The vulnerability of the qemu-seccomp.c component of the QEMU hardware emulator, related to the use of an incomplete black list, allows a hacker to trigger a service failure.

The vulnerability of the qemu-seccomp.c component of the QEMU hardware emulator lies in the use of the seccomp policy only for the main thread. Exploiting this vulnerability allows an attacker to cause a system failure...

PT-2021-15489 · Lutils · Lutils

Name of the Vulnerable Software and Affected Versions: lutils versions prior to a fixed version Description: The issue concerns Prototype Pollution via the main merge function. This allows for potential manipulation of the prototype, which can lead to various security issues. Recommendations: For...

com.datastax.oss.quarkus:cassandra-quarkus-integration-tests-application (>=1.0.2 <=1.0.4), com.datastax.oss.quarkus:cassandra-quarkus-integration-tests-main (>=1.0.2 <=1.0.4) +396 more potentially affected by CVE-2020-10688 via org.jboss.resteasy:resteasy-core (>=4.0.0.Beta6 <=4.5.2.Final)

org.jboss.resteasy:resteasy-core MAVEN version =4.0.0.Beta6, =1.0.2, =1.0.2, =1.0.2, =1.0.2, =1.0.3, =1.0.2, =1.26.0, =0.0.1, =0.0.1, =0.0.1, =5.6.0, =5.3.0, =5.7.4 and more Source cves: CVE-2020-10688 Source advisory: OSV:GHSA-29QJ-RVV6-QRMVhttps...

CVE-2021-26197

An issue was discovered in JerryScript 2.4.0. There is a SEGV in mainprintunhandledexception in main-utils.c file...

Design/Logic Flaw

An issue was discovered in JerryScript 2.4.0. There is a SEGV in mainprintunhandledexception in main-utils.c file...

UBUNTU-CVE-2021-26197

An issue was discovered in JerryScript 2.4.0. There is a SEGV in mainprintunhandledexception in main-utils.c file...

CVE-2021-26197

An issue was discovered in JerryScript 2.4.0. There is a SEGV in mainprintunhandledexception in main-utils.c file...

CVE-2021-26197

Removed by vendor...

CVE-2021-26197

An issue was discovered in JerryScript 2.4.0. There is a SEGV in mainprintunhandledexception in main-utils.c file...

JerryScript 代码问题漏洞

JerryScript is a lightweight JavaScript engine . A security vulnerability exists in JerryScript 2.4.0, which originates from a SEGV in mainprintunhandledexception in the main-utils.c file.No detailed vulnerability details are available at this time...

The vulnerability of the main() function in the Exim message forwarding agent lies in the fact that it allows writing beyond the buffer boundaries in memory. This enables a hacker to increase their privileges within the system and execute arbitrary code.

The vulnerability of the main function in the Exim message forwarding agent is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to increase their privileges within the system and execute arbitrary code...

Important: Red Hat Security Advisory: glib2 security update

An update for glib2 is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support, Red Hat Enterprise Linux 7.4 Telco Extended Update Support, and Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact...

DEBIAN-CVE-2021-3548

A flaw was found in dmg2img through 20170502. dmg2img did not validate the size of the read buffer during memcpy inside the main function. This possibly leads to memory layout information leaking in the data. This might be used in a chain of vulnerability in order to reach code execution...

CVE-2021-3548

A flaw was found in dmg2img through 20170502. dmg2img did not validate the size of the read buffer during memcpy inside the main function. This possibly leads to memory layout information leaking in the data. This might be used in a chain of vulnerability in order to reach code execution...

dmg2img 缓冲区错误漏洞

dmg2img is a software application. Provides a function to convert Apple compressed dmg archives into standard hfsplus image disk files. A security vulnerability exists in dmg2img 20170502, which stems from dmg2img not validating the size of the read buffer during memcpy inside the main function,...

GHSA-3FR8-MWPP-8H9P Cross-site scripting in TileServer GL

An issue was discovered in server.js in TileServer GL through 3.0.0. The content of the key GET parameter is reflected unsanitized in an HTTP response for the application's main page, causing reflected XSS...

Bello < 1.6.0 - Unauthenticated Reflected XSS & XFS

The theme did not properly sanitise and escape its listinglistview, btbblistingfieldmylat, btbblistingfieldmylng, btbblistingfielddistancevalue, btbblistingfieldmylatdefault, btbblistingfieldkeyword, btbblistingfieldlocationautocomplete, btbblistingfieldpricerangefrom and...

Sifchain: Wrong Url in Main page of sifchain.finance

Hello Sifchain team, I found that all the social media button is working properly except telegram button on the main page of sifchain.finance Misconfiguration on button can create bad reputation of a company as well as a genuine customer could not reach to a company through the mis-configured...

Sifchain: Username disclosure at Main Domain

Hello, PoC Link https://sifchain.finance//wp-json/wp/v2/users/ thanks. Impact Malicious counterpart could collect the usernames disclosed and the admin user and be focused throughout BF attack as the usernames are now known, making it less harder to penetrate the data.gov systems...

Sifchain: Vulnerable javascript dependency at Main domain

Hello, Issue detail, Burp observed 1 outdated JavaScript libraries with 4 known vulnerabilities. Burp detected bootstrap version 4.0.0, which has the following vulnerabilities: CVE-2019-8331: XSS in data-template, data-content and data-title properties of tooltip/popover CVE-2018-14041: XSS in...