56 matches found
CVE-2023-28573
Memory corruption in WLAN HAL while parsing WMI command parameters...
CVE-2023-28557
Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload...
CVE-2023-33088
Memory corruption when processing cmd parameters while parsing vdev...
CVE-2011-1310
The Administrative Scripting Tools component in IBM WebSphere Application Server WAS 6.1.0.x before 6.1.0.35 and 7.x before 7.0.0.15, when tracing is enabled, places wsadmin command parameters into the 1 wsadmin.traceout and 2 trace.log files, which allows local users to obtain potentially...
Edimax CV7428NS 安全漏洞
Edimax CV7428NS is an enterprise-grade network video recorder from China Xunzhou Edimax. A security vulnerability exists in Edimax CV7428NS v1.20, which originates from remote code execution of command parameters in the mp function...
MAL-2024-2977 Malicious code in rush-command-parameters-plugin (npm)
--- -= Per source details. Do not edit below this line.=-...
GOG Galaxy 安全漏洞
GOG Galaxy is a game client program from the Polish company GOG. The program is used to install, launch and update games. A security vulnerability exists in GOG Galaxy versions 2.0.67.2 through v2.0.71.2, which stems from a privilege escalation issue that allows an authenticated user to change...
PT-2023-24179 · Qualcomm · 315 5G Iot Modem Firmware +273
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves memory corruption when processing command parameters while parsing vdev. No information is provided about the estimated number of...
CVE-2023-28573
Memory corruption in WLAN HAL while parsing WMI command parameters...
CVE-2023-28557
Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload...
CVE-2023-28559
Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload...
CVE-2023-28573 Improper Validation of Array Index in WLAN HAL
Memory corruption in WLAN HAL while parsing WMI command parameters...
CVE-2023-28559 Buffer Copy Without Checking Size of Input in WLAN HAL
Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload...
CVE-2023-28557
CVE-2023-28557 affects Qualcomm WLAN HAL, causing memory corruption when processing command parameters from an untrusted WMI payload. The issue is described as a local vulnerability with low attack complexity and exploit prerequisites, but with high impact to confidentiality, integrity, and avail...
Fortinet FortiWeb Formatting String Error Vulnerability
Fortinet FortiWeb is a web application layer firewall from Fortinet that blocks threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks, secures web applications and protects sensitive database content. A formatted string error vulnerability exist...
Fortinet FortiWeb 格式化字符串错误漏洞
Fortinet FortiWeb is a web application layer firewall from Fortinet that blocks threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks, secures web applications and protects sensitive database content. A formatted string error vulnerability exist...
SUSE CVE-2020-7046
lib-smtp in submission-login and lmtp in Dovecot 2.3.9 before 2.3.9.3 mishandles truncated UTF-8 data in command parameters, as demonstrated by the unauthenticated triggering of a submission-login infinite loop...
Tp-link TL-WR840N has an unspecified vulnerability
Tp-link TL-WR840N is a wireless router from Tp-link, China. TP-LINK TL-WR840NES V6.20 version 180709 is vulnerable due to a lack of filtering and escaping of command parameters in the component oalstartPing. No details of the vulnerability are available at this time...
Zabbix Sia Zabbix has an unspecified vulnerability (CNVD-2022-11529)
Zabbix Sia Zabbix is an open source monitoring system from the Latvian company Zabbix SIA Zabbix Sia. Zabbix 4.0 LTS, 4.2, 4.4 and 5.0 LTS versions are vulnerable due to a lack of filtering and escaping of user submitted command parameters. Any user with the "Zabbix Administrator" role can run a...
Zabbix Sia Zabbix 安全漏洞
Zabbix Sia Zabbix is an open source monitoring system from the Latvian company Zabbix SIA Zabbix Sia. Zabbix 4.0 LTS, 4.2, 4.4 and 5.0 LTS versions are vulnerable due to a lack of filtering and escaping of user submitted command parameters. Any user with the "Zabbix Administrator" role can run a...