49 matches found
PT-2021-6326 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a driver vulnerability in the Storage Spaces Controller component of Windows operating systems, which involves the disclosure of information in an error data area...
PT-2021-6313 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a driver vulnerability in the Storage Spaces Controller component of Windows operating systems, which involves the disclosure of information in an error data area...
PT-2021-6507 · Saltstack +2 · Saltstack Salt +2
Name of the Vulnerable Software and Affected Versions: SaltStack Salt versions prior to 3003.3 Description: The issue is related to information disclosure in the error data area of the Salt configuration management and remote execution system. Exploitation of this issue allows a remote attacker t...
CVE-2019-1010294
Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Rounding error. The impact is: Potentially leaking code and/or data from previous Trusted Application. The component is: opteeos. The fixed version is: 3.4.0 and later...
PT-2019-6172 · Podofo +2 · Podofo +2
Name of the Vulnerable Software and Affected Versions: PoDoFo version 0.9.6 Description: The issue is related to the exposure of sensitive information to unauthorized actors. It involves the IsNextToken function in the src/base/PdfToenizer.cpp component, which can be exploited by attackers to...
Information disclosure
An issue has been found in libpng 1.6.34. It is a SEGV in the function pngfreedata in png.c, related to the recommended error handling for pngreadimage...
IBM Security Access Manager Information Disclosure Vulnerability (CNVD-2017-01305)
IBM Security Access Manager is a security access manager from IBM USA. A security vulnerability exists in IBM Security Access Manager. An attacker could exploit the vulnerability by sending a specially crafted HTTP request to obtain sensitive information from an error message...
CVE-2013-4345
Off-by-one error in the getprngbytes function in crypto/ansicprng.c in the Linux kernel through 3.11.4 makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms via multiple requests for small amounts of data, leading to improper management of the state of the...
Linux Kernel <= 2.6.33.3 SCTP INIT Remote DoS
Exploit for linux platform in category dos / poc ============================================= Linux Kernel http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1173 The sctpprocessunkparam function in net/sctp/smmakechunk.c in the Linux kernel 2.6.33.3 and...