CVE-2025-38511

In the Linux kernel, the following vulnerability has been resolved: drm/xe/pf: Clear all LMTT pages on alloc Our LMEM buffer objects are not cleared by default on alloc and during VF provisioning we only setup LMTT PTEs for the actually provisioned LMEM range. But beyond that valid range we might...

NVIDIA Triton Inference Server Stack Overflow Vulnerability

Triton Inference Server is a high-performance inference service engine developed by NVIDIA, designed for AI model deployment in production environments, with support for a variety of frameworks TensorFlow, PyTorch, ONNX, etc. and optimized inference performance for GPUs and CPUs. A stack overflow...

The vulnerability of the software for deploying and executing AI models developed by NVIDIA Triton Inference Server (previously known as TensorRT Inference Server) relates to buffer overflows in dynamic memory. This vulnerability allows attackers to cause system failures, gain unauthorized access to protected information, and execute arbitrary code.

The vulnerability of the software for deploying and executing NVIDIA Triton Inference Server previously known as TensorRT Inference Server is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow a remote attacker to cause service failures, gain unauthorized access...

Security Bulletin: Astronomer with IBM is vulnerable to several vulnerabilities

Summary Open source software is used by Astronomer with IBM as part of overall processing functionality. Vulnerability Details CVEID:CVE-2021-33194 DESCRIPTION: golang.org/x/net before v0.0.0-20210520170846-37e1c6afe023 allows attackers to cause a denial of service infinite loop via crafted...

Linux Distros Unpatched Vulnerability : CVE-2022-50226

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - crypto: ccp - Use kzalloc for sev ioctl interfaces to prevent kernel memory leak For some sev ioctl interfaces, input may be passed that is less than or equal t...

Linux Distros Unpatched Vulnerability : CVE-2023-28772

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel before 5.13.3. lib/seqbuf.c has a seqbufputmemhex buffer overflow. CVE-2023-28772 Note that Nessus relies on the...

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations outside the buffer in memory, allowing an attacker to cause a service failure.

The vulnerability in Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations outside the buffer in memory, allowing an attacker to cause a service failure.

The vulnerability in Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the web page rendering module in WebKit-based operating systems such as iOS, iPadOS, macOS, tvOS, visionOS, watchOS, and the Safari browser allows a perpetrator to trigger a service failure.

The vulnerability of the web page rendering module in WebKit operating systems for iOS, iPadOS, macOS, tvOS, visionOS, watchOS, and the Safari browser arises from operations that go beyond the buffer limits in memory. Exploiting this vulnerability can allow a malicious actor to cause service...

The vulnerability of the Honeywell OneWireless Wireless Device Manager (WDM) and the micro-programming software for Honeywell Experion PKS programmable logic controllers arises from the occurrence of an operation outside the buffer in memory, allowing a intruder to execute arbitrary code.

The vulnerability of Honeywell OneWireless Wireless Device Manager WDM and the micro-programmed software of Honeywell Experion PKS programmable logic controllers lies in the fact that operation outputs go beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execu...

The vulnerability of the Windows operating system’s event log allows a hacker to trigger a memory buffer overflow and re-write the XML log generated by the task scheduler.

The vulnerability of Windows operating system event logs is related to insufficient checking of values in XML log fields. Exploiting this vulnerability can allow an attacker to cause a memory buffer overflow in the event log and re-write it by sending a specially crafted XML file...

Vulnerability of software for modeling, designing, and drawing in AutoCAD, related to the execution of operations beyond buffer boundaries in memory, allowing attackers to execute arbitrary code or cause system failures.

The vulnerability of the software for modeling, designing, and drawing in AutoCAD is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code or cause a service failure using a specially created PR...

Vulnerability of software for modeling, designing, and drawing in AutoCAD, related to the execution of operations beyond buffer boundaries in memory, allowing attackers to execute arbitrary code or cause system failures.

The vulnerability of software for modeling, designing, and drawing in AutoCAD is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code or cause a service failure using a specially created 3DM fi...

The vulnerability of the jingx_asp() function in D-Link DI-8100 router microprogramming software allows a hacker to induce a service failure.

The vulnerability of the jingxasp function in D-Link DI-8100 router microprogramming software is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service failure by sending a specially crafted HTTP request...

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Adobe Acrobat

技术文章存档 ------ Paper list： Talking About Exploit Writing Bypassing AntiVirus Detection for Malicious PDFs MBR病毒分析 使用bochs调试MBR 基于MBR的系统登录密码验证程序 PDF文件格式分析 恶意PDF文件解析思路 Win 7下定位kernel32.dll基址及shellcode编写 CVE-2009-0658漏洞分析 Firefox vulnerabilityCVE-2011-0065 Bypassing DEP CVE-2009-4324漏洞分析 Flash XSS漏洞挖...

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft

Awesome Advanced Windows Exploitation References List of Awesome Advanced Windows Exploitation References This list is for anyone wishing to upgrade on their Windows Exploitation Knowledge. Anyway, this is a living resources and will update regularly with latest research articles/talks of awesome...

Exploit for Use of Uninitialized Resource in Samba Rsync

CVE-2024-12085 Infoleak exploit Note, this exploit is not ver...

The vulnerability of the Modbus programmable logic controller DELTA AS320T protocol allows a intruder to trigger a service failure or execute arbitrary code.

The vulnerability of the Modbus-programmable logical controller DELTA AS320T lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability allows an attacker to cause service failures or execute arbitrary code...

The vulnerability of the Adobe InCopy text creation and editing software lies in buffer overflows in dynamic memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Adobe InCopy text creation and editing software is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code by sending a specially created malicious file...

ROS-20250718-03

The vulnerability in Firefox and Firefox ESR browsers and Thunderbird email client is related to the operation exceeding the memory buffer boundaries. memory buffer boundaries. Exploitation of the vulnerability could allow a remote attacker, execute arbitrary code or cause a denial of service...