Omron PLC Access Control Error Vulnerability

Omron PLC CJ series and so on are products of Omron Japan.Omron PLC CJ series is a CJ series Programmable Logic Controller PLC.Omron PLC CS series is a CS series Programmable Logic Controller PLC.Omron PLC NJ series is a NJ series programmable logic controller. An Access Control Error vulnerabili...

CVE-2023-34321

Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes such as the ones during scrubbing have reached memory before handing over the page to a guest. Unfortunately, the arithmetics in the...

Huawei EulerOS: Security Advisory for libwebp (EulerOS-SA-2024-1014)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for libwebp (EulerOS-SA-2024-1040)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

AlmaLinux 9 : tigervnc (ALSA-2024:0010)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:0010 advisory. - A out-of-bounds write flaw was found in the xorg-x11-server. This issue occurs due to an incorrect calculation of a buffer offset when copying data stor...

Huawei EulerOS: Security Advisory for libwebp (EulerOS-SA-2023-3477)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS 7 : thunderbird (RHSA-2023:5191)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:5191 advisory. - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Duplicate of CVE-2023-4863. CVE-2023-5129 - Heap buffer...

SUSE: Security Advisory (SUSE-SU-2023:4934-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2023:4935-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2023:4935-1 Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues: - CVE-2023-6377: Fixed out-of-bounds memory write in XKB button actions bsc1217765...

SUSE-SU-2023:4933-1 Security update for xwayland

This update for xwayland fixes the following issues: - CVE-2023-6377: Fixed out-of-bounds memory write in XKB button actions bsc1217765...

SUSE-SU-2023:4925-1 Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues: - CVE-2023-6377: Fixed out-of-bounds memory write in XKB button actions bsc1217765...

postgresql: Buffer overrun from integer overflow in array modification

A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks during SQL array value modification. This issue exists due to an integer overflow during array modification where a remote user can trigger the overflow by providing...

PT-2023-8811 · Kofax · Kofax Power Pdf

Name of the Vulnerable Software and Affected Versions: Kofax PowerPDF affected versions not specified Description: The issue is related to an out-of-bounds write in memory due to improper validation of user-supplied data when parsing PDF files. This can allow an attacker to execute arbitrary code...

CVE-2023-24590

CVE-2023-24590 describes a format-string vulnerability in Gallagher Controller 6000’s optional diagnostic web interface. The issue allows write/read access to memory and can crash the device, potentially causing a Denial of Service. Affected are Gallagher Controller 6000 versions 8.60 prior to vC...

PT-2023-19694 · Gallagher · Gallagher Controller 6000

Name of the Vulnerable Software and Affected Versions: Gallagher Controller 6000 versions 8.50 and prior Gallagher Controller 6000 versions 8.60 prior to vCR8.60.231116a Description: A format string issue in the Controller 6000's optional diagnostic web interface can be used to write/read from...

PT-2023-8463 · Jasper +1 · Jasper +1

Name of the Vulnerable Software and Affected Versions: Jasper-Software Jasper versions 4.1.1 and earlier Description: The issue is related to an invalid memory write that allows a local attacker to execute arbitrary code. It involves a buffer overflow in memory when handling an ICC profile,...

postgresql: Buffer overrun from integer overflow in array modification

A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks during SQL array value modification. This issue exists due to an integer overflow during array modification where a remote user can trigger the overflow by providing...

SUSE-SU-2023:4792-1 Security update for xwayland

This update for xwayland fixes the following issues: - CVE-2023-6377: Fixed out-of-bounds memory write in XKB button actions bsc1217765. - CVE-2023-6478: Fixed out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty bsc1217766...

postgresql: Buffer overrun from integer overflow in array modification

A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks during SQL array value modification. This issue exists due to an integer overflow during array modification where a remote user can trigger the overflow by providing...