106 matches found
Microsoft SQL Server SQL注入漏洞
Microsoft SQL Server is a large commercial database system from Microsoft Corporation USA that is applied under the Microsoft Windows system. A SQL injection vulnerability exists in Microsoft SQL Server. An attacker can exploit the vulnerability to elevate privileges. The following products and...
EUVD-2000-1015
Malware in sbrugna...
EUVD-2000-0214
Malware in sbrugna...
EUVD-2001-0190
Malware in sbrugna...
EUVD-2017-6411
Malware in sbrugna...
EUVD-2024-37306
Malicious code in bioql PyPI...
CVE-2025-11005
The CVE-2025-11005 issue affects TOTOLINK X6000R, where OS Command Injection arises from improper neutralization of special elements in user input. Affected versions: X6000R up to and including V9.4.0cu.1458_B20250708. Root cause: failure to properly filter special elements allows an attacker to ...
KB5065222 - Description of the security update for SQL Server 2019 CU32: September 9, 2025
None None...
MAL-2025-41522 Malicious code in @twork-data-services/proxy-prime-api-v2-get-cu-products-info (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in @zalastax/nolb-node-cu (npm)
The package @zalastax/nolb-node-cu was found to contain malicious code...
PT-2025-33704 · Git · Libdwarf
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=437060549 Crash type: Heap-buffer-overflow READ 4 Crash state: dwarf memcpy noswap bytes dwarf length of cu header dwarf global name offsets...
CVE-2023-48985
Cross Site Scripting XSS vulnerability in CU Solutions Group CUSG Content Management System CMS before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the login.php component...
CVE-2023-48986
Cross Site Scripting XSS vulnerability in CU Solutions Group CUSG Content Management System CMS before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the users.php component...
UBUNTU-CVE-2024-56695
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Use dynamic allocation for CU occupancy array in 'kfdgetcuoccupancy' The kfdgetcuoccupancy function previously declared a large cuoccupancy array as a local variable, which could lead to stack overflows due to excessi...
CVE-2024-56695 drm/amdkfd: Use dynamic allocation for CU occupancy array in 'kfd_get_cu_occupancy()'
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Use dynamic allocation for CU occupancy array in 'kfdgetcuoccupancy' The kfdgetcuoccupancy function previously declared a large cuoccupancy array as a local variable, which could lead to stack overflows due to excessi...
CVE-2024-56695
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Use dynamic allocation for CU occupancy array in 'kfdgetcuoccupancy' The kfdgetcuoccupancy function previously declared a large cuoccupancy array as a local variable, which could lead to stack overflows due to excessi...
CVE-2024-56695 drm/amdkfd: Use dynamic allocation for CU occupancy array in 'kfd_get_cu_occupancy()'
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Use dynamic allocation for CU occupancy array in 'kfdgetcuoccupancy' The kfdgetcuoccupancy function previously declared a large cuoccupancy array as a local variable, which could lead to stack overflows due to excessi...
CVE-2024-56695
CVE-2024-56695 affects the Linux kernel’s AMDGPU/KFD subsystem. The vulnerability arose from a large local cu_occupancy array in kfd_get_cu_occupancy(), risking stack overflow when AMDGPU_MAX_QUEUES is large. The fix replaces the static stack allocation with dynamic memory via kcalloc and ensures...
PT-2024-37005 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns the kfd get cu occupancy function, which previously declared a large cu occupancy array as a local variable. This could lead to stack overflows due to excessive stac...
CVE-2024-38405
CVE-2024-38405 is a Qualcomm WLAN component vulnerability causing a transient denial-of-service when processing the CU information from the RNR IE. The issue is documented with a high impact in Qualcomm’s security context and is indicated in accompanying Android bulletins as part of patch levels ...