CVE-2019-5798

Lack of correct bounds checking in Skia in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...

CVE-2019-5798

Lack of correct bounds checking in Skia in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...

chromium-browser: Out of bounds read in Skia

Lack of correct bounds checking in Skia in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...

Citrix NetScaler Gateway and Citrix Application Delivery Controller Buffer Overflow Vulnerability

Citrix Systems NetScaler Gateway and Citrix Application Delivery Controller ADC Citrix NetScaler Gateway and Citrix Application Delivery Controller are both products of Citrix Systems NetScaler Gateway and Citrix Application Delivery Controller are both products of Citrix Systems, Inc.Citrix...

Intel® Graphics Driver for Windows* 2019.1 QSR Advisory

Summary: Multiple potential security vulnerabilities in Intel® Graphics Driver for Windows may allow denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2019-0113 Description: Insufficient bounds checking in IntelR...

CVE-2019-0113

Insufficient bounds checking in IntelR Graphics Drivers before version 10.18.14.5067 aka 15.36.x.5067 and 10.18.10.5069 aka 15.33.x.5069 may allow an authenticated user to potentially enable a denial of service via local access...

CVE-2019-0113

Insufficient bounds checking in IntelR Graphics Drivers before version 10.18.14.5067 aka 15.36.x.5067 and 10.18.10.5069 aka 15.33.x.5069 may allow an authenticated user to potentially enable a denial of service via local access...

Out-of-bounds

Insufficient bounds checking in IntelR Graphics Drivers before version 10.18.14.5067 aka 15.36.x.5067 and 10.18.10.5069 aka 15.33.x.5069 may allow an authenticated user to potentially enable a denial of service via local access...

CVE-2019-0113

Insufficient bounds checking in IntelR Graphics Drivers before version 10.18.14.5067 aka 15.36.x.5067 and 10.18.10.5069 aka 15.33.x.5069 may allow an authenticated user to potentially enable a denial of service via local access...

CVE-2019-0113

CVE-2019-0113 affects Intel Graphics Driver for Windows. The issue is insufficient bounds checking in the driver before versions 10.18.14.5067 (aka 15.36.x.5067) and 10.18.10.5069 (aka 15.33.x.5069), which may allow an authenticated local user to cause a denial of service. Intel’s advisory INTEL-...

Arbitrary Code Execution

Artifex Ghostscript is vulnerable to arbitrary code execution. This is because incorrect restoration of privilege checking when running out of stack during exception handling. An attacker could use this flaw to supply crafted PostScript to execute code using the pipe instruction...

Directory traversal

Directory Traversal was discovered in University of Cambridge moducamwebauth before 2.0.2. The key identification field "kid" of the IdP's HTTP response message "WLS-Response" can be manipulated by an attacker. The "kid" field is not signed like the rest of the message, and manipulation is...

CVE-2018-19989

In the /HNAP1/SetQoSSettings message, the uplink parameter is vulnerable, and the vulnerability affects D-Link DIR-822 Rev.B 202KRb06 and DIR-822 Rev.C 3.10B06 devices. In the SetQoSSettings.php source code, the uplink parameter is saved in the /bwc/entry:1/bandwidth and /bwc/entry:2/bandwidth...

Command injection

In the /HNAP1/SetClientInfoDemo message, the AudioMute and AudioEnable parameters are vulnerable, and the vulnerabilities affect D-Link DIR-868L Rev.B 2.05B02 devices. In the SetClientInfoDemo.php source code, the AudioMute and AudioEnble parameters are saved in the ShellPath script file without...

Design/Logic Flaw

In the /HNAP1/SetQoSSettings message, the uplink parameter is vulnerable, and the vulnerability affects D-Link DIR-822 Rev.B 202KRb06 and DIR-822 Rev.C 3.10B06 devices. In the SetQoSSettings.php source code, the uplink parameter is saved in the /bwc/entry:1/bandwidth and /bwc/entry:2/bandwidth...

CVE-2018-19990

In the /HNAP1/SetWiFiVerifyAlpha message, the WPSPIN parameter is vulnerable, and the vulnerability affects D-Link DIR-822 B1 202KRb06 devices. In the SetWiFiVerifyAlpha.php source code, the WPSPIN parameter is saved in the $rphyinf1."/media/wps/enrollee/pin" and $rphyinf2."/media/wps/enrollee/pi...

CVE-2018-19989

CVE-2018-19989 affects D-Link DIR-822 Rev.B 202KRb06 and DIR-822 Rev.C 3.10B06 via the /HNAP1/SetQoSSettings uplink parameter. In SetQoSSettings.php the uplink value is saved to internal memory at /bwc/entry:1/bandwidth and /bwc/entry:2/bandwidth without any regex validation and later consumed by...

EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1485)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way the Linux kernel's Crypto subsystem handled automatic loading of kernel modules. A local user could u...

CVE-2018-6243

NVIDIA Tegra TLK Widevine Trust Application contains a vulnerability in which missing the input parameter checking of video metadata count may lead to Arbitrary Code Execution, Denial of Service or Escalation of Privileges. Android ID: A-72315075. Severity Rating: High. Version: N/A...

CVE-2018-6243

NVIDIA Tegra TLK Widevine Trust Application contains a vulnerability in which missing the input parameter checking of video metadata count may lead to Arbitrary Code Execution, Denial of Service or Escalation of Privileges. Android ID: A-72315075. Severity Rating: High. Version: N/A...