eSpeak NG Security Vulnerability

eSpeak NG is an open source software text-to-speech synthesizer from eSpeak NG Open Source. A security vulnerability exists in eSpeak NG version 1.52-dev, which stems from a floating point exception in the PeaksToHarmspect method of the wavegen.c file...

CVE-2023-49991

Espeak-ng 1.52-dev was discovered to contain a Stack Buffer Underflow via the function CountVowelPosition at synthdata.c...

CVE-2023-48958

gpac 2.3-DEV-rev617-g671976fcc-master contains memory leaks in gfmpdresolveurl mediatools/mpd.c:4589...

CVE-2023-48958

gpac 2.3-DEV-rev617-g671976fcc-master contains memory leaks in gfmpdresolveurl mediatools/mpd.c:4589...

CVE-2023-49428

Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName...

PT-2023-31221 · Tenda · Tenda Ax9

Name of the Vulnerable Software and Affected Versions: Tenda AX9 version V22.03.01.46 Description: A command injection issue has been discovered in the mac parameter at the "/goform/SetOnlineDevName" API endpoint. This allows for potential command injection attacks. Recommendations: For Tenda AX9...

CVE-2023-48958

gpac 2.3-DEV-rev617-g671976fcc-master contains memory leaks in gfmpdresolveurl mediatools/mpd.c:4589...

Vite XSS vulnerability in `server.transformIndexHtml` via URL payload

Summary When Vite's HTML transformation is invoked manually via server.transformIndexHtml, the original request URL is passed in unmodified, and the html being transformed contains inline module scripts ..., it is possible to inject arbitrary HTML into the transformed output by supplying a...

CVE-2023-45840

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the...

CVE-2023-43628

An integer underflow vulnerability exists in the NTRIP Stream Parsing functionality of GPSd 3.25.1dev. A specially crafted network packet can lead to memory corruption. An attacker can send a malicious packet to trigger this vulnerability...

GPSd Number Error Vulnerability

gpsd is a daemon for receiving GPS data. A numeric error vulnerability exists in GPSd version 3.25.1dev. An attacker could exploit this vulnerability to cause memory corruption via specially crafted network packets...

PT-2023-29726 · Buildroot +1 · Buildroot +1

Name of the Vulnerable Software and Affected Versions: Buildroot versions 2023.08.1 through 2023.08.1 Buildroot dev commit 622698d7847 Description: Multiple data integrity vulnerabilities exist in the package hash checking functionality. A specially crafted man-in-the-middle attack can lead to...

Design/Logic Flaw

Vite is a website frontend framework. When Vite's HTML transformation is invoked manually via server.transformIndexHtml, the original request URL is passed in unmodified, and the html being transformed contains inline module scripts ..., it is possible to inject arbitrary HTML into the transforme...

CVE-2023-49293 Cross-site Scripting in `server.transformIndexHtml` via URL payload in vite

Vite is a website frontend framework. When Vite's HTML transformation is invoked manually via server.transformIndexHtml, the original request URL is passed in unmodified, and the html being transformed contains inline module scripts ..., it is possible to inject arbitrary HTML into the transforme...

Security Bulletin: IBM Sterling Connect:Direct for UNIX Certified Container is vulnerable to denial of service due to procps-ng (CVE-2023-4016)

Summary IBM Sterling Connect:Direct for UNIX Certified Container uses procps-ng package which is vulnerable to denial of service attack. Vulnerability Details CVEID:CVE-2023-4016 DESCRIPTION: procps-ng procps is vulnerable to a denial of service, caused by a heap based buffer overflow when runnin...

Ubuntu 23.10 : LibTomMath vulnerability (USN-6402-2)

The remote Ubuntu 23.10 host has packages installed that are affected by a vulnerability as referenced in the USN-6402-2 advisory. USN-6402-1 fixed vulnerabilities in LibTomMath. This update provides the corresponding updates for Ubuntu 23.10. Tenable has extracted the preceding description block...

CVE-2023-47810

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Asdqwe Dev Ajax Domain Checker plugin = 1.3.0 versions...

CVE-2023-47810

CVE-2023-47810 affects the WordPress Ajax Domain Checker plugin up to version 1.3.0. Root cause: improper neutralization of input during web page generation, leading to Stored Cross‑Site Scripting (XSS) as described in multiple sources. Exploitation context from connected docs indicates the vulne...

CVE-2023-6142

Dev blog v1.0 allows to exploit an XSS through an unrestricted file upload, together with a bad entropy of filenames. With this an attacker can upload a malicious HTML file, then guess the filename of the uploaded file and send it to a potential victim...

CVE-2023-6142

Dev Blog v1.0 is affected by an XSS vulnerability triggered via an unrestricted file upload with poor filename entropy. An attacker can upload a malicious HTML file and then guess the filename to deliver it to a victim. Affected component: Dev Blog (Node.js/Express/MongoDB) v1.0; root cause: lack...