224 matches found
The vulnerability of the microprogramming software of AMI MegaRAC SP-X controllers allows a perpetrator to compromise the confidentiality, integrity, and accessibility of data.
The vulnerability of the microprogramming software of AMI MegaRAC SP-X controllers relates to reading data outside the buffer in memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of data...
The vulnerability of the OLE2 form file analysis component in the ClamAV antivirus program allows a hacker to trigger a service failure.
The vulnerability of the OLE2 file analysis component in the ClamAV antivirus program lies in the ability to read data beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to cause a service failure by sending a specially crafted OLE2 file...
Amazon Linux 2 : redis (ALASREDIS6-2024-009)
The version of redis installed on the remote host is prior to 6.2.14-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2REDIS6-2024-009 advisory. Redis is an in-memory database that persists on disk. Redis incorrectly handles resizing of memory buffers which can...
The vulnerability of embedded Qualcomm microprogramming software, related to reading data outside the buffer in memory, allows a hacker to execute arbitrary code.
The vulnerability of embedded Qualcomm software relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...
CVE-2023-41056
A flaw was found in Redis. When processing a certain sequence of payloads, Redis may incorrectly handle the resizing of memory buffers, leading to a heap-based buffer overflow, potentially resulting in a denial of service or remote code execution. Mitigation Mitigation for this issue is either no...
The vulnerability of the 3D graphics editor Autodesk Maya, related to reading data beyond the buffer in memory, allows a hacker to execute arbitrary code.
The vulnerability of the 3D graphics editor Autodesk Maya is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the MagicLine 4 authentication software lies in the possibility of data being written outside of the buffer in memory. This allows a malicious actor to gain unauthorized access to protected information and carry out a “Watering Hole” attack.
The vulnerability of the MagicLine 4 authentication software is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to protected information and carry out a “Watering Hole” attack...
The vulnerability of Zoom’s video conferencing software lies in its ability to copy input data into memory without checking its size. This allows attackers to trigger a service failure.
The vulnerability of Zoom video conferencing software relates to the copying of input data into buffers without checking their size. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...
Ubuntu 23.04 / 23.10 : OpenVPN vulnerabilities (USN-6484-1)
The remote Ubuntu 23.04 / 23.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6484-1 advisory. It was discovered that OpenVPN incorrectly handled the --fragment option in certain configurations. A remote attacker could possibly use this issue t...
The vulnerability of the chkRegVeriRegister() function in TP-LINK’s router software TL-WR886N allows a perpetrator to influence the integrity, accessibility, and confidentiality of the protected information.
The vulnerability of the chkRegVeriRegister function in TP-LINK’s TL-WR886N router software lies in the fact that the operation is performed outside of the buffer in memory. Exploiting this vulnerability allows an attacker to compromise the integrity, availability, and confidentiality of the...
The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2020, Adobe Acrobat Reader 2020, and Adobe Acrobat 2017 involve reading data beyond the buffer in memory, allowing attackers to disclose protected information.
The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2020, Adobe Acrobat Reader 2020, Adobe Acrobat 2017, and Adobe Acrobat Reader 2017 are related to reading data beyond the buffer in memory. Exploiting...
The vulnerability of MediaTek’s WLAN micro-programming software chip allows attackers to gain access to confidential information.
The vulnerability of the WLAN microprogramming software of MediaTek relates to reading data outside the buffer in memory. Exploiting this vulnerability can allow an attacker to access confidential information...
The vulnerability of the DriverKit component allows for arbitrary code execution on operating systems such as tvOS, iOS, iPadOS, watchOS, and macOS.
The vulnerability of the DriverKit component for operating systems such as tvOS, iOS, iPadOS, watchOS, and macOS relates to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability of the JPEG component of MediaTek’s microprogramming software allows attackers to gain access to confidential information.
The vulnerability of the JPEG component of MediaTek’s microprogramming software relates to reading data outside the buffer in memory. Exploiting this vulnerability could allow an attacker to access confidential information...
The vulnerability of the libbfd library in the GNU Binutils development environment, related to reading beyond the buffer boundaries in memory, allows an attacker to gain unauthorized access to protected information.
The vulnerability of the libbfd library in the GNU Binutils development environment, within the Debian GNU operating system, relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...
The vulnerability of PDF-XChange Editor’s document viewing and editing software lies in the possibility of an operation going beyond the buffer in memory, allowing attackers to execute arbitrary code.
The vulnerability of PDF-XChange Editor’s PDF document viewing and editing software lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability in the kernel of operating systems such as macOS Big Sur, macOS Monterey, iOS, iPadOS, tvOS, macOS Ventura, and watchOS allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability in the kernel of operating systems such as macOS Big Sur, macOS Monterey, iOS, iPadOS, tvOS, macOS Ventura, and watchOS relates to operations that occur outside of the buffers in memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality,...
The vulnerability of Adobe InDesign’s computer design automation tool, related to reading data outside the buffer in memory, allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of Adobe InDesign’s computer layout automation tool is related to reading data outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability of Adobe InDesign’s computer design automation tool, related to reading data outside the buffer in memory, allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of Adobe InDesign’s computer layout automation tool is related to reading data outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability of Adobe InDesign’s computer layout automation tool, related to writing beyond the buffer in memory, allows a hacker to execute arbitrary code.
The vulnerability of Adobe InDesign’s computer layout automation tool is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...