronics Deep Freeze 缓冲区错误漏洞

Faronics Deep Freeze is a system recovery software developed by Faronics, Inc. A buffer error vulnerability exists in Faronics Deep Freeze version 9.00.020.5760, which stems from susceptibility to an out-of-bounds read vulnerability that can trigger the 0x70014 IOCTL code in the FarDisk.sys drive...

PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

RHEL 6 : libplist (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libplist: Out-of-bounds heap buffer read in plistutil CVE-2017-5545 - The parsedictnode function in...

RHEL 7 : libplist (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libplist: Out-of-bounds heap buffer read in plistutil CVE-2017-5545 - The parsedictnode function in...

CVE-2023-42055

PDF-XChange Editor contains a vulnerability in U3D file parsing that can cause an out-of-bounds read, enabling arbitrary code execution in the process. The flaw stems from insufficient validation of user-supplied data during U3D parsing. Attacks require user interaction (visiting a malicious page...

The vulnerability of the RTSP server of D-Link’s DCS-8300LHV2 wireless camera software allows a intruder to execute arbitrary code.

The vulnerability of the RTSP server of D-Link’s DCS-8300LHV2 wireless camera software lies in the reading of data outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Rocky Linux 8 : php:7.3 (RLSA-2020:3662)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2020:3662 advisory. - Function iconvmimedecodeheaders in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6 may perform out-of-buffer read due to...

The vulnerability of the avi_parse_input_file function (media_tools/avilib.c:2083) in the multimedia platform GPAC, related to inaccessible read and reread operations on buffers, allows a hacker to cause a service failure.

The vulnerability of the aviparseinputfile function mediatools/avilib.c:2083 in the multimedia platform GPAC is related to buffer overflow attacks. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2023-40166

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer read overflow in FileManager::detectLanguageFromTextBegining . The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. ...

CVE-2023-40166 Notepad++ heap buffer read overflow in FileManager::detectLanguageFromTextBegining

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer read overflow in FileManager::detectLanguageFromTextBegining . The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. ...

CVE-2023-40166 Notepad++ heap buffer read overflow in FileManager::detectLanguageFromTextBegining

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer read overflow in FileManager::detectLanguageFromTextBegining . The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. ...

CVE-2023-40164 Notepad++ global buffer read overflow in nsCodingStateMachine::NextState

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to global buffer read overflow in nsCodingStateMachine::NextStater. The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. As of time...

CVE-2023-40036 Notepad++ global buffer read overflow in CharDistributionAnalysis::HandleOneChar

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to global buffer read overflow in CharDistributionAnalysis::HandleOneChar. The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. As ...

PT-2023-5409 · Siemens · Parasolid +1

Name of the Vulnerable Software and Affected Versions: Parasolid versions prior to V34.1.258 Parasolid versions prior to V35.0.254 Parasolid versions prior to V35.1.184 Teamcenter Visualization versions prior to V14.2.0.12 Teamcenter Visualization versions prior to V14.3.0.9 Teamcenter...