Broadcom Netegrity SiteMinder 输入验证错误漏洞

Broadcom Netegrity SiteMinder is a single sign-on management system from Broadcom, Inc. It provides single sign-on and centralized management of Web, database, and software resources in enterprise applications. An input validation error vulnerability exists in the Login component of Broadcom...

Nvidia NVIDIA CUDA Toolkit 输入验证错误漏洞

Nvidia NVIDIA CUDA Toolkit is a development software application for creating high-performance GPU-accelerated applications from Nvidia Corporation. An integer overflow vulnerability exists in the NVIDIA CUDA Toolkit SDK that could be exploited by remote attackers to cause remote code execution,...

Wireshark Input Validation Error Vulnerability (CNVD-2022-55072)

Wireshark formerly known as Ethereal is a set of network packet analysis software from the Wireshark team. The software's function is to intercept network packets and display detailed data for analysis.Wireshark is vulnerable to input validation errors, which can be exploited by attackers to...

Nozomi Networks Guardian Input Validation Error Vulnerability (CNVD-2022-29575)

Nozomi Networks Guardian is an IoT device and software inspection system from Nozomi Networks, Switzerland. An input validation error vulnerability exists in versions of Nozomi Networks Guardian prior to 22.0.0, which can be exploited by an authenticated attacker with the role of Administrator or...

PowerDNS Authoritative Server输入验证错误漏洞

Powerdns PowerDNS Authoritative Server is a DNS server from the Dutch company PowerDNS Powerdns. PowerDNS Authoritative Server versions 4.4 before 4.4.3 and 4.5 before 4.5.4 and 4.6 before 4.6.1 and PowerDNS Recursor versions 4.4 before 4.4.8 and 4.5 before 4.5.8 and 4.6 before 4.6.1 suffer from ...

Apache Traffic Server Input Validation Error Vulnerability (CNVD-2022-41636)

Apache Traffic Server ATS is a set of scalable HTTP proxy and caching servers from the Apache Foundation in the U.S. An input validation error vulnerability exists in Apache Traffic Server versions 8.0.0 through 8.1.3 and 9.0.0 through 9.1.1, which stems from a request parsing incorrect input...

Splunk Enterprise 输入验证错误漏洞

Splunk is a suite of data collection and analysis software from Splunk, Inc. in the United States. The software is primarily used to collect, index, and analyze and the data it generates, including data generated by all IT systems and infrastructures physical, virtual machines, and cloud. Splunk...

Nozomi Networks Guardian Input Validation Error Vulnerability

Nozomi Networks Guardian is an IoT device and software inspection system from Nozomi Networks, Switzerland. An input validation error vulnerability exists in versions of Nozomi Networks Guardian prior to 22.0.0, which can be exploited by an authenticated attacker with the administrator or import...

Google Android Buffer Overflow Vulnerability (CNVD-2022-46301)

Google Android is a Linux-based open source operating system from Google, Inc. A buffer overflow vulnerability exists in Google Android due to a buffer overflow in amcscdevunlockedioctl in audiometrics.c caused by an input validation error. The vulnerability can be exploited to elevate local...

Imagemagick Studio ImageMagick 输入验证错误漏洞

Imagemagick Studio ImageMagick is a suite of open source image processing software from ImageMagick Studio Imagemagick Studio, an American company. The software can read, convert, or write images in many formats. A security vulnerability exists in Imagemagick Studio ImageMagick that stems from...

NVIDIA Data Center GPU Manager 输入验证错误漏洞

NVIDIA Data Center GPU Manager is a set of data center management tools from Nvidia that allows you to manage and monitor GPU resources in accelerated data centers.A security vulnerability exists in NVIDIA Data Center GPU Manager due to a bug in nvhostengine. error. An attacker could exploit the...

Apple Mac OS X Security Update (HT212981)

Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Apple Mac OS X Security Update (HT213185)

Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Netgate pfSense CE 输入验证错误漏洞

Netgate pfSense CE is a free and open source FreeBSD-based firewall and router software. An input validation error vulnerability exists in Netgate pfSense CE, which could allow an attacker who has the power to change the settings of an OpenVPN client or server to execute arbitrary commands...

Microweber 输入验证错误漏洞

Microweber is an online store management system that provides drag and drop functionality from the Microweber community in the United States. The system includes modules for adding products, images, and more. A security vulnerability exists in the GitHub repository microweber/microweber prior to...

Linux kernel 输入验证错误漏洞

Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. Linux kernel 5.16.12 previously had a security vulnerability where the endpoint index was not validated and could be manipulated by the host for out-of-array access. No detailed vulnerability details are...

Apache HTTP Server 输入验证错误漏洞

Apache HTTP Server is an open source web server from the Apache Foundation. Apache HTTP Server 2.4.52 and earlier versions are vulnerable to an input validation error that results from setting LimitXMLRequestBody to allow request bodies larger than 350MB 1M by default on 32-bit systems, which cou...

Apache HTTP Server 输入验证错误漏洞

Apache HTTP Server is an open source web server from the Apache Foundation. A denial-of-service vulnerability exists in Apache HTTP Server 2.4.52 and earlier versions, which stems from a well-designed request body that reads random memory regions and can be exploited by attackers to crash process...

DIAEnergie Cross-Site Scripting (CVE-2021-44544)

A stored cross-site scripting vulnerability exists in Delta Industrial Automation DIAEnergie. The vulnerability is due to input validation error when processing parameters in HandlerEnergyType.ashx endpoint...

Dell BIOS 缓冲区错误漏洞

Dell BIOS is embedded software on a small memory chip on a computer motherboard from Dell USA.Dell BIOS is vulnerable to an input validation error, which can be exploited by an authenticated attacker to obtain arbitrary code execution during SMM by using SMI...