7653 matches found
CVE-2021-39049
IBM i2 Analyst's Notebook 9.2.0, 9.2.1, and 9.2.2 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and gain lower level privileges. IBM X-Force ID: 214439...
CVE-2021-39048
IBM Spectrum Protect Client 7.1 and 8.1 is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A local attacker could exploit this vulnerability and cause a denial of service. IBM X-Force ID: 214438...
Stack overflow
IBM i2 Analyst's Notebook 9.2.0, 9.2.1, and 9.2.2 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and gain lower level privileges. IBM X-Force ID: 214439...
Stack overflow
IBM i2 Analyst's Notebook 9.2.0, 9.2.1, and 9.2.2 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and gain lower level privileges. IBM X-Force ID: 214440...
Stack overflow
IBM Spectrum Protect Client 7.1 and 8.1 is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A local attacker could exploit this vulnerability and cause a denial of service. IBM X-Force ID: 214438...
CVE-2021-39050
IBM i2 Analyst's Notebook 9.2.0, 9.2.1, and 9.2.2 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and gain lower level privileges. IBM X-Force ID: 214440...
CVE-2021-39048
CVE-2021-39048 affects IBM Spectrum Protect Client 7.1 and 8.1, with a stack-based buffer overflow due to improper bounds checking. Local attackers could cause a denial of service. Public sources (e.g., Gentoo GLSA 202209-02) indicate fixes are available: upgrade to IBM Spectrum Protect Client 7....
PT-2021-22359 · Ibm · Ibm Spectrum Protect Client
Name of the Vulnerable Software and Affected Versions: IBM Spectrum Protect Client versions 7.1 through 8.1 Description: The issue is caused by improper bounds checking, leading to a stack-based buffer overflow. A local attacker could exploit this and cause a denial of service. Recommendations: F...
About the security content of macOS Big Sur 11.6.2
About the security content of macOS Big Sur 11.6.2 This document describes the security content of macOS Big Sur 11.6.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or...
About the security content of Security Update 2021-008 Catalina
About the security content of Security Update 2021-008 Catalina This document describes the security content of Security Update 2021-008 Catalina. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has...
Fortinet FortiOS Arbitrary File Download
Fortinet FortiOS "execute restore src-vis" downloads code without integrity checking, allowing an attacker to arbitrarily download files...
Bentley Systems Bentley View 缓冲区错误漏洞
Bentley View is a free viewer from Bentley Systems, Inc. Bentley View is vulnerable to a buffer overflow vulnerability caused by incorrect boundary checking when parsing JT files. An attacker could exploit the vulnerability to cause a buffer overflow and execute arbitrary code on the system...
Samsung Ldfw 缓冲区错误漏洞
Samsung Ldfw is a loadable firmware from Samsung South Korea. A security vulnerability exists in Samsung LDFW and BL31 that stems from incorrect boundary checking of the LDFW and BL31 security logs, allowing an attacker to arbitrarily write to memory and execute code...
SUSE SLES12 Security Update : nodejs14 (SUSE-SU-2021:3886-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3886-1 advisory. nodejs14 was updated to 14.18.1: deps: update llhttp to 2.1.4 Security fixes: - HTTP Request Smuggling due to spaced in headers bsc1191601,...
Bluez buffer overflow vulnerability (CNVD-2021-95605)
BlueZ is a Bluetooth protocol stack written in C. It is primarily used to provide support for the core Bluetooth layers and protocols. A security vulnerability exists in Bluetoothd in BlueZ version 5.48 and earlier, which stems from a program receiving data without any size checking, and which ca...
The vulnerability of the TightVNC Viewer (tvnviewer.exe) component of the TightVNC remote desktop access system allows a hacker to execute arbitrary code.
The vulnerability of the TightVNC Viewer tvnviewer.exe component of the TightVNC remote desktop access system is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the command-line interface (CLI) of Cisco Firepower Threat Defense (FTD) microprogramming system allows a attacker to execute arbitrary commands.
The vulnerability of the command-line interface CLI of Cisco Firepower Threat Defense FTD microprogramming systems lies in insufficient checking of command arguments. Exploiting this vulnerability allows an attacker to execute arbitrary commands...
[SECURITY] Fedora 34 Update: roundcubemail-1.4.12-1.fc34
RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...
The vulnerability of the vDaemon software from Cisco IOS XE SD-WAN allows a attacker to trigger buffer overflows.
The vulnerability of the vDaemon software in Cisco IOS XE SD-WAN lies in insufficient boundary checking during traffic processing. Exploiting this vulnerability can allow a remote attacker to trigger buffer overflows...
MediaTek Apusys 缓冲区错误漏洞
MediaTek Apusys is a chipset from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Apusys that stems from a read out-of-bounds condition that may occur in apusys due to incorrect boundary checking. This could result in the disclosure of local information that...