2466 matches found
Apple macOS 安全漏洞
Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS Monterey before 12.0.1. The vulnerability stems from the possibility that a user's messages may continue to synchronize after the user exits iMessage...
Live555 Streaming Media < 2021.08.13 Multiple Vulnerabilities - Linux
Live555 Streaming Media is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...
Live555 Streaming Media < 2021.08.13 Multiple Vulnerabilities - Windows
Live555 Streaming Media is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...
CVE-2021-39283
liveMedia/FramedSource.cpp in Live555 through 1.08 allows an assertion failure and application exit via multiple SETUP and PLAY commands...
CVE-2021-39283
liveMedia/FramedSource.cpp in Live555 through 1.08 allows an assertion failure and application exit via multiple SETUP and PLAY commands...
Design/Logic Flaw
liveMedia/FramedSource.cpp in Live555 through 1.08 allows an assertion failure and application exit via multiple SETUP and PLAY commands...
UBUNTU-CVE-2021-39283
liveMedia/FramedSource.cpp in Live555 through 1.08 allows an assertion failure and application exit via multiple SETUP and PLAY commands...
CVE-2021-39283
liveMedia/FramedSource.cpp in Live555 through 1.08 allows an assertion failure and application exit via multiple SETUP and PLAY commands...
CVE-2021-39283
CVE-2021-39283 affects the Live555 library: liveMedia/FramedSource.cpp (through 1.08) allows an assertion failure and application exit when handling multiple SETUP and PLAY commands. The connected documents confirm the component/file and the crash behavior but do not provide details on affected v...
CVE-2021-29983
Firefox for Android could get stuck in fullscreen mode and not exit it even after normal interactions that should cause it to exit. Note: This issue only affected Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox 91...
UBUNTU-CVE-2021-29983
Firefox for Android could get stuck in fullscreen mode and not exit it even after normal interactions that should cause it to exit. Note: This issue only affected Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox 91...
The vulnerability of QEMU’s emulation software for various platform hardware devices lies in the execution of a loop with an unreachable exit condition, allowing a malicious actor to cause a service failure.
The vulnerability of QEMU’s software for emulating hardware on various platforms is related to the infinite operation of a loop. Exploiting this vulnerability allows an attacker to cause a service failure...
Huawei EulerOS: Security Advisory for gssproxy (EulerOS-SA-2021-2137)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The vulnerability in the configuration of Junos OS operating system-based ACX5800, EX9200, MX10000, MX240, MX480, and MX960 routers allows a attacker to cause service interruptions.
The vulnerability of the configuration of Junos OS operating system routers of the ACX5800, EX9200, MX10000, MX240, MX480, and MX960 series is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability can allow a malicious actor to cause service failures...
Design/Logic Flaw
In onCreate of EmergencyCallbackModeExitDialog.java, there is a possible exit of emergency callback mode due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions...
Malicious user can trigger another user’s removal
Handle 0xRajeev Vulnerability details Impact By allowing anyone to call removeUserFromOrderbook instead of only Market::newRental or Treasury::withdrawDeposit or collectRentUser which may result in foreclosures and hence may need to trigger user removal, a malicious user can trigger another's...
The vulnerability of the GoLang development tool for application software “Aurora Center” relates to the execution of a loop with an unavailable exit condition, allowing attackers to cause service failures.
The vulnerability of the GoLang development tool used by Aurora Application Software involves executing a loop with an exit condition that is not met. Exploiting this vulnerability could allow a malicious actor to cause service failures...
CVE-2020-13602
Remote Denial of Service in LwM2M dowriteoptlv. Zephyr versions = 1.14.2, = 2.2.0 contain Improper Input Validation CWE-20, Loop with Unreachable Exit Condition 'Infinite Loop' CWE-835. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-g9mg-fj58-6fqh...
Fuzzing iOS code on macOS at native speed
Or how iOS apps on macOS work under the hood Posted by Samuel Groß, Project Zero This short post explains how code compiled for iOS can be run natively on Apple Silicon Macs. With the introduction of Apple Silicon Macs, Apple also made it possible to run iOS apps natively on these Macs. This is...
U.S. Pipeline Ransomware Attackers Go Dark After Servers and Bitcoin Are Seized
Just as Colonial Pipeline restored all of its systems to operational status in the wake of a crippling ransomware incident a week ago, DarkSide, the cybercrime syndicate behind the attack, claimed it lost control of its infrastructure, citing a law enforcement seizure. All the dark web sites...