879 matches found
VulnCheck KEV: CVE-2024-25918
Improper Control of Generation of Code 'Code Injection' vulnerability in InstaWP InstaWP Connect instawp-connect.This issue affects InstaWP Connect: from n/a through = 0.1.0.8...
PT-2024-5016 · Sap · Sap Aba
Name of the Vulnerable Software and Affected Versions: SAP ABA Application Basis versions 700, 701, 702, 731, 740, 750, 751, 752, 75C, 75I Description: The issue in SAP ABA is related to incorrect code generation management, allowing an attacker with remote execution authorization to use a...
PT-2024-3137 · Microsoft · Edge
Name of the Vulnerable Software and Affected Versions: Microsoft Edge Chromium-based affected versions not specified Description: The issue is related to incorrect code generation management in Microsoft Edge, allowing a remote attacker to bypass existing security restrictions. There is no...
PT-2024-4418 · Clang +2 · Clang +2
Name of the Vulnerable Software and Affected Versions: LLVM versions prior to 18.1.3 Description: The issue is related to a buffer overflow in memory when handling the LR register connection due to incorrect code generation management. This can lead to an exploitable error in the flow of control,...
CVE-2023-6548
Improper Control of Generation of Code 'Code Injection' in NetScaler ADC and NetScaler Gateway allows an attacker with access to NSIP, CLIP or SNIP with management interface to perform Authenticated low privileged remote code execution on Management Interface...
CVE-2023-46623
Improper Control of Generation of Code 'Code Injection' vulnerability in TienCOP WP EXtra.This issue affects WP EXtra: from n/a through 6.2...
CVE-2023-47840
Improper Control of Generation of Code 'Code Injection' vulnerability in Qode Interactive Qode Essential Addons.This issue affects Qode Essential Addons: from n/a through 1.5.2...
PT-2023-8708 · Unknown · Myq Print Server
Name of the Vulnerable Software and Affected Versions: MyQ Print Server affected versions not specified Description: The issue is related to incorrect code generation management in the MyQ Print Server, allowing a remote attacker to execute arbitrary code. This could potentially expose sensitive...
PT-2023-32139 · Frauscher · Fds102 For Fadc/Fadci +1
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: This issue allows a remote attacker with low privileges to exploit Improper Control of Generation of Code, also known as 'Code Injection', to gain full...
Weak 2FA Code Generation
Fides is vulnerable to Weak Code Generation. The vulnerability is due to the usage of the python random module used for generating one time codes in the Privacy and Consent request process which is considered to be a cryptographically weak pseudo-random number generator. This issue allows an...
[SECURITY] Fedora 38 Update: CuraEngine-5.3.0-5.fc38
CuraEngine is a C++ console application for 3D printing G-code generation. It has been made as a better and faster alternative to the old Skeinforge engine. This is just a console application for G-code generation. For a full graphical application look at cura with is the graphical frontend for...
[SECURITY] Fedora 37 Update: CuraEngine-4.13.1-7.fc37
CuraEngine is a C++ console application for 3D printing G-code generation. It has been made as a better and faster alternative to the old Skeinforge engine. This is just a console application for G-code generation. For a full graphical application look at cura with is the graphical frontend for...
Fedora: Security Advisory (FEDORA-2023-1d57a86dfa)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for CuraEngine (FEDORA-2023-f3c4404efd)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PT-2023-6940 · Moodle · Moodle
Name of the Vulnerable Software and Affected Versions: Moodle affected versions not specified Description: A remote code execution risk was identified in the Lesson activity of Moodle. This issue is related to incorrect code generation management. By default, the Lesson activity was only availabl...
Dvenom - Tool That Provides An Encryption Wrapper And Loader For Your Shellcode
Double Venom DVenom is a tool that helps red teamers bypass AVs by providing an encryption wrapper and loader for your shellcode. Capable of bypassing some well-known antivirus AVs. Offers multiple encryption methods including RC4, AES256, XOR, and ROT. Produces source code in C, Rust, PowerShell...
[SECURITY] Fedora 39 Update: compiler-rt-17.0.2-1.fc39
The compiler-rt project is a part of the LLVM project. It provides implementation of the low-level target-specific hooks required by code generation, sanitizer runtimes and profiling library for code instrumentation, and Blocks C language extension...
Trane Symbio Improper Control of Generation of Code (CVE-2021-38448)
The affected controllers do not properly sanitize the input containing code syntax. As a result, an attacker could craft code to alter the intended controller flow of the software. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more informatio...
Amazon Linux 2023 : cpp, gcc, gcc-c++ (ALAS2023-2023-342)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-342 advisory. An issue was found in a defense in depth feature of the GCC compiler on aarch64 platforms. The stack protector feature -fstack-protector did not detect or defend against overflows of dynamically-sized...
Medium: gcc
Issue Overview: An issue was found in a defense in depth feature of the GCC compiler on aarch64 platforms. The stack protector feature -fstack-protector did not detect or defend against overflows of dynamically-sized local variables. This update to the GCC compiler remedies code generation for th...