CVE-2022-25959 Rockwell Automation Studio 5000 Logix Designer Improper Restriction of Operations within the Bounds of a Memory Buffer

Omron CX-Position versions 2.5.3 and prior is vulnerable to memory corruption while processing a specific project file, which may allow an attacker to execute arbitrary code...

Hitachi Energy e-mesh EMS

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: e-mesh EMS Vulnerabilities: Improper Restriction of Operations Within the Bounds of a Memory Buffer, Use After Free, Uncontrolled Resource Consumption 2. RISK EVALUATION...

The vulnerability of the zlib library, related to the execution of operations beyond buffer boundaries in memory, allows attackers to cause a service failure.

The vulnerability of the zlib library lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending specially crafted data to the application...

Vulnerability of the Cluster component: The general system for managing MySQL Cluster databases, which allows attackers to gain unauthorized access to protected information or cause service failures.

Vulnerability of the Cluster component: General database management systems like MySQL Cluster involve reading data from beyond the buffer in memory during data node processing. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information or cause service...

Vulnerability of the Cluster component: The general system for managing MySQL Cluster databases, which allows attackers to gain unauthorized access to protected information or cause service failures.

Vulnerability of the Cluster component: General database management systems like MySQL Cluster involve reading data from beyond the buffer in memory during data node processing. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information or cause service...

The vulnerability of the filtervar function in the PHP interpreter allows attackers to execute arbitrary code.

The vulnerability of the filtervar function in the PHP interpreter is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using specially crafted user input...

ROS-20220329-01

A vulnerability in the zlib data compression library is related to incorrect limitation of operations within the memory buffer due to insufficient validation of user input during data compression. memory due to insufficient validation of user-entered data during data compression. Exploitation...

The vulnerability of Mozilla Firefox browsers, related to the execution of operations beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of Mozilla Firefox browsers is related to the execution of operations beyond the buffer boundaries in memory when processing HTML content. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created malicious web page...

The vulnerability of the Apache HTTP Server web server relates to the occurrence of operations outside the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Apache HTTP Server is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of Adobe Illustrator 2021, related to the execution of operations beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of Adobe Illustrator 2021 graphic editor is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user, using a specially crafted PDF file...

CVE-2022-24322

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software when an attacker is able to intercept and manipulate specific Modbus response data...

CVE-2022-24322

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software when an attacker is able to intercept and manipulate specific Modbus response data...

CVE-2022-24322

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software when an attacker is able to intercept and manipulate specific Modbus response data...

Design/Logic Flaw

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software when an attacker is able to intercept and manipulate specific Modbus response data...

CVE-2022-24322

CVE-2022-24322 affects Schneider Electric EcoStruxure Control Expert (V15.0 SP1 and prior). The flaw is CWE-119: improper restriction of operations within buffer bounds, enabling disruption of communication between Modicon controllers and engineering software when an attacker intercepts and manip...

Siemens Simcenter STAR-CCM+ Viewer

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Siemens Equipment: Simcenter STAR-CCM+ Viewer Vulnerability: Improper Restriction of Operations within the Bounds of a Memory Buffer 2. RISK EVALUATION Successful exploitation of this vulnerability could cause a crash,...

The vulnerability of Adobe Premiere Elements’ video editing software arises from the possibility of writing operations beyond the buffer limits in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Adobe Premiere Elements software-related video editing programs lies in the execution of operations beyond the buffer limits in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted file...

The vulnerability of software for the development and mass production of printed circuit boards, related to the ability to read data beyond the buffer in memory, allows attackers to gain access to protected information or cause system failures.

The vulnerability of software for the development and mass production of printed circuit boards relates to the ability to read data beyond the buffer in memory. Exploiting this vulnerability can allow a remote attacker to gain access to protected information or cause service failures by sending a...

The vulnerability of the RouterOS operating system in MikroTik routers allows a hacker to cause a service failure.

The vulnerability of the RouterOS operating system for MikroTik routers lies in the fact that operations are performed outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to cause a service failure through a specially crafted FTP request...

CVE-2022-21716

Twisted is an event-based framework for internet applications, supporting Python 3.6+. Prior to 22.2.0, Twisted SSH client and server implement is able to accept an infinite amount of data for the peer's SSH version identifier. This ends up with a buffer using all the available memory. The attach...