WECON PIStudio basedll TextContent Stack-based Buffer Overflow

A stack-based overflow exists in Wecon PIStudio. This vulnerability is due to input validation error when processing TextContent attributed in a HSC configuration file. A remote attacker could exploit these vulnerabilities by enticing a user to visit a malicious web page or open a crafted documen...

Red Hat OpenShift Input Validation Error Vulnerability

Red Hat OpenShift is a Platform-as-a-Service PaaS cloud computing platform from Red Hat, Inc. that supports building, testing, deploying and running applications. An input validation error vulnerability in the cartridges/openshift-origin-cartridge-mongodb-2.2/info/bin/dump.sh file in Red Hat...

evince input validation error vulnerability

evince is a document viewer used in the GNOME desktop that supports PDF, PostScript, DjVu, TIFF and DVI formats. An input validation error vulnerability exists in evince, which stems from the program failing to check the number of pages, and can be exploited by an attacker to cause the applicatio...

Mapserver Input Validation Error Vulnerability

Mapserver is the Open Source Geospatial OSGeo Foundation's suite of open source platforms for publishing spatial data and interactive map applications to the Web. An input validation error vulnerability in Mapserver versions 5.2, 5.4, and 5.6 prior to 5.6.5-2, which stems from the program failing...

PHOENIX CONTACT Automation Worx Software Suite Input Validation Error Vulnerability

Automation Worx Software Suite is an automation software package from Phoenix Contact. An input validation error vulnerability exists in PHOENIX CONTACT Automation Worx Software Suite, which can be exploited by an attacker to execute arbitrary code...

MailScanner Input Validation Error Vulnerability

MailScanner is an open source email filter for the Linux platform. The product is capable of scanning email for viruses, spam, phishing and malware. An input validation error vulnerability exists in MailScanner, which can be exploited by a local attacker to prevent the update of virus signatures...

IBM Security Directory Server Input Validation Error Vulnerability

IBM Security Directory Server is a suite of enterprise identity management software from IBM USA that uses the Lightweight Directory Access Protocol LDAP. The software provides a trusted identity data infrastructure for authentication. An input validation error vulnerability exists in IBM Securit...

Linux kerne input validation error vulnerability

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. An input validation error vulnerability exists in the basesockcreate function in the drivers/isdn/mISDN/socket.c file in the AFISDN network module in Linux kernel 5.3....

MapR CLDB Input Validation Error Vulnerability

MapR CLDB is a containerized location database from MapR USA. An input validation error vulnerability exists in the MapR CLDB code, which can be exploited by an attacker to execute arbitrary code on a device running MapR CLDB and take control of the cluster...

IBM Security Access Manager Appliance Input Validation Error Vulnerability

IBM Security Access Manager Appliance ISAM Appliance is a network appliance-based security solution from IBM, USA. The product is mainly used for access control and Web-based threat protection, providing system performance monitoring, log analysis and diagnosis. An input validation error...

FasterXML jackson-databind input validation error vulnerability (CNVD-2019-41723)

FasterXML Jackson is a U.S. FasterXML company for Java data processing tools . jackson-databind is one of the components with data binding capabilities . An input validation error vulnerability exists in FasterXML jackson-databind. No detailed vulnerability details are available at this time...

CloudBees Jenkins Puppet Enterprise Pipeline Plugin Input Validation Error Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . Puppet Enterprise Pipeline is used in one of...

CVE-2019-16964

app/callcenters/cmd.php in the Call Center Queue Module in FusionPBX up to 4.5.7 suffers from a command injection vulnerability due to a lack of input validation, which allows authenticated attackers with at least the permission callcenterqueueadd or callcenterqueueedit to execute any commands on...

Horner Automation Cscape Input Validation Error Vulnerability

Horner Automation Cscape is a set of programming software for industrial control system development from Horner Automation. An input validation error vulnerability exists in Horner Automation Cscape version 9.90 and earlier. An attacker could exploit this vulnerability to access information and...

Trend Micro Anti-Threat Toolkit Input Validation Error Vulnerability

Trend Micro Anti-Threat Toolkit ATTK is a malware analysis toolkit from Trend Micro. An input validation error vulnerability exists in Trend Micro ATTK version 1.62.0.1218 and earlier versions, which can be exploited by an attacker to load and execute arbitrary...

Samsung Galaxy S10 and Samsung Galaxy Note10 Input Validation Error Vulnerability

The Samsung Galaxy S10 and Samsung Galaxy Note10 are both smartphones from the South Korean company Samsung Samsung. A security vulnerability exists in the Samsung Galaxy S10 and Samsung Galaxy Note10. An attacker can use the vulnerability to open the phone with the help of an unrecorded...

Palo Alto Networks Zingbox Inspector Input Validation Error Vulnerability

The Palo Alto Networks Zingbox Inspector is a locally deployed appliance in a Zingbox IoT Command Center IoT control center solution from Palo Alto Networks, USA. An input validation error vulnerability exists in Palo Alto Networks Zingbox Inspector version 1.294 and earlier. The vulnerability...

Juniper Networks NFX Series Junos OS Input Validation Error Vulnerability

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. An input validation error vulnerability in Juniper Networks NFX Series with Junos OS prior to version 18.2R1 can be...

Cisco Wireless LAN Controller Software Input Validation Error Vulnerability

Cisco Wireless LAN Controller WLC Software is a suite of software for configuring and managing WLCs Wireless LAN Controllers from Cisco. An input validation error vulnerability exists in Secure Shell Session Management in Cisco WLC Software 8.5.140.0 and prior versions, which originates from the...

WordPress Input Validation Error Vulnerability (NVD-C-2019-153344)

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress is vulnerable to an input validation error vulnerability. Detailed vulnerability details are not...