Linux Distros Unpatched Vulnerability : CVE-2024-1552

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect code generation could have led to unexpected numeric conversions and potential undefined behavior.Note: This issue only affects 32-bit ARM devices. Th...

PT-2024-9294 · Qlik · Qlik Sense Enterprise For Windows

Name of the Vulnerable Software and Affected Versions: Qlik Sense Enterprise for Windows versions prior to November 2024 IR Description: The issue allows unprivileged users with network access to execute remote commands, potentially causing high availability damages, including high integrity and...

The vulnerability of the `compileClient`, `compileFileClient`, and `compileClientWithDependenciesTracked` templates for generating Pug markup (formerly Jade) allows attackers to execute arbitrary code.

The vulnerability of the compileClient, compileFileClient, and compileClientWithDependenciesTracked functions of the Pug template for generating HTML markup formerly Jade is related to improper code generation control. Exploiting this vulnerability could allow a remote attacker to execute arbitra...

Apple macOS 安全漏洞

Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS Monterey versions prior to 12.0.1, which stems from faulty code logic. The vulnerability can be exploited by an attacker to access a local user's Apple ID...

PT-2022-6359 · Dell Emc · Dell Emc Metro Node

Name of the Vulnerable Software and Affected Versions: Dell EMC Metro node versions prior to 7.1 Description: The issue is related to incorrect code generation management in the system, allowing a remote attacker to execute arbitrary commands. An authenticated nonprivileged attacker could...

The vulnerability of the Enlightenment sysfile implementation of the Enlightenment window manager allows a perpetrator to escalate their privileges.

The vulnerability of the Enlightenment sysytem file for the Enlightenment window manager is related to incorrect code generation. Exploiting this vulnerability can allow an attacker to increase their privileges...

PT-2022-4059 · Vmware · Vmware Vrealize Automation +2

Name of the Vulnerable Software and Affected Versions: VMware Workspace ONE Access, Identity Manager and vRealize Automation affected versions not specified Description: The issue is related to incorrect code generation management in the administration platform of VMware Workspace One Access,...

The vulnerability of the Gateway Actuator component in the Spring Cloud Gateway API gateway library allows a attacker to execute arbitrary code.

The vulnerability of the Gateway Actuator component in the Spring Cloud Gateway API gateway library is related to incorrect code generation management. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted request...

PT-2022-1858 · Unknown · Hevc Video Extensions

Name of the Vulnerable Software and Affected Versions: HEVC Video Extensions affected versions not specified Description: The issue is related to incorrect code generation management in the HEVC Video Extension codec. It may allow a remote attacker to execute arbitrary code using a specially...

The vulnerability of the wp_ajax_parse_media_shortcode() function in the PHP plugin for implementing PHP Everywhere allows a hacker to execute arbitrary code.

The vulnerability of the wpajaxparsemediashortcode function in the PHP plugin for implementing PHP Everywhere is related to incorrect code generation. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

PT-2022-1672 · Microsoft · Windows Dns Server +1

Name of the Vulnerable Software and Affected Versions: Windows DNS Server affected versions not specified Description: The issue is related to incorrect code generation management in the Windows DNS Server component of Windows operating systems. It allows a remote attacker to execute arbitrary co...

The vulnerability of NETGEAR’s Wi-Fi routers, namely RBK40, RBR40, and RBS40, stems from improper handling of the cryptographic generation process. This allows attackers to execute a Server Side Include Injection (SSI) attack.

The vulnerability of the built-in Wi-Fi router software from NETGEAR, namely RBK40, RBR40, and RBS40, is related to incorrect code generation. Exploiting this vulnerability could allow an attacker to execute a Server Side Include Injection SSI attack...

The vulnerability in the index.php script of the D-Link DSL-3782 router’s microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the index.php script in the D-Link DSL-3782 router microprogramming system is related to incorrect code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

PT-2021-5265 · Microsoft · Windows Media Foundation +1

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Media Foundation affected versions not specified Description: The issue is related to incorrect code generation management in the Microsoft Windows Media Foundation component of the Windows operating system. It allows remote...

PT-2021-3918 · Microsoft · Windows Print Spooler +1

Name of the Vulnerable Software and Affected Versions: Windows Print Spooler affected versions not specified Description: The issue is related to incorrect code generation management in the Windows Print Spooler. It allows a remote attacker to execute arbitrary code by sending a specially crafted...

PT-2021-5260 · Microsoft · Windows Dns Server +1

Name of the Vulnerable Software and Affected Versions: Windows DNS Server affected versions not specified Description: The issue is related to incorrect code generation management in the DNS Server component of the Microsoft Windows operating system. It allows remote attackers to execute arbitrar...

The vulnerability of the Remote Procedure Call component in the Windows operating system allows a hacker to execute arbitrary code.

The vulnerability of the Remote Procedure Call component in the Windows operating system is related to improper code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

PT-2021-2742 · Microsoft · Windows Media Video Decoder +1

Name of the Vulnerable Software and Affected Versions: Windows Media Video Decoder affected versions not specified Description: The issue is related to incorrect code generation management in the Windows Media Video Decoder component of Microsoft Windows operating systems. It allows remote...

PT-2021-2718 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows affected versions not specified Description: The issue is related to incorrect code generation management in the Remote Procedure Call Runtime. It allows remote attackers to execute arbitrary code on the system...

PT-2021-2291 · Microsoft · Hevc Video Extensions

Name of the Vulnerable Software and Affected Versions: HEVC Video Extensions affected versions not specified Description: The issue is related to incorrect code generation management in the HEVC Video Extension codec. Exploitation of this issue may allow an attacker to execute arbitrary code...