34 matches found
EUVD-2009-0315
Malware in sbrugna...
CVE-2024-45433
OpenSynergy BlueSDK aka Blue SDK through 6.x has Incorrect Control Flow Scoping. The specific flaw exists within the BlueSDK Bluetooth stack. The issue results from the lack of proper return control flow after detecting an unusual condition. An attacker can leverage this to bypass a security...
CVE-2020-14116
An intent redirection vulnerability in the Mi Browser product. This vulnerability is caused by the Mi Browser does not verify the validity of the incoming data. Attackers can perform sensitive operations by exploiting this...
CVE-2020-1822
There are multiple out of bounds OOB read vulnerabilities in the implementation of the Common Open Policy Service COPS protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities...
CVE-2020-1820
There are multiple out of bounds OOB read vulnerabilities in the implementation of the Common Open Policy Service COPS protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities...
CVE-2020-1821
There are multiple out of bounds OOB read vulnerabilities in the implementation of the Common Open Policy Service COPS protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities...
CVE-2020-1819
There are multiple out of bounds OOB read vulnerabilities in the implementation of the Common Open Policy Service COPS protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a security vulnerability that stems from a mismatch between the access pointer in the list and the incoming...
SUSE CVE-2009-0310
Buffer overflow in SUSE blinux aka sbl in SUSE openSUSE 10.3 through 11.0 has unknown impact and attack vectors related to "incoming data and authentication-strings."...
CVE-2020-14118
An intent redirection vulnerability in the Mi App Store product. This vulnerability is caused by the Mi App Store does not verify the validity of the incoming data, can cause the app store to automatically download and install apps...
CVE-2020-14115
A command injection vulnerability exists in the Xiaomi Router AX3600. The vulnerability is caused by a lack of inspection for incoming data detection. Attackers can exploit this vulnerability to execute code...
CVE-2020-14111
A command injection vulnerability exists in the Xiaomi Router AX3600. The vulnerability is caused by a lack of inspection for incoming data detection. Attackers can exploit this vulnerability to execute code...
Atlassian Asterisk 注入漏洞
Atlassian Asterisk is a software application from the American company Atlassian. A development program bug tracking feature is provided. An injection vulnerability exists in Atlassian Asterisk that arises from a network system or product that does not properly validate incoming data...
Chrony Denial of Service Vulnerability (CNVD-2020-50554)
Chrony is a general-purpose implementation of the Network Time Protocol NTP that synchronizes the system clock with an NTP server. A denial of service exists in the Chrony product. The vulnerability stems from a network system or product that does not properly validate incoming data, and could be...
tokio-rustls reads may cause excessive memory usage
tokio-rustls does not call processnewpackets immediately after read, so the expected termination condition wantsread always returns true. As long as new incoming data arrives faster than it is processed and the reader does not return pending, data will be buffered. This may cause DoS...
Shopizer Input Validation Error Vulnerability
Shopizer is Shopizer team of a set of Java-based open source e-commerce solutions . An input validation error vulnerability exists in versions of Shopizer prior to 2.11.0. The vulnerability stems from a web-based system or product that does not properly validate incoming data. No details of the...
SpotAuditor 'Name' Denial of Service Vulnerability (CNVD-2020-21801)
SpotAuditor is a useful password recovery software for recovering passwords stored in your computer, which is mainly used to get the list of passwords that have been saved in the local computer, the list of accessed URLs, and the list of launched programs. A denial of service vulnerability exists...
utilitify input validation error vulnerability
utilitify is a utility program for working with collections such as objects, arrays and tuples numbers, strings, etc.. An input validation error vulnerability exists in versions of utilitify prior to 1.0.3. The vulnerability stems from a networked system or product that does not properly validate...
Go SSH Denial of Service Vulnerability
Go SSH is an extremely clean ssh tool developed using the go language for remotely managing linux, unix and other machines. Go SSH suffers from a denial of service vulnerability that stems from a networked system or product that does not properly validate incoming data, which can be exploited by ...
Python Input Validation Error Vulnerability
Python is an open source, object-oriented programming language from the Python Software Foundation. The language is extensible, supports modules and packages, and supports multiple platforms. An input validation error vulnerability exists in Python. The vulnerability originates from a networked...