4755 matches found
Loading a bgzip block can write out of bounds if size overflows.
An issue was discovered in the bam crate before 0.1.3 for Rust. There is an integer underflow and out-of-bounds write during the loading of a bgzip block...
TRENDnet TI-PG1284i Integer Underflow Vulnerability
The TRENDnet TI-PG Series is a series of switches from TRENDnet. A security vulnerability exists in TRENDnet TI-PG1284i versions prior to 2.0.2.S0, no details of the vulnerability are provided at this time...
CVE-2021-33315
The TRENDnet TI-PG1284i switchhw v2.0R prior to version 2.0.2.S0 suffers from an integer underflow vulnerability. This vulnerability exists in its lldp related component. Due to lack of proper validation on length field of PortID TLV, by sending a crafted lldp packet to the device, integer...
CVE-2021-33316
The TRENDnet TI-PG1284i switchhw v2.0R prior to version 2.0.2.S0 suffers from an integer underflow vulnerability. This vulnerability exists in its lldp related component. Due to lack of proper validation on length field of ChassisID TLV, by sending a crafted lldp packet to the device, integer...
Integer overflow
The TRENDnet TI-PG1284i switchhw v2.0R prior to version 2.0.2.S0 suffers from an integer underflow vulnerability. This vulnerability exists in its lldp related component. Due to lack of proper validation on length field of PortID TLV, by sending a crafted lldp packet to the device, integer...
Integer overflow
The TRENDnet TI-PG1284i switchhw v2.0R prior to version 2.0.2.S0 suffers from an integer underflow vulnerability. This vulnerability exists in its lldp related component. Due to lack of proper validation on length field of ChassisID TLV, by sending a crafted lldp packet to the device, integer...
CVE-2021-33315
The TRENDnet TI-PG1284i switchhw v2.0R prior to version 2.0.2.S0 suffers from an integer underflow vulnerability. This vulnerability exists in its lldp related component. Due to lack of proper validation on length field of PortID TLV, by sending a crafted lldp packet to the device, integer...
CVE-2021-33316
The TRENDnet TI-PG1284i switchhw v2.0R prior to version 2.0.2.S0 suffers from an integer underflow vulnerability. This vulnerability exists in its lldp related component. Due to lack of proper validation on length field of ChassisID TLV, by sending a crafted lldp packet to the device, integer...
CVE-2021-33315
CVE-2021-33315 affects TRENDnet TI-PG1284i switches (hw v2.0R) prior to version 2.0.2.S0. The root cause is a lack of validation on the length field of the PortID TLV in the LLDP component, which can trigger an integer underflow and cause a negative value to be passed to memcpy(), potentially lea...
NewStart CGSL CORE 5.05 / MAIN 5.05 : xorg-x11-server Vulnerability (NS-SA-2022-0036)
The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has xorg-x11-server packages installed that are affected by a vulnerability: - A flaw was found in xorg-x11-server in versions before 1.20.11. An integer underflow can occur in xserver which can lead to a local privilege...
IBM Java 6.0 < 6.0.16.20 / 6.1 < 6.1.8.20 / 7.0 < 7.0.9.30 / 7.1 < 7.1.3.30 / 8.0 < 8.0.2.10 Multiple Vulnerabilities (Jan 1, 2016)
The version of IBM Java installed on the remote host is prior to 6.0 6.0.16.20 / 6.1 6.1.8.20 / 7.0 7.0.9.30 / 7.1 7.1.3.30 / 8.0 8.0.2.10. It is, therefore, affected by multiple vulnerabilities as referenced in the IBM Security Update January 2016 advisory. - The J9 JVM in IBM SDK, Java Technolo...
FIS GT.M Denial of Service Vulnerability (CNVD-2022-32802)
FIS GT.M is a database platform. A security vulnerability exists in versions prior to FIS GT.M V7.0-000, which can be exploited by an attacker to cause an integer underflow to the size of the memset call in opfnj3 in srport/opfnj3.c, resulting in a segmentation error and crashing the application...
CVE-2021-44509
An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. Using crafted input, attackers can cause an integer underflow of the size of calls to memset in opfnj3 in srport/opfnj3.c in order to cause a segmentation fault and crash the application...
CVE-2021-44509
An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. Using crafted input, attackers can cause an integer underflow of the size of calls to memset in opfnj3 in srport/opfnj3.c in order to cause a segmentation fault and crash the application...
CVE-2021-44489
An issue was discovered in YottaDB through r1.32 and V7.0-000. Using crafted input, attackers can cause an integer underflow of the size of calls to memset in opfnj3 in srport/opfnj3.c in order to cause a segmentation fault and crash the application. This is a "- digs" subtraction...
CVE-2021-44489
An issue was discovered in YottaDB through r1.32 and V7.0-000. Using crafted input, attackers can cause an integer underflow of the size of calls to memset in opfnj3 in srport/opfnj3.c in order to cause a segmentation fault and crash the application. This is a "- digs" subtraction...
Integer overflow
An issue was discovered in YottaDB through r1.32 and V7.0-000. Using crafted input, attackers can cause an integer underflow of the size of calls to memset in opfnj3 in srport/opfnj3.c in order to cause a segmentation fault and crash the application. This is a "- digs" subtraction...
CVE-2021-44509
CVE-2021-44509 affects FIS GT.M through V7.0-000 (YottaDB code base). The issue is an integer underflow in the size calculation for memset calls in sr_port/op_fnj3.c (function op_fnj3), which can cause a segmentation fault and crash the application. Exploitation details, affected versions, and pa...
CVE-2021-44509
An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. Using crafted input, attackers can cause an integer underflow of the size of calls to memset in opfnj3 in srport/opfnj3.c in order to cause a segmentation fault and crash the application...
CVE-2021-44509
An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. Using crafted input, attackers can cause an integer underflow of the size of calls to memset in opfnj3 in srport/opfnj3.c in order to cause a segmentation fault and crash the application...