Celestial AbsoluteTelnet Buffer Error Vulnerability

Celestial AbsoluteTelnet is a Telnet/SSH terminal client software developed by the American company Celestial. Version 11.24 of Celestial AbsoluteTelnet contains a buffer error vulnerability. This vulnerability stems from manipulating the username and error report fields, which could allow local...

CVE-2025-53068

Vulnerability in the Oracle Solaris product of Oracle Systems component: Kernel. The supported version that is affected is 11. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. While the...

Mattermost Desktop App 安全漏洞

Mattermost Desktop App is a messaging desktop application from Mattermost USA. A security vulnerability exists in Mattermost Desktop App version 5.13.0 and earlier, which originates from an unauthenticated external URL and could allow an attacker to crash the application by sending a specially...

Adobe InDesign Desktop 缓冲区错误漏洞

Adobe InDesign is a set of layout and editing applications from the American company Audobee Adobe. Adobe InDesign suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute arbitrary code on the system or cause the application to crash...

CVE-2021-2112

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.18. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...

Mozilla多款产品 安全漏洞

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A security vulnerability exists in several Mozilla products that stems...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the qla2xxx driver incorrectly releasing a pre-allocated structure during a module load-unload test, resulti...

CVE-2023-48431

A vulnerability has been identified in SINEC INS All versions V1.0 SP2 Update 2. Affected software does not correctly validate the response received by an UMC server. An attacker can use this to crash the affected software by providing and configuring a malicious UMC server or by manipulating the...

SUSE CVE-2021-35645

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

CVE-2023-0083

The ArKUI framework subsystem within OpenHarmony-v3.1.5 and prior versions, OpenHarmony-v3.0.7 and prior versions has an Improper Input Validation vulnerability which local attackers can exploit this vulnerability to send malicious data, causing the current application to crash...

SUSE CVE-2021-3467

A NULL pointer dereference flaw was found in the way Jasper versions before 2.0.26 handled component references in CDEF box in the JP2 image format decoder. A specially crafted JP2 image file could cause an application using the Jasper library to crash when opened...

USN-5707-1 libtasn1-6 vulnerability

It was discovered that Libtasn1 did not properly perform bounds checking. An attacker could possibly use this issue to cause a crash...

Mozilla Firefox 缓冲区错误漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. Mozilla Firefox suffers from a buffer overflow vulnerability that originates from a boundary error during startup when a graphics driver with an unexpected name handles untrusted input. An attacker cou...

mysql: Server: DML unspecified vulnerability (CPU Apr 2021)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DML. Supported versions that are affected are 5.7.33 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...

Dell EMC CloudLink 安全漏洞

Dell EMC CloudLink is a flexible data encryption and key management solution for data encryption in public, private, and hybrid cloud environments.Dell EMC CloudLink 7.1 and earlier versions are vulnerable to a buffer overflow vulnerability that could be exploited by a local, low-privilege attack...

isula-build 安全漏洞

isula-build is an open source iSula Container Team Container image build tool from iSula Container Team that supports fast container image building via Dockerfile files. Isula-build A security vulnerability exists in Isula-build prior to 0.9.5-8 When building container images, some functions used...

Hancom Office 2020 suffers from a memory corruption vulnerability (CNVD-2020-62416)

Hancom Office 2020 offers a feature-rich set of desktop productivity applications for performing common tasks such as word processing, spreadsheet modeling, graphical representation, and working with PDFs. A memory corruption vulnerability exists in Hancom Office 2020, which can be exploited by a...

Hancom Office 2020 suffers from a memory corruption vulnerability (CNVD-2020-62415)

Hancom Office 2020 offers a feature-rich set of desktop productivity applications for performing common tasks such as word processing, spreadsheet modeling, graphical representation, and working with PDFs. A memory corruption vulnerability exists in Hancom Office 2020, which can be exploited by a...

Memory Corruption Vulnerability in WPS Office Campus Edition (CNVD-2020-53352)

WPS Office Campus is a lifetime free office software for teachers and students. A memory corruption vulnerability exists in WPS Office Campus Edition. An attacker can exploit this vulnerability to cause the program to crash...

Memory corruption vulnerability exists in WPS Office (CNVD-2020-23730)

WPS Office is a Kingsoft office software produced by the office software, you can realize the office software commonly used text, forms, presentations and other functions. WPS Office memory corruption vulnerability, attackers can use the vulnerability to cause the program to crash, may obtain...