1436 matches found
QEMU code issue vulnerability (CNVD-2021-39676)
QEMU Quick Emulator is a set of simulation processor software by Fabrice Bellard, a French individual developer. The software is fast and cross-platform. A code issue vulnerability exists in QEMU, which stems from a found a division by zero issue in the dwc2handlepacket handler package in the...
CVE-2021-22519
Execute arbitrary code vulnerability in Micro Focus SiteScope product, affecting versions 11.40,11.41 , 2018.0511.50, 2018.0811.51, 2018.1111.60, 2019.0211.70, 2019.0511.80, 2019.0811.90, 2019.1111.91, 2020.0511.92, 2020.1011.93. The vulnerability could allow remote attackers to execute arbitrary...
Locked funds from tokenization are credited twice to user leading to protocol fund loss
Handle 0xRajeev Vulnerability details Impact The tokens optionally locked during tokenization are released twice on acquiring conviction back from a NFT. The incorrect double debit of locked funds during tokenization has been filed as a separate finding because it is not necessarily related and...
Zephyr Code Issues Vulnerabilities
Zephyr is a small real-time operating system for connected, resource-constrained embedded devices. A code issue vulnerability exists in 802154 ACK frame handling in Zephyr version 2.4.0. An attacker can exploit this vulnerability by sending malicious frames that result in a null pointer...
Fujitsu ScanSnap Manager 代码问题漏洞
Fujitsu ScanSnap Manager is a scanner driver required to manage ScanSnap scanned documents from Fujitsu Japan. ScanSnap Manager: A code issue vulnerability exists in versions prior to 7.0L20, which arises from the application loading DLL libraries in an insecure manner. A local attacker could...
Google TensorFlow 缓冲区错误漏洞
Google TensorFlow is an end-to-end open source machine learning platform. A heap out-of-bounds access vulnerability exists in Google TensorFlow unicode ops. An attacker can exploit the vulnerability to access data outside of heap allocation array boundaries in tf.raw\u ops.unicodeNCode...
Sensorweb ScadaBR 代码问题漏洞
Sensorweb ScadaBR is a suite of open source software for developing automated data acquisition and monitoring applications from Sensorweb, Inc. A code issue vulnerability exists in ScadaBR 1.0 / 1.1CE. The vulnerability stems from a lack of effective privilege licensing and access control measure...
Golo Laravel theme 代码问题漏洞
Golo Laravel theme is a Golo open source application . It is used to create a local or global catalog site. Golo Laravel theme version 1.1.5 has a code issue vulnerability...
Apache OFBiz Code Issue Vulnerability
Apache OFBiz is the United States Apache Apache Foundation of a set of enterprise resource planning ERP system. The system provides a set of Java-based Web application components and tools. A code issue vulnerability exists in Apache OFBiz versions prior to 17.12.07 that stems from insecure...
GPAC Null Pointer Dereference Vulnerability (CNVD-2021-30179)
GPAC is a multimedia framework for rich media and distributed under the LGPL license. A null pointer dereference vulnerability exists in the MergeTrack function in GPAC version 1.0.1. An attacker can exploit this vulnerability via specially crafted files to cause a denial of service...
Oracle Support Tools 代码问题漏洞
Oracle Support Tools is a set of Oracle support tools from Oracle Corporation USA. OSS Support Tools Diagnostic Assistant Prior to 2.12.41 A code issue vulnerability exists that allows highly privileged attackers to compromise OSS Support Tools via HTTP network access. This could result in...
SUSE: Security Advisory (SUSE-SU-2017:2390-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Dell EMC Storage Resource Manager 代码问题漏洞
Dell EMC Storage Resource Manager is an application from Dell, Inc. A comprehensive monitoring and reporting solution that helps IT visualize, analyze and optimize today's storage infrastructure while providing a management framework to support software-defined storage investments. A code issue...
Sonicwall SonicWall Email Security Appliance 代码问题漏洞
SonicWall Email Security is an EMAIL protection device. A security vulnerability exists in SonicWall Email Security that could be exploited by remote attackers to submit a special request to upload arbitrary files to the system...
CVE-2021-22195
Client side code execution in gitlab-vscode-extension v3.15.0 and earlier allows attacker to execute code on user system...
Data Edge CA eHealth Performance Manager 代码问题漏洞
Data Edge CA eHealth Performance Manager is an application from Data Edge Ireland. provides real-time and predictive performance analytics to take corrective action before business processes are negatively impacted. A code issue vulnerability exists in Data Edge CA eHealth Performance Manager...
MuleSoft Mule 代码问题漏洞
Mulesoft MuleSoft Mule is a lightweight integration platform from the US company MuleSoft Mulesoft. The platform supports management of message routing between nodes, data mapping, and more. A code issue vulnerability exists in MuleSoft Mule, which originates in the Mule runtime component. The...
Bosch Video Client 代码问题漏洞
Bosch Video Client is an application from the German company Bosch. It is used to display cameras connected to the network in real time. A code issue vulnerability exists in Bosch Video Client, which can be exploited by an attacker to execute arbitrary code on a victim's system...
Bosch BVMS 代码问题漏洞
Bosch BVMS is an application system from Bosch, Germany. It is used for video management. A code issue vulnerability exists in Bosch BVMS and BVMS Viewer, which can be exploited by an attacker to execute arbitrary code on the victim's system...
OpenSSL 代码问题漏洞
OpenSSL is an open source capable general-purpose cryptographic library from the Openssl team that implements the Secure Sockets Layer SSLv2/v3 and Secure Transport Layer TLSv1 protocols. The product supports a variety of cryptographic algorithms , including symmetric ciphers , hash algorithms ,...