14 matches found
PT-2026-5672
Memory corruption when calculating oversized partition sizes without proper checks...
The vulnerability of the Apache Tomcat application server arises from the acceptance of input paths as internal paths without verification. This allows attackers to gain unauthorized access to protected information and execute arbitrary code.
The vulnerability of the Apache Tomcat application server lies in the acceptance of input paths as internal paths without verification. Exploiting this vulnerability allows an attacker operating remotely to gain unauthorized access to protected information and execute arbitrary code...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a security vulnerability that stems from a lack of NOWAIT checks...
Denial Of Service (DoS)
com.owlike, genson is vulnerable to Denial Of Service DoS. The vulnerability exists due to a lack of nested depth checks, which allows an attacker to cause an application crash...
EulerOS 2.0 SP10 : gd (EulerOS-SA-2022-1203)
According to the versions of the gd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The GD Graphics Library aka LibGD through 2.3.2 has an out-of-bounds read because of the lack of certain gdGetBuf and gdPutBuf return value checks...
CVE-2021-40812
The GD Graphics Library aka LibGD through 2.3.2 has an out-of-bounds read because of the lack of certain gdGetBuf and gdPutBuf return value checks...
CVE-2021-40812
The GD Graphics Library aka LibGD through 2.3.2 has an out-of-bounds read because of the lack of certain gdGetBuf and gdPutBuf return value checks...
RBKmoney: Apple Pay cryptogram replay and amount tampering
During Apple Pay in-app or on-site payments the device generates a payment cryptogram, which contains a transaction ID, encrypted payment data, etc. This is an example of the cryptogram which the phone passes to the internet acquiring service on api.transferwise.com: "token": "paymentData":...
Important: Red Hat Security Advisory: Red Hat Process Automation Manager 7.8.1 Security Update
An update is now available for Red Hat Process Automation Manager. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...
Important: Red Hat Security Advisory: RH-SSO 7.4.1 adapters for Red Hat JBoss Enterprise Application Platform 6
A security update is now available for Red Hat Single Sign-On 7.4.1 adapters for Red Hat JBoss Enterprise Application Platform 6 Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...
Denial Of Service (DoS)
tensorflow is vulnerable to denial of service DoS. The vulnerability exists due to the lack of checks during conversion of a string in eager mode from Python to a tf.float16 value...
User Impersonation
storm-core is vulnerable to user impersonation attacks. The vulnerability exists due to the lack of checks on whether the impersonation feature is allowed...
Input validation
A vulnerability in the web interface of Cisco Jabber could allow an authenticated, local attacker to retrieve user profile information from the affected software, which could lead to the disclosure of confidential information. The vulnerability is due to a lack of input and validation checks in t...
Cisco AnyConnect Secure Mobility Client for Windows Privilege Escalation Vulnerability
A vulnerability in Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to execute an arbitrary executable file with privileges equivalent to the Microsoft Windows operating system SYSTEM account. The vulnerability is due to lack of checks in the code f...