7653 matches found
CVE-2021-25487
CVE-2021-25487 : Samsung Mobile Devices exhibit an out-of-bounds/read boundary issue in the modem interface driver’s set_skb_priv() prior to SMR Oct-2021 Release 1. This OOB read can lead to arbitrary code execution by dereferencing an invalid function pointer. Connected sources consistently desc...
CVE-2021-25483
Summary of CVE-2021-25483 (livfivextractor) : The vulnerability affects the livfivextractor library prior to Samsung SMR Oct-2021 Release 1, due to a lack of boundary checking in a buffer which allows an out-of-bounds read. Reported across multiple feeds (NVD, Red Hat advisory, CVE lists, and CNN...
CVE-2021-25483
Lack of boundary checking of a buffer in livfivextractor library prior to SMR Oct-2021 Release 1 allows OOB read...
IBM Sterling File Gateway 授权问题漏洞
IBM Sterling File Gateway is an application for transferring files between internal and external partners, allowing you to more securely and reliably transfer files with trading partners. IBM Sterling File Gateway versions 2.2.0.0-5.2.6.53, 6.0.0.0- 6.0.0.6, 6.0 .1.0-6.0.3.4, and 6.1.0.0-6.1.0.1...
CVE-2021-25487
Lack of boundary checking of a buffer in setskbpriv of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read and it results in arbitrary code execution by dereference of invalid function pointer. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed...
Silverstripe SilverStripe 访问控制错误漏洞
Silverstripe SilverStripe is New Zealand SilverStripe Silverstripe company's set of open source programming framework and content management system CMS. The system has support for multiple languages , cross-platform and other features . An access control error vulnerability exists in SilverStripe...
The vulnerability of software for performing virtualization at the operating system level, also known as containerization, Singularity, arises from insufficient checking of unusual or exceptional states. This allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.
The vulnerability of software for performing virtualization at the operating system level, also known as containerization, is related to improper checking of the return value of functions. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data, compromise it...
Qualcomm 多款产品缓冲区错误漏洞
The Qualcomm QCA6574AU and SDX55 are both products of Qualcomm Incorporated Qualcomm, U.S.A. The QCA6574AU is a central processing unit CPU product.The SDX55 is a modem. A security vulnerability exists in multiple Qualcomm products that could result in out-of-bounds memory accesses due to imprope...
多款Qualcomm产品缓冲区错误漏洞
Qualcomm MSM8996AU and others are products of Qualcomm Incorporated, U.S.A. The MSM8996AU is a central processing unit CPU product.The QCA6574AU is a central processing unit CPU product.The SDX24 is a modem. A security vulnerability exists in Qualcomm that could result in a stack overflow due to...
Ubuntu 18.04 LTS : Mercurial vulnerabilities (USN-5102-1)
The remote Ubuntu 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5102-1 advisory. It was discovered that Mercurial mishandled symlinks in subrepositories. An attacker could use this issue to write arbitrary files to the targets...
ntfs-3g: Heap buffer overflow in ntfs_compressed_pwrite()
The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...
ntfs-3g: Heap buffer overflow triggered by a specially crafted Unicode string
The ntfs3g package is susceptible to a heap overflow on crafted unicode input. When processing NTFS unicode input, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...
ntfs-3g: Heap buffer overflow in ntfs_get_attribute_value() caused by an unsanitized attribute
The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...
ntfs-3g: Heap buffer overflow in ntfs_inode_real_open() triggered by a specially crafted NTFS inode
The ntfs3g package is susceptible to a heap overflow on crafted input. When processing NTFS inodes, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...
ntfs-3g: Heap buffer overflow in ntfs_inode_lookup_by_name()
The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...
ntfs-3g: Heap buffer overflow triggered by a specially crafted MFT section
The ntfs3g package is susceptible to a heap overflow on crafted input. When processing the MFT, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...
ntfs-3g: Heap buffer overflow in ntfs_get_attribute_value() caused by an unsanitized attribute
The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...
ntfs-3g: Out-of-bounds access in ntfs_decompress()
The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...
ntfs-3g: Heap buffer overflow in ntfs_compressed_pwrite()
The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...
ntfs-3g: Heap buffer overflow in ntfs_inode_lookup_by_name()
The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...