FreeBSD Input Validation Error Vulnerability

FreeBSD is a set of Unix-like operating systems from the FreeBSD Foundation. An input validation error vulnerability exists in FreeBSD, which arises from a program's failure to adequately validate the length of a packet, and can be exploited by a remote attacker to execute arbitrary code by sendi...

Cellebrite Restricted Desktop Escape and Escalation of User Privilege

Vulnerability Details Affected Vendor: Cellebrite Affected Product: UFED Affected Version: 5.0 - 7.5.0.845 Platform: Embedded Windows CWE Classification: CWE-269: Improper Privilege Management, CWE-20: Input Validation Error CVE ID: CVE-2020-12798 2. Vulnerability Description Cellebrite UFED...

Microsoft ASP.NET Core Input Validation Error Vulnerability

Microsoft Visual Studio and Microsoft ASP.NET Core are both products of Microsoft Corporation, USA. Microsoft Visual Studio is a family of development tool suites and a largely complete development toolset that includes most of the tools needed throughout the software lifecycle. Microsoft ASP.NET...

Cellebrite UFED 7.5.0.845 Desktop Escape / Privilege Escalation Vulnerability

Cellebrite UFED device implements local operating system policies that can be circumvented to obtain a command prompt. From there privilege escalation is possible using public exploits. Versions 5.0 through 7.5.0.845 are affected. Title: Cellebrite Restricted Desktop Escape and Escalation of User...

Palo Alto Networks PAN-OS Input Validation Error Vulnerability

Palo Alto Networks PAN-OS is an operating system developed by Palo Alto Networks for its firewall appliances. An input validation error vulnerability exists in the configuration daemon in Palo Alto Networks PAN-OS. An attacker could exploit this vulnerability with a specially crafted request to...

SAP Adaptive Server Enterprise Input Validation Error Vulnerability

SAP Adaptive Server Enterprise is a relational database server from SAP. An input validation error vulnerability exists in SAP Adaptive Server Enterprise, which arises when the program does not perform the required validation checks on an authenticated user. An attacker could exploit this...

SAP Business Objects Business Intelligence Platform Input Validation Error Vulnerability

SAP Business Objects Business Intelligence Platform is a suite of business intelligence software and enterprise performance solutions from SAP, Germany. The product features report generation, analytics, and data visualization. An input validation error vulnerability exists in SAP Business Object...

Red Hat Keycloak Input Validation Error Vulnerability (CNVD-2020-41186)

Red Hat Keycloak is a suite of software from Red Hat, Inc. that provides authentication and management capabilities for modern applications and services. An input validation error vulnerability exists in ObjectInputStream in Red Hat Keycloak versions prior to 11.0.0, which stems from the program...

Zephyr Input Validation Error Vulnerability

Zephyr is an open source, small, scalable real-time operating system from the Linux Foundation. Zephyr suffers from an input validation error vulnerability. An attacker could use this vulnerability to bypass security checks performed by the system call handler, potentially causing a denial of...

Zephyr Input Validation Error Vulnerability (CNVD-2020-29631)

Zephyr is an open source, small, scalable real-time operating system from the Linux Foundation. Zephyr suffers from an input validation error vulnerability that stems from the program not performing parameter validation when making multiple system calls. No details of the vulnerability are...

Zephyr Input Validation Error Vulnerability (CNVD-2020-35003)

Zephyr is an open source, small, scalable real-time operating system from the Linux Foundation. An input validation error vulnerability exists in the Kscan subsystem in Zephyr 2.1.0 and later fixed in version 2.2.0, which stems from the program failing to perform sufficient parameter validation...

slp-validate Input Validation Error Vulnerability

slp-validate is a lightweight SLP Simple Ledger Protocol validator with features such as pre-broadcast validation and burn protection. an input validation error vulnerability exists in slp-validate. The vulnerability stems from a network system or product that does not properly validate incoming...

Multiple WAVLINK Products Input Validation Error Vulnerability

WAVLINK WL-WN579G3 and others are a wireless network signal extender from China's RuiYin Technology WAVLINK. A security vulnerability exists in WAVLINK WL-WN579G3 M79X3.V5030.180719 version, WL-WN575A3 RPT75A3.V4300.180801 version and WL-WN530HG4 M30HG4.V5030.191116 version. An attacker can explo...

F5 BIG-IP Input Validation Error Vulnerability (CNVD-2020-36273)

F5 BIG-IP is an application delivery platform from F5 USA that integrates network traffic management, application security management, load balancing and other functions. An input validation error vulnerability exists in F5 BIG-IP versions 15.1.0 through 15.1.0.1, 15.0.0 through 15.0.1.2, and...

Network Time Protocol Input Validation Error Vulnerability

Network Time Protocol NTP, Network Time Protocol is a network protocol that synchronizes the clocks of two computers by exchanging packets. A security vulnerability exists in ntpd in NTP. A remote attacker could use this vulnerability to prevent a broadcast client from synchronizing its clock wit...

Accusoft ImageGear Input Validation Error Vulnerability

Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, USA. An input validation error vulnerability exists in the TIFF fillinraster function of the igcore19d.dll library in Accusoft ImageGear versions 19.4, 19.5, and 19.6. An attacker can exploit the vulnerabilit...

Cisco Firepower Management Center Input Validation Error Vulnerability (CNVD-2020-27105)

Cisco Firepower Management Center FMC is a new generation of firewall management center software from Cisco. An input validation error vulnerability exists in Cisco Firepower Management Center. An attacker could exploit this vulnerability by sending a specially crafted HTTP request to an affected...

Telegram Input Verification Error Vulnerability

Telegram is an instant messaging mobile application.Telegram Desktop is the desktop version of Telegram. An input validation error vulnerability exists in Telegram Desktop version 2.0.1 and earlier and Telegram Android and IOS version 6.0.1 and earlier, which can be exploited by remote attackers ...

Dell EMC RSA Archer Input Validation Error Vulnerability

Dell EMC RSA Archer is an enterprise IT governance and compliance governance product from Dell USA. The product enables the development of eGRC programs for managing enterprise risk, automating business processes, and more. An input validation error vulnerability exists in versions prior to Dell...

Huawei Lion-AL00C Input Validation Error Vulnerability

The Huawei Lion-AL00C is a smartphone from the Chinese company Huawei Huawei. An input validation error vulnerability exists in Huawei Lion-AL00C prior to version 10.0.0.205 C00E202R7P2, which stems from the program's failure to adequately validate a field, and can be exploited by an attacker wit...