SAMSUNG Mobile devices 安全漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices prior to SMR Apr-2024 Release 1, which stems from an out-of-bounds write when freeing memory...

PT-2024-18754 · Unknown · Libsavsac.So

Name of the Vulnerable Software and Affected Versions: libsavsac.so versions prior to SMR Apr-2024 Release 1 Description: The issue is an out-of-bounds write vulnerability that occurs while releasing memory in libsavsac.so. This allows a local attacker to execute arbitrary code. Recommendations:...

PT-2024-18758 · Unknown · Libsdffextractor

Name of the Vulnerable Software and Affected Versions: libsdffextractor versions prior to SMR Apr-2023 Release 1 Description: The issue is related to an Out-of-bound Write vulnerability in the chunk parsing implementation. This allows local attackers to execute arbitrary code. Recommendations: Fo...

PT-2024-18755 · Unknown · Libsavsac.So

Name of the Vulnerable Software and Affected Versions: libsavsac.so versions prior to SMR Apr-2024 Release 1 Description: The issue is related to an out-of-bounds write vulnerability while decoding hcr of libsavsac.so. This allows a local attacker to execute arbitrary code. Recommendations: For...

SUSE CVE-2023-46047

An issue in Sane 1.2.1 allows a local attacker to execute arbitrary code via a crafted file to the saneiconfigureattach function. NOTE: this is disputed because there is no expectation that the product should be starting with an attacker-controlled configuration file...

DEBIAN-CVE-2023-46047

An issue in Sane 1.2.1 allows a local attacker to execute arbitrary code via a crafted file to the saneiconfigureattach function. NOTE: this is disputed because there is no expectation that the product should be starting with an attacker-controlled configuration file...

UBUNTU-CVE-2023-46047

DISPUTED An issue in Sane 1.2.1 allows a local attacker to execute arbitrary code via a crafted file to the saneiconfigureattach function. NOTE: this is disputed because there is no expectation that the product should be starting with an attacker-controlled configuration file...

USN-6711-1 crmsh vulnerability

Vincent Berg discovered that CRM shell incorrectly handled certain commands. An local attacker could possibly use this issue to execute arbitrary code via shell code injection to the crm history commandline...

CVE-2024-24520

An issue in Lepton CMS v.7.0.0 allows a local attacker to execute arbitrary code via the upgrade.php file in the languages place...

CVE-2024-24520

An issue in Lepton CMS v.7.0.0 allows a local attacker to execute arbitrary code via the upgrade.php file in the languages place...

CVE-2024-1801

In Progress® Telerik® Reporting versions prior to 2024 Q1 18.0.24.130, a code execution attack is possible by a local threat actor through an insecure deserialization vulnerability...

DEBIAN-CVE-2024-28580

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to execute arbitrary code via the ReadData function when reading images in RAS format...

DEBIAN-CVE-2024-28581

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to execute arbitrary code via the assignPixel function when reading images in TARGA format...

CVE-2024-28581

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to execute arbitrary code via the assignPixel function when reading images in TARGA format...

DEBIAN-CVE-2024-28569

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to execute arbitrary code via the Imf22::Xdr::read function when reading images in EXR format...

DEBIAN-CVE-2024-28566

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to execute arbitrary code via the AssignPixel function when reading images in TIFF format...

DEBIAN-CVE-2024-28562

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to execute arbitrary code via the Imf22::copyIntoFrameBuffer component when reading images in EXR format...

UBUNTU-CVE-2024-28581

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to execute arbitrary code via the assignPixel function when reading images in TARGA format...

UBUNTU-CVE-2024-28569

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to execute arbitrary code via the Imf22::Xdr::read function when reading images in EXR format...

FreeImage Security Vulnerability

FreeImage is a cross-platform open source library for supporting popular graphic image formats. A security vulnerability exists in FreeImage version v.3.19.0, which stems from the presence of a buffer overflow vulnerability. A local attacker can exploit this vulnerability to execute arbitrary cod...