The vulnerability of the Microsoft Visual Studio software, related to errors in processing input data, allows a hacker to execute arbitrary code.

The vulnerability of the Microsoft Visual Studio software relates to errors in processing input data. Exploiting this vulnerability can allow a malicious actor to execute arbitrary code by running the malicious file with the user’s permission...

The vulnerability of the MIFF component of the cross-platform library for working with GraphicsMagick allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the MIFF component in the cross-platform library for working with GraphicsMagick is related to authentication errors. Exploiting this vulnerability can allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the Login Enhancements (Login Block) function in Cisco IOS operating systems allows a hacker to cause a service failure.

The vulnerability of the Login Enhancements Login Block function in Cisco IOS operating systems is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

Vulnerabilities in web browsers Firefox, Firefox ESR, and the email client Thunderbird, related to resource management errors, allow attackers to compromise the confidentiality and integrity of protected information.

The vulnerability in web browsers Firefox, Firefox ESR, and the email client Thunderbird is related to resource management errors. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality and integrity of information that is loaded from subresources...

GSD-2022-1006428 drm/gem: Fix GEM handle release errors

drm/gem: Fix GEM handle release errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.213 by commit...

GSD-2022-1006392 drm/gem: Fix GEM handle release errors

drm/gem: Fix GEM handle release errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.68 by commit...

PT-2022-34670 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.143 Description: The issue is related to GEM handle release errors in the Linux Kernel. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior ...

PT-2025-38423

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.0.0-rc5-djwa rc5 3004c9f1de887ebae86015f2677638ce51ee7 Description The Linux kernel contained a vulnerability in the iomap subsystem that could lead to memory corruption when recording errors during writeback...

When curl is used to retrieve and parse cookies from a HTTP(S) server itaccepts cookies using control codes that when later are sent back to a HTTPserver might make the server return 400 responses. Effectively allowing a"sister site" to deny service to all siblings.

...

The vulnerability of the Microsoft Exchange Server mail server, related to errors in code generation, allows a hacker to execute arbitrary code.

The vulnerability of Microsoft Exchange Server is related to errors in code generation management. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the Display component in Qualcomm’s embedded software allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the Display component in Qualcomm’s embedded software lies in synchronization errors when using shared resources. Exploiting this vulnerability can allow attackers to cause system failures or execute arbitrary code...

The vulnerability of the kernel of microprogramming software in Qualcomm’s embedded chips allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of microprogramming software in embedded Qualcomm chips is related to synchronization errors when using common resources. Exploiting this vulnerability can allow attackers to cause service failures or execute arbitrary code...

DEBIAN-CVE-2014-0147

Qemu before 1.6.2 block diver for the various disk image formats used by Bochs and for the QCOW version 2 format, are vulnerable to a possible crash caused by signed data types or a logic error while creating QCOW2 snapshots, which leads to incorrectly calling updaterefcount routine...

[Citrix Gateway] Client plugin of Window upgrade fails due to upgrade package issue

The client plugin fails to upgrade to the new one after upgrade ADC, following logs sample could be found in client plugin logs 15:36:32.432 | DEBUG | nsStartSSL called 15:36:32.432 | DEBUG | mNotifier0 15:36:32.447 | EVENT | Version mismatch 15:36:32.447 | DEBUG | RedrawActiveXWnd: 6:0...

The vulnerability of the Mozilla Firefox browser, related to resource management errors, allows a hacker to cause a service failure.

The vulnerability of the Mozilla Firefox browser is related to resource management errors. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

CVE-2022-23006

A stack-based buffer overflow vulnerability was found on Western Digital My Cloud Home, My Cloud Home Duo, and SanDisk ibi that could allow an attacker accessing the system locally to read information from /etc/version file. This vulnerability can only be exploited by chaining it with another...

Stack overflow

A stack-based buffer overflow vulnerability was found on Western Digital My Cloud Home, My Cloud Home Duo, and SanDisk ibi that could allow an attacker accessing the system locally to read information from /etc/version file. This vulnerability can only be exploited by chaining it with another...

Upgraded Q -> M from 346 [1664289750538]

Judge has assessed an item in Issue 346 as Medium risk. The relevant finding follows: --- The text was updated successfully, but these errors were encountered: All reactions...

Upgraded Q -> M from 399 [1664289734798]

Judge has assessed an item in Issue 399 as Medium risk. The relevant finding follows: --- The text was updated successfully, but these errors were encountered: All reactions...

Upgraded Q -> M from 593 [1664289691118]

Judge has assessed an item in Issue 593 as Medium risk. The relevant finding follows: --- The text was updated successfully, but these errors were encountered: All reactions...