305 matches found
The vulnerability of Android operating systems, related to insufficient validation of input data, allows attackers to escalate their privileges.
The vulnerability of Android operating systems is related to insufficient checking of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of Android operating systems, related to insufficient validation of input data, allows attackers to escalate their privileges.
The vulnerability of Android operating systems is related to insufficient checking of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of Android operating systems, related to insufficient validation of input data, allows attackers to escalate their privileges.
The vulnerability of Android operating systems is related to insufficient checking of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the Framework component in Android operating systems, which allows a hacker to increase their privileges
The vulnerability of the Framework component in Android operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the PowerDNS Recursor DNS server, related to insufficient validation of input data, allows attackers to trigger a service failure.
The vulnerability of the PowerDNS Recursor DNS server is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures...
Ubuntu 22.04 LTS / 24.04 LTS / 24.10 : .NET vulnerabilities (USN-7210-1)
The remote Ubuntu 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7210-1 advisory. It was discovered that .NET did not properly handle input provided to its Convert.TryToHexString method. An attacker could possibly u...
USN-7210-1 dotnet8, dotnet9 vulnerabilities
It was discovered that .NET did not properly handle input provided to its Convert.TryToHexString method. An attacker could possibly use this issue to execute arbitrary code. CVE-2025-21171 It was discovered that .NET did not properly handle an integer overflow when processing certain specially...
The vulnerability of the Adobe Animate software for creating multimedia and computer animations lies in insufficient validation of input data, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Animate program for creating multimedia and computer animations is related to insufficient testing of input data. Exploiting this vulnerability can allow attackers to execute arbitrary code...
Netgear R6900 Buffer Overflow Vulnerability
The Netgear R6900 is a wireless router from NETGEAR. The Netgear R6900 suffers from a buffer overflow vulnerability that originates from the parameter Content-Length in the file upgradecheck.cgi that fails to properly validate the length of the input data, which can be exploited by an attacker to...
The vulnerability of the tipc component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the tipc component in the Linux operating system’s kernel is related to improper validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of microprogrammed software in embedded network control controllers for building automation systems, such as ASPECT Enterprise, NEXUS Series, and MATRIX Series, arises from improper validation of certain types of input data. This allows unauthorized access by attackers to the device.
The vulnerability of microprogrammed software in embedded network control controllers of ASPECT Enterprise, NEXUS Series, and MATRIX Series is related to improper validation of certain types of input data. Exploiting this vulnerability can allow an unauthorized attacker to gain unauthorized acces...
The vulnerability of microprogramming software in embedded network control controllers of ASPECT Enterprise, NEXUS Series, and MATRIX Series systems arises from improper validation of certain types of input data. This allows attackers to gain access to the project’s backup copies.
The vulnerability of microprogrammed software in embedded network control controllers of ASPECT Enterprise, NEXUS Series, and MATRIX Series buildings is related to improper validation of certain types of input data. Exploiting this vulnerability can allow an attacker operating remotely to gain...
The vulnerability of the qca component in the Linux operating system’s kernel allows a attacker to trigger a Denial-of-Service Attack (DoS).
The vulnerability of the qca component in the Linux operating system’s kernel is related to incorrect validation of input data. Exploiting this vulnerability can allow an attacker to trigger a Denial-of-Service attack...
The vulnerability of the deployment and model management software for deep learning in the Intel Distribution of OpenVINO Model Server lies in insufficient validation of input data, allowing attackers to trigger service failures.
The vulnerability of the deployment and model management software for deep learning in the Intel Distribution of OpenVINO Model Server is related to insufficient testing of input data. Exploiting this vulnerability can allow attackers to cause service failures...
The vulnerability of the driver for the imon component (drivers/media/rc/imon.c) in Linux operating systems allows a hacker to cause a service failure.
The vulnerability of the driver for the imon component drivers/media/rc/imon.c in Linux operating systems is related to an incorrect binding of the interface to the driver due to insufficient validation of input data. Exploiting this vulnerability can allow a perpetrator to cause service failures...
Out-of-bounds Read
libsndfile.so is vulnerable to Out-of-bounds Read. The vulnerability is due to improper handling of the vorbisanalysiswrote function in the oggvorbis.c file, which fails to validate input data, allowing an attacker to craft a malicious Vorbis file that triggers the out-of-bounds read when process...
D-Link DI-8100 Buffer Overflow Vulnerability
The D-Link DI-8100 is a wireless broadband router designed for small to medium-sized network environments from China's D-Link. The D-Link DI-8100 suffers from a buffer overflow vulnerability that originates from the ippositionasp function failing to properly validate the length and size of the...
Tenda AC10 Buffer Overflow Vulnerability (CNVD-2024-44853)
The Tenda AC10 is a wireless router from the Chinese company Tenda. A buffer overflow vulnerability exists in Tenda AC10 version 16.03.10.13, which originates from the parameter wpapskcrypto in the file /goform/WifiExtraSet that fails to correctly validate the length of the input data, and can be...
The vulnerability of Linux operating system’s DRM/AMDGPU cores allows a hacker to trigger a service failure.
The vulnerability of DRM/AMDGPU cores in the Linux operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow a perpetrator to cause service failures...
The vulnerability of the Cost Planning component of the Oracle Cost Management system, a cost management solution within the Oracle E-Business Suite. This component allows attackers to modify, add, or delete data.
The vulnerability of the Cost Planning component of the Oracle Cost Management system, a cost management solution within the Oracle E-Business Suite, is related to deficiencies in the authorization process due to incorrect validation of input data. Exploiting this vulnerability could allow an...