CVE-2022-35173

An issue was discovered in Nginx NJS v0.7.5. The JUMP offset for a break instruction was not set to a correct offset during code generation, leading to a segmentation violation...

CVE-2025-58673 WordPress WP User Frontend Plugin <= 4.1.12 - Content Injection Vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in weDevs WP User Frontend wp-user-frontend allows Code Injection.This issue affects WP User Frontend: from n/a through = 4.1.12...

The vulnerability of the IDispatch interface on Windows operating systems allows a perpetrator to execute arbitrary code with SYSTEM level privileges.

The vulnerability of the IDispatch interface on Windows operating systems is related to incorrect code generation. Exploiting this vulnerability allows an attacker to execute arbitrary code with SYSTEM level privileges...

The vulnerability of the System component of the Android operating system, allowing a hacker to execute arbitrary code

The vulnerability of the System component of the Android operating system is related to incorrect code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Windows operating system’s DNS server allows a hacker to execute arbitrary code.

The vulnerability of the Windows operating system’s DNS server is related to improper handling of code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Mozilla: Incorrect code generation on 32-bit ARM devices

The Mozilla Foundation Security Advisory describes this flaw as: Incorrect code generation could have led to unexpected numeric conversions and potential undefined behavior. This issue only affects 32-bit ARM devices...

The vulnerabilities of Siemens SIMATIC PCS 7, SIMATIC S7-PM, and SIMATIC STEP 7 operating systems allow attackers to gain increased privileges.

The vulnerability of Siemens SIMATIC PCS 7, SIMATIC S7-PM, and SIMATIC STEP 7 process control systems is related to incorrect code generation. Exploiting this vulnerability can allow attackers to enhance their privileges remotely...

Mozilla: Incorrect code generation during JIT compilation

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of invalidating JIT code while following an iterator. The newly generated code could be overwritten incorrectly, leading to a potentially exploitable crash...

SUSE-SU-2023:0763-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Update to version 102.9.0 ESR bsc1209173: - CVE-2023-28159: Fullscreen Notification could have been hidden by download popups on Android - CVE-2023-25748: Fullscreen Notification could have been hidden by window prompts on Android -...

CVE-2023-27477

wasmtime is a fast and secure runtime for WebAssembly. Wasmtime's code generation backend, Cranelift, has a bug on x8664 platforms for the WebAssembly i8x16.select instruction which will produce the wrong results when the same operand is provided to the instruction and some of the selected indice...

The vulnerability of the microprogramming software of the input/output controller for controlling and monitoring the Control By Web X-600M, related to errors during code generation, allows a perpetrator to execute arbitrary code.

The vulnerability of the microprogramming software of the input/output controller for controlling and monitoring the Control By Web X-600M is related to errors during code generation. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code by running scripts written ...

PT-2022-5773 · Ami · Megarac

Name of the Vulnerable Software and Affected Versions: MegaRAC affected versions not specified Description: The issue is related to errors in code generation in the AMI MegaRAC Redfish API interface, which can be exploited by a remote attacker to execute arbitrary code by sending a specially...

The vulnerability of the server management application CentOS Web Panel lies in improper code generation, allowing attackers to execute arbitrary code.

The vulnerability of the CentOS Web Panel server management application is related to incorrect code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created request...

The vulnerability of the DNS server of the Microsoft Windows operating system, allowing a hacker to execute arbitrary code.

The vulnerability of the DNS server of the Microsoft Windows operating system is related to incorrect code generation management. Exploitation of this vulnerability can allow a remote attacker to execute arbitrary code...

The vulnerability of the plugin for viewing RAW images, related to improper handling of code generation, allows a hacker to execute arbitrary code.

The vulnerability of the plugin for viewing RAW images is related to incorrect code generation. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of HEVC Video Extensions relates to improper code generation, allowing attackers to execute arbitrary code.

The vulnerability of HEVC Video Extensions is related to incorrect code generation management. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of HEVC Video Extensions relates to improper code generation, allowing attackers to execute arbitrary code.

The vulnerability of HEVC Video Extensions is related to incorrect code generation management. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the Resilient File System (ReFS) in Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Resilient File System ReFS in Windows operating systems is related to errors in code generation. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially crafted request...

PT-2022-1544 · Unknown · Hevc Video Extensions

Name of the Vulnerable Software and Affected Versions: HEVC Video Extensions affected versions not specified Description: The issue is related to incorrect code generation management in the HEVC Video Extensions codec. Exploitation of this issue may allow an attacker to execute arbitrary code...

The vulnerability of the Windows Address Book on Windows operating systems, related to errors in code generation, allows a hacker to execute arbitrary code.

The vulnerability of the Windows Address Book in operating systems is related to errors in code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code on the target system...