Qualcomm 芯片缓冲区错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc. and is often fabricated on the surface of semiconductor wafers. A security vulnerability exists in the WLAN module of the Qualcomm chip that stem...

Qualcomm 芯片缓冲区错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way of miniaturizing circuits mainly semiconductor devices, but also passive components, etc., and is often fabricated on the surface of semiconductor wafers. A security vulnerability exists in the WLAN module of the Qualcomm chip, which...

Improper Restriction of Rendered UI Layers or Frames in cockpit-hq/cockpit

Improper Restriction of Rendered UI Layers or Frames in GitHub repository cockpit-hq/cockpit prior to 2.3.9...

CVE-2023-0780 Improper Restriction of Rendered UI Layers or Frames in cockpit-hq/cockpit

Improper Restriction of Rendered UI Layers or Frames in GitHub repository cockpit-hq/cockpit prior to 2.3.9-dev...

Microsoft Edge (Chromium) < 108.0.1462.42 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 108.0.1462.42. It is, therefore, affected by multiple vulnerabilities as referenced in the December 5, 2022 advisory. - Type confusion in V8 in Google Chrome prior to 108.0.5359.71 allowed a remote attacker to...

PT-2023-13277 · Wlan · Wlan

Name of the Vulnerable Software and Affected Versions: WLAN affected versions not specified Description: The issue is related to information disclosure due to a buffer over-read in WLAN while parsing NMF frames. Recommendations: At the moment, there is no information about a newer version that...

CVE-2022-45854

An improper check for unusual conditions in Zyxel NWA110AX firmware verisons prior to 6.50ABTG.0C0, which could allow a LAN attacker to cause a temporary denial-of-service DoS by sending crafted VLAN frames if the MAC address of the vulnerable AP were intercepted by the attacker...

CVE-2022-45854

An improper check for unusual conditions in Zyxel NWA110AX firmware verisons prior to 6.50ABTG.0C0, which could allow a LAN attacker to cause a temporary denial-of-service DoS by sending crafted VLAN frames if the MAC address of the vulnerable AP were intercepted by the attacker...

CVE-2022-45854

An improper check for unusual conditions in Zyxel NWA110AX firmware verisons prior to 6.50ABTG.0C0, which could allow a LAN attacker to cause a temporary denial-of-service DoS by sending crafted VLAN frames if the MAC address of the vulnerable AP were intercepted by the attacker...

Input validation

An improper check for unusual conditions in Zyxel NWA110AX firmware verisons prior to 6.50ABTG.0C0, which could allow a LAN attacker to cause a temporary denial-of-service DoS by sending crafted VLAN frames if the MAC address of the vulnerable AP were intercepted by the attacker...

Zyxel NWA110AX 代码问题漏洞

The Zyxel NWA110AX is a wireless access point from China Hopkins Zyxel. A security vulnerability exists in Zyxel NWA110AX firmware versions prior to 6.50ABTG.0C0, which stems from an incorrectly checked exception. An attacker could exploit the vulnerability to cause a Denial of Service DoS of the...

CVE-2022-45854

CVE-2022-45854 affects Zyxel NWA110AX firmware prior to 6.50(ABTG.0)C0. The vulnerability stems from an improper check for unusual conditions in the AP firmware, allowing a local LAN attacker to trigger a temporary denial-of-service by sending crafted VLAN frames after intercepting the AP’s MAC. ...

PT-2023-34919 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.303 Description: The issue concerns the handling of extension header length in rawv6 push pending frames. It was introduced in version v2.6.12 and fixed in version v4.14.303. The actual impact and attack...

PT-2023-34909 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.19.270 Description: The issue is related to the handling of extension header length in rawv6 push pending frames. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...

PT-2023-34871 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.164 Description: The issue concerns the handling of extension header length in rawv6 push pending frames. It was introduced in version v2.6.12 and fixed in version v5.10.164. The actual impact and attack...

PT-2023-34895 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.229 Description: The issue is related to the handling of extension header length in rawv6 push pending frames. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...

CVE-2022-32517

A CWE-1021: Improper Restriction of Rendered UI Layers or Frames vulnerability exists that could cause an adversary to trick the interface user/admin into interacting with the application in an unintended way when the product does not implement restrictions on the ability to render within frames ...

CVE-2022-32517

The CVE-2022-32517 entry describes a CWE-1021 vulnerability in Schneider Electric Conext ComBox (all versions) where there is an improper restriction on rendering UI layers/frames from external addresses. The root cause is the product not restricting rendering within frames against external domai...

CVE-2022-32517

A CWE-1021: Improper Restriction of Rendered UI Layers or Frames vulnerability exists that could cause an adversary to trick the interface user/admin into interacting with the application in an unintended way when the product does not implement restrictions on the ability to render within frames ...

CVE-2022-32517

A CWE-1021: Improper Restriction of Rendered UI Layers or Frames vulnerability exists that could cause an adversary to trick the interface user/admin into interacting with the application in an unintended way when the product does not implement restrictions on the ability to render within frames ...