The vulnerability of the VMware ESXi hypervisor, related to writing beyond the buffer boundaries in memory, allows an intruder to gain unauthorized access to protected information.

The vulnerability of the VMware ESXi hypervisor is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Freeimage graphic library, related to reading data beyond the buffer in memory, allows attackers to cause a service failure.

The vulnerability of the Freeimage graphic library relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure using a specially created JXR file...

The vulnerability of the DecodeTreeBlock function in the XML data compression tool Xmill allows a hacker to execute arbitrary code.

The vulnerability of the DecodeTreeBlock function in the XML data compression tool Xmill is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of the Bluetooth technology implementation in Android devices based on MediaTek MT8167, MT8175, and MT8183 chips allows attackers to gain increased privileges.

The vulnerability of the Bluetooth technology implementation in Android devices based on MediaTek MT8167, MT8175, and MT8183 operating systems is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow attackers to gain increased privileges...

CVE-2023-28601

Zoom for Windows clients prior to 5.14.0 contain an improper restriction of operations within the bounds of a memory buffer vulnerability. A malicious user may alter protected Zoom Client memory buffer potentially causing integrity issues within the Zoom Client...

Design/Logic Flaw

Zoom for Windows clients prior to 5.14.0 contain an improper restriction of operations within the bounds of a memory buffer vulnerability. A malicious user may alter protected Zoom Client memory buffer potentially causing integrity issues within the Zoom Client...

CVE-2023-28601

CVE-2023-28601 affects Zoom Client for Windows prior to version 5.14.0. The vulnerability is described as an improper restriction of operations within the bounds of a memory buffer, potentially allowing memory buffer tampering that could cause integrity issues in the Zoom Client. Affected compone...

CVE-2023-28601

Zoom for Windows clients prior to 5.14.0 contain an improper restriction of operations within the bounds of a memory buffer vulnerability. A malicious user may alter protected Zoom Client memory buffer potentially causing integrity issues within the Zoom Client...

Zoom Client for Meetings < 5.14.0 Vulnerability (ZSB-23009)

The version of Zoom Client for Meetings installed on the remote host is prior to 5.14.0. It is, therefore, affected by a vulnerability as referenced in the ZSB-23009 advisory. - Zoom for Windows clients prior to 5.14.0 contain an improper restriction of operations within the bounds of a memory...

Siemens Teamcenter Visualization and JT2Go

​​As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services ...

PT-2023-3755 · Zoom · Zoom

Name of the Vulnerable Software and Affected Versions: Zoom versions prior to 5.14.0 Description: The issue is related to an improper restriction of operations within the bounds of a memory buffer, which can be exploited by a remote attacker to execute arbitrary code. This can potentially cause...

Zoom Client 缓冲区错误漏洞

Zoom Client is a video conferencing client application from Zoom USA that supports multiple platforms. A security vulnerability exists in Zoom for Windows clients prior to version 5.14.0, which stems from an incorrect operation limit in the memory buffer...

The vulnerability in the ext4_group_desc_csum() function of the Linux operating system’s file system driver allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Linux operating system’s ext4 file system driver relates to the use of a dedicated buffer for memory management outside the scope in the function ext4groupdesccsum within the fs/ext4/super.c module. Exploiting this vulnerability could allow an attacker to compromise the...

The vulnerability of Cisco SD-WAN vEdge router microprogramming software, related to the execution of operations outside the buffer in memory, allows a attacker to cause service failure.

The vulnerability of Cisco SD-WAN vEdge microprogramming software relates to the execution of operations outside the buffer in memory when handling traffic. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability of the SwiftShader library in the Google Chrome web browser allows a hacker to execute arbitrary code.

The vulnerability of the SwiftShader library in the Google Chrome web browser relates to the ability to write data outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft

CVE-2020-0...

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft

CVE-2020-0...

Advisory ROSA-SA-2023-2165

Software: nss 3.53.1 OS: rosa-server79 packageevrstring: 3.53.1-7.res7 CVE-ID: CVE-2023-0767 BDU-ID: 2023-01270 CVE-Crit: HIGH CVE-DESC: A vulnerability in Mozilla Firefox, Mozilla Firefox ESR, and Mozilla Thunderbird email client browsers is related to improper limiting of operations within the...

The vulnerability of the FileReader::DoReadData() function in browsers like Firefox and Firefox ESR, as well as in the email client Thunderbird, allows a hacker to execute arbitrary code on the target system.

The vulnerability of the FileReader::DoReadData function in browsers like Firefox and Firefox ESR, as well as in the email client Thunderbird, is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary cod...

The vulnerability of the /goform/formLogin component in the D-Link DIR-816 A2 microprogramming router software allows a hacker to execute arbitrary code.

The vulnerability of the /goform/Diagnosis component of D-Link DIR-816 A2 microprogrammed software lies in the writing of data beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...