The vulnerability of the `var_NetworkSettingDhcpSvrRoute` function in the Moxa EDR-810 industrial router’s software allows a attacker to trigger an emergency shutdown of the device.

The vulnerability of the varNetworkSettingDhcpSvrRoute function in the Moxa EDR-810 industrial router’s microprogramming system is related to the lack of input data verification when accessing by using the OID identifier index. Exploiting this vulnerability can allow a malicious actor to trigger ...

The vulnerability of Intel Thunderbolt controller interfaces, related to insufficient input data validation, allows attackers to gain unauthorized access to protected information.

The vulnerability of Intel Thunderbolt controller interfaces is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Cisco IOS XE network devices in the Cisco Catalyst 9000 Series operating system, which stems from insufficient input data validation, allows attackers to trigger service interruptions.

The vulnerability of the Cisco IOS XE network devices in the Cisco Catalyst 9000 series operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to cause service interruptions...

The vulnerability of the Intel Active Management Technology implementation arises from insufficient validation of input data. This allows attackers to disclose protected information or cause service failures.

The vulnerability of the Intel Active Management Technology implementation exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose protected information or cause service failures...

The vulnerability of the Intel Active Management Technology implementation arises from insufficient validation of input data, allowing an intruder to gain unauthorized access to protected information.

The vulnerability of the Intel Active Management Technology implementation exists due to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Foundation, and Microsoft SharePoint Enterprise Server packages arises from insufficient validation of input data, allowing unauthorized access to data modifications.

The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Foundation, and Microsoft SharePoint Enterprise Server is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain access to and modify data...

The vulnerability of the ImageIO component in Oracle Java SE software, related to insufficient validation of input data, allows attackers to cause partial service interruptions.

The vulnerability of the ImageIO component in Oracle Java SE software is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause partial service interruptions through network protocols...

The vulnerability of the Microsoft .NET Bond software lies in the insufficient validation of input data, which allows attackers to trigger service failures.

The vulnerability of the Microsoft .NET Bond software platform is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures...

The vulnerability of the Cisco Webex Meetings Server and Cisco Webex Meetings software lies in the lack of proper validation of input data, allowing attackers to alter the content of web pages.

The vulnerability of Cisco Webex Meetings Server and Cisco Webex Meetings software exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor to alter the content of web pages from a remote location...

CVE-2020-12497

PLCopen XML file parsing in Phoenix Contact PC Worx and PC Worx Express version 1.87 and earlier can lead to a stack-based overflow. Manipulated PC Worx projects could lead to a remote code execution due to insufficient input data validation...

Input validation

mwe file parsing in Phoenix Contact PC Worx and PC Worx Express version 1.87 and earlier is vulnerable to out-of-bounds read remote code execution. Manipulated PC Worx projects could lead to a remote code execution due to insufficient input data validation...

Stack overflow

PLCopen XML file parsing in Phoenix Contact PC Worx and PC Worx Express version 1.87 and earlier can lead to a stack-based overflow. Manipulated PC Worx projects could lead to a remote code execution due to insufficient input data validation...

CVE-2020-12498

Phoenix Contact PC Worx and PC Worx Express (v1.87 and earlier) are affected by CVE-2020-12498 due to insufficient input validation in MWE file parsing, causing an out-of-bounds read that can lead to remote code execution. Affected component: PC Worx/PC Worx Express parsing of MWE project files; ...

CVE-2020-12497 Phoenix Contact Automation Worx <= 1.87: stack-based overflow

PLCopen XML file parsing in Phoenix Contact PC Worx and PC Worx Express version 1.87 and earlier can lead to a stack-based overflow. Manipulated PC Worx projects could lead to a remote code execution due to insufficient input data validation...

The vulnerabilities of SIPROTEC relay protection devices stem from insufficient validation of input data, allowing attackers to trigger malfunctions in the service.

The vulnerability of SIPROTEC relay protection devices is related to insufficient verification of input data. Exploiting this vulnerability can allow attackers to trigger a service failure using specially created packets sent to port 50000/UDP...

The vulnerability of the WordPress website content management system, related to insufficient validation of input data, allows attackers to compromise the integrity of the data.

The vulnerability of the WordPress website content management system is related to a JSON GET cache infection error. Exploiting this vulnerability allows an attacker to compromise data integrity...

The vulnerability of Xen hypervisors relates to the lack of a mechanism for checking input data, allowing attackers to trigger a service failure.

The vulnerability of Xen hypervisors is related to the lack of a mechanism for checking input data. Exploiting this vulnerability allows an attacker to cause service failures...

The vulnerability of Xen hypervisors relates to the lack of a mechanism for checking input data, allowing attackers to trigger a service failure.

The vulnerability of Xen hypervisors is related to the lack of a mechanism for checking input data. Exploiting this vulnerability allows an attacker to cause service failures...

The vulnerability of Google Chrome, related to insufficient validation of input data, allows a perpetrator to compromise data integrity.

The vulnerability of Google Chrome is related to insufficient validation of input data. Exploiting this vulnerability can allow a remote attacker to compromise the integrity of data...

The vulnerability of the `gdImageCreateFromXbm` function in the GD graphics library for the PHP programming language allows a malicious actor to gain unauthorized access to sensitive information, due to a lack of mechanisms to verify the correctness of input data.

The vulnerability of the gdImageCreateFromXbm function in the GD graphics library for the PHP programming language is related to the lack of mechanisms for checking input data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to sensitive information...