7654 matches found
The vulnerability of the Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS operating systems allows a hacker to cause a service failure.
The vulnerability of the Routing Protocol Daemon RPD in Juniper Networks’ Junos OS operating systems is related to insufficient checking of the type of input data provided. Exploiting this vulnerability can allow a malicious actor to cause service failures using the IPv6 network protocol...
Google Chrome 缓冲区错误漏洞
Google Chrome is a web browser from Google, Inc. A buffer overflow vulnerability exists in Google Chrome Media Galleries, which is caused by a failure of Media Gallery to properly bounds check. An attacker could exploit the vulnerability to make an overflow buffer and execute arbitrary code on th...
AlmaLinux 8 : samba (ALSA-2022:7111)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:7111 advisory. - A flaw was found in Samba. Some SMB1 write requests were not correctly range-checked to ensure the client had sent enough data to fulfill the write, allowing...
Exploit for Argument Injection in Zmanda Amanda
Suggested description A privilege escalation flaw was foun...
samba: server memory information leak via SMB1
A flaw was found in Samba. Some SMB1 write requests were not correctly range-checked to ensure the client had sent enough data to fulfill the write, allowing server memory contents to be written into the file or printer instead of client-supplied data. The client cannot control the area of the...
Jenkins Tuleap Git Branch Source Plugin 安全漏洞
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...
Qualcomm WLAN 缓冲区错误漏洞
Qualcomm WLAN is a wireless LAN component from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm WLAN that stems from a lack of length checking, leading to information leakage...
Design/Logic Flaw
Lack of IP address checking in GitLab EE affecting all versions from 14.2 prior to 15.2.5, 15.3 prior to 15.3.4, and 15.4 prior to 15.4.1 allows a group member to bypass IP restrictions when using a deploy token...
PT-2022-21530 · Gitlab · Gitlab Ce/Ee +1
Name of the Vulnerable Software and Affected Versions: GitLab EE versions 14.2 through 15.2.4 GitLab EE versions 15.3 through 15.3.3 GitLab EE versions 15.4 through 15.4.0 Description: The issue is related to a lack of IP address checking in GitLab EE, which allows a group member to bypass IP...
Tenda AC10 缓冲区错误漏洞
The Tenda AC10 is a wireless router. The Tenda AC10 suffers from a stack buffer overflow vulnerability that is caused by a failure of the addWifiMacFilter function to properly bounds check. An attacker can exploit this vulnerability to cause a buffer overflow and execute arbitrary code on the...
CVE-2022-3286
Lack of IP address checking in GitLab EE affecting all versions from 14.2 prior to 15.2.5, 15.3 prior to 15.3.4, and 15.4 prior to 15.4.1 allows a group member to bypass IP restrictions when using a deploy token...
UNISOC chipset 安全漏洞
The UNISOC chipset is an integrated circuit chipset from China's Ziguang Zhanrui UNISOC. A security vulnerability exists in the UNISOC chipset that stems from a lack of privilege checking in the recorder service, which could lead to elevated privileges in the contact service without additional...
UNISOC chipset 缓冲区错误漏洞
UNISOC chipset is an integrated circuit chipset from China's Unisoc Corporation. A security vulnerability exists in the UNISOC chipset. The vulnerability stems from a lack of boundary checking in the sensor driver, which may result in out-of-bounds writes, and may be exploited by an attacker to...
UNISOC chipset缓冲区错误漏洞
The UNISOC chipset is an integrated circuit chipset from China's Unisolar Corporation UNISOC. A security vulnerability exists in UNISOC chipset. The vulnerability stems from the lack of boundary checking in the face detection driver, which may result in out-of-bounds writes, which can be exploite...
UNISOC chipset 安全漏洞
UNISOC chipset is an integrated circuit chipset from China's Unisoc Corporation. A security vulnerability exists in UNISOC chipset due to a lack of privilege checking in unit services, which can be exploited by an attacker to cause a local denial of service in the kernel...
UNISOC chipset 安全漏洞
UNISOC chipset is an integrated circuit chipset from China's Unisoc Corporation. A security vulnerability exists in UNISOC chipset due to a lack of privilege checking in the messaging service, which can be exploited by an attacker to potentially cause a local information disclosure, and the...
UNISOC chipset 安全漏洞
UNISOC chipset is an integrated circuit chipset from China's Unisoc Corporation. A security vulnerability exists in the UNISOC chipset, which stems from a lack of privilege checking in the music service, and can be exploited by an attacker to cause a local denial of service in the music service...
Ubuntu: Security Advisory (USN-5673-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-5673-1: unzip vulnerabilities
It was discovered that unzip did not properly handle unicode strings under certain circumstances. If a user were tricked into opening a specially crafted zip file, an attacker could possibly use this issue to cause unzip to crash, resulting in a denial of service, or possibly execute arbitrary...
USN-5673-1 unzip vulnerabilities
It was discovered that unzip did not properly handle unicode strings under certain circumstances. If a user were tricked into opening a specially crafted zip file, an attacker could possibly use this issue to cause unzip to crash, resulting in a denial of service, or possibly execute arbitrary...