7653 matches found
CVE-2021-26402
CVE-2021-26402 describes insufficient bounds checking in the AMD Secure Processor (ASP) firmware during BIOS mailbox handling, enabling an attacker to write partially controlled data out-of-bounds into SMM or SEV-ES regions and potentially compromise integrity and availability. The issue is discu...
Authentication flaw
Zip4j through 2.11.2, as used in Threema and other products, does not always check the MAC when decrypting a ZIP archive...
PT-2023-1485 · Amd · Amd Secure Encrypted Virtualization (Sev) Firmware
Name of the Vulnerable Software and Affected Versions: AMD Secure Encrypted Virtualization SEV firmware affected versions not specified Description: The issue is related to improper input validation and bounds checking in the SEV firmware, which may cause a buffer overflow in memory. This could...
Tenda A15 SYSPS Parameter Stack Overflow Vulnerability
Tenda A15 is a WiFi extender from Tenda China. A stack overflow vulnerability exists in the Tenda A15 SYSPS parameter, which originates from a lack of length checking of input data in the SYSPS parameter of /goform/SysToolChangePwd, which can be exploited by an attacker to cause a denial of servi...
Tenda A15 wepkey4 parameter stack overflow vulnerability
Tenda A15 is a WiFi extender from Tenda, China. A stack overflow vulnerability exists in the Tenda A15 wepkey4 parameter, which stems from a lack of length checking of input data in the wepkey4 parameter of /goform/WifiBasicSet, and could be exploited to execute arbitrary code on the system...
Tenda A15 security parameter stack overflow vulnerability
Tenda A15 is a WiFi extender from Tenda, a Chinese company. A stack overflow vulnerability exists in the Tenda A15 security parameter, which originates from a lack of length checking of input data in the security parameter of /goform/WifiBasicSet, and can be exploited by an attacker to execute...
Tenda A15 wepkey1 parameter stack overflow vulnerability
Tenda A15 is a WiFi extender from Tenda, China. A stack overflow vulnerability exists in the Tenda A15 wepkey1 parameter, which stems from a lack of length checking of input data in the wepkey1 parameter of /goform/WifiBasicSet, and can be exploited by attackers to execute arbitrary code on the...
Google Android OS和unisoc部分产品安全漏洞
Google Android is a set of Linux-based open source operating system by the American company Google Google. A security vulnerability exists in some Google Android OS and unisoc products, which stems from a lack of permission checking in the messaging service, leading to a local denial of service...
Tenda A15 wepauth parameter stack overflow vulnerability
Tenda A15 is a WiFi extender from Tenda, China. A stack overflow vulnerability exists in the Tenda A15 wepauth parameter, which stems from a lack of length checking of input data in the wepauth parameter of /goform/WifiBasicSet, and can be exploited by attackers to execute arbitrary code on the...
TRENDnet TEW-755AP stack overflow vulnerability (CNVD-2023-18946)
The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from a lack of size checking of input data in the loginname parameter of the dographauth sub4061E0 function, which can be exploited by an attacker to execute arbitrary...
TRENDnet TEW-755AP stack overflow vulnerability (CNVD-2023-18948)
The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from a lack of size checking of input data in the REMOTEUSER parameter of the getaccess sub45AC2C function, which can be exploited by an attacker to execute arbitrary co...
Google Android OS和unisoc部分产品缓冲区错误漏洞
Google Android is a Linux-based open source operating system from the American company Google. A security vulnerability exists in some Google Android OS and unisoc products, which stems from a lack of bounds checking in the wlan driver, leading to a local denial of service...
UNISOC chipset 安全漏洞
The UNISOC chipset is an integrated circuit chipset from China's Zilight Zhanrui UNISOC. A security vulnerability exists in the UNISOC chipset that stems from a lack of privilege checking in the music service, which could lead to a local denial of service in the contact service without additional...
Google Android OS和unisoc部分产品缓冲区错误漏洞
Google Android is a Linux-based open source operating system from the American company Google. A security vulnerability exists in some Google Android OS and unisoc products, which stems from a lack of bounds checking in the wlan driver, leading to a local denial of service...
TRENDnet TEW-755AP stack overflow vulnerability (CNVD-2023-18955)
The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from a lack of size checking of input data in the wpsstaenrolleepin parameter in the setstaenrolleepin5g function, which can be exploited by an attacker to execute...
TRENDnet TEW-755AP stack overflow vulnerability (CNVD-2023-18954)
The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from a lack of size checking of input data in the wpsstaenrolleepin parameter in the setstaenrolleepin24g function, which can be exploited by an attacker to execute...
TRENDnet TEW-755AP stack overflow vulnerability (CNVD-2023-18947)
The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from the lack of size checking of input data in the wpsstaenrolleepin parameter in the dostaenrolleewifi function, which can be exploited by an attacker to execute...
TRENDnet TEW-755AP Stack Overflow Vulnerability (CNVD-2023-18950)
The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from the lack of size checking of input data in the setbgnum parameter of the icpsetbgimg sub41DD68 function, which can be exploited by an attacker to execute arbitrary...
TRENDnet TEW-755AP stack overflow vulnerability (CNVD-2023-18953)
The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from the lack of size checking of input data in the rejecturl parameter of the reject sub41BD60 function, which can be exploited by an attacker to execute arbitrary code...
TRENDnet TEW-755AP Stack Overflow Vulnerability
The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from a lack of size checking of input data in the reboottype parameter of the wizardipv6 sub41C380 function, which can be exploited by an attacker to execute arbitrary...