Remote code execution

Azure Sphere Unsigned Code Execution Vulnerability...

NTT TechnoCross MagicConnect 代码问题漏洞

NTT TechnoCross MagicConnect is an application software from NTT TechnoCross Japan. It provides a service to operate an office PC by invoking the screen image of a remote device. MagicConnect suffers from a code issue vulnerability that allows an attacker to gain privileges and execute arbitrary...

CVE-2021-21186

Insufficient policy enforcement in QR scanning in Google Chrome on iOS prior to 89.0.4389.72 allowed an attacker who convinced the user to scan a QR code to bypass navigation restrictions via a crafted QR code...

CVE-2021-21480

SAP MII allows users to create dashboards and save them as JSP through the SSCE Self Service Composition Environment. An attacker can intercept a request to the server, inject malicious JSP code in the request and forward to server. When this dashboard is opened by users having at least SAPXMII...

Siemens SIMATIC 代码问题漏洞

Siemens SIMATIC is a configuration software from Siemens. A code issue vulnerability exists in Siemens SIMATIC, no information about this vulnerability is available at this time, please stay tuned to CNNVD or the vendor's announcement...

Samsung Pay mini information leakage vulnerability

Samsung Pay mini is a mobile application from Samsung South Korea. It provides a mobile payment function. An information disclosure vulnerability exists in the Samsung Pay mini application prior to v4.0.14, which allows unauthorized users to access balance information by scanning a specific QR co...

Linux kernel code issue vulnerability (CNVD-2021-14401)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A code issue vulnerability exists in Linux Kernel versions prior to 5.11. The vulnerability stems from the failure of the scosockgetsockopt function in net/bluetooth/sco.c to...

Sven gopeak masterlab code issue vulnerability

Sven gopeak masterlab is a Sven open source application. Provides simple and efficient , agile development based project management tools . gopeak masterlab 2.1.5 A code issue vulnerability exists in the Upgrade.php source parameter...

Webware Webdesktop 代码问题漏洞

Webware Webdesktop is an application software from the company Webware in the Republic of Estonia. A document management software. A code issue vulnerability exists in Webware Webdesktop version 5.1.15. The vulnerability stems from the system allowing an attacker to read all files on the server. ...

SOURCEFORGE Adminer Code Issue Vulnerability

SOURCEFORGE Adminer is an application from the American SOURCEFORGE community. It provides database management in a single PHP file. A code issue vulnerability exists in SOURCEFORGE Adminer that arises from improper design or implementation during code development of a web-based system or product...

Linux kernel code issue vulnerability

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A code issue vulnerability exists in the Linux kernel that arises from a lack of effective privilege licensing and access control measures in a networked system or product...

Adobe Acrobat and Reader Use After Free (APSB21-09: CVE-2021-21033)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Linux kernel code issue vulnerability (CNVD-2021-19427)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a code issue vulnerability that can be exploited by an attacker to trigger a denial of service by forcing a null pointer dereference via...

IBM InfoSphere Information Server Code Issue Vulnerability

IBM InfoSphere Information Server is a set of data integration platforms from International Business Machines IBM. The platform can be used to integrate data information obtained from various sources. A code issue vulnerability exists in IBM InfoSphere Information Server version 8.5.0.0. An...

Micrium uC-HTTP Code Issue Vulnerability

Micrium uC-HTTP is a software from Micrium USA that provides TCP/IP functionality for devices. The software is designed for embedded applications with a compact, reliable, high-performance TCP/IP stack with dual support for IPv4 and IPv6. A code issue vulnerability exists in Micrium uC-HTTP versi...

Honeywell OPC UA Tunneller Code Issue Vulnerability

Honeywell OPC UA Tunneller is a Honeywell application that provides reliable OPC UA connectivity across devices and domains. Honeywell OPC UA Tunneller All versions prior to 6.3.0.8233 A code issue vulnerability exists that could allow an attacker to disclose sensitive information, remotely execu...

File.com Fat Client Code Issue Vulnerability

File.com Fat Client is a fat client application from US-based File.com. A code issue vulnerability exists in Files.com Fat Client 3.3.6 that allows bypassing authentication because the client still has access after logging out and deleting the login profile...

Theonedev Onedev Code Issue Vulnerability

Theonedev Onedev is a JAVA-based all-in-one DevOps platform from the Theonedev team. The platform supports container build, orchestration, CI, Git management, team collaboration and other features to help developers build a simple, powerful development platform. A code issue vulnerability exists ...

The vulnerability of the `net_tx_pkt_add_raw_fragment` function in the `hw/net/net_tx_pkt.c` file of the QEMU hardware emulation software, related to the insufficient use of the `assert()` function, allows a hacker to trigger a system failure.

The vulnerability of the nettxpktaddrawfragment function in the hw/net/nettxpkt.c file of the QEMU hardware emulation software is related to the insufficient use of the assert function. Exploiting this vulnerability could allow an attacker to cause a system failure...

Microsoft Office 代码问题漏洞

Microsoft Office is an office software suite of products from the U.S. company Microsoft Microsoft. The product's common components include Word, Excel, Access, Powerpoint, FrontPage, etc.. Microsoft Office suffers from a code issue vulnerability that stems from the program not properly validatin...