2500 matches found
CVE-2024-21918
Rockwell Automation Arena Simulation Software (Arena Simulation) is affected by CVE-2024-21918, a memory corruption vulnerability in the memory handling (memory corruption/overflow) that could allow an attacker to execute arbitrary code after opening a malicious file. Affected product: Arena Simu...
CVE-2024-21913 Rockwell Automation Arena Simulation Vulnerable To Memory Corruption
A heap-based memory buffer overflow vulnerability in Rockwell Automation Arena Simulation software could potentially allow a malicious user to insert unauthorized code into the software by overstepping the memory boundaries, which triggers an access violation. Once inside, the threat actor can ru...
Advisory ROSA-SA-2024-2379
software: curl 8.4.0 WASP: ROSA-CHROME packageevrstring: curl-8.4.0-1.src.rpm CVE-ID: CVE-2023-38545 BDU-ID: 2023-06576 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the SOCKS5 protocol implementation of the cURL command line utility is related to an operation exceeding buffer boundaries in memory...
Rockwell Automation Arena Simulation Software 缓冲区错误漏洞
Rockwell Automation Arena Simulation Software is a suite of simulation software from Rockwell Automation that provides 3D animation and graphics capabilities. A security vulnerability exists in Rockwell Automation Arena Simulation Software, which stems from a memory buffer vulnerability that coul...
The vulnerability of the Adobe Animate program for creating multimedia and computer animations lies in the reading of data beyond the buffer in memory, which allows attackers to exploit the protected information.
The vulnerability of the Adobe Animate program for creating multimedia and computer animations is related to reading data outside the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose protected information...
The vulnerability of the Adobe Animate program for creating multimedia and computer animations lies in the reading of data beyond the buffer in memory, which allows attackers to exploit the protected information.
The vulnerability of the Adobe Animate program for creating multimedia and computer animations is related to reading data outside the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose protected information...
The vulnerability of the Adobe Animate program for creating multimedia and computer animations lies in the reading of data beyond the buffer in memory, which allows attackers to exploit the protected information.
The vulnerability of the Adobe Animate program for creating multimedia and computer animations is related to reading data outside the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose protected information...
The vulnerability of the professional video editing software Adobe Premiere Pro, related to recording data beyond the buffer limit in memory, allows a hacker to execute arbitrary code.
The vulnerability of the professional video editing software Adobe Premiere Pro lies in the recording of data beyond the buffer limits in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code within the context of the current user...
The vulnerability of the WDAC OLE DB driver for SQL Server on Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of the WDAC OLE DB driver for SQL Server on Windows operating systems is related to buffer overflows in dynamic memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, and Adobe Acrobat 2020/Adobe Acrobat Reader 2020 involve reading data beyond the buffer in memory, allowing attackers to disclose protected information.
The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2020, and Acrobat Reader 2020 are related to reading data beyond the buffer in memory. Exploiting these vulnerabilities can allow attackers to disclose...
The vulnerability of the Kofax PowerPDF software for creating, converting, editing, and publishing PDF files lies in the fact that operations are performed outside of the buffer in memory, allowing an attacker to execute arbitrary code.
The vulnerability of the Kofax PowerPDF software for creating, converting, editing, and publishing PDF files is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially crafted PDF file...
The vulnerability of the Kofax PowerPDF software for creating, converting, editing, and publishing PDF files lies in the fact that operations are performed outside of the buffer in memory, allowing an attacker to execute arbitrary code.
The vulnerability of the Kofax PowerPDF software for creating, converting, editing, and publishing PDF files is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created PDF file...
Vulnerability of FortiOS operating systems and FortiProxy proxy servers in protecting against Internet attacks, related to operations occurring outside of the buffer in memory, allowing attackers to execute arbitrary code.
The vulnerability of the FortiOS operating systems and the proxy server used for protection against Internet attacks is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending specially...
The vulnerability of the microprogramming software in the BIOS of Dell PowerEdge servers and Dell Precision Rack workstations allows a intruder to gain unauthorized access to protected information.
The vulnerability of the BIOS software on Dell PowerEdge servers and Dell Precision Rack workstations relates to the writing of data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...
Advisory ROSA-SA-2024-2373
Software: pixman 0.38.4 OS: ROSA Virtualization 2.1 packageevrstring: pixman-0.38.4.src.rpm CVE-ID: CVE-2022-44638 BDU-ID: 2022-06667 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the rasterizeedges8 function of the Pixman library is related to the ability to write beyond buffer boundaries in...
CVE-2024-22041
CVE-2024-22041 pertains to the network communication library in Siemens Cerberus PRO EN and Sinteso/Sinteso Mobile/product ecosystems, which improperly handles memory buffers when parsing X.509 certificates. This leads to an unauthenticated remote attacker potentially crashing the affected networ...
CVE-2024-22041
A vulnerability has been identified in Cerberus PRO EN Engineering Tool All versions, Cerberus PRO EN Fire Panel FC72x IP6 All versions, Cerberus PRO EN Fire Panel FC72x IP7 All versions, Cerberus PRO EN Fire Panel FC72x IP8 All versions IP8 SR4, Cerberus PRO EN X200 Cloud Distribution IP7 All...
Siemens Sinteso EN Cerberus PRO EN Fire Protection Systems
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...
The vulnerability of the WDAC OLE DB driver for SQL Server on Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of the WDAC OLE DB driver for SQL Server on Windows operating systems is related to buffer overflows in dynamic memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
redis: Heap Buffer Overflow may lead to potential remote code execution
A flaw was found in Redis. When processing a certain sequence of payloads, Redis may incorrectly handle the resizing of memory buffers, leading to a heap-based buffer overflow, potentially resulting in a denial of service or remote code execution...