The vulnerability of the TLS function in microprogramming-based network interface controllers of Cisco Adaptive Security Appliances (ASA) and Cisco Firepower Threat Defense (FTD) allows attackers to induce service failures.

The vulnerability of the TLS function in Cisco Adaptive Security Appliance ASA and Cisco Firepower Threat Defense FTD systems is related to improper validation of certain types of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

Google Pixel Input Validation Error Vulnerability (CNVD-2024-45893)

Google Pixel is a smartphone from the American company Google Google. Google Pixel suffers from an input validation error vulnerability that stems from improper input validation in smmemcompatgetvmmobj in lib/sm/sharedmem.c, which can be exploited by an attacker to cause memory access...

Mitel MiCollab Input Validation Error Vulnerability

Mitel MiCollab is a mobile application from Mitel Canada that provides voice, video, messaging, audio conferencing and team collaboration for employees. An input validation error vulnerability exists in Mitel MiColla, which can be exploited by an attacker to execute arbitrary commands on the syst...

NVIDIA vGPU Software 输入验证错误漏洞

NVIDIA vGPU Software is a management software from NVIDIA, USA, used to provide GPU capabilities to virtual machines. The software supports multiple virtual machines to access the host's GPU, providing graphics performance and application compatibility for virtual machines. The NVIDIA vGPU Softwa...

ZITADEL 输入验证错误漏洞

ZITADEL is a modern open source alternative to Auth0, Firebase Auth, AWS Cognito, and Keycloak built for the container and serverless era, open sourced by ZITADEL in Switzerland. ZITADEL suffers from an input validation error vulnerability that stems from a flaw in the URL validation mechanism th...

Google Pixel 安全漏洞

Google Pixel is a smartphone from the American company Google Google. Google Pixel suffers from an input validation error vulnerability that stems from improper input validation in smmemcompatgetvmmobj in lib/sm/sharedmem.c, which can be exploited by an attacker to cause memory access...

Cisco Secure Firewall Management Center 安全漏洞

Cisco Secure Firewall Management Center is a powerful network security management tool from Cisco. Cisco Secure Firewall Management Center suffers from a server-side request forgery vulnerability that stems from improper validation of user-supplied data. An attacker could use this vulnerability t...

Apache CloudStack Input Validation Error Vulnerability (CNVD-2024-41660)

Apache CloudStack is a suite of Infrastructure as a Service IaaS cloud computing platforms from the Apache Foundation in the United States. The platform is primarily used to deploy and manage large networks of virtual machines. Apache CloudStack has a security vulnerability that can be exploited ...

Cursor 输入验证错误漏洞

Cursor is an AI code editor from the Cursor open source. An input validation error vulnerability exists in versions prior to Cursor 20240927, which stems from the fact that if a user generates terminal commands via Cursor's Terminal Cmd-K/Ctrl-K functionality, an attacker could potentially...

Linux kernel 输入验证错误漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from improper handling of a serial number overflow in the padata component, which could lead to a deadlock...

Mitel MiCollab 代码注入漏洞

Mitel MiCollab is a mobile application from Mitel Canada that provides voice, video, messaging, audio conferencing and team collaboration for employees. An input validation error vulnerability exists in Mitel MiColla, which can be exploited by an attacker to execute arbitrary commands on the syst...

ACON 输入验证错误漏洞

ACON is an Adaptive Correlation Optimization Network package from the Torin Etheridge Personal Developer. An input validation error vulnerability exists in versions of ACON prior to 1.0.0, which stems from a vulnerability that allows an attacker to submit malicious input data to bypass input...

Esri Portal For ArcGIS Redirection Vulnerability (CNVD-2024-41011)

Esri Portal For ArcGIS is a component from Environmental Systems Research Institute Esri that allows maps, scenes, applications, and other geographic information to be shared with others within an organization. An input validation error vulnerability exists in Esri Portal For ArcGIS that stems fr...

Mitsubishi Electric CNC Series 安全漏洞

Mitsubishi Electric CNC Series is a series of CNC control systems from Mitsubishi Electric Japan. The Mitsubishi Electric CNC Series suffers from an Input Specified Quantity Validation Error vulnerability, which can be exploited by an attacker to cause a denial of service to the product by sendin...

Progress LoadMaster和Progress Multi-Tenant Hypervisor 输入验证错误漏洞

Progress LoadMaster and Progress Multi-Tenant Hypervisor are both products of Progress, Inc. Progress LoadMaster is a high performance application delivery controller ADC and load balancer. Progress Multi-Tenant Hypervisor is a multi-tenant hypervisor. Tenant Hypervisor is a multi-tenant...

Adobe Framemaker Input Validation Error Vulnerability (CNVD-2024-40918)

Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. Adobe Framemaker suffers from an input validation error vulnerability that stems from an integer overflow. An...

Adobe Animate 输入验证错误漏洞

Adobe Animate is a set of Flash animation software from the American company Audobee Adobe. Adobe Animate suffers from an integer overflow or wrap-around vulnerability that can be exploited by an attacker to execute arbitrary code in the context of the current user...

Microsoft Hyper-V 输入验证错误漏洞

Microsoft Windows Hyper-V is a tool from Microsoft USA that provides hardware virtualization. A security feature bypass vulnerability exists in Microsoft Windows Hyper-V, which can be exploited by an attacker to bypass certain features...

Schneider Electric Zelio Soft 输入验证错误漏洞

Schneider Electric Zelio Soft is a suite of logic controller programming software from Schneider Electric France. An input validation error vulnerability exists in Schneider Electric Zelio Soft versions prior to v5.4.2.2, which stems from the presence of an incorrect input validation vulnerabilit...

Redis 输入验证错误漏洞

Redis is an open source, ANSI C, web-enabled, memory-based, persistent logging, key-value Key-Value storage database from Redis, Inc. and provides APIs in multiple languages. An input validation error vulnerability exists in Redis. An attacker could use this vulnerability to cause a denial of...