Out-of-bounds

FATEK WinProladder Versions 3.3024518 and prior are vulnerable to an out-of-bounds write while processing project files, which may allow an attacker to execute arbitrary code...

CVE-2021-38415

Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable a heap-based buffer overflow when parsing a specially crafted project file, which may allow an attacker to execute arbitrary code...

Security Bulletin: Vulnerabilities in Node.js, Color-String, and PostgreSQL affect IBM Spectrum Protect Plus

Summary Vulnerabilities in Node.js, Color-String, and PostgreSQL, such as denial of service, bypassing security restrictions, obtaining sensitive information, and execution of arbitrary code, may affect IBM Spectrum Protect Plus. Vulnerability Details CVEID: CVE-2020-28469 DESCRIPTION: Node.js...

Google Chrome Security Update (stable-channel-update-for-desktop_28-2021-10) - Linux

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

NewStart CGSL MAIN 6.02 : wpa_supplicant Vulnerability (NS-SA-2021-0128)

The remote NewStart CGSL host, running version MAIN 6.02, has wpasupplicant packages installed that are affected by a vulnerability: - A vulnerability was discovered in how p2p/p2ppd.c in wpasupplicant before 2.10 processes P2P Wi-Fi Direct provision discovery requests. It could result in denial ...

Adobe Bridge out-of-bounds read vulnerability (CNVD-2022-60081)

Adobe Bridge, a free digital asset management application from Adobe, is vulnerable to an out-of-bounds read vulnerability in Adobe Bridge 11.1.1 and earlier. An attacker could exploit the vulnerability to execute arbitrary code...

Security Bulletin: IBM Planning Analytics Workspace is affected by security vulnerabilities

Summary The Planning Analytics Workspace component of IBM Planning Analytics is affected by vulnerabilities These have been addressed in IBM Planning Analytics Local v2.0 - Planning Analytics Workspace Release 69. Vulnerability Details CVEID: CVE-2021-23343 DESCRIPTION: path-parse is vulnerable t...

Digi RealPort has an unspecified vulnerability (CNVD-2021-103406)

Digi RealPort is a proprietary Serial-over-LAN encapsulation protocol. A security vulnerability exists in versions prior to Digi RealPort 4.8.488.0 due to a buffer overflow in the software's handling of ADDP discovery response messages, which could be exploited by an attacker to cause the executi...

ROS-2-617

2.617 Vulnerability in Mozilla Thunderbird email client CVE-2021-29964, CVE-2021-29967 1. Vulnerability description: CVE-2021-29964 A vulnerability in the Mozilla Thunderbird email client, is related to boundary conditions. Exploitation of the vulnerability could allow an attacker acting remotely...

[SECURITY] [DLA 2740-1] firefox-esr security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2740-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort August 12, 2021 https://wiki.debian.org/LTS -...

Ubuntu: Security Advisory (USN-5026-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : qemu (SUSE-SU-2021:1947-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:1947-1 advisory. - Fix OOB access during mmio operations CVE-2020-13754, bsc1172382 - Fix out-of-bounds read information disclosure in...

Debian DLA-2663-1 : libimage-exiftool-perl security update

A vulnerability was discovered in libimage-exiftool-perl, a library and program to read and write meta information in multimedia files, which may result in execution of arbitrary code if a malformed DjVu file is processed. For Debian 9 stretch, this problem has been fixed in version 10.40-1+deb9u...

Debian: Security Advisory (DSA-4910-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DSA 4897-1] thunderbird security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4897-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 22, 2021 https://www.debian.org/security/faq -...

Dell SRM and SMR Code Issue Vulnerabilities

Dell EMC Storage Resource Manager is an application from Dell, Inc. A comprehensive monitoring and reporting solution that helps IT visualize, analyze and optimize today's storage infrastructure while providing a management framework to support software-defined storage investments. A code issue...

Debian: Security Advisory (DSA-4887-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-4862-1 : firefox-esr - security update

Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code or information disclosure. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security...

Debian: Security Advisory (DLA-2521-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mozilla Firefox Security Advisories (MFSA2020-54, MFSA2020-56) - Windows

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...