211 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-7942
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ReadAVSImage function in avs.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file. CVE-2017-7942 Not...
ROS-20250303-05
A vulnerability in the Wi-Fi driver rtl8712 of the Linux operating system kernel is related to the use of memory after its after memory has been freed. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
Advisory ROSA-SA-2025-2734
SOFTWARE: 389-ds-base 1.4.3.23. OS: ROSA Virtualization 3.0 packageevrstring: 389-ds-base-1.4.3.23-14.rv30 CVE-ID: CVE-2021-4091 BDU-ID: 2022-05559 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the 389 Directory Server's implementation of the 389 Directory Server lookup function is related to the...
The vulnerability of Remote Desktop Services (RDS) for Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of Remote Desktop Services RDS for Windows operating systems relates to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
CVE-2024-12577
Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory...
CVE-2024-46975
Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data into another Guest's virtualised GPU memory...
CVE-2024-47896
Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory...
CVE-2024-12577 GPU DDK - rgxfw_pcset_ungrab OOB write via psFWMemContext->uiPageCatBaseRegSet
Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory...
CVE-2024-12577
CVE-2024-12577 concerns Imagination Technologies PowerVR-GPU driver where kernel-space code in a guest VM can leverage memory shared with the GPU firmware to write data outside the guest’s virtualised GPU memory. The CVE appears in multiple sources (NVD entry; CVE list entry describing the exploi...
CVE-2024-47896
CVE-2024-47896 concerns Imagination Technologies PowerVR-GPU drivers. According to the provided sources, a kernel component running inside a guest VM can access memory shared with the GPU Firmware and write data outside the Guest VM’s virtualized GPU memory, indicating a local vulnerability with ...
Samsung Blockchain Keystore Out-of-Bounds Read Vulnerability
Samsung Blockchain Keystore is a secure storage solution introduced by South Korea's Samsung SAMSUNG on its mobile devices to protect users' blockchain keys and digital assets. Samsung Blockchain Keystore suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to rea...
The vulnerability of the Windows Win32 Kernel subsystem in operating systems allows attackers to increase their privileges.
The vulnerability of the Windows Win32 Kernel subsystem in operating systems involves the possibility of exploiting memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
CVE-2024-7695 Out-of-bounds Write Vulnerability
Multiple switches are affected by an out-of-bounds write vulnerability. This vulnerability is caused by insufficient input validation, which allows data to be written to memory outside the bounds of the buffer. Successful exploitation of this vulnerability could result in a denial-of-service atta...
curl: CVE-2025-0725: gzip integer overflow
The libcurl library contained a vulnerability in the gzip content encoding function that allowed a malicious HTTP server to craft an arbitrary heap chunk in the memory of the victim and trigger a free of that forged chunk. This was possible due to an integer overflow in the handling of gzip...
Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS : Cyrus IMAP Server vulnerabilities (USN-7224-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7224-1 advisory. It was discovered that non-authentication-related HTTP requests could be interpreted in an authentication context by ...
CVE-2018-9401
In many locations, there is a possible way to access kernel memory in user space due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-46668
CVE-2024-46668 describes an allocation of resources without limits or throttling (CWE-770) in Fortinet FortiOS. The vulnerability affects FortiOS versions 7.4.0–7.4.4, 7.2.0–7.2.8, 7.0.0–7.0.15, and 6.4.0–6.4.15, where an unauthenticated remote attacker could cause memory exhaustion by uploading ...
PT-2025-1152 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Microsoft Windows affected versions not specified Description: The issue affects Microsoft Windows, specifically the Windows Reliable Multicast Transport Driver RMCAST, allowing remote attackers to execute arbitrary code and impact the system...
PT-2025-1246 · Microsoft · Access +1
Name of the Vulnerable Software and Affected Versions: Microsoft Access affected versions not specified Description: The issue is related to a remote code execution problem. It involves the use of memory after it has been freed, which can be exploited by an attacker to execute arbitrary code. Thi...
ROS-20250114-13
The Redis database management system DBMS vulnerability is related to the use of memory after its memory after it has been freed. Exploitation of the vulnerability could allow an attacker to execute arbitrary code by injecting a specially crafted lua script A vulnerability in the Redis database...