1250 matches found
QNAP Systems QTS和QNAP Systems QuTS hero 安全漏洞
QNAP Systems QTS and QNAP Systems QuTS Hero are both software products with data storage and management functions developed by QNAP Systems, a company based in Taiwan, China. There were security vulnerabilities in versions of QNAP Systems QTS 5.2.8.3332 and QNAP Systems QuTS Hero h5.2.8.3321. The...
PT-2026-7563
Name of the Vulnerable Software and Affected Versions QNAP QTS versions prior to 5.2.8.3332 build 20251128 QNAP QuTS hero versions prior to h5.2.8.3321 build 20251117 Description A use of uninitialized variable issue exists in QNAP operating systems. A remote attacker gaining administrator access...
Incorrect Control Flow Scoping
Overview Affected versions of this package are vulnerable to Incorrect Control Flow Scoping in promise resolving when AbortSignal option is used. The Promise remains in a permanently pending state after the signal is aborted, causing any await or .then usage to hang indefinitely. This can cause a...
Trojan-Resilient NTT: Protecting against Control Flow and Timing Faults on Reconfigurable Platforms
Number Theoretic Transform NTT is the most essential component for polynomial multiplications used in lattice-based Post-Quantum Cryptography PQC algorithms such as Kyber, Dilithium, NTRU etc. However, side-channel attacks SCA and hardware vulnerabilities in the form of hardware Trojans may alter...
ROS-20260128-73-0034
Vulnerability in kernel-lt related to implementation of incorrect control flow. Exploitation of the vulnerability may allow an attacker to cause a denial of service...
ROS-20260128-73-0052
Vulnerability in kernel-lt related to implementation of incorrect control flow. Exploitation of the vulnerability may allow an attacker to cause a denial of service...
ROS-20260128-73-0041
Vulnerability in kernel-lt related to implementation of incorrect control flow. Exploitation of the vulnerability may allow an attacker to cause a denial of service...
ROS-20260128-73-0040
Vulnerability in kernel-lt related to implementation of incorrect control flow. Exploitation of the vulnerability may allow an attacker to cause a denial of service...
SAGA: Detecting Security Vulnerabilities Using Static Aspect Analysis
Python is one of the most popular programming languages; as such, projects written in Python involve an increasing number of diverse security vulnerabilities. However, existing state-of-the-art analysis tools for Python only support a few vulnerability types. Hence, there is a need to detect a...
Buffer-Overflow-Shellcode-Exploitation
Buffer Overflow & Shellcode Exploitation Overview This pr...
Deep Learning-Based Binary Analysis for Vulnerability Detection in X86-64 Machine Code
While much of the current research in deep learning-based vulnerability detection relies on disassembled binaries, this paper explores the feasibility of extracting features directly from raw x86-64 machine code. Although assembly language is more interpretable for humans, it requires more comple...
ROS-20260112-7301
Vulnerability in kernel-lt related to implementation of incorrect control flow. Exploitation of the vulnerability may allow an attacker to cause a denial of service...
Fedora 43 : chromium (2026-66162d01ae)
The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-66162d01ae advisory. Update to 143.0.7499.192 High CVE-2026-0628: Insufficient policy enforcement in WebView tag Enable control flow integrity support for x8664/aarch64 Enable...
Fedora 42 : chromium (2026-540f5a89d1)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-540f5a89d1 advisory. Update to 143.0.7499.192 High CVE-2026-0628: Insufficient policy enforcement in WebView tag Enable control flow integrity support for x8664/aarch64 Enable...
CVE-2022-26841
Insufficient control flow management for the IntelR SGX SDK software for Linux before version 2.16.100.1 may allow an authenticated user to potentially enable information disclosure via local access...
CVE-2020-12338
Insufficient control flow management in the Open WebRTC Toolkit before version 4.3.1 may allow an unauthenticated user to potentially enable escalation of privilege via network access...
CVE-2020-12313
Insufficient control flow management in some IntelR PROSet/Wireless WiFi products before version 21.110 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access...
CVE-2020-12294
Insufficient control flow management in some IntelR ThunderboltTM controllers may allow an authenticated user to potentially enable denial of service via local access...
CVE-2020-12339
Insufficient control flow management in the API for the IntelR Collaboration Suite for WebRTC before version 4.3.1 may allow an authenticated user to potentially enable escalation of privilege via network access...
CVE-2020-12311
Insufficient control flow managementin firmware in some IntelR Client SSDs and some IntelR Data Center SSDs may allow an unauthenticated user to potentially enable information disclosure via physical access...