CVE-2020-3225 Cisco IOS and IOS XE Software Common Industrial Protocol Denial of Service Vulnerabilities

Multiple vulnerabilities in the implementation of the Common Industrial Protocol CIP feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service DoS condition. The vulnerabilities a...

USN-4358-1 libexif vulnerabilities

It was discovered that libexif incorrectly handled certain tags. An attacker could possibly use this issue to cause a denial of service. CVE-2018-20030 It was discovered that libexif incorrectly handled certain inputs. An attacker could possibly use this issue to cause a crash. CVE-2020-12767...

The vulnerability of BIG-IP’s access control and remote authentication mechanisms, related to errors in processing input data, allows attackers to trigger service interruptions.

The vulnerability of the BIG-IP access control and remote authentication mechanism is related to errors in processing input data. Exploiting this vulnerability can allow a malicious actor to cause service failures...

The vulnerability of the BIG-IP Access Policy Manager’s access control and remote authentication mechanism lies in errors during the processing of input data, allowing attackers to trigger a service failure.

The vulnerability of the BIG-IP Access Policy Manager’s access control and remote authentication mechanisms is related to errors in processing input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability of the implementation of the polymorphic data typing mechanism in the jackson-databind library allows a attacker to execute malicious loads.

The vulnerability of the Jackson-Databind library’s polymorphic data typing mechanism is related to deficiencies in input data processing. Exploiting this vulnerability could allow a malicious actor to execute malicious operations using the com.p6spy.engine.spy.P6DataSource class...

The vulnerability of the nntp.c file of the NeoMutt email client, related to errors in processing input data, allows a hacker to execute arbitrary code.

The vulnerability of the nntp.c file of the NeoMutt email client is related to errors in processing input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Sourcecodester Restaurant Management System Code Issue Vulnerability

Sourcecodester Restaurant Management System is a restaurant management system. A code issue vulnerability exists in version 1.0 of the Sourcecodester Restaurant Management System, which arises from a failure of the program to properly process user-submitted input and can be exploited by an attack...

PT-2019-3039 · Microsoft · Msxml +2

Name of the Vulnerable Software and Affected Versions: Microsoft XML Core Services MSXML affected versions not specified Description: A remote code execution issue exists when the Microsoft XML Core Services MSXML parser processes user input. An attacker who successfully exploits this issue could...

The vulnerability of the “GCSvc.exe” service in the information protection system against unauthorized access by the Storm NT security system allows a intruder to cause a service failure.

The vulnerability of the “GCSvc.exe” service in the information protection system against unauthorized access, managed by the Storm NT security system, is related to incorrect processing of input data. Exploiting this vulnerability could allow an intruder, operating locally, to cause a service...

The vulnerability of the installation mechanism for the software development tools for Intel Data Center Manager SDK allows unauthorized access, enabling attackers to enhance their privileges.

The vulnerability of the installation mechanism for the software development tools for Intel Data Center Manager SDK is related to errors in processing input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerabilities of the components GroovySandbox.java and SecureGroovyScript.java of the Jenkins Script Security plugin allow a perpetrator to execute arbitrary code.

The vulnerabilities of the GroovySandbox.java component src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/GroovySandbox.java and SecureGroovyScript.java component src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/SecureGroovyScript.java of the Jenkins Script Securi...

CVE-2019-0795

A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0790, CVE-2019-0791, CVE-2019-0792, CVE-2019-0793...

The vulnerability of the IndexedDB component in the Chrome web browser, allowing a hacker to gain unauthorized access to data

The vulnerability of the IndexedDB component in the Chrome web browser is related to errors in processing input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the JavaScript script handler in Google Chrome’s V8 browser allows a hacker to trigger a service failure.

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine is related to errors in processing input data, which can lead to corruption of the heap. Exploiting this vulnerability allows a remote attacker to trigger a service failure through a specially crafted HTML page...

The vulnerability of the get_cookies function in the HTTP library libsoup, which allows a hacker to execute arbitrary code.

The vulnerability of the getcookies function in the HTTP library libsoup is related to errors in input processing. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code using a null hostname...

The vulnerability of the AMF protocol processing mechanism in Cisco Secure ACS’s security access control system allows a perpetrator to execute arbitrary commands.

The vulnerability of the AMF processing mechanism in the Cisco Secure ACS security control system is related to deficiencies in input data processing. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands using a specially crafted AMF message...

The vulnerability of the message filtering function of the Cisco AsyncOS operating system, which allows a intruder to trigger a service failure

The vulnerability of the Cisco AsyncOS operating system’s message filtering function is related to insufficient processing of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions through a specially crafted email message...

The vulnerability in the implementation of the Link Layer Discovery Protocol (LLDP) in Cisco FX-OS and Cisco NX-OS network operating systems allows a attacker to cause service interruptions.

The vulnerability in the implementation of the Link Layer Discovery Protocol LLDP for Cisco FX-OS and Cisco NX-OS network operating systems arises due to errors in processing input data. Exploiting this vulnerability allows a malicious actor to cause service failures using a specially crafted LLD...

The vulnerability of the FortiOS operating system’s SSL-VPN implementation, caused by errors in processing input data, allows a hacker to replace encrypted traffic with malicious data.

The vulnerability of the SSL-VPN implementation in the FortiOS operating system arises due to errors in processing input data. Exploiting this vulnerability allows a malicious actor to replace encrypted traffic using a specially generated MAC...

The vulnerability in the implementation of the Microsoft Server Message Block 2.0 network protocol on Windows operating systems allows a perpetrator to disclose protected information.

The vulnerability of the Microsoft Server Message Block 2.0 SMBv2 network protocol in Windows operating systems is related to errors in processing input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose sensitive information with the help of speciall...