200 matches found
PT-2025-30778
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue was identified in the appletb kbd probe function within the HID subsystem. The vulnerability occurs when a timer, kbd-inactivity timer, remains active after the...
CVE-2024-52901
IBM InfoSphere Information Server 11.7 could allow an authenticated user to GUI to not load or stop working due to improper input validation...
CVE-2023-46256
PX4-Autopilot provides PX4 flight control solution for drones. In versions 1.14.0-rc1 and prior, PX4-Autopilot has a heap buffer overflow vulnerability in the parser function due to the absence of parserbufindex value checking. A malfunction of the sensor device can cause a heap buffer overflow...
CVE-2021-20601
Improper input validation vulnerability in GOT2000 series GT27 model all versions, GOT2000 series GT25 model all versions, GOT2000 series GT23 model all versions, GOT2000 series GT21 model all versions, GOT SIMPLE series GS21 model all versions, and GT SoftGOT2000 all versions allows an remote...
ELM 2409 || SMB share not working after ELM upgrade from 2403 to 2409
After migrating to new release and upgrading to version 2409 the SMB share is not longer connecting, this appears to be causing lots of crashfiles to generate which overt he week caused the applayering platform to stop functioning all together until the crash files were cleared...
Superintelligence Strategy: Expert Version
Rapid advances in AI are beginning to reshape national security. Destabilizing AI developments could rupture the balance of power and raise the odds of great-power conflict, while widespread proliferation of capable AI hackers and virologists would lower barriers for rogue actors to cause...
The vulnerability of graphic drivers in microprogramming software for Intel processors lies in insufficient validation of input data, allowing attackers to trigger malfunctions in the system’s functionality.
The vulnerability of graphics drivers in microprogrammed software for Intel processors is related to insufficient testing of input data. Exploiting this vulnerability can allow an attacker to cause malfunctions in the system’s functionality...
Linux Distros Unpatched Vulnerability : CVE-2024-26659
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xhci: handle isoc Babble and Buffer Overrun events properly xHCI 4.9 explicitly forbids assuming that the xHC has released its ownership of a multi-TRB TD when ...
The vulnerability of the replace_special_char() function in the microprogramming software of the D-Link DAP-1320 wireless signal amplifier allows a intruder to trigger a service failure.
The vulnerability of the replacespecialchar function in the D-Link DAP-1320 wireless signal amplifier software is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause malfunctions in the device...
CVE-2025-25204 `gh attestation verify` returns incorrect exit code during verification if no attestations are present
gh is GitHub’s official command line tool. Starting in version 2.49.0 and prior to version 2.67.0, under certain conditions, a bug in GitHub's Artifact Attestation cli tool gh attestation verify causes it to return a zero exit status when no attestations are present. This behavior is incorrect:...
CVE-2024-57961
Out-of-bounds write vulnerability in the emcom module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally...
CVE-2024-57958
Out-of-bounds array read vulnerability in the FFRT module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally...
PVS Citrix Virtual Desktops Setup Wizard fails to create every other machine
When using PVS Citrix Virtual Desktops Setup Wizard, it creates machines however every other machine fails to be created. This typically means either all even numbers machines or odd numbers machines fails to be created depending on what number you start with...
CVE-2024-50954
The CVE-2024-50954 issue affects XINJE XL5E-16T and XD5E-24R-E PLCs running V3.5.3b–V3.7.2a. The root cause is a vulnerability in Modbus message handling over a TCP LAN connection, which can crash the controller and disrupt operation, evidenced by the ERR indicator lighting and RUN indicator turn...
PT-2024-34679 · Ability · Ability
Name of the Vulnerable Software and Affected Versions: Ability module affected versions not specified Description: A permission control vulnerability is present in the ability module. Successful exploitation of this vulnerability may cause features to function abnormally. Recommendations: At the...
CentOS 7 : rsyslog (RHSA-2022:4803)
The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:4803 advisory. - Rsyslog is a rocket-fast system for log processing. Modules for TCP syslog reception have a potential heap buffer overflow when octet-counted framing is used...
The vulnerability of the methods used to verify the structure of TCP packets in Siemens LOGO!8 BM and SIPLUS LOGO! programmable logic controllers allows a perpetrator to execute arbitrary code or cause service failures.
The vulnerability of the methods used to check the structure of TCP packets in Siemens LOGO!8 BM and SIPLUS LOGO! programmable logic controllers is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code or...
USN-7052-1: GNOME Shell vulnerabilities
It was discovered that GNOME Shell mishandled extensions that fail to reload, possibly leading to extensions staying enabled on the lock screen. An attacker could possibly use this issue to launch applications, view sensitive information, or execute arbitrary commands. CVE-2017-8288 It was...
The vulnerability of the microprogramming software for Rockwell Automation’s ControlLogix 5580 and GuardLogix 5580 allows a intruder to trigger a malfunction during maintenance.
The vulnerability of the microprogrammed software in Rockwell Automation’s ControlLogix 5580 and GuardLogix 5580 systems is related to insufficient checking of exceptional states. Exploiting this vulnerability can allow a malicious actor to cause malfunctions during maintenance operations...
CVE-2024-44969
In the Linux kernel, the following vulnerability has been resolved: s390/sclp: Prevent release of buffer in I/O When a task waiting for completion of a Store Data operation is interrupted, an attempt is made to halt this operation. If this attempt fails due to a hardware or firmware problem, ther...