Omron CX-Position 缓冲区错误漏洞

Omron CX-Position is a position control software from Omron Corporation of Japan. An out-of-bounds write vulnerability exists in Omron CX-Position, which stems from a failure to properly validate data when a program performs an operation in memory while processing a specific project file, and cou...

Apple Xcode out-of-bounds read vulnerability (CNVD-2022-23936)

Apple Xcode is an integrated development environment provided to developers by Apple, Inc. and is primarily used to develop applications for Mac OS X and iOS. Apple Xcode suffers from an out-of-bounds read vulnerability, which stems from a boundary error when processing files in otool and can be...

Integer overflow

An integer overflow could occur when OpenEXR processes a crafted file on systems where sizet 64 bits. This could cause an invalid bytesPerLine and maxBytesPerLine value, which could lead to problems with application stability or lead to other attack paths...

CVE-2021-3933

OpenEXR CVE-2021-3933: an integer overflow can occur when processing crafted images on platforms where size_t

CVE-2021-3933

An integer overflow could occur when OpenEXR processes a crafted file on systems where sizet 64 bits. This could cause an invalid bytesPerLine and maxBytesPerLine value, which could lead to problems with application stability or lead to other attack paths...

CVE-2021-3933

An integer overflow could occur when OpenEXR processes a crafted file on systems where sizet 64 bits. This could cause an invalid bytesPerLine and maxBytesPerLine value, which could lead to problems with application stability or lead to other attack paths...

Memory corruption

A memory corruption issue was addressed with improved validation. This issue is fixed in tvOS 15.3, iOS 15.3 and iPadOS 15.3, watchOS 8.4, macOS Monterey 12.2. Processing a maliciously crafted file may lead to arbitrary code execution...

Apple Xcode 缓冲区错误漏洞

Apple Xcode is an integrated development environment provided to developers by Apple, Inc. and is primarily used to develop applications for Mac OS X and iOS. Apple Xcode suffers from an out-of-bounds read vulnerability, which stems from a boundary error when processing files in otool and can be...

CVE-2021-44269

CVE-2021-44269: Heap out-of-bounds read in WavPack’s WavpackPackSamples (src/pack_utils.c) causes denial of service. IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data (affected: 4.0.0–4.6.6) is vulnerable; remediation is upgrading to v4.7 (or later) per IBM advisory. The vulnerabili...

Adobe After Effects 缓冲区错误漏洞

Adobe After Effects is a set of visual effects and motion graphics creation software from Adobe, Inc. A buffer overflow vulnerability exists in Adobe After Effects processing files, which can be exploited by attackers to execute arbitrary code in the context of the current user...

Adobe After Effects 缓冲区错误漏洞

Adobe After Effects is a suite of visual effects and motion graphics software from Adobe, Inc. An out-of-bounds write vulnerability exists in Adobe After Effects processing files, which could be exploited by attackers to execute arbitrary code in the context of the current user...

The vulnerability of software for the development and mass production of printed circuit boards, related to errors in processing uploaded files, allows a perpetrator to gain access to protected information or cause service failures.

The vulnerability of software for the development and mass production of printed circuit boards is related to errors in processing uploaded files. Exploiting this vulnerability can allow a malicious actor to gain access to protected information or cause service failures by sending a specially...

PT-2022-13861 · Delta Electronics · Cncsoft

Name of the Vulnerable Software and Affected Versions: Delta Electronics CNCSoft versions prior to 1.01.32 Description: The issue arises from improper input sanitization when processing a specific project file, leading to a possible out-of-bounds read condition. This can potentially result in...

HackTool.Win32.Muzzer.a Buffer Overflow

Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/c9291c93fce757a665352567ca13ec3f.txt Contact: [email protected] Media: twitter.com/malvuln Threat: HackTool.Win32.Muzzer.a Vulnerability: Heap Based Buffer Overflow Description: Processing a speciall...

CVE-2021-37865 Server-side Denial of Service while processing a specifically crafted GIF file

Mattermost 6.2 and earlier fails to sufficiently process a specifically crafted GIF file when it is uploaded while drafting a post, which allows authenticated users to cause resource exhaustion while processing the file, resulting in server-side Denial of Service...

CVE-2022-21137

Omron CX-One Versions 4.60 and prior are vulnerable to a stack-based buffer overflow while processing specific project files, which may allow an attacker to execute arbitrary code...

CVE-2021-3933

An integer overflow could occur when OpenEXR processes a crafted file on systems where sizet 64 bits. This could cause an invalid bytesPerLine and maxBytesPerLine value, which could lead to problems with application stability or lead to other attack paths...

Code injection

This issue was addressed with improved checks. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, Security Update 2021-005 Catalina, tvOS 15, iOS 15 and iPadOS 15, watchOS 8. Processing a maliciously crafted dfont file may lead to arbitrary code execution...

The vulnerability of the Apache OpenOffice office software, related to errors in processing DBF files, allows an attacker to execute arbitrary code.

The vulnerability of the Apache OpenOffice office software is related to errors in processing DBF files. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of software for modeling, designing, and drawing in AutoCAD, related to the disclosure of information in error-prone areas of data, allows attackers to write arbitrary files.

The vulnerability of software for modeling, designing, and drawing in AutoCAD is related to the disclosure of information in the erroneous data area when processing DWG files. Exploiting this vulnerability can allow attackers to write arbitrary files...