CVE-2021-22714

Schneider Electric PowerLogic ION7400, PM8000 and ION9000 (all versions before V3.0.0) are affected by CVE-2021-22714 due to CWE-119 memory-buffer bounds violation. The issue could cause a meter reboot or remote code execution. Remediation: update to firmware V3.0.0 or apply Schneider Electric/SE...

CVE-2021-22714

A CWE-119:Improper restriction of operations within the bounds of a memory buffer vulnerability exists in PowerLogic ION7400, PM8000 and ION9000 All versions prior to V3.0.0, which could cause the meter to reboot or allow for remote code execution...

CVE-2020-1918

In-memory file operations ie: using fopen on a data URI did not properly restrict negative seeking, allowing for the reading of memory prior to the in-memory buffer. This issue affects HHVM versions prior to 4.56.3, all versions between 4.57.0 and 4.80.1, all versions between 4.81.0 and 4.93.1, a...

The vulnerability of the visual analysis tool IBM i2 Analyst’s Notebook lies in the fact that when an operation is performed outside the buffer in memory, it allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the visual analysis tool IBM i2 Analyst’s Notebook relates to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to trigger a service failure or execute arbitrary code using a specially created file with...

The vulnerability of the web server of industrial switches SCALANCE X-200, SCALANCE X-200IRT, and SCALANCE X-300 arises from the possibility of executing operations outside the buffer in memory, allowing a perpetrator to execute arbitrary code.

The vulnerability of the web server of industrial switches SCALANCE X-200, SCALANCE X-200IRT, and SCALANCE X-300 lies in the fact that the operation results are stored outside of the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending a...

The vulnerability of the Junos operating system, related to the operation of data out of the buffer in memory, allows a attacker to cause a service failure.

The vulnerability of the Junos operating system is related to the operation of data out of the buffer in memory. Exploiting this vulnerability allows a malicious actor to trigger a service failure using specially crafted DHCP packets...

The vulnerability of the microprogramming software of the Intel 7360 Cell Modem router, related to the execution of operations outside the buffer in memory, allows a hacker to cause a service failure.

The vulnerability of the microprogramming software of the Intel 7360 Cell Modem lies in the fact that the operation results are written outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service failure remotely...

Openscad import_stl.cc:import_stl() out-of-bounds stack write vulnerability

Summary An out-of-bounds write vulnerability exists in the importstl.cc:importstl functionality of Openscad openscad-2020.12-RC2. A specially crafted STL file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. Tested Versions Openscad...

The vulnerability of Realtek RTL8723BS wireless network adapter’s Wi-Fi drivers allows a hacker to induce a service failure.

The vulnerability of the Wi-Fi drivers of the Realtek RTL8723BS wireless network adapter lies in the fact that operations are performed outside of the buffer in memory when processing SSID packet data. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the SQLite database management system, related to writing data beyond the buffer boundaries in memory, allows an attacker to gain unauthorized access to protected information.

The vulnerability of the SQLite database management system is related to writing data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, and Adobe Acrobat 2015/Reader 2015 involve reading beyond the buffer in memory, allowing attackers to gain unauthorized access to protected information.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, and Adobe Acrobat 2015 are related to reading data beyond the buffer in memory. Exploiting these vulnerabilities can...

The vulnerability of Adobe Premiere Rush software for video editing lies in the recording of data beyond the buffer limit in memory, allowing attackers to execute arbitrary code.

The vulnerability of Adobe Premiere Rush relates to the writing of data beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code in the context of the current user...

The vulnerability of the Adobe Media Encoder application, related to writing beyond the buffer boundaries in memory, allows a perpetrator to execute arbitrary code.

The vulnerability of the Adobe Media Encoder application relates to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

CentOS 8 : python-pillow (CESA-2020:0580)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2020:0580 advisory. - python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service CVE-2019-16865 -...

The vulnerability of industrial routers in the EDR-G903 Series, EDR-G902 Series, and EDR-810 Series lies in the fact that the operation output goes beyond the buffer in memory, allowing attackers to trigger a service failure.

The vulnerability of the EDR-G903 Series, EDR-G902 Series, and EDR-810 Series industrial routers lies in the fact that the operation data is stored outside of the buffer in memory. Exploiting this vulnerability can allow a malicious actor to trigger a service failure through a specially crafted...

The vulnerability in the implementation of the Cisco Discovery protocol of the IP camera software from Cisco Video Surveillance series 8000 allows a intruder to trigger a reboot of the IP camera.

The vulnerability of the Cisco Discovery protocol implemented in Cisco Video Surveillance IP cameras of the 8000 series lies in the fact that the operation is executed outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to trigger a restart of the IP camera...

CVE-2021-1068

NVIDIA SHIELD TV, all versions prior to 8.2.2, contains a vulnerability in the NVDEC component, in which an attacker can read from or write to a memory location that is outside the intended boundary of the buffer, which may lead to denial of service or escalation of privileges...

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in the ability to write code beyond the buffer boundaries in memory, allowing attackers to execute arbitrary code.

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in the writing of code beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user...

Huawei Emui and Honor Magic Ui buffer overflow vulnerability (CNVD-2022-52826)

Huawei Emui is an Android-based mobile operating system from Huawei, China.Honor Magic Ui is an Android-based mobile operating system from Honor, China. A buffer overflow vulnerability exists in Huawei Emui and Honor Magic Ui, which can be exploited by an attacker who can exploit the vulnerabilit...

The vulnerability of Google Chrome, related to writing data outside of the buffer in memory, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of Google Chrome relates to the writing of data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...