13 matches found
EUVD-2026-32526
Missing Authorization vulnerability in Benbodhi SVG Support allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects SVG Support: from n/a through 2.5.14...
MiracleLinux 3 : kernel-2.6.18-308.3.AXS3 (AXSA:2012-550:04)
The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-550:04 advisory. The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the operating...
EUVD-2021-21774
Malware in sbrugna...
WordPress plugin CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts 跨站请求伪造漏洞
WordPress and the WordPress plugin are products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress plugin CITS Support svg, webp Media a...
CVE-2021-35130
Memory corruption in graphics support layer due to use after free condition in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...
October Cross-Site Scripting Vulnerability
October is an open source content management system CMS and web platform from October. A cross-site scripting vulnerability exists in October versions 3.0 through 3.5.2, which originates when SVG files are supported, and allows a user with access to the Media Manager, where SVG files are stored, ...
PT-2022-25291 · WordPress · Svg Support
Name of the Vulnerable Software and Affected Versions: SVG Support plugin for WordPress versions 2.5 through 2.5.1 Description: The SVG Support plugin for WordPress defaults to insecure settings, allowing authenticated attackers with author-level privileges and higher to upload malicious SVG file...
CVE-2021-35130
Memory corruption in graphics support layer due to use after free condition in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...
Design/Logic Flaw
Memory corruption in graphics support layer due to use after free condition in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...
CVE-2021-35130
Memory corruption in graphics support layer due to use after free condition in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...
CVE-2021-35130
CVE-2021-35130 affects Qualcomm components in Snapdragon-based devices (notably in the Display/graphics stack). The issue is memory corruption caused by a use-after-free in the graphics support layer, leading to potential local impact on confidentiality, integrity and availability. The vulnerabil...
PT-2021-7255 · Qualcomm · Qualcomm Snapdragon Mobile +6
Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon Auto versions affected versions not specified Qualcomm Snapdragon Compute versions affected versions not specified Qualcomm Snapdragon Connectivity versions affected versions not specified Qualcomm Snapdragon Industrial IO...
The vulnerability in the kgsl_ioctl_gpu_command function of the KGSL kernel driver for the Android operating system, found in the CAF repository, allows a malicious actor to execute arbitrary code within the context of a privileged process.
The vulnerability of the kgslioctlgpucommand function in the Kernel Graphics Support Layer of the Android operating system’s kernel, from the CAF repository, is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code in the...