11 matches found
CVE-2024-45207
DLL injection in Veeam Agent for Windows can occur if the system's PATH variable includes insecure locations. When the agent runs, it searches these directories for necessary DLLs. If an attacker places a malicious DLL in one of these directories, the Veeam Agent might load it inadvertently,...
CVE-2024-45207
DLL injection in Veeam Agent for Windows can occur if the system's PATH variable includes insecure locations. When the agent runs, it searches these directories for necessary DLLs. If an attacker places a malicious DLL in one of these directories, the Veeam Agent might load it inadvertently,...
CVE-2024-45207
CVE-2024-45207 affects Veeam Agent for Windows (Microsoft Windows) where DLL injection can occur if PATH contains insecure directories. The agent searches PATH for DLLs and may load a malicious DLL placed in those directories, enabling code execution with potential unauthorized access, data theft...
CVE-2024-45207
DLL injection in Veeam Agent for Windows can occur if the system's PATH variable includes insecure locations. When the agent runs, it searches these directories for necessary DLLs. If an attacker places a malicious DLL in one of these directories, the Veeam Agent might load it inadvertently,...
CVE-2022-48619
A vulnerability was found in drivers/input/input.c in the Linux Kernel, where the inputsetcapability function mishandles scenarios where an event code is outside the bitmap. This issue can lead to a kernel panic when the event code exceeds the bitmap for the specified event type, which could allo...
K35129173: GNU C Library (glibc) vulnerability CVE-2017-15670
Security Advisory Description The GNU C Library aka glibc or libc6 before 2.27 contains an off-by-one error leading to a heap-based buffer overflow in the glob function in glob.c, related to the processing of home directories using the operator followed by a long string. CVE-2017-15670 Impact...
Race condition
A vulnerability in the Session Initiation Protocol SIP ingress packet processing of Cisco Unified IP Phone software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. The vulnerability is due to a lack of flow-control mechanisms in the software. An attacke...
CVE-2018-5502
Summary (CVE-2018-5502) Affected product: F5 BIG-IP (LTM, etc.) with Client SSL profile handling client certificates. What’s vulnerable: BIG-IP virtual servers using a Client SSL profile that enables client certificate authentication. The vulnerability, stemming from how the system handles crafte...
CVE-2017-12374
The ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to a lack of input validation checking mechanisms during certain mail...
F5 BIG-IP - TMM vulnerability CVE-2016-5022
An unauthenticated remote attacker maybe be able to disrupt services on the BIG-IP system with maliciously crafted network traffic. This vulnerability affects virtual servers of all types and for all protocols. Self IP addresses may also be exposed to this vulnerability. The management interface ...
PT-2006-7534 · Debian +3 · Debian +3
Name of the Vulnerable Software and Affected Versions: Debian GNU/Linux affected versions not specified openSUSE affected versions not specified SUSE Linux Enterprise affected versions not specified Description: The issue involves multiple vulnerabilities in various packages of Debian GNU/Linux,...