88 matches found
Splunk Security Breach
Splunk is a suite of data collection and analysis software from Splunk, Inc. in the United States. The software is primarily used to collect, index, and analyze and the data it generates, including data generated by all IT systems and infrastructures physical, virtual machines, and cloud. A...
GnuTLS Security Vulnerabilities
GnuTLS is a free secure communication library for implementing SSL, TLS and DTLS protocols. A security vulnerability exists in GnuTLS version 3.6.7-4+deb10u11, which stems from a security flaw in the RSA-PSK ClientKeyExchange, where the response time to a misformatted ciphertext differs from the...
Elasticsearch Security Vulnerabilities
Elasticsearch is a search engine based on the Lucene library. A security vulnerability exists in Elasticsearch that stems from the use of misformatted scripts in the script handler of the ingestion pipeline, which causes nodes to crash...
Moodle 安全漏洞
Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. A security vulnerability exists in Moodle that stems from a remote code execution vulnerability when parsing references to an incorrect...
CVE-2023-23903
An authenticated administrator can upload a SAML configuration file with the wrong format, with the application not checking the correct file format. Every subsequent application request will return an error. The whole application in rendered unusable until a console intervention...
ISC BIND 安全漏洞
ISC BIND is a suite of open source software that implements the DNS protocol from the US company ISC. A security vulnerability exists in ISC BIND 9, which stems from the fact that named instances can be remotely terminated using a zone with a misformatted NSEC record, which can be exploited by an...
Wireshark Resource Management Error Vulnerability (CNVD-2023-62292)
Wireshark is a very popular network packet analyzer that intercepts various network packets and displays packet details. A security vulnerability exists in Wireshark. The vulnerability is related to the GQUIC parser. An attacker can exploit the vulnerability to inject misformatted packets into a...
Wireshark 资源管理错误漏洞
Wireshark is a very popular network packet analyzer that intercepts various network packets and displays packet details. A security vulnerability exists in Wireshark. The vulnerability is related to the GQUIC parser. An attacker can exploit the vulnerability to inject misformatted packets into a...
Cisco Packet Data Network Gateway 安全漏洞
Cisco Packet Data Network Gateway is a key network function of Cisco's 4G mobile core network.PGW serves as an interface between the LTE network and other packet data networks. A security vulnerability exists in the Cisco Packet Data Network Gateway that arises from the Vector Packet Processor no...
Envoy 环境问题漏洞
Envoy is an open source distributed proxy server. Envoy suffers from an environmental issue vulnerability that stems from an incompatible HTTP/1 service that allows misformatted requests, which can lead to security policy bypass. The following versions are affected: versions prior to 1.26.0,...
Splunk 安全漏洞
Splunk is a suite of data collection and analysis software from Splunk, Inc. in the United States. The software is primarily used to collect, index, and analyze and the data it generates, including data generated by all IT systems and infrastructures physical, virtual machines, and cloud. A...
Silicon Labs Gecko SDK 缓冲区错误漏洞
The Silicon Labs Gecko SDK GSDK is an open source library from Silicon Labs. Combines the Silicon Labs Wireless Software Development Kit SDK and the Gecko platform into one integrated package. A security vulnerability exists in the Silicon Labs Gecko SDK, which stems from a misformatted packet...
Silicon Labs Gecko SDK 缓冲区错误漏洞
The Silicon Labs Gecko SDK GSDK is an open source library from Silicon Labs. Combines the Silicon Labs Wireless Software Development Kit SDK and the Gecko platform into one integrated package. A buffer error vulnerability exists in the Silicon Labs Gecko SDK, which stems from a misformatted packe...
AZL-11093 CVE-2022-42012 affecting package dbus for versions less than 1.15.2-2
An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause dbus-daemon and other programs that use libdbus to crash by sending a message with attached file descriptors in an unexpected format...
UBUNTU-CVE-2022-42012
An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause dbus-daemon and other programs that use libdbus to crash by sending a message with attached file descriptors in an unexpected format...
PT-2022-5134 · D-Bus +10 · D-Bus +10
Name of the Vulnerable Software and Affected Versions: D-Bus versions 1.12.24 and earlier, 1.13.x, 1.14.x before 1.14.4, and 1.15.x before 1.15.2 Description: An issue was discovered in D-Bus that allows an authenticated attacker to cause dbus-daemon and other programs that use libdbus to crash b...
ISC BIND 数据伪造问题漏洞
ISC BIND is a suite of open source software that implements the DNS protocol from the US company ISC. A security vulnerability exists in BIND that originates from the use of a misformatted EdDSA signature that spoofs the target resolver, causing memory to crash due to insufficient resources. The...
Hitachi Energy MicroSCADA X SYS600 输入验证错误漏洞
Hitachi Energy MicroSCADA X SYS600 is a SCADA product from Hitachi Japan. It ensures optimal control and reliable operation of your switching station through seamless integration and connectivity between different devices and systems. A security vulnerability exists in Hitachi Energy MicroSCADA X...
CVE-2022-34634
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted det instructions rather create an exception...
CVE-2022-34634
CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted det instructions rather create an exception...