678 matches found
Eltima USB Network Gate Integer Overflow Vulnerability
Eltima Usb Network Gate is a software from United Arab Emirates. It is used for remote Usb access via Internet or Lan. A security vulnerability exists in Eltima USB Network Gate, which can be exploited by a local attacker to cause a denial of service memory corruption and OS crash by executing...
NoMachine Enterprise Client Integer Overflow Vulnerability
NoMachine is a remote desktop access tool from NoMachine Luxembourg. A security vulnerability exists in NoMachine Enterprise Client, which can be exploited by a local attacker to cause a denial of service memory corruption and OS crash by executing arbitrary code in kernel mode or via specially...
Oracle Linux 8 : gcc (ELSA-2021-4386)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-4386 advisory. - CVE-2018-12207 / Intel SKX102 OL8 gcc: Intel Mitigation for CVE: CVE-2018-12207 Tenable has extracted the preceding description block directly from the Oracle...
Huawei EulerOS: Security Advisory for cpio (EulerOS-SA-2021-2654)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 Security Update : util-linux (SUSE-SU-2021:3523-1)
The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:3523-1 advisory. - DISPUTED An integer overflow in util-linux through 2.37.1 can potentially cause a buffer overflow if an attacker were able to use system...
Debian: Security Advisory (DLA-2783-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2783-1] hiredis security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2783-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb October 12, 2021 https://wiki.debian.org/LTS -...
SUSE SLES15 Security Update : haproxy (SUSE-SU-2021:2975-1)
The remote SUSE Linux SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2021:2975-1 advisory. - An integer overflow exists in HAProxy 2.0 through 2.5 in htxaddheader that can be exploited to perform an HTTP request smuggling attack, allowing an...
CVE-2021-21842
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an integer overflow when processing an atom using the 'ssix' FOURCC code, due to unchecked arithmetic...
GPAC 输入验证错误漏洞
GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering.The MPEG-4 decoding feature of GPAC Project on Advanced Content library 1.0.1 suffers from an integer...
glib2 security update
An update is available for glib2. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list GLib provides the core application building blocks for libraries and applicatio...
CVE-2020-19497
Integer overflow vulnerability in MatVarReadNextInfo5 in mat5.c in tbeu matio aka MAT File I/O Library 1.5.17, allows attackers to cause a Denial of Service or possibly other unspecified impacts...
CVE-2020-19497
Integer overflow vulnerability in MatVarReadNextInfo5 in mat5.c in tbeu matio aka MAT File I/O Library 1.5.17, allows attackers to cause a Denial of Service or possibly other unspecified impacts...
Integer overflow
Due to Manage Engine Asset Explorer Agent 1.0.34 not validating HTTPS certificates, an attacker on the network can statically configure their IP address to match the Asset Explorer's Server IP address. This will allow an attacker to send a NEWSCAN request to a listening agent on the network as we...
Advisory ROSA-SA-2021-1917
Software: memcached 1.4.15 OS: Cobalt 7.9 CVE-ID: CVE-2017-9951 CVE-Crit: HIGH CVE-DESC: The tryreadcommand function in memcached.c in memcached prior to version 1.4.39 allows remote attackers to cause a denial of service segmentation error with an add / set key request, which allows to compare...
Zephyr Integer Overflow Vulnerability
Zephyr is a small real-time operating system for connected, resource-constrained embedded devices. A security vulnerability exists in Zephyr versions = 1.14.2 and = 2.4.0. No details of the vulnerability are available at this time...
MGASA-2021-0216 Updated openjpeg2 packages fix a security vulnerability
There is a flaw in the opj2compress program in openjpeg2. An attacker who is able to submit a large number of image files to be processed in a directory by opj2compress, could trigger a heap out-of-bounds write due to an integer overflow, which is caused by the large number of image files. The...
Important: Red Hat Security Advisory: redis:6 security update
An update for the redis:6 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Freeimage Parses Inventory in Integer Overflow Vulnerability
freeimage is a free , open source , cross-platform Windows, Linux and Mac OS X , supports more than 20 types of images such as BMP, JPEG, GIF, PNG, TIFF , etc. image processing library . The Freeimage parsing library suffers from an integer overflow vulnerability, which can be exploited by...
CVE-2020-28020
Exim 4 before 4.92 allows Integer Overflow to Buffer Overflow, in which an unauthenticated remote attacker can execute arbitrary code by leveraging the mishandling of continuation lines during header-length restriction...