305 matches found
TOTOLINK AC1200 setWizardCfg function buffer overflow vulnerability
TOTOLINK AC1200 is a dual-band Wi-Fi router from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in the TOTOLINK AC1200 v4.1.5cu.861B20230220 version, which stems from the failure of the ssid5g parameter of the setWizardCfg function to correctly validate the length and...
DrayTek Vigor 3910 Buffer Overflow Vulnerability (CNVD-2024-39950)
The DrayTek Vigor 3910 is a high performance router for enterprise networks from DrayTek. A buffer overflow vulnerability exists in the DrayTek Vigor 3910 v4.3.2.6, which is caused by the sPPPSrvNm parameter on the fwuser.cgi page not properly validating the length of the input data, and can be...
The vulnerability of the driver for the common file system of Windows operating systems allows attackers to escalate their privileges.
The vulnerability of the driver for the common file system of Windows operating systems is related to insufficient checking of input data. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the intel-sdw-acpi component of the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the intel-sdw-acpi component of the Linux operating system’s kernel is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...
Tenda FH1206 fromqossetting function buffer overflow vulnerability
The Tenda FH1206 is a wireless router from Tenda China. A buffer overflow vulnerability exists in the Tenda FH1206 fromqossetting function, which originates from the failure of the fromqossetting function in the /goform/qossetting page to correctly validate the length of input data, which could b...
ROS-20240814-05
A vulnerability in the "Save As" function of Mozilla Firefox, Firefox ESR and Thunderbird email client on Windows operating systems is related to insufficient input data validation. Thunderbird email client of Windows operating systems is related to insufficient input data validation. Exploitatio...
The vulnerability of the Microsoft Outlook email client, related to insufficient validation of input data, allows a hacker to execute arbitrary code.
The vulnerability of the Microsoft Outlook email client is related to insufficient validation of entered data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of the software for monitoring and analyzing network traffic in industrial networks, SINEC Traffic Analyzer, arises from insufficient validation of input data. This allows attackers to gain unauthorized access to protected information.
The vulnerability of the SINEC Traffic Analyzer software for monitoring and analyzing network traffic in industrial networks is related to insufficient verification of input data. Exploiting this vulnerability could allow an unauthorized attacker to gain unauthorized access to protected informati...
The vulnerability of the MileSight DeviceHub deployment platform, which stems from insufficient validation of input data, allows a violator to trigger a service failure.
The vulnerability of the MileSight DeviceHub deployment platform exists due to insufficient verification of input data. Exploiting this vulnerability could allow a remote attacker to cause service failures...
The vulnerability of the Android operating system on Pixel phones allows attackers to gain increased privileges.
The vulnerability of the Android operating system on Pixel phones exists due to insufficient validation of input data. Exploiting this vulnerability can allow attackers to gain increased privileges...
Kofax Power PDF 安全漏洞
Kofax Power PDF is a professional PDF editing and management software from Kofax. A security vulnerability exists in Kofax Power PDF that stems from a specific flaw in the handling of PNG files that lacks proper validation of user-supplied data, allowing a remote attacker to execute arbitrary cod...
The vulnerability of the microprogrammed software of the PowerFlex 527 variable frequency converter, related to insufficient validation of input data, allows a intruder to trigger a service failure.
The vulnerability of the microprogrammed software of the PowerFlex 527 variable frequency converter is related to insufficient verification of input data. Exploiting this vulnerability could allow an attacker operating remotely to cause malfunctions in the device’s operation...
RT-Thread at_server.c file buffer overflow vulnerability
RT-Thread is an open source IoT real-time operating system RTOS open-sourced by RT-Thread. RT-Thread suffers from a buffer overflow vulnerability that stems from net/at/src/atserver.c failing to properly validate the length size of input data, which can be exploited by remote attackers to execute...
FreeImage FreeImage_CreateICCProfile function buffer overflow vulnerability
FreeImage is a cross-platform open source library for supporting popular graphic image formats. FreeImage suffers from a buffer overflow vulnerability that originates from the program failing to properly validate the length and size of input data, which can be exploited by an attacker to cause a...
The vulnerability of the Windows operating system’s kernel, which allows a hacker to trigger a service failure
The vulnerability of Windows operating system kernels is related to insufficient checking of input data. Exploiting this vulnerability can allow an attacker to cause a service failure using specially created data...
The vulnerability of Microsoft Word’s text editor lies in the lack of thorough verification of input data, allowing attackers to execute arbitrary code.
The vulnerability of Microsoft Word relates to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerabilities of PDF viewing and editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, and Adobe Acrobat 2020, as well as Adobe Acrobat Reader 2020, are related to insufficient input data validation. This vulnerability allows attackers to trigger service interruptions.
The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2020, and Adobe Acrobat Reader 2020 are related to insufficient validation of input data. Exploiting these vulnerabilities can allow attackers to cause...
The vulnerability of the Windows operating system’s Network Address Translation (NAT) technology allows a hacker to induce a service failure.
The vulnerability of the Network Address Translation NAT technology implementation in the Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions...
The vulnerability of the application programming interface for accessing ActiveX Data Objects (ADO) on Windows operating systems allows a perpetrator to execute arbitrary code.
The vulnerability of the application programming interface for accessing ActiveX Data Objects ADO on Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Microsoft Outlook email client, related to insufficient validation of input data, allows a hacker to execute arbitrary code.
The vulnerability of the Microsoft Outlook email client is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...