8752 matches found
SUSE: Security Advisory (SUSE-SU-2022:0817-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mustang Panda targets European diplomats using enhanced PlugX backdoor
THREAT LEVEL: Red. For a detailed advisory, download the pdf file here Mustang Panda, a Chinese cyberespionage group, has been targeting European diplomats with a revised version of the PlugX backdoor in an ongoing campaign linked to the ongoing conflict in Ukraine. The group, also known as...
SUSE: Security Advisory (SUSE-SU-2022:0811-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-42577
An issue was discovered in Softing OPC UA C++ SDK before 5.70. A malformed OPC/UA message abort packet makes the client crash with a NULL pointer dereference...
CVE-2021-32025
An elevation of privilege vulnerability in the QNX Neutrino Kernel of affected versions of QNX Software Development Platform versions 6.4.0 to 7.0, QNX Momentics all 6.3.x versions, QNX OS for Safety versions 1.0.0 to 1.0.2, QNX OS for Safety versions 2.0.0 to 2.0.1, QNX for Medical versions 1.0....
Privilege escalation
An elevation of privilege vulnerability in the QNX Neutrino Kernel of affected versions of QNX Software Development Platform versions 6.4.0 to 7.0, QNX Momentics all 6.3.x versions, QNX OS for Safety versions 1.0.0 to 1.0.2, QNX OS for Safety versions 2.0.0 to 2.0.1, QNX for Medical versions 1.0....
SUSE: Security Advisory (SUSE-SU-2022:0777-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PDFTron SDK 资源管理错误漏洞
PDFTron SDK is a very comprehensive MS Office and PDF software development kit SDK from PDFTron Canada. A security vulnerability exists in PDFTron SDK 9.2.0, which stems from the fact that a carefully crafted PDF can overwrite the RIP with data previously allocated on the heap...
CVE-2021-32025
CVE-2021-32025 is an elevation of privilege vulnerability in the QNX Neutrino Kernel affecting multiple QNX platforms (Software Development Platform 6.4.0–7.0, Momentics 6.3.x, OS for Safety 1.0.0–1.0.2 and 2.0.0–2.0.1, OS for Medical 1.0.0–1.1.1, and OS for Medical 2.0.0). An unprivileged attack...
How To Make A Messenger App
By Owais Sultan It isnt easy to imagine a modern person without a messenger app. Correspondence in apps has made it… This is a post from HackRead.com Read the original post: How To Make A Messenger App...
Siemens Mendix incorrect access control vulnerability
Siemens Mendix is a low-code application development platform from Siemens, Germany. The platform provides application development, testing, deployment, and iteration capabilities. Siemens Mendix contains a security vulnerability that could be exploited by an attacker to retrieve information abou...
Google Go memory consumption vulnerability
Google Go is a development language of Google, Inc. Google Go memory consumption vulnerability, which originates from regexp. The compilation process may deplete stack resources through deeply nested expressions, which can be exploited by attackers to consume system resources...
SUSE: Security Advisory (SUSE-SU-2022:0724-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2022:0677-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PT-2022-1780 · Gerbv +4 · Gerbv +4
Name of the Vulnerable Software and Affected Versions: Gerbv versions 2.7.0 and dev commit b5f1eacd Gerbv forked version commit d7f42a9a Description: An out-of-bounds read issue exists in the RS-274X aperture macro outline primitive functionality. This can be triggered by a specially-crafted Gerb...
The vulnerability of the software development service provided by SAP NetWeaver Development Infrastructure allows attackers to disclose sensitive information or cause service failures.
The vulnerability of the software development service for SAP NetWeaver Development Infrastructure lies in the insufficient verification of incoming requests. Exploiting this vulnerability allows a malicious actor to disclose sensitive information or cause service failures...
CVE-2021-44340
David Brackeen ok-file-formats dev version is vulnerable to Buffer Overflow. When the function of the ok-file-formats project is used, a heap-buffer-overflow occurred in function okjpggeneratehuffmantable in "/okjpg.c:403"...
ok-file-formats 缓冲区错误漏洞
ok-file-formats is an open source decoder for PNG, JPEG, WAV, and several other file formats. A buffer error vulnerability exists in the dev version of ok-file-formats, which stems from a heap buffer overflow in the function okjpggeneratehuffmantable in "/ok jpg.c:403" when using functions from t...
Accusoft ImageGear Heap Buffer Overflow Vulnerability (CNVD-2022-35420)
Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, U.S. Accusoft ImageGear suffers from a heap buffer overflow vulnerability, which can be exploited by attackers to build files that could result in a heap buffer overflow...
Accusoft ImageGear Heap Buffer Overflow Vulnerability (CNVD-2022-35421)
Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, U.S. Accusoft ImageGear suffers from a heap buffer overflow vulnerability, which can be exploited by attackers to build files that could result in a heap buffer overflow...