93 matches found
Consensus flaw during block processing in github.com/ethereum/go-ethereum
Impact A consensus-vulnerability in Geth could cause a chain split, where vulnerable versions refuse to accept the canonical chain. Description A flaw was repoted at 2020-08-11 by John Youngseok Yang Software Platform Lab, where a particular sequence of transactions could cause a consensus failur...
AZL-31148 CVE-2020-27815 affecting package kernel for versions less than 5.15.135.1-2
A flaw was found in the JFS filesystem code in the Linux Kernel which allows a local attacker with the ability to set extended attributes to panic the system, causing memory corruption or escalating privileges. The highest threat from this vulnerability is to confidentiality, integrity, as well a...
Design/Logic Flaw
TensorFlow is an end-to-end open source platform for machine learning. TFLite's convolution codehttps://github.com/tensorflow/tensorflow/blob/09c73bca7d648e961dd05898292d91a8322a9d45/tensorflow/lite/kernels/conv.cc has multiple division where the divisor is controlled by the user and not checked ...
Elasticsearch 代码问题漏洞
Elasticsearch is a set of Dutch Elasticsearch company built on Lucene open source distributed RESTful search engine . The product is mainly used in cloud computing , and supports data indexing via HTTP using JSON . A code issue vulnerability exists in Elasticsearch ODFE Open Distro versions prior...
GHSA-58QP-5328-V7MH cumulative-distribution-function Infinite Loop vulnerability
Impact Apps using this library on improper data may crash or go into an infinite-loop In the case of a nodejs server-app using this library to act on invalid non-numeric data, the nodejs server may crash. This may affect other users of this server and/or require the server to be rebooted for prop...
Dekart Private Disk Code Issue Vulnerability
Dekart Private Disk is an automated mail processing software from Dekart USA. provides the best AES 256-bit data encryption software for Windows. A code issue vulnerability exists in Dekart Private Disk that originates when a networked system or product performs an operation in memory without...
CVE-2020-12621
The Teamwire application 5.3.0 for Android allows physically proximate attackers to exploit a flaw related to the pass-code component...
A flaw in native PKCS#11 code can lead to a remotely triggerable assertion failure in pk11.c
...
Foxit Reader Code Problem Vulnerability
Foxit Reader is a Chinese Foxit Foxit company's a PDF document reader. A code issue vulnerability exists in Foxit Reader versions prior to 2.4.4. The vulnerability stems from a design or implementation problem in the code development process of a networked system or product. An attacker could...
Open-Xchange: Use after free in smtp_server_connection_handle_command
Function smtpserverconnectionhandlecommand in src/lib-smtp/smtp-server-connection.c creates a variable named cmd with cmd = smtpservercommandnewtmpconn, cmdname, cmdparams; It gets used with return cmd == NULL || !cmd-inputlocked; ie cmd-inputlocked dereferences the pointer But we can get to this...
CVE-2018-20784
The CFS Linux kernel scheduler mishandles handling of leaf cfsrq's in the kernel/sched/fair.c code, which allows a local unprivileged attacker to cause a denial of service DoS by entering an infinite loop in updateblockedaverages function by inducing a high load on a system. Due to the nature of...
Reliable Controls LicenseManager Code Issue Vulnerability
RC-LicenseManager is a credential manager. A code issue vulnerability exists in Reliable Controls LicenseManager. The vulnerability arises from an issue with improper design during code development for a networked system or product. An attacker could use this vulnerability to insert malicious cod...
Ubuntu shiftfs refcount Underflow / Type Confusion
Ubuntu: refcount underflow and type confusion in shiftfs Tested on Ubuntu 19.10, kernel "5.3.0-19-generic 20-Ubuntu". Ubuntu ships a filesystem "shiftfs" in fs/shiftfs.c in the kernel tree that doesn't exist upstream. This filesystem can be mounted from user namespaces, meaning that this is...
Design/Logic Flaw
In GetSimpleCMS 3.3.15, admin/upload.php blocks .html uploads but Internet Explorer render HTML elements in a .eml file, because of admin/upload-uploadify.php, and validatesafefile in admin/inc/securityfunctions.php...
CVE-2018-10876
A flaw was found in Linux kernel in the ext4 filesystem code. A use-after-free is possible in ext4extremovespace function when mounting and operating a crafted ext4 image...
CURL-CVE-2017-8818 SSL out of buffer access
libcurl contains an out boundary access flaw in SSL related code. When allocating memory for a connection the internal struct called connectdata, a certain amount of memory is allocated at the end of the struct to be used for SSL related structs. Those structs are used by the particular SSL libra...
Tinkerbell Mall app has a logic design flaw at the verification code
Tinker Mall app is a mobile app for trading time and skills. A logic design vulnerability exists at the Tinkerbell Mall app verification code. An attacker can register an arbitrary account by exploiting the vulnerability...
Design/Logic Flaw
There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed...
iOS 9.3.4 Patches Critical Code Execution Flaw
Apple last week patched a critical iOS memory corruption vulnerability that could allow attackers to execute code on compromised devices. The flaw was found by Team Pangu, a Chinese hacker group that specializes in building iOS jailbreak tools. The vulnerability is fixed in iOS 9.3.4. “An...
VuFind 1.0 Cross Site Scripting
VuFind 1.0 Web Application Reflected XSS Cross-site Scripting 0-Day Bug Security Issue Exploit Title: VuFind Results? &lookfor parameter Reflected XSS Web Security Vulnerability Product: VuFind Vendor: VuFind Vulnerable Versions: 1.0 Tested Version: 1.0 Advisory Publication: September 20, 2015...