The vulnerability of the Graphics component in Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Graphics component in Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in the possibility of an operation going beyond the buffer in memory, allowing a hacker to execute arbitrary code.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to the execution of operations beyond buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user, using a specially creat...

The vulnerability of Adobe Audition’s audio editor lies in the possibility of an operation occurring outside the buffer in memory, allowing a hacker to execute arbitrary code.

The vulnerability of Adobe Audition is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the Siemens User Management Component (UMC) in products such as SIMATIC Information Server, SIMATIC PCS neo, SINEC NMS, and Totally Integrated Automation Portal (TIA Portal) allows a perpetrator to execute arbitrary code.

The vulnerability of the Siemens User Management Component UMC in products such as SIMATIC Information Server, SIMATIC PCS neo, SINEC NMS, and Totally Integrated Automation Portal TIA Portal is related to buffer overflow in dynamic memory. Exploiting this vulnerability could allow a remote attack...

Vulnerability of the Adobe Acrobat browser extension developed by Microsoft Edge, allowing a hacker to execute arbitrary code

The vulnerability of the Adobe Acrobat browser extension for Microsoft Edge relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created malicious PDF file...

The vulnerability of the kernel driver of Windows operating systems allows attackers to gain increased privileges.

The vulnerability of the kernel driver of Windows operating systems is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of Adobe InDesign’s computer layout automation tool, related to the execution of operations beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the IBM Security Directory Integrator, a software tool for synchronizing identity data, and the IBM Security Verify Directory Integrator, an integration tool, arises due to the possibility of an operation occurring outside of the buffer in memory. This vulnerability allows attackers to bypass the authentication process.

The vulnerability of the IBM Security Directory Integrator and IBM Security Verify Directory Integrator software lies in the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow a malicious actor to bypass authentication procedures...

Advisory ROSA-SA-2024-2475

Software: ipmitool 1.8.18 OS: ROSA-CHROME packageevrstring: ipmitool-1.8.18-22 CVE-ID: CVE-2020-5208 BDU-ID: 2020-04640 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the readfruareasection lib/ipmifru.c function of the ipmitool IPMI-enabled device management and configuration utility is related to...

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code.

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially crafted HTML page...

ROS-20240904-16

A vulnerability in the export.c file in the exporttga function of the libcaca graphics library for converting an image to ASCII ART is related to the operation exceeding memory buffer limits. image to ASCII ART is related to the operation exceeding the buffer boundaries in memory. Exploitation of...

CVE-2024-33016 Improper Restriction of Operations within the Bounds of a Memory Buffer in Storage

memory corruption when an invalid firehose patch command is invoked...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from the Storage component improperly restricting operations within memory buffer boundaries...

ROS-20240902-22

Vulnerability in Mozilla Firefox, Mozilla Firefox ESR, Mozilla Thunderbird email client is related to incorrect limitation of operations within the memory buffer. with incorrect limitation of operations within the memory buffer. Exploitation of the vulnerability could allow an attacker acting...

Microsoft Edge browser’s vulnerability, related to the execution of operations beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of Microsoft Edge relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

BIT-KEYDB-2023-41056 Redis vulnerable to integer overflow in certain payloads

Redis is an in-memory database that persists on disk. Redis incorrectly handles resizing of memory buffers which can result in integer overflow that leads to heap overflow and potential remote code execution. This issue has been patched in version 7.0.15 and 7.2.4...

CVE-2024-45169

An issue was discovered in UCI IDOL 2 aka uciIDOL or IDOL2 through 2.12. Due to improper input validation, improper deserialization, and improper restriction of operations within the bounds of a memory buffer, IDOL2 is vulnerable to Denial-of-Service DoS attacks and possibly remote code execution...

CVE-2024-45167

An issue was discovered in UCI IDOL 2 aka uciIDOL or IDOL2 through 2.12. Due to improper input validation, improper deserialization, and improper restriction of operations within the bounds of a memory buffer, IDOL2 is vulnerable to Denial-of-Service DoS attacks and possibly remote code execution...

CVE-2024-45167

The CVE-2024-45167 entry concerns UCI IDOL 2 (IDOL2) prior to or up to version 2.12. The root cause is improper input validation, improper deserialization, and restricting operations within memory buffer bounds, leading to a DoS condition and potential remote code execution. A specific XmlMessage...

CVE-2024-45167

An issue was discovered in UCI IDOL 2 aka uciIDOL or IDOL2 through 2.12. Due to improper input validation, improper deserialization, and improper restriction of operations within the bounds of a memory buffer, IDOL2 is vulnerable to Denial-of-Service DoS attacks and possibly remote code execution...