CVE-2024-31837

DMitry Deepmagic Information Gathering Tool 1.3a has a format-string vulnerability, with a threat model similar to CVE-2017-7938...

CVE-2024-31837

DMitry Deepmagic Information Gathering Tool 1.3a has a format-string vulnerability, with a threat model similar to CVE-2017-7938...

UBUNTU-CVE-2024-31837

DMitry Deepmagic Information Gathering Tool 1.3a has a format-string vulnerability, with a threat model similar to CVE-2017-7938...

PT-2024-24234 · Dmitry · Dmitry

Name of the Vulnerable Software and Affected Versions: DMitry Deepmagic Information Gathering Tool version 1.3a Description: The issue is a format-string vulnerability. It has a threat model similar to other known format-string vulnerabilities. Recommendations: For DMitry Deepmagic Information...

DMitry 安全漏洞

DMitry is a Deepmagic Information Gathering Tool by the individual developer J Greig in the UK. A security vulnerability exists in DMitry Deepmagic Information Gathering Tool version 1.3a, which stems from the presence of a format string vulnerability...

CVE-2024-31837

DMitry Deepmagic Information Gathering Tool 1.3a has a format-string vulnerability, with a threat model similar to CVE-2017-7938...

CVE-2024-31837

DMitry Deepmagic Information Gathering Tool 1.3a has a format-string vulnerability, with a threat model similar to CVE-2017-7938...

CVE-2024-31837

DMitry Deepmagic Information Gathering Tool 1.3a has a format-string vulnerability, with a threat model similar to CVE-2017-7938...

CVE-2024-31837

Affected software and issue : DMitry (Deepmagic Information Gathering Tool) version 1.3a contains a format-string vulnerability identified as CVE-2024-31837. The vulnerability is described as a format-string flaw in DMitry 1.3a (Unix) with a threat model similar to CVE-2017-7938. Root cause and i...

shim: Out-of-bounds read printing error messages

A flaw was found in Shim when an error happened while creating a new ESL variable. If Shim fails to create the new variable, it tries to print an error message to the user; however, the number of parameters used by the logging function doesn't match the format string used by it, leading to a cras...

shim: Out-of-bounds read printing error messages

A flaw was found in Shim when an error happened while creating a new ESL variable. If Shim fails to create the new variable, it tries to print an error message to the user; however, the number of parameters used by the logging function doesn't match the format string used by it, leading to a cras...

CVE-2023-4856

A format string vulnerability was identified in SMM/SMM2 and FPC that could allow an authenticated user to execute arbitrary commands on a specific API endpoint...

CVE-2023-4856

A format string vulnerability was identified in SMM/SMM2 and FPC that could allow an authenticated user to execute arbitrary commands on a specific API endpoint...

Lenovo SMM/SMM2/FPC 安全漏洞

Lenovo SMM/SMM2/FPC is an application from Lenovo China. A security vulnerability exists in Lenovo SMM/SMM2/FPC that stems from a format string vulnerability. An attacker can use this vulnerability to execute arbitrary commands on specific API endpoints...

CVE-2023-48784

A use of externally-controlled format string vulnerability CWE-134 in FortiOS version 7.4.1 and below, version 7.2.7 and below, 7.0 all versions, 6.4 all versions command line interface may allow a local privileged attacker with super-admin profile and CLI access to execute arbitrary code or...

CVE-2023-48784

A use of externally-controlled format string vulnerability CWE-134 in FortiOS version 7.4.1 and below, version 7.2.7 and below, 7.0 all versions, 6.4 all versions command line interface may allow a local privileged attacker with super-admin profile and CLI access to execute arbitrary code or...

CVE-2023-48784

A use of externally-controlled format string vulnerability CWE-134 in FortiOS version 7.4.1 and below, version 7.2.7 and below, 7.0 all versions, 6.4 all versions command line interface may allow a local privileged attacker with super-admin profile and CLI access to execute arbitrary code or...

CVE-2023-48784

A use of externally-controlled format string vulnerability CWE-134 in FortiOS version 7.4.1 and below, version 7.2.7 and below, 7.0 all versions, 6.4 all versions command line interface may allow a local privileged attacker with super-admin profile and CLI access to execute arbitrary code or...

PT-2024-3562 · Fortinet · Fortios

Name of the Vulnerable Software and Affected Versions: FortiOS versions 7.4.1 and below FortiOS versions 7.2.7 and below FortiOS versions 7.0.14 and below FortiOS versions 6.4.15 and below Description: A use of externally-controlled format string vulnerability in FortiOS command line interface ma...

The vulnerability of the software for centralized device management in Fortinet’s FortiManager, the security event monitoring and analysis tools FortiAnalyzer, FortiAnalyzer-BigData, and the security analytics and management tool FortiPortal, arises due to the use of an uncontrolled format string. This allows a malicious individual to execute arbitrary codes or commands.

The vulnerability of the software for centralized device management in Fortinet’s FortiManager, the security event monitoring and analysis tool FortiAnalyzer, FortiAnalyzer-BigData, and the security analytics and management tool FortiPortal is related to the use of an uncontrolled format string...