Mitsubishi Electric MC Works64 缓冲区错误漏洞

Mitsubishi Electric MC Works64 is a data acquisition and monitoring system SCADA from Mitsubishi Electric Japan. The Mitsubishi Electric MC Works64 suffers from a buffer error vulnerability that stems from incorrect validation of the input data size of a packet...

The vulnerability of microprogrammed software in Schneider Electric Easergy P5 relay protection and control devices, related to insufficient verification of input data, allows a intruder to disable the device’s control function.

The vulnerability of the microprogramming software in Schneider Electric Easergy P5 relay protection and control devices is related to insufficient verification of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to disable the device’s control functions...

The vulnerability of the FFmpeg multimedia library in the Debian GNU/Linux operating system allows a perpetrator to trigger an octath in service or execute arbitrary code.

The vulnerability of the FFmpeg multimedia library in the Debian GNU/Linux operating system is related to insufficient testing of input data. Exploiting this vulnerability could allow an attacker to trigger an octath in the service or execute arbitrary code...

The vulnerability of Intel microprocessor microprogramming software, related to insufficient checking of input data, allows a hacker to trigger a service failure.

The vulnerability of Intel microprocessor microprogramming software is related to insufficient testing of input data. Exploiting this vulnerability can allow an attacker to cause malfunctions in the system’s operation...

AZL-10059 CVE-2022-2309 affecting package python-lxml for versions less than 4.9.1-1

NULL Pointer Dereference allows attackers to cause a denial of service or application crash. This only applies when lxml is used together with libxml2 2.9.10 through 2.9.14. libxml2 2.9.9 and earlier are not affected. It allows triggering crashes through forged input data, given a vulnerable code...

AZL-10058 CVE-2022-2309 affecting package libxml2 for versions less than 2.10.0-1

NULL Pointer Dereference allows attackers to cause a denial of service or application crash. This only applies when lxml is used together with libxml2 2.9.10 through 2.9.14. libxml2 2.9.9 and earlier are not affected. It allows triggering crashes through forged input data, given a vulnerable code...

CVE-2022-2309

NULL Pointer Dereference allows attackers to cause a denial of service or application crash. This only applies when lxml is used together with libxml2 2.9.10 through 2.9.14. libxml2 2.9.9 and earlier are not affected. It allows triggering crashes through forged input data, given a vulnerable code...

CVE-2022-2309

NULL Pointer Dereference allows attackers to cause a denial of service or application crash. This only applies when lxml is used together with libxml2 2.9.10 through 2.9.14. libxml2 2.9.9 and earlier are not affected. It allows triggering crashes through forged input data, given a vulnerable code...

Tenda AX1806 formAddMacfilterRule function stack overflow vulnerability

A stack overflow vulnerability exists in the Tenda AX1806 formAddMacfilterRule function, which stems from the fact that the deviceList parameter of the formAddMacfilterRule function does not check the input data for length. No details of the vulnerability are available at this time...

TOTOLINK T6 FUN_00418540 Function Stack Overflow Vulnerability

TOTOLINK T6 is a wireless dual-band router from China Gion Electronics TOTOLINK.A stack overflow vulnerability exists in TOTOLINK T6 V4.1.9cu.5179B20201015 version, which stems from the url parameter in the FUN00418540 function not checking its length for input data. A remote attacker can exploit...

TOTOLINK T6 FUN_0041880c Function Stack Overflow Vulnerability

TOTOLINK T6 is a wireless dual-band router from China Gion Electronics TOTOLINK.A stack overflow vulnerability exists in TOTOLINK T6 V4.1.9cu.5179B20201015 version, which stems from the desc parameter in the FUN0041880c function not checking its length for input data. A remote attacker can exploi...

Tenda AC23 formWifiBasicSet function stack overflow vulnerability

Tenda AC23 is a dual-band gigabit wireless router from Tenda China. tenda AC23 is vulnerable to a buffer overflow vulnerability that stems from the security5g parameter of the formWifiBasicSet function that does not check the length of the input data. No detailed vulnerability details are availab...

Tenda M3 formSetStoreWeb function buffer overflow vulnerability

Tenda M3 is an access controller from Tenda, China. buffer overflow vulnerability exists in Tenda M3 V1.0.0.12, which stems from the ssidList, storeName, trademark parameters of the formSetStoreWeb function that do not check the length of the input data. An attacker can exploit this vulnerability...

lxml 和 libxml2 代码问题漏洞

lxml is lxml personal developer can interact with Python for locating elements in Html software . libxml2 is an open source library for parsing XML documents . It is written in C, and can be called for a variety of languages, such as C, C++, XSH. A code issue vulnerability exists in lxml and...

The vulnerability of the trusted loading module in Intel microprogrammed system BIOS allows a hacker to enhance their privileges.

The vulnerability of the trusted loading module in Intel microprogramming system BIOS is related to insufficient checking of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

CVE-2021-33647

When performing the inference shape operation of the Tile operator, if the input data type is not int or int32, it will access data outside of bounds of heap allocated buffers...

Huawei MindSpore Community 缓冲区错误漏洞

Huawei MindSpore Community is an open source deep learning framework from Huawei China. Huawei MindSpore Community Tile is vulnerable to an information disclosure vulnerability that stems from accessing sensitive data when the input data type is not int or int32. An attacker could use this...

The vulnerability of the AV1 Video Extension codec, which stems from insufficient validation of input data, allows attackers to execute arbitrary code.

The vulnerability of the AV1 Video Extension codec is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to execute arbitrary code...

The vulnerability of BIOS microprogramming software in Dell laptops, related to insufficient validation of input data, allows a hacker to execute arbitrary code.

The vulnerability of BIOS microprogramming software in Dell laptops is related to insufficient verification of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the Intel Ethernet ixgbe driver for Linux allows a hacker to trigger a service failure.

The vulnerability of the Intel Ethernet ixgbe driver for Linux exists due to insufficient testing of input data. Exploiting this vulnerability can allow attackers to cause service failures...